Report - twojeloty.pl/

Report Overview

Submitted URL
twojeloty.pl/
IP
193.178.43.195
ASN
#50840 HITME.PL
Submitted
2022-11-26 08:31:55
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
28

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.38.198.114
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	21 kB	142.250.74.174
twojeloty.pl	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	22 kB	2.4 MB	193.178.43.195
aktywnybaner.rzetelnafirma.pl	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	346 B	325 B	217.30.159.227
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	711 B	92 kB	31.13.72.12
static.xx.fbcdn.net	661	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	11 kB	258 kB	31.13.72.12
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.4 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	509 B	1.9 kB	31.13.72.36
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	49 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	142.250.74.3
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
maps.googleapis.com	33876	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	418 B	54 kB	142.250.74.106
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	946 B	94 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-26	medium	twojeloty.pl/	Phishing
2022-11-26	medium	twojeloty.pl/js/jquery.easing.1.3.js	Phishing
2022-11-26	medium	twojeloty.pl/js/camera.min.js	Phishing
2022-11-26	medium	twojeloty.pl/js/jquery.prettyPhoto.js	Phishing
2022-11-26	medium	twojeloty.pl/js/jquery.jcarousel.min.js	Phishing
2022-11-26	medium	twojeloty.pl/js/gmap3.min.js	Phishing
2022-11-26	medium	twojeloty.pl/js/scripts.js	Phishing
2022-11-26	medium	twojeloty.pl/js/selectplug.js	Phishing
2022-11-26	medium	twojeloty.pl/js/jquery.form.js	Phishing
2022-11-26	medium	twojeloty.pl/layouts/1006/SansitaOne.ttf	Phishing
2022-11-26	medium	twojeloty.pl/clients/104/img/slider/slider_34f894c16e334b20c0da3d61a56ce631.jpg?1669451502421	Phishing
2022-11-26	medium	twojeloty.pl/clients/104/img/slider/slider_2ad0cb49f55637a85c5b8486ed80f023.jpg?1669451503082	Phishing
2022-11-26	medium	twojeloty.pl/clients/104/img/favicon_9afaa70fb42bf8f026c5012594eacdf9.ico	Phishing
2022-11-26	medium	twojeloty.pl/clients/104/img/slider/slider_0ce80938c9c19b6bee4741b60e472505.jpg?1669451509341	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (52)

	URL	Size	First Seen	Last Seen
	twojeloty.pl/	143 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/ IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen5 Hash da9beb05d3d47c0c15d5974b4529609a f4f0088a4290c56115f03e5942c71a31e0c8b504 c97faeb0f2970c1d8c5b213d5c03c20fd1f9f5b827fd7a154ad536715fbb5205 Loading...

	www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300	218 B	2023-03-07	2024-04-16
Pretty URL www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-16 16:07:02 Times Seen12468 Hash 23731f926ba1b7856c53bf9c572f9e96 52618c2e6dd1bce8956fd2e2872c524eb1fd59d6 dbf6a6f99233910115437a7d602f004b1287d55441d4f751d152bf216375c07a Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yz/r/lYejkzyV906.js?_nc_x=Ij3Wp8lg5Kz	723 B	2023-03-08	2024-03-31
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yz/r/lYejkzyV906.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:59 Last Seen2024-03-31 21:52:47 Times Seen593 Hash 9556d362794227182a205266264e22f6 c4e9ce829a404313e2c6a69266b80c606fad37e7 ff7752702f4c4c362f1eaec396e6aac8a0aadf3def7dc0817e558c60ce20f0c5 Loading...

	twojeloty.pl/	476 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/ IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen5 Hash eec6a3946c8c6e7e4f689781d069da1e 77be7092d9af5be82ed9c195cb9ead53085966f8 cf9fb1cde466cd6825c2bb08b41c0e0a95ddb4c4f51e93003814c63397e0fc52 Loading...

	twojeloty.pl/	399 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/ IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen5 Hash 0b4bba1a3d516cd30483732de9e19c84 ce418bd26018bf811b09cf7352396ff64978fd58 e34990467c900dc95b4d02dc3b9b381d6a15321efc4e7b48d949ec11ff40cc7c Loading...

	twojeloty.pl/	70 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/ IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen5 Hash 3e52ece5888b15331b285baebfa1dc0e b9d30ad8252d929f399bb7fd7c1314787c3f002d 840f8989160d92bfe8cc23fc21a9b36b93458dc3cd4eda45764740bb1712d35a Loading...

	twojeloty.pl/	304 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/ IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen5 Hash 83fe6d38e8c9541fe9cc17402d096974 fedc98db6d16ec250cb59711a0d1ecf07055b211 dca7c4de65cd6cc9064fb1cd524bcb00bf83c4b49a6c3f5678ce7e3a1b0da609 Loading...

	twojeloty.pl/	174 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/ IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen5 Hash 3d909755d728e2bfcdaedfcabf57f00a 6a4684934c6efb058dee91c824df2a1d9b9083f2 00ff4f2a6d28d23e23e1e88be05ad6d6eb257a15448e602d7651aa2e9945caef Loading...

	www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300	17 kB	2023-03-11	2023-03-11
Pretty URL www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:34:42 Last Seen2023-03-11 20:34:42 Times Seen1 Hash af9ab6af0f913f27075fd6de8c9b0390 923feb01eee6db54937d029a977b681103204759 8f5163becd5462145c273a16be4b1d35313b1fac805182304953dea0afcc76c3 Loading...

	static.xx.fbcdn.net/rsrc.php/v3iAW84/y-/l/pl_PL/L3rRYxmZ_M5.js?_nc_x=Ij3Wp8lg5Kz	24 kB	2023-03-11	2023-04-29
Pretty URL static.xx.fbcdn.net/rsrc.php/v3iAW84/y-/l/pl_PL/L3rRYxmZ_M5.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:34:42 Last Seen2023-04-29 13:47:49 Times Seen6 Hash 5b7195d9b347958e88bf1089baeaa7a3 f0e06b8ddc87e0d106533ece28d1b20d10f8e962 b50271add3ec43958a7789328f5b963b5b96a44bd2601818968645c8aaa0af06 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yQ/r/3wX2w-O_9zc.js?_nc_x=Ij3Wp8lg5Kz	2.9 kB	2023-03-10	2023-03-11
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yQ/r/3wX2w-O_9zc.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:45:09 Last Seen2023-03-11 20:35:27 Times Seen1 Hash aa071aa0f86018bfa3012334519f5606 cd24cb1bdba12e72dcde2c4ca16ce0843b92d092 e8bba666fc7cef1cf595194ac929791183840c7158dfde05eecdb9e537eacb76 Loading...

	www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300	16 kB	2023-03-11	2023-03-11
Pretty URL www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:34:42 Last Seen2023-03-11 20:34:42 Times Seen1 Hash 34e13e0ddc8b7edce248a355bfb5e610 4249d7ba9581df7113e5aef69c61b8a0f860a679 d20f1fd31cf2058fc58e8fa422fd94af37d698cddfb771e5a69a28ba114953f2 Loading...

	twojeloty.pl/	352 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/ IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen5 Hash 5405eab9622c5c2ef02093f8b5b50f4d fb8a65259322e8dd1e4eb626025e4b80c1cee8c5 cea572a2634ef1b55e941ef20d5d2d5cd06fd174e0b28b7fb94a80d4bcd6d71a Loading...

	www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300	391 B	2023-03-11	2023-03-11
Pretty URL www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:34:43 Last Seen2023-03-11 20:34:43 Times Seen1 Hash 9a04b954117ad0264dfd43add31a10a2 9120929df7062a82cafc6f32d9b3497a7a27c229 08bd775a14f019eda2e939ea08b61c4e65ee1e874b7f31d7d5720f3da17effbb Loading...

	www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300	10 B	2023-03-07	2024-04-16
Pretty URL www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:18 Last Seen2024-04-16 16:07:02 Times Seen14049 Hash 91b3d54bc665b27a303ea5103da4f0b5 1ea644a3b2b1e427686c79e379e4074d576e732a 8c946addeada771d3dc6866cc23be2d1ef3f84b0ae6a98989cbf25b1a9249a61 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yQ/r/yo4pRGpgUg6.js?_nc_x=Ij3Wp8lg5Kz	16 kB	2023-03-11	2023-03-11
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yQ/r/yo4pRGpgUg6.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:16:26 Last Seen2023-03-11 20:37:24 Times Seen1 Hash 5d3db231fc6f7742ca1bba517d78f4f1 4e73c6aeb43d5caab63ea680bda3778170d62a8c 5e602f310bb7367b5b4f037967b2589a883bdc93f816bc2a8ecfd74e36be7fa9 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yq/r/6pd4iTcqYl_.js?_nc_x=Ij3Wp8lg5Kz	16 kB	2023-03-11	2023-03-11
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yq/r/6pd4iTcqYl_.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:55:01 Last Seen2023-03-11 20:37:24 Times Seen1 Hash 5e02d51b2d08cae7fa4ae7d9c1842dda 72037e698748d6694488fc64105f38f14a32fe74 27113e34a3f3853efe89c0cacfdf73568847cba74b6127fc1fae031c3079a905 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz	39 kB	2023-03-11	2023-03-11
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:10:55 Last Seen2023-03-11 22:02:12 Times Seen1 Hash 18793e9b6c478baff390c2c25df442c3 7840e8de1bfaef6c1ecc05563ca00f3f7901901d f28bb67943d02b75ca344e7d7403636d1174bbf9af444c11d4a0fd5cc0f8da0c Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz	53 kB	2023-03-08	2023-03-13
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:59 Last Seen2023-03-13 02:53:11 Times Seen1 Hash 73a0b1ff652307a0c4f80eefedf0674a 4972c74d05c51b1a6509ad59c145e9575efee260 dc07d382f00a25c7cab4993b3675027b7ba9fdf978474e9611aadde6383d9a57 Loading...

	twojeloty.pl/js/jquery.prettyPhoto.js	25 kB	2023-03-07	2024-03-22
Pretty URL twojeloty.pl/js/jquery.prettyPhoto.js IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2024-03-22 09:58:09 Times Seen111 Hash 5e79ae6c86daa6dd93298f38e5037c24 f7be12e0d2d6d3d74a3fef1ada8f1f000bdf88a9 838740e265954d7ecdb4bc78a3954145dc040479b26f82fbd8b4e0438775232a Loading...

	twojeloty.pl/js/gmap3.min.js	28 kB	2023-03-07	2023-11-08
Pretty URL twojeloty.pl/js/gmap3.min.js IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-11-08 11:29:22 Times Seen22 Hash 9664aef390c35366033068feeb90e2f9 3ac8042dc534c8ee80e1ddcdef06b2ba38344422 713ad1c511bfedd75266b7ba9caba53c690dcacffba6d0f475c7b4185af1c8a0 Loading...

	twojeloty.pl/	280 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/ IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen5 Hash 03a1fe831f4d7747c953c2ebbbc78ef6 6592992a3527ea207d8421bccabedca341ad9b02 1c5abef27e53fc7b48a278fd93a751908138a6f0c0dcff799bee3f803262fc29 Loading...

	twojeloty.pl/	78 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/ IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen5 Hash 7258f0761c88a701cb0cb9f303817e62 a2ade2084349d6c8a039f0d26630d701fa161409 defd459476fe3f15112afc7b5438f8c160cd600a744cb0cd5875bb43dac61fba Loading...

	connect.facebook.net/pl_PL/all.js#xfbml=1&appId=230993897025745	3.1 kB	2023-03-11	2023-03-11
Pretty URL connect.facebook.net/pl_PL/all.js#xfbml=1&appId=230993897025745 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:34:43 Last Seen2023-03-11 20:34:43 Times Seen1 Hash 88bb14a5f9c361b8e68063467a8ec9c1 20e7eecebb1c8af0400b3e00593ddb2df73a65d9 f2d9038c8544c8623fda6ff01e9870a7ca357022a0eefc0a031ee39fc5701bd0 Loading...

	twojeloty.pl/js/jquery.easing.1.3.js	8.1 kB	2023-03-07	2024-04-16
Pretty URL twojeloty.pl/js/jquery.easing.1.3.js IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-16 14:06:13 Times Seen7041 Hash 6516449ed5089677ed3d7e2f11fc8942 82e40d060bc269a6dde20c3990ca5a4fea6ca754 0757f7ff6e5f6a581922a5e2d42c5e0cf7475d880885a9802e8bdd5e4188dd34 Loading...

	twojeloty.pl/	362 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/ IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen5 Hash 5729750ed5a5c9e5f527272ff3690838 770e90822227b0883800b275c31b7a92915f9879 4f27ed6781612c75c8c3bcdbd2ceef4ebc6b0414b0314faee9e616e3f742d858 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yJ/r/wXhbxYJbfst.js?_nc_x=Ij3Wp8lg5Kz	23 kB	2023-03-10	2023-03-11
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yJ/r/wXhbxYJbfst.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:37:40 Last Seen2023-03-11 20:37:24 Times Seen1 Hash 411048125b75869dc414650632bea278 7e914aa481525a53965865be73ddef3e57320412 21b00ece81690dcfb5180f437550bf4ba43e7ec332bdfc083032c24fa5c91f82 Loading...

	www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300	125 B	2023-03-09	2023-03-11
Pretty URL www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 00:31:31 Last Seen2023-03-11 23:29:39 Times Seen1 Hash 42bdbd946f97e85bc10578746ca6a017 3ae69167bc624c6015049c011cf834f9e0bb8df1 7f5f625478f759f29fcf4689540faf0eef512f056d049ef7e05dcbdbca39026a Loading...

	twojeloty.pl/js/selectplug.js	904 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/js/selectplug.js IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen7 Hash 763ce4d809ba8e5988cf7f29ec274302 4071853c5b429e1992e824e5a74182efc481f0db e7fb0d491b4e8ba9ddaa5a200e0dc92b07df0e9306111be6f7a02ab0a8693824 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-15 19:32:36 Times Seen1507 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yW/r/0aTHA2C1d6g.js?_nc_x=Ij3Wp8lg5Kz	22 kB	2023-03-11	2023-03-11
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yW/r/0aTHA2C1d6g.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:43:48 Last Seen2023-03-11 22:28:25 Times Seen1 Hash 15f23c10f27c87fe4ae4ea56eca13a82 3d3d6af6db8eaf3a13f0490701d471d6e3dc6d3a 27689f377d8d9b0bdf740c3fb0f9606d63a1245babc2dca5add4c5dd7dccfe04 Loading...

	twojeloty.pl/	151 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/ IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen5 Hash ef6b8cd81096ae7f56370bb5a6537d5d a83ac0de13267c83186c75332304a59d013f115e 6ed4cf4579873337e96695747a3827e1f4b3d87d01087f3d27a523350e6e7493 Loading...

	twojeloty.pl/	80 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/ IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen5 Hash 6ff3c670ae1ceb85178bb895ad45de33 b993b07f94d370a4e565a7aa6693c215a0de6255 b06dbc09a4ee920e7ba78a4a9d5280ead64323bdeecf13bb59d533d7e765a8ec Loading...

	static.xx.fbcdn.net/rsrc.php/v3iOuX4/y2/l/pl_PL/m3C9wUm7Rze.js?_nc_x=Ij3Wp8lg5Kz	30 kB	2023-03-11	2023-03-11
Pretty URL static.xx.fbcdn.net/rsrc.php/v3iOuX4/y2/l/pl_PL/m3C9wUm7Rze.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:34:43 Last Seen2023-03-11 20:34:43 Times Seen1 Hash 1c6db70d49ee3732dbc5c3bd7603fd35 2f4972ccf80095a3b8c39e4534c1ec723f8677d8 a82cabae4c467f21a4adb4508e514e7e216ab96f11ceffa12a40bb40765bf76c Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yD/r/u-BBUt81dFY.js?_nc_x=Ij3Wp8lg5Kz	63 kB	2023-03-11	2023-03-11
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yD/r/u-BBUt81dFY.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:28:42 Last Seen2023-03-11 20:34:43 Times Seen1 Hash ec671bf16c31587101188d984186b657 b16d607d16ce6327e66892115f60c4d78bcef6d4 792649cc9ff5450fa58e4b39d10b911fcf7709cd9df40b14720633073db7b2e8 Loading...

	www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300	1.6 kB	2023-03-11	2023-03-11
Pretty URL www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:34:43 Last Seen2023-03-11 20:34:43 Times Seen1 Hash d4a257b4c353ea411779481d83bf9088 b4deefa9f45627f1a2f2d22136789485c6157650 93a75f9102f7c7a47d86d37e0423f32472f473cb8f9e347ccd9d0c70b701d6a5 Loading...

	static.xx.fbcdn.net/rsrc.php/v3i7Kf4/yj/l/pl_PL/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz	86 kB	2023-03-11	2023-03-11
Pretty URL static.xx.fbcdn.net/rsrc.php/v3i7Kf4/yj/l/pl_PL/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:47:12 Last Seen2023-03-11 20:34:43 Times Seen1 Hash 092fdc3c83ac72653be0291d3737b1c8 78fd70edca3b670e72cc9bfdebc3adcc43d53315 65e4b84fcdde0f1a54b3ce9808c5d7c2b6fd5160d81f4ab9e9ae0b071ce21568 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz	507 B	2023-03-08	2024-04-16
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:59 Last Seen2024-04-16 16:07:03 Times Seen20640 Hash 759df6e181340ef0a76a1bab457ebb22 2afdfa1808428e97f7f8faea0624c8402956b04e 9e57fedb96b3686621bccd5521f43a2037a823c74f062176952890b179b3955b Loading...

	www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300	252 B	2023-03-07	2024-03-07
Pretty URL www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-03-07 18:38:30 Times Seen2234 Hash dfc334cd5201ae3c020f43848b1646c4 b951863e53fd874757a2d5a21c8739a4d3640947 6e28b909a82bf42f6a2b51d7bbdc3ecafc47cd43cd52d1a3b584250c2ae579fe Loading...

	unknown	0 B	2023-03-07	2024-04-16
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-16 17:25:29 Times Seen36900254 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	twojeloty.pl/js/jquery.jcarousel.min.js	16 kB	2023-03-07	2024-04-15
Pretty URL twojeloty.pl/js/jquery.jcarousel.min.js IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2024-04-15 11:35:11 Times Seen473 Hash e21f1b89a71a1ecab4e3c8bed467d22b 0127b925d609ecff041428ca7841bf357821957a 57188db6b78f3bc778063fdc1285fbca0a26e15f23db1e2e22dfa05cce03c06a Loading...

	twojeloty.pl/js/scripts.js	693 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/js/scripts.js IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen7 Hash 77915f2ac785879dab530f0f2982cbfa 62554d4242fddd092bbce7759e99c730d0de5934 f792d9f3fc3665a38f071dc6a1393c581d4b0498bf4f19f557ea2f2cd14ff867 Loading...

	twojeloty.pl/	153 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/ IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen5 Hash 5ceece2066e6dc8a4422f9da7e982ded 88ff74543ebdb9191b01043041893634df98c73f 6f35e19cadca25b3a468ae512e0f4ff6c34916c165f6ca8de3dc1971ecb419df Loading...

	static.xx.fbcdn.net/rsrc.php/v3/y-/r/y841rZ2iNa0.js?_nc_x=Ij3Wp8lg5Kz	28 kB	2023-03-11	2023-03-11
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/y-/r/y841rZ2iNa0.js?_nc_x=Ij3Wp8lg5Kz IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 11:31:35 Last Seen2023-03-11 20:44:22 Times Seen1 Hash 3418359641f24784d6234025c869ddf4 76212ee8f28849df8bbb8bad547f244281848715 cdb6a994a22802d3cebc2c03d498dd340fefb6e95d1b2b462c2913112fe9b11a Loading...

	www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300	17 kB	2023-03-11	2023-03-11
Pretty URL www.facebook.com/plugins/like_box.php?app_id=230993897025745&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df39b40f6eb133c%26domain%3Dtwojeloty.pl%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Ftwojeloty.pl%252Ff3907550ed11ac4%26relation%3Dparent.parent&container_width=1&header=true&href=https%3A%2F%2Fwww.facebook.com%2Ftwojeloty&locale=pl_PL&sdk=joey&show_faces=true&stream=true&width=300 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:34:43 Last Seen2023-03-11 20:34:43 Times Seen1 Hash 2ac866d3759d73d4d944f5d3f4e0947f dea862f4acc8db028017bfd02cc9062c33a8fc61 be2350a7a5392690c152072444503a9485c049a1fd3c766f780b2be3db02ed7d Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yI/r/iW6e16Fzr3M.js?_nc_x=Ij3Wp8lg5Kz	326 kB	2023-03-08	2023-03-11
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yI/r/iW6e16Fzr3M.js?_nc_x=Ij3Wp8lg5Kz IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:45:18 Last Seen2023-03-11 23:34:35 Times Seen1 Hash 910ca632e29cada54b930b88ba5bf369 6d3dc9ddb2d68edb9e34a11db9be7343afd78953 beca54272ea4f3ca24089ebe2a46397af80c7da8dc81262d9133e4d58af63531 Loading...

	static.xx.fbcdn.net/rsrc.php/v3/yH/r/MDNj1eUK5bV.js?_nc_x=Ij3Wp8lg5Kz	25 kB	2023-03-07	2023-03-17
Pretty URL static.xx.fbcdn.net/rsrc.php/v3/yH/r/MDNj1eUK5bV.js?_nc_x=Ij3Wp8lg5Kz IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-03-17 12:55:43 Times Seen1 Hash 04551bbefc783773edf23064b1b08ffe 8ee54463dff5f0443fe2afdb72cd200e8aebc390 de196fa938446c7486bcecc14b72919df6f78871a4af22c4f168a2785a0139ff Loading...

	twojeloty.pl/js/camera.min.js	39 kB	2023-03-07	2024-02-28
Pretty URL twojeloty.pl/js/camera.min.js IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2024-02-28 11:26:14 Times Seen92 Hash fb5074c5cf40020f7d0ab68a6d96db97 d008c82675d94c4dd3a6c49e3361736d7504647b 4a3ae52d3526e37040a8196cc9e7e926b8f77a57e0fc65462247f070c52485d0 Loading...

	twojeloty.pl/js/jquery.form.js	39 kB	2023-03-07	2024-03-20
Pretty URL twojeloty.pl/js/jquery.form.js IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2024-03-20 07:42:08 Times Seen70 Hash 95ef5c3a6b4ec45bd965b8a1a66e32b5 8ae070c6944bbf154cfabd295b7633e1fc1a91b5 d3846bf50deafd5670d6e7bff566a61605686723929a0f1e9ada878575518b7b Loading...

	twojeloty.pl/	164 B	2023-03-07	2023-05-27
Pretty URL twojeloty.pl/ IP 193.178.43.195 ASN #50840 HITME.PL Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:04 Last Seen2023-05-27 09:34:01 Times Seen5 Hash 152dfe2299d2b59c9b8cf76612c45d73 8825014dacb2ad3493c3a429d3aefc65019f88be 4f5169103cc77a17d3dcfacaf5d03eb9e9fff21da0d8c93be1cb865cfc00c530 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/1/common.js	254 kB	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/1/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:54:04 Last Seen2023-03-11 23:13:14 Times Seen1 Hash e39ea0b6a59026e9c9a623f639661f9b 6dc69b58001aa7bde94cb7572fa14665e356c29b db099e95eb910c80a88cff3a375d59c4533d74c328b5c94189fe32f0b0ae28a1 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/1/util.js	170 kB	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/1/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:54:04 Last Seen2023-03-11 23:13:14 Times Seen1 Hash 1869be15b4f227b772acbd045fad1a0b 74b0740732ed46e6b588b712ccb3238ec824d8f0 ebc4b582e1dcce5a8347546dce540c0b431f22a8f78811240328a2fc5f8eb7b5 Loading...

HTTP Transactions (118)

URL IP Response Size

twojeloty.pl/

193.178.43.195

200 OK

5.9 kB

URL HTTP/1.1
twojeloty.pl/
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (489), with CRLF, LF line terminators
Size
5.9 kB (5871 bytes)
Hash
1108878da32372b10bb41cd559cf25f0
4a1644043dc419ec84179feb8cb9ea0dc9109343
b992a93ae1dddd129b3cd61a164fcf2570148279e449c01a1c0f881cbc15d0d8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.4.30
set-cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding,User-Agent
date: Sat, 26 Nov 2022 08:31:42 GMT
server: LiteSpeed

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14420
Expires: Sat, 26 Nov 2022 12:32:02 GMT
Date: Sat, 26 Nov 2022 08:31:42 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5048
Cache-Control: max-age=98620
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:31:42 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 11:55:22 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 08:17:32 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 850
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5720
Expires: Sat, 26 Nov 2022 10:07:02 GMT
Date: Sat, 26 Nov 2022 08:31:42 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: ZGZbHiF98V3xU0PvR0XNAWDCSnFmedjQQo64o/PQp32D0XNQDMKRPKs05lYFqaVMZ7p8jJrHUhE=
x-amz-request-id: 7BVXCVDEZV4ZD1JW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 07:44:09 GMT
age: 2853
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jqueryui/1.8/themes/base/jquery-ui.css

142.250.74.106

200 OK

5.8 kB

URL HTTP/1.1
ajax.googleapis.com/ajax/libs/jqueryui/1.8/themes/base/jquery-ui.css
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (551)
Size
5.8 kB (5770 bytes)
Hash
6ba899d70fbbb03f9268eb452306c3ef
216bc2461f6f6bd57f61ec7e6cbc2af902823394
7196b738a90d836254a81c751da83c0b6316de3f71d175bb0aed041591272ccd

HTTP Headers

GET /ajax/libs/jqueryui/1.8/themes/base/jquery-ui.css HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 5770
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 11:09:38 GMT
Expires: Fri, 24 Nov 2023 11:09:38 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 163324
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/css; charset=UTF-8

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 08:31:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.8/jquery.min.js

142.250.74.106

200 OK

34 kB

URL HTTP/1.1
ajax.googleapis.com/ajax/libs/jquery/1.8/jquery.min.js
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65483)
Size
34 kB (33593 bytes)
Hash
a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830

HTTP Headers

GET /ajax/libs/jquery/1.8/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33593
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 11:12:18 GMT
Expires: Fri, 24 Nov 2023 11:12:18 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 163164

twojeloty.pl/style/camera.css

193.178.43.195

200 OK

3.1 kB

URL HTTP/1.1
twojeloty.pl/style/camera.css
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
ASCII text
Size
3.1 kB (3104 bytes)
Hash
2d3b84480b76ed76a236b3f70a5c1c5a
1a2fb9b04f41d57664bce3facc22bae380a5235d
79198d2b80d0d20d622da0b275bcc8cd682a27ae3d695fdcc1dc3749926c99fa

HTTP Headers

GET /style/camera.css HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:42 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "671d-61e036fb-639088672aa5cc95;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 3104
date: Sat, 26 Nov 2022 08:31:42 GMT
server: LiteSpeed

ajax.googleapis.com/ajax/libs/jqueryui/1.8/jquery-ui.min.js

142.250.74.106

200 OK

52 kB

URL HTTP/1.1
ajax.googleapis.com/ajax/libs/jqueryui/1.8/jquery-ui.min.js
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (64651)
Size
52 kB (51653 bytes)
Hash
90a9d6025c5c6fb9d338400221db28c4
8db4fb29ad7009a26a3e9b60945de0dbcbc216dc
e02adbfb9cea8e180e266a1f23d446a4aa072f50d602d990880708d3b3185469

HTTP Headers

GET /ajax/libs/jqueryui/1.8/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 51653
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 21:15:01 GMT
Expires: Fri, 24 Nov 2023 21:15:01 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 127001
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8

twojeloty.pl/style/prettyPhoto.css

193.178.43.195

200 OK

2.7 kB

URL HTTP/1.1
twojeloty.pl/style/prettyPhoto.css
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
ASCII text, with very long lines (402)
Size
2.7 kB (2748 bytes)
Hash
3d903c823e17fc3bc8d01815ea9c7ad3
635f54fdcbadb492ec0046bd138accf179f94f1c
89388a69511db5c331d9303385a2ae3780fa03c579865a5d4339257a129bedb5

HTTP Headers

GET /style/prettyPhoto.css HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:42 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "4e0a-61e036fb-7fb10127e188feb6;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 2748
date: Sat, 26 Nov 2022 08:31:42 GMT
server: LiteSpeed

twojeloty.pl/js/jquery.easing.1.3.js

193.178.43.195

200 OK

2.0 kB

URL HTTP/1.1
twojeloty.pl/js/jquery.easing.1.3.js
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
Unicode text, UTF-8 text
Size
2.0 kB (2015 bytes)
Hash
7afe8f4ade0b122c32b83b9225ce86c2
2b749fd92050250c1b03b3c89e90a709329e3638
a30de22d6d8a4478a60d1abae7527abad0e2484ddfa408beb808f5bedccea848

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery.easing.1.3.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:42 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "1fa1-61e036f9-e7271013ab1bcd98;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 2015
date: Sat, 26 Nov 2022 08:31:42 GMT
server: LiteSpeed

twojeloty.pl/js/camera.min.js

193.178.43.195

200 OK

8.6 kB

URL HTTP/1.1
twojeloty.pl/js/camera.min.js
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
ASCII text, with very long lines (39035)
Size
8.6 kB (8573 bytes)
Hash
90d24397edc9afaf13b0566d1b06278e
3ae0ad359d437e3b8b07614c539de159f87be63b
18b17df0ddab7205ab0ad71851ca0cdbf8f6231091a5d5ca83f51f1424de05bc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/camera.min.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:42 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "99a2-61e036f9-7a940fae9cf0e66e;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 8573
date: Sat, 26 Nov 2022 08:31:42 GMT
server: LiteSpeed

twojeloty.pl/js/jquery.prettyPhoto.js

193.178.43.195

200 OK

6.5 kB

URL HTTP/1.1
twojeloty.pl/js/jquery.prettyPhoto.js
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
HTML document text\012- HTML document, ASCII text, with very long lines (4432)
Size
6.5 kB (6471 bytes)
Hash
77d249e07c0d0fce0cab7e6840a7f13b
3d0d59b58cf140b44ca2949c561d1fa837adc1c9
89a5b9a3fcc785528f8b9fa951f52315fae8c83f5f90bb7c6bc9c6aa24634094

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery.prettyPhoto.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:42 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "6123-61e036f9-bddc6818709ab748;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 6471
date: Sat, 26 Nov 2022 08:31:42 GMT
server: LiteSpeed

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:31:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

twojeloty.pl/js/jquery.jcarousel.min.js

193.178.43.195

200 OK

4.5 kB

URL HTTP/1.1
twojeloty.pl/js/jquery.jcarousel.min.js
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
ASCII text, with very long lines (15184)
Size
4.5 kB (4513 bytes)
Hash
c47f6ffe9913a77bef7b75c3feccaa73
adc98e3d1ecb0834a25cdb324be95a61785b28a3
37c6cdfea957c19069df4310ded464730e0b23b43e4234a66b63b3967fbf22a6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery.jcarousel.min.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:42 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "3d22-61e036f9-36f85fe143281d03;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 4513
date: Sat, 26 Nov 2022 08:31:42 GMT
server: LiteSpeed

twojeloty.pl/js/gmap3.min.js

193.178.43.195

200 OK

9.1 kB

URL HTTP/1.1
twojeloty.pl/js/gmap3.min.js
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
ASCII text, with very long lines (27354)
Size
9.1 kB (9056 bytes)
Hash
901fbf6943c4f52b8b24b501cf99a122
7d964647cfc4e4659eba4292ff12cf4ac0aa7fe0
7480c993d6a5eaf1ff9bb9159048c55a1586a7e3672ac2ff1e080de680c75117

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/gmap3.min.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:42 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "6bda-61e036f9-6d15ac34ec0c7547;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 9056
date: Sat, 26 Nov 2022 08:31:42 GMT
server: LiteSpeed

twojeloty.pl/js/scripts.js

193.178.43.195

200 OK

359 B

URL HTTP/1.1
twojeloty.pl/js/scripts.js
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
ASCII text
Size
359 B (359 bytes)
Hash
4857194145004ad4fd7c7261b5f08895
f3c8749789c56bfbda2b0bdf2147841f147c6396
aa3d6bb26c2117f880a79b1c4bcae78220913bb26192037b47d7b065bcbf7618

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/scripts.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:42 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "2b5-61e036f9-773a27179029383f;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 359
date: Sat, 26 Nov 2022 08:31:42 GMT
server: LiteSpeed

twojeloty.pl/style/carousel.css

193.178.43.195

200 OK

555 B

URL HTTP/1.1
twojeloty.pl/style/carousel.css
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
ASCII text
Size
555 B (555 bytes)
Hash
eaae1fd16e820d718219e23be38b8aa1
91672e9a5d8869619ee81369150a488b5f8196be
ddad36ba5312271848f699a454530ec693bd8bd8037ec7e658ea0f2bba654bc5

HTTP Headers

GET /style/carousel.css HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:42 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "a72-61e036fb-8b1b2a5c74f79d4f;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 555
date: Sat, 26 Nov 2022 08:31:42 GMT
server: LiteSpeed

twojeloty.pl/layouts/1006/style.css

193.178.43.195

200 OK

6.2 kB

URL HTTP/1.1
twojeloty.pl/layouts/1006/style.css
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
assembler source, ASCII text
Size
6.2 kB (6206 bytes)
Hash
e75991893eaf4b1488e95c965397a90a
e030f948a48037a813ab6ca20f158a570be85a11
acf6214f100e3cda1e1968582a2e8420789a54e5119c98690183adfb10b4c692

HTTP Headers

GET /layouts/1006/style.css HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:42 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "73e9-61e036fa-f692eefa2239a611;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 6206
date: Sat, 26 Nov 2022 08:31:42 GMT
server: LiteSpeed

twojeloty.pl/js/selectplug.js

193.178.43.195

200 OK

313 B

URL HTTP/1.1
twojeloty.pl/js/selectplug.js
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
ASCII text
Size
313 B (313 bytes)
Hash
85848715687a07fca0de181d56d6e4c4
69e4bf908db8ca2c0c4e3b6be5894734b68ae1a1
9fd5995ff83ff517718e4723ad53dce31114da030c9f6cfbb7708cf662cf34bf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/selectplug.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:42 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "388-61e036f9-3afa156f677a364a;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 313
date: Sat, 26 Nov 2022 08:31:42 GMT
server: LiteSpeed

maps.googleapis.com/maps/api/js?key=AIzaSyDdNg6J5wn7Ufebm0wK9J01mUMQ4p9KxLM&sensor=true

142.250.74.106

200 OK

53 kB

URL HTTP/2
maps.googleapis.com/maps/api/js?key=AIzaSyDdNg6J5wn7Ufebm0wK9J01mUMQ4p9KxLM&sensor=true
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2453)
Size
53 kB (53359 bytes)
Hash
537dd1d217161f3da025b8193acd5f1e
32b3c2951db9427271a5be620a95df86e5256d45
7775f72aaf3016aa7abc5429cd8e19c7001307a9dd5d7c01dda056ebcaf5e61d

HTTP Headers

GET /maps/api/js?key=AIzaSyDdNg6J5wn7Ufebm0wK9J01mUMQ4p9KxLM&sensor=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://twojeloty.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sat, 26 Nov 2022 08:31:42 GMT
expires: Sat, 26 Nov 2022 09:01:42 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53359
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=17
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

twojeloty.pl/js/jquery.form.js

193.178.43.195

200 OK

11 kB

URL HTTP/1.1
twojeloty.pl/js/jquery.form.js
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
ASCII text
Size
11 kB (11137 bytes)
Hash
55c793e0f8d1a8862811a9e725c720c4
d59fc728a43be00fb0cd6a499c30b0e880b83cee
5c3257194bdd3ce7ee1473c17eb034a3ff94e9a8818f14b026d855909537db47

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/jquery.form.js HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:42 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "99e4-61e036fa-58b5e1f1516d2497;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 11137
date: Sat, 26 Nov 2022 08:31:42 GMT
server: LiteSpeed

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:31:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

twojeloty.pl/layouts/1006/img/icon5.png

193.178.43.195

200 OK

5.5 kB

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/icon5.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 158 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
5.5 kB (5462 bytes)
Hash
b7587e036e68e1a438b97af6f406443d
dddb9cd8860710ff5f73e562b8ed7779cd0ffb7e
764e7d91a093dcd94bcf0d20bb7c71ff3bca498519ca19205b407c36ea949203

HTTP Headers

GET /layouts/1006/img/icon5.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "1556-61e036fb-981e97001d667188;;;"
accept-ranges: bytes
content-length: 5462
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/icon6.png

193.178.43.195

200 OK

4.3 kB

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/icon6.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 158 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4276 bytes)
Hash
19e340e967418af9d0b856fd9ee69614
ee6b5816b27da79094e56a2bb39e8b8a4f288789
951deaf79718de6d815cd4eaa0853110a8d2fc32e4cc4a357eb4edb5668cd1cf

HTTP Headers

GET /layouts/1006/img/icon6.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "10b4-61e036fb-20a18700ccfb11e2;;;"
accept-ranges: bytes
content-length: 4276
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/icon4.png

193.178.43.195

200 OK

4.2 kB

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/icon4.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 158 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
4.2 kB (4219 bytes)
Hash
d558006806ee5b4a1138a96ab640cc46
eaa9031d03c6f4a77a855fd9c3b1fe07d2f9f942
dd8bc02a90d726c99ef82f41b653dc5f635443d8126e20d506bdc507d4699082

HTTP Headers

GET /layouts/1006/img/icon4.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "107b-61e036fb-9458b4f391dca8fd;;;"
accept-ranges: bytes
content-length: 4219
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/img/slider/logostour.png

193.178.43.195

200 OK

12 kB

URL HTTP/1.1
twojeloty.pl/img/slider/logostour.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (11668 bytes)
Hash
3cea44eb558195c1acfda6ec3250bb37
17e7447ddb750ef2adb65c535ae234093207bf1d
a80b593fc2a5ab52e351f5dd4ef36d7c6b9c3ddf7510e3c5a673e2675f996413

HTTP Headers

GET /img/slider/logostour.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "2d94-61e036f9-ce87e99baf12eb23;;;"
accept-ranges: bytes
content-length: 11668
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/img/slider/Logo-Net-Holiday-RGB.jpg

193.178.43.195

200 OK

18 kB

URL HTTP/1.1
twojeloty.pl/img/slider/Logo-Net-Holiday-RGB.jpg
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1673, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1673], baseline, precision 8, 70x70, components 3\012- data
Size
18 kB (18078 bytes)
Hash
228f6d36ed6c9f726180f852934609f7
5d80b5db5292f06f4942c6247e5731fa123d0866
addb4d50c62fb021c5f6eaf6cb65105c1696c36ea3a888de43a5121344932a47

HTTP Headers

GET /img/slider/Logo-Net-Holiday-RGB.jpg HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/jpeg
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "469e-61e036f9-ed54930873921611;;;"
accept-ranges: bytes
content-length: 18078
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/img/slider/2ways.png

193.178.43.195

200 OK

3.3 kB

URL HTTP/1.1
twojeloty.pl/img/slider/2ways.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3325 bytes)
Hash
9fecf6449229e2ef53c98d8a99b1d37e
1ebac5e2c9ab28e3ce735e12cbd4579fd29344af
1005ebf1f7a083f8b1eea2725a6bb9eb32a60aeb2b88b158da741bb830c4116a

HTTP Headers

GET /img/slider/2ways.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "cfd-61e036f9-22faf90b44c9d2c6;;;"
accept-ranges: bytes
content-length: 3325
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/img/slider/yobboo.png

193.178.43.195

200 OK

5.3 kB

URL HTTP/1.1
twojeloty.pl/img/slider/yobboo.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
5.3 kB (5277 bytes)
Hash
a8bb142635cc8faab4f0135f34fe55b0
7a31f9ba92175908666d23b88909234a8dd971f5
2c1407ad08a2b1e8f5b26a82b530f4701533486d61ade53c757f0f3e5bac41f3

HTTP Headers

GET /img/slider/yobboo.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "149d-61e036f9-3319ad1b7d357f6a;;;"
accept-ranges: bytes
content-length: 5277
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

aktywnybaner.rzetelnafirma.pl/ActiveBanner/GetActiveBannerImage/1/PQ5CXCTL

217.30.159.227

200 OK

0 B

URL HTTP/1.1
aktywnybaner.rzetelnafirma.pl/ActiveBanner/GetActiveBannerImage/1/PQ5CXCTL
IP
217.30.159.227:0
ASN
#24985 KACZMARSKI-INKASSO-Malgorzata-Kaczmarski

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ActiveBanner/GetActiveBannerImage/1/PQ5CXCTL HTTP/1.1
Host: aktywnybaner.rzetelnafirma.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/

HTTP/1.1 200 OK
Cache-Control: public, max-age=3600
Content-Type: image/png
Expires: Sat, 26 Nov 2022 09:31:43 GMT
Last-Modified: Sat, 26 Nov 2022 08:31:43 GMT
Vary: *
Server: Apache/2.4.37 (Debian)
X-AspNetMvc-Version: 3.0
X-Robots-Tag: noimageindex, noindex
Date: Sat, 26 Nov 2022 08:31:43 GMT
Content-Length: 0

twojeloty.pl/img/slider/amadeus.png

193.178.43.195

200 OK

16 kB

URL HTTP/1.1
twojeloty.pl/img/slider/amadeus.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
16 kB (16267 bytes)
Hash
aa1b026a453cf2f3c92d746f959128d5
0f5548fde21eabdc7c9be16827aee98da7048589
44ae0b1a580cee3d49d224b142baf73f4df14046d585fa18ed5e180eec4475aa

HTTP Headers

GET /img/slider/amadeus.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "3f8b-61e036f9-e91d2fcc35f9fa1;;;"
accept-ranges: bytes
content-length: 16267
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/menubot.png

193.178.43.195

200 OK

133 B

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/menubot.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 2 x 7, 8-bit/color RGB, non-interlaced\012- data
Size
133 B (133 bytes)
Hash
a40f1fd1a1be2364460882b846de4048
6cd825010ef01b2654570227894459e6b88cdcd5
6471188d2f65c845ebf68d9d8c247ea1886d5f6c8b186b48df1345f98b336441

HTTP Headers

GET /layouts/1006/img/menubot.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "85-61e036fb-8abde8816718aa09;;;"
accept-ranges: bytes
content-length: 133
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/icon1.png

193.178.43.195

200 OK

4.7 kB

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/icon1.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 158 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
4.7 kB (4710 bytes)
Hash
5c19a86c7e7f38243852e51eab20f6b1
1c1b87b0f85914d976a751d7cb78954e5eda6a9d
c8ad1b1857331b4686e1bf56204debe5444a72f3a5cb326a91f48c3614047c7d

HTTP Headers

GET /layouts/1006/img/icon1.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "1266-61e036fb-affe7e16a713f2af;;;"
accept-ranges: bytes
content-length: 4710
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/icon2.png

193.178.43.195

200 OK

4.0 kB

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/icon2.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 158 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
4.0 kB (4009 bytes)
Hash
42f57d43dd3cb15eed090888a61a13d5
9d9a35f927c23ae7649a45abc730b710ed61412c
6c6df4427a1db6a89bb18d80a4f807988a59b7720de238168bd92dddf61f2b32

HTTP Headers

GET /layouts/1006/img/icon2.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "fa9-61e036fb-4c8b8cecf57af2be;;;"
accept-ranges: bytes
content-length: 4009
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/icon3.png

193.178.43.195

200 OK

4.0 kB

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/icon3.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 158 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
4.0 kB (4046 bytes)
Hash
b60929fb4afc3eeee0ebd728bfbef883
dcf1bacdd95be484ce9207be4ae67813b5fd66f3
b59dd5c9eda7ad94643219bef636868bf2f6f2e39ba19acf3c32c213c3c3846c

HTTP Headers

GET /layouts/1006/img/icon3.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "fce-61e036fb-e5bd326cd5a77d9;;;"
accept-ranges: bytes
content-length: 4046
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/images/close_cookies.png

193.178.43.195

200 OK

252 B

URL HTTP/1.1
twojeloty.pl/images/close_cookies.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 8 x 8, 8-bit/color RGBA, non-interlaced\012- data
Size
252 B (252 bytes)
Hash
b067a15e0c74ea6a0fc569dfc9bedc7c
3e9ca9131b775c2abf68043ba5e139e3ac3bfc2c
c72f38a8c0d9d48cbd4a346c4d9cc7ee1d2014d53334bf160e0b0a0af327db52

HTTP Headers

GET /images/close_cookies.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/style/fb.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:08 GMT
etag: "fc-61e036f8-324fa305d065a6fa;;;"
accept-ranges: bytes
content-length: 252
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/img/firma.png

193.178.43.195

200 OK

7.2 kB

URL HTTP/1.1
twojeloty.pl/img/firma.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 32 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
7.2 kB (7157 bytes)
Hash
46e9b26538998f4e3e34a06c6f46cdef
c76cae47c1241df1334c92b086cc793d4a6311e6
182c443cc7100981508f14c72a3fa1ee110d10cd1ac197c74b9b11d37aef59c5

HTTP Headers

GET /img/firma.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/style/fb.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "1bf5-61e036f9-d0e338502eee4d0c;;;"
accept-ranges: bytes
content-length: 7157
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/topimage.png

193.178.43.195

200 OK

28 kB

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/topimage.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 287 x 110, 8-bit/color RGBA, non-interlaced\012- data
Size
28 kB (28423 bytes)
Hash
514dc82a98ca30dcab50b6b27789f78b
e86ab0d48eefde1c546f2bec496a3bbf3366af0d
03910b7bffd7174516f8e45252cb03a948f77f2b839896788257870e63ec31e4

HTTP Headers

GET /layouts/1006/img/topimage.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "6f07-61e036fa-d2b34df13b6400cc;;;"
accept-ranges: bytes
content-length: 28423
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/twitter_icon.png

193.178.43.195

200 OK

3.4 kB

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/twitter_icon.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced\012- data
Size
3.4 kB (3439 bytes)
Hash
24d9de2fd3d6a0e9d4a6f302de513d44
02b4db652eedb683165b71e2436f05f6755f8108
632cac2869ac6c4e0932cd55fed024f90fabbaec3e888401ce05ed046485cec9

HTTP Headers

GET /layouts/1006/img/twitter_icon.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "d6f-61e036fb-a088aea5df32ef3d;;;"
accept-ranges: bytes
content-length: 3439
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/clients/104/img/logo_92b7306b6861131cabff12aef11a34a2.png

193.178.43.195

200 OK

17 kB

URL HTTP/1.1
twojeloty.pl/clients/104/img/logo_92b7306b6861131cabff12aef11a34a2.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 409 x 98, 8-bit/color RGBA, non-interlaced\012- data
Size
17 kB (16829 bytes)
Hash
955013411b55f126f491339a88420bb5
9a0a57169c8c6f7cb6d97fa371fef4be7b7a3e1b
b0d56ec61b6e2e6b2d31ae9633f588725a4e5a3d139dfaa75b6b0a6dffecc555

HTTP Headers

GET /clients/104/img/logo_92b7306b6861131cabff12aef11a34a2.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:27:58 GMT
etag: "41bd-61e036ee-1c83fe51ae7b0386;;;"
accept-ranges: bytes
content-length: 16829
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/topbg.jpg

193.178.43.195

200 OK

110 kB

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/topbg.jpg
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2013:12:18 14:35:34], baseline, precision 8, 2089x581, components 3\012- data
Size
110 kB (110273 bytes)
Hash
38719f128cf2c824bd6bbce00c12bd1e
4c4fdf5c6914d5284e4590e92f7046f65d3ae36c
9b78e150e8edf02caebc53c8087feee5bbc2e115f83511fc87535cb4ed8386a1

HTTP Headers

GET /layouts/1006/img/topbg.jpg HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/jpeg
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "1aec1-61e036fb-313879f07231689f;;;"
accept-ranges: bytes
content-length: 110273
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/SansitaOne.ttf

193.178.43.195

200 OK

25 kB

URL HTTP/1.1
twojeloty.pl/layouts/1006/SansitaOne.ttf
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
TrueType Font data, digitally signed, 17 tables, 1st "DSIG", 32 names, Macintosh\012- data
Size
25 kB (25107 bytes)
Hash
ee34e395020ab85d4d1b5d6477e77d1b
a8a2ae043d9b999bb2910b5d8d15f1b16b0daf14
3bb4120ed5d4f1474d4a492b7666a570a4ae39f380fdd70514e66046561a1ab0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /layouts/1006/SansitaOne.ttf HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: application/x-font-ttf
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "b950-61e036fa-8414e5e4e4910207;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 25107
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed

twojeloty.pl/img/slider/abdar.png

193.178.43.195

200 OK

7.9 kB

URL HTTP/1.1
twojeloty.pl/img/slider/abdar.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
7.9 kB (7916 bytes)
Hash
b65418aa1a56310788b69b6095e57271
9d934f47ac381a4e66d4888e9a4a26475de7e677
d4b1db1778c11bd59babbdef40b1a4a220f06a97c4795ec983206f19da52e4dd

HTTP Headers

GET /img/slider/abdar.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "1eec-61e036f9-4c31f24d273ce3f;;;"
accept-ranges: bytes
content-length: 7916
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/top_bgrepeat.jpg

193.178.43.195

200 OK

49 kB

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/top_bgrepeat.jpg
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2013:08:16 10:32:14], baseline, precision 8, 291x492, components 3\012- data
Size
49 kB (48861 bytes)
Hash
c7f2e878420a08bf6687267ffe6ef177
4404502437ef3630f86874c181ce56447cb81fb1
fd5df88e2514119217b8c2e55cea9a37a78ba849ee12c9e91fa8223685179f62

HTTP Headers

GET /layouts/1006/img/top_bgrepeat.jpg HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/jpeg
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "bedd-61e036fb-52234bc387702bd7;;;"
accept-ranges: bytes
content-length: 48861
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 08:08:54 GMT
cache-control: public,max-age=3600
age: 1369
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

twojeloty.pl/layouts/1006/img/mail.png

193.178.43.195

200 OK

478 B

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/mail.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 17 x 11, 8-bit/color RGBA, non-interlaced\012- data
Size
478 B (478 bytes)
Hash
b50f7c9135df0a0e25920625e09c33c7
3eb19995e3965dbabc5a7076fd25cae45277ec36
ddba107705484ed1cff35b37bfc686ca57b9ab6018a44841bb7885d47611e1b5

HTTP Headers

GET /layouts/1006/img/mail.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "1de-61e036fa-12eaacf179c982b5;;;"
accept-ranges: bytes
content-length: 478
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/form.png

193.178.43.195

200 OK

313 B

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/form.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 17 x 13, 8-bit/color RGBA, non-interlaced\012- data
Size
313 B (313 bytes)
Hash
7814da60156ec333b64d8e23f0c0d0cc
9dd39967acc85f9a1dfb38317f60f11444659573
6b077cd8aa9fb9ba42d97c62c1713b34976b5148d8e47051d6b5765925d27751

HTTP Headers

GET /layouts/1006/img/form.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "139-61e036fb-e2ccdc0d7d5d39ca;;;"
accept-ranges: bytes
content-length: 313
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/google_icon.png

193.178.43.195

200 OK

3.7 kB

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/google_icon.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced\012- data
Size
3.7 kB (3733 bytes)
Hash
38196b41c90c55aeac821b8268a13972
59b8ee1a5745e34ff270dfdfd7394d525d2e6944
7cd8f1c1dd95a1e9b9a651e5eb55cad2b6ceca5c5d856d6f69d46aa652b6c15d

HTTP Headers

GET /layouts/1006/img/google_icon.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "e95-61e036fa-8e978543a30a9fff;;;"
accept-ranges: bytes
content-length: 3733
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/promocje.png

193.178.43.195

200 OK

3.2 kB

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/promocje.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 138 x 34, 8-bit/color RGBA, non-interlaced\012- data
Size
3.2 kB (3200 bytes)
Hash
1707473eb0b77b3abdc0eb88569441c5
3bfc0a4af69dbe2873163ca6c2f40fb973f0c9ff
7bbc591c5a73064b494a76d622a37c86dcc5ec2f2c5b959fe5721f383f752b49

HTTP Headers

GET /layouts/1006/img/promocje.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "c80-61e036fb-8f051ce1da143687;;;"
accept-ranges: bytes
content-length: 3200
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/menu.png

193.178.43.195

200 OK

185 B

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/menu.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 10 x 64, 8-bit/color RGB, non-interlaced\012- data
Size
185 B (185 bytes)
Hash
4a9447b124f7c127caab1ae3bf3beacd
9539fd3a150a8b704081e2b5b0a2c8b5dd79bd61
9de1006d94dda53b63d1341ffec5f893e5f480ce02f7ae1d6aad490d9fd6da26

HTTP Headers

GET /layouts/1006/img/menu.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "b9-61e036fb-62b034d1c6a3df35;;;"
accept-ranges: bytes
content-length: 185
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/pause.png

193.178.43.195

200 OK

233 B

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/pause.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
233 B (233 bytes)
Hash
dc4cb7cdfbd2ba1fe712a67d020617da
52e334485c6b2200009da8b59269a6cb1008ae0d
805ee1e8adf98a135f1abfd41c8556c1a3d67c23e71162ed04f81052522381dd

HTTP Headers

GET /layouts/1006/img/pause.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "e9-61e036fb-a16f2e1824cfe1;;;"
accept-ranges: bytes
content-length: 233
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/arrow_left.png

193.178.43.195

200 OK

367 B

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/arrow_left.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
367 B (367 bytes)
Hash
4d36412be5d00068fe69523547bac37c
961adb60e2510a5902834198703d29c910e7942d
3d07ebb859870702ea45e29f93b6946728374d5de234bda98f40bcf0f21af549

HTTP Headers

GET /layouts/1006/img/arrow_left.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "16f-61e036fa-4b3ade12b02bde79;;;"
accept-ranges: bytes
content-length: 367
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/arrow_right.png

193.178.43.195

200 OK

363 B

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/arrow_right.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
363 B (363 bytes)
Hash
01e0ffdbe8ea45be30cc1baf2cb8bd9c
1b3d0e59274364d457d6e54360d710c4c91107bc
525c13a64f1543d017799c37f68a0244f4c9e4f919a3af0b774943de7bc2cd46

HTTP Headers

GET /layouts/1006/img/arrow_right.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:10 GMT
etag: "16b-61e036fa-8ba179846d7298ac;;;"
accept-ranges: bytes
content-length: 363
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/images/camera-loader.gif

193.178.43.195

200 OK

9.3 kB

URL HTTP/1.1
twojeloty.pl/images/camera-loader.gif
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
GIF image data, version 89a, 30 x 30\012- data
Size
9.3 kB (9289 bytes)
Hash
cd2e13291ecdcac7f575beea6d84b099
349fcf8940beb50be3cf0089fa5f4f38f890645c
54ecb255faaf5ef40b325def1fe3ed203589d761ddaacc784fd9401c651156d2

HTTP Headers

GET /images/camera-loader.gif HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/style/camera.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/gif
last-modified: Thu, 13 Jan 2022 14:28:08 GMT
etag: "2449-61e036f8-ad3fb9c2e40aac80;;;"
accept-ranges: bytes
content-length: 9289
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/style/prev-horizontal.png

193.178.43.195

200 OK

1.1 kB

URL HTTP/1.1
twojeloty.pl/style/prev-horizontal.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 45 x 89, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1065 bytes)
Hash
4da83dbae3fc3aa11077b0b076ef07fb
e3130e287c3209eaa6b5886defc184b5be9d727d
3118a790537ecb98742528f637ce1bba8ea43985c98608185960b8b37edb2508

HTTP Headers

GET /style/prev-horizontal.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/style/carousel.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "429-61e036fb-dcb1c29dbc596d0e;;;"
accept-ranges: bytes
content-length: 1065
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2267
Cache-Control: max-age=90775
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:31:43 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 09:44:38 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

twojeloty.pl/clients/104/files/images/boks_1.png

193.178.43.195

200 OK

131 kB

URL HTTP/1.1
twojeloty.pl/clients/104/files/images/boks_1.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 310 x 244, 8-bit/color RGBA, non-interlaced\012- data
Size
131 kB (131117 bytes)
Hash
3488a57547b71af0dc17cd9a893b48cb
91e0608a826b5387faa0a3b1eeaff22c937a2fc0
e1085a93ec93e6d6a3c2afc2ea8b74d13c6f3b4da26a7ae2f3a0f1e87fdbea75

HTTP Headers

GET /clients/104/files/images/boks_1.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:00 GMT
etag: "2002d-61e036f0-4d04f70bb1870062;;;"
accept-ranges: bytes
content-length: 131117
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/clients/104/files/images/boks_2.png

193.178.43.195

200 OK

118 kB

URL HTTP/1.1
twojeloty.pl/clients/104/files/images/boks_2.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 310 x 244, 8-bit/color RGBA, non-interlaced\012- data
Size
118 kB (118317 bytes)
Hash
618e26a0fb2d9bd4840a507b5a96406b
db6c641cc52e27d0ea2316b626777bc66851d6a0
79a8bfe9de0cf2a220c1661b040dff097207c230d8f7f101ac1e243c7473fc04

HTTP Headers

GET /clients/104/files/images/boks_2.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:27:59 GMT
etag: "1ce2d-61e036ef-fffe0d7453878d4d;;;"
accept-ranges: bytes
content-length: 118317
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/layouts/1006/img/gwarancja_ceny.jpg

193.178.43.195

200 OK

36 kB

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/gwarancja_ceny.jpg
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2014:04:07 08:57:46], progressive, precision 8, 962x42, components 3\012- data
Size
36 kB (35817 bytes)
Hash
8d245a9784a7d79649678362d6090c0a
60f7c05ae31399bb8d9c4f507c51c5f7c04cbbc4
f7230c8fa4ea6cd1b3530d36e5add291618bee893b5fa15d90d043f212650ad1

HTTP Headers

GET /layouts/1006/img/gwarancja_ceny.jpg HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/jpeg
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "8be9-61e036fb-839685d70a633c5f;;;"
accept-ranges: bytes
content-length: 35817
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/img/slider/eccotravel.png

193.178.43.195

200 OK

6.8 kB

URL HTTP/1.1
twojeloty.pl/img/slider/eccotravel.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
6.8 kB (6825 bytes)
Hash
0eeab83409c90495aff72d879203fdb8
59128a4debcc2289e8195289201a2890fd5a5eb7
1d1ca4201954276c057190c058272165b19c3ca3b464ea3ae0c6cb7f3ffb1ef4

HTTP Headers

GET /img/slider/eccotravel.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "1aa9-61e036f9-81b81e1e25ba518a;;;"
accept-ranges: bytes
content-length: 6825
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/img/slider/kangurtour.png

193.178.43.195

200 OK

4.4 kB

URL HTTP/1.1
twojeloty.pl/img/slider/kangurtour.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
4.4 kB (4431 bytes)
Hash
53aa6ce0a4241525e6a8054df054cbce
c7b4ff71a6fc04ae9980e4c3ea82dce9aa56371a
a123330bde216dd8d97b5a23e9edbce25efbaff3de8617e37b8fcf7c2d9ef76d

HTTP Headers

GET /img/slider/kangurtour.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "114f-61e036f9-e6e85648103f4d66;;;"
accept-ranges: bytes
content-length: 4431
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/img/slider/ecco.png

193.178.43.195

200 OK

7.3 kB

URL HTTP/1.1
twojeloty.pl/img/slider/ecco.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
7.3 kB (7349 bytes)
Hash
d838ecfb2cc8ebb05cfdb78d9a047962
f425116f8fd391c816b39091d158b0cfaeaae421
e8a6469e95dca34b7d4049a7cfb38d22d3ee2f448d9cfab9610ff706ffdeb9f4

HTTP Headers

GET /img/slider/ecco.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "1cb5-61e036f9-349621d09811e21c;;;"
accept-ranges: bytes
content-length: 7349
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/clients/104/img/slider/slider_34f894c16e334b20c0da3d61a56ce631.jpg?1669451502421

193.178.43.195

200 OK

41 kB

URL HTTP/1.1
twojeloty.pl/clients/104/img/slider/slider_34f894c16e334b20c0da3d61a56ce631.jpg?1669451502421
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 307x352, components 3\012- data
Size
41 kB (41357 bytes)
Hash
4ec5865c99a4f5691df0ad62027b612c
cc64fc6ae24c7fd3256c9f498af350dabc842dc4
41b9c20706bd7a71c386afa4de46e488059cf09e90365000cf3bebaa804e5fc0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /clients/104/img/slider/slider_34f894c16e334b20c0da3d61a56ce631.jpg?1669451502421 HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/jpeg
last-modified: Thu, 13 Jan 2022 14:27:58 GMT
etag: "a18d-61e036ee-3de7ed5564b1c1ba;;;"
accept-ranges: bytes
content-length: 41357
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/style/next-horizontal.png

193.178.43.195

200 OK

1.0 kB

URL HTTP/1.1
twojeloty.pl/style/next-horizontal.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 45 x 89, 8-bit/color RGBA, non-interlaced\012- data
Size
1.0 kB (1044 bytes)
Hash
f3f386e48953908b6b754de07236e44a
b6495ea53cbf9a3da4f1b542e6caf91f84cc59a9
7ab69fb5f4381baf599392f3eefae452500dfea1cae7c578815aacb7870bc622

HTTP Headers

GET /style/next-horizontal.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/style/carousel.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "414-61e036fb-5844cf90272814e0;;;"
accept-ranges: bytes
content-length: 1044
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/img/facebook.png

193.178.43.195

200 OK

3.3 kB

URL HTTP/1.1
twojeloty.pl/img/facebook.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 120 x 33, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3306 bytes)
Hash
f999ddf2bff13e52bda595c211c18e6f
8d5148771b7eabebcd54fc65f06c76ecdb7191dd
7a88e708b9d2ab4659d3c0de918e08ca9b198b91984015efed09e625dbd45516

HTTP Headers

GET /img/facebook.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/style/fb.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "cea-61e036f9-ad7dfa3ab9bf9499;;;"
accept-ranges: bytes
content-length: 3306
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

push.services.mozilla.com/

52.38.198.114

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.38.198.114:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jTvoAu5YK5oUYb6ays1Log==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RsfC1gu3NEVBUi1Xuf4ep/Y4InE=

twojeloty.pl/images/camera_skins.png

193.178.43.195

200 OK

24 kB

URL HTTP/1.1
twojeloty.pl/images/camera_skins.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 220 x 1280, 8-bit/color RGBA, non-interlaced\012- data
Size
24 kB (24198 bytes)
Hash
44234b21bebe6b318aab47d9e9bbbee9
4e04ceab44860e1863ee24b83cb77750920b2638
a99f5a6bab7efec1d87835d754900adffe01497c407a8749fec13456a3f5baa2

HTTP Headers

GET /images/camera_skins.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/style/camera.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:08 GMT
etag: "5e86-61e036f8-55260bfc0aaa505a;;;"
accept-ranges: bytes
content-length: 24198
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/img/slider/volaretravel.png

193.178.43.195

200 OK

7.7 kB

URL HTTP/1.1
twojeloty.pl/img/slider/volaretravel.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 173 x 70, 8-bit/color RGBA, non-interlaced\012- data
Size
7.7 kB (7736 bytes)
Hash
76ac0888a520e716dffbf613d9094fbd
de6dfdfd852c6f1bc8e9fe216b0868b450685102
95f6e56ed0b6e888f181fbab47c889dded40bdd0313cea19e3a7db1463f08bc7

HTTP Headers

GET /img/slider/volaretravel.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:09 GMT
etag: "1e38-61e036f9-a11a49892ebb6781;;;"
accept-ranges: bytes
content-length: 7736
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/clients/104/img/slider/slider_2ad0cb49f55637a85c5b8486ed80f023.jpg?1669451503082

193.178.43.195

200 OK

32 kB

URL HTTP/1.1
twojeloty.pl/clients/104/img/slider/slider_2ad0cb49f55637a85c5b8486ed80f023.jpg?1669451503082
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 307x352, components 3\012- data
Size
32 kB (31506 bytes)
Hash
4a18a6cb8262a746767f3bb1148047f3
5f6c30bf2dfa1200e7cf999922e03e935b56c093
8c49402fefd9d3a740efd0d0bd57b63bb5ceda1b1f6c5b7637a5ee9f36f9ff0c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /clients/104/img/slider/slider_2ad0cb49f55637a85c5b8486ed80f023.jpg?1669451503082 HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/jpeg
last-modified: Thu, 13 Jan 2022 14:27:58 GMT
etag: "7b12-61e036ee-1a4956622a55b3a;;;"
accept-ranges: bytes
content-length: 31506
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/clients/104/files/images/boks_3.png

193.178.43.195

200 OK

125 kB

URL HTTP/1.1
twojeloty.pl/clients/104/files/images/boks_3.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 310 x 244, 8-bit/color RGBA, non-interlaced\012- data
Size
125 kB (124977 bytes)
Hash
3439f25cbcd7b419d95bd35a5899b86a
3005d1e04474b6b9b70f2731a13f08c604ad488c
eb1c963bba555622d2592bc82cd152eca8fdc0a6a982f050e2da416db97ac651

HTTP Headers

GET /clients/104/files/images/boks_3.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:27:59 GMT
etag: "1e831-61e036ef-140ff37e2a36bb3f;;;"
accept-ranges: bytes
content-length: 124977
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

connect.facebook.net/pl_PL/all.js

31.13.72.12

200 OK

1.7 kB

URL HTTP/1.1
connect.facebook.net/pl_PL/all.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1957)
Size
1.7 kB (1685 bytes)
Hash
77dee7d101999997661f05840b8769c5
62a5467421eb19b2d46a8ee0044898c4d5951c0d
545f9d2c84b9375adb944ee4f70f4ae428d6c89e9c5f63205edb970ea04ed8a4

HTTP Headers

GET /pl_PL/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/

HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 88bb14a5f9c361b8e68063467a8ec9c1
ETag: "748666e0a133ac4e7332d1065ca2cb45"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Sat, 26 Nov 2022 08:39:27 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: d97n0QGZmZdmHwWEC4dpxQ==
X-FB-Debug: QpNGQd8+9A7OByWUeRR4Urm0WAhqBRc2UZ9eqbB+/6cx1yrmO2Td2gdtqQxVcbJdQRXhwJ7q1YZmuyePGosrOg==
X-FB-TRIP-ID: 1904183273
Date: Sat, 26 Nov 2022 08:31:44 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1685

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/1.1
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20039
Date: Sat, 26 Nov 2022 08:22:56 GMT
Expires: Sat, 26 Nov 2022 10:22:56 GMT
Cache-Control: public, max-age=7200
Age: 528
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript

twojeloty.pl/clients/104/img/favicon_9afaa70fb42bf8f026c5012594eacdf9.ico

193.178.43.195

200 OK

560 B

URL HTTP/1.1
twojeloty.pl/clients/104/img/favicon_9afaa70fb42bf8f026c5012594eacdf9.ico
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
MS Windows icon resource - 1 icon, 16x16, 24 bits/pixel\012- data
Size
560 B (560 bytes)
Hash
1a089e2f8ee4bcbed60097b041f224f2
1942e754a0f1fa2acf6727f722e78b105ec929cd
ea9bef9d7f79267b1e8e23948a174a8c7130f570e6b7dfe4e8e6b0abf841173d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /clients/104/img/favicon_9afaa70fb42bf8f026c5012594eacdf9.ico HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:44 GMT
content-type: image/x-icon
last-modified: Thu, 13 Jan 2022 14:27:58 GMT
etag: "37e-61e036ee-190359c216b5e049;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding,User-Agent
content-length: 560
date: Sat, 26 Nov 2022 08:31:44 GMT
server: LiteSpeed

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
407ca8387c360d434a53812c03688310
90e74fa4928adcf8ae410f2eea7956b6ae7f687b
5690f667c20ba6c6daf71668a7c02c6d50383b585521e6f3e7a0ddcf895358d3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6360
Cache-Control: max-age=167593
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:31:44 GMT
Etag: "6381a1c1-1d7"
Expires: Mon, 28 Nov 2022 07:04:57 GMT
Last-Modified: Sat, 26 Nov 2022 05:18:57 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:31:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/pl_PL/all.js?hash=ada702de3031b2880cf0fe271fd65adf

31.13.72.12

200 OK

88 kB

URL HTTP/2
connect.facebook.net/pl_PL/all.js?hash=ada702de3031b2880cf0fe271fd65adf
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (18605)
Size
88 kB (88367 bytes)
Hash
6339f70bc234cfcf2a2312157f450c08
a8407a40d02c7e2fe07f4a2e8814ac2aad4af8c8
b2734bdd74b4a750e06291d8db2e529fbfd27187fd2347267de36752fc45ec24

HTTP Headers

GET /pl_PL/all.js?hash=ada702de3031b2880cf0fe271fd65adf HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://twojeloty.pl
Connection: keep-alive
Referer: http://twojeloty.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 8ab66c84bba21c050570de973c3bc98a
etag: "553b01c0ed096998a1bece861f3be70c"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 26 Nov 2023 06:39:19 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: Yzn3C8I0z88qIxIVf0UMCA==
x-fb-debug: 5MgK7C4yrg8XRlCMqTXesB5q1m1XNcpkACYz3tXv4eWeHa9zaZ16j/gp3nZj3w5qRcQ8k2DIaMJFmCt+rF423g==
content-length: 88367
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:44 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.google-analytics.com/j/collect?v=1&_v=j98&a=1599263836&t=pageview&_s=1&dl=http%3A%2F%2Ftwojeloty.pl%2F&ul=en-us&de=UTF-8&dt=Twojeloty.pl%20-%20Tanie%20bilety%20lotnicze%2C%20promocyjne%20ceny.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAAABAAAAACAAI~&jid=527696533&gjid=1406109745&cid=1631778435.1669451504&tid=UA-44718283-1&_gid=1628719901.1669451504&_r=1&_slc=1&z=1390870487

142.250.74.174

200 OK

2 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j98&a=1599263836&t=pageview&_s=1&dl=http%3A%2F%2Ftwojeloty.pl%2F&ul=en-us&de=UTF-8&dt=Twojeloty.pl%20-%20Tanie%20bilety%20lotnicze%2C%20promocyjne%20ceny.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAAABAAAAACAAI~&jid=527696533&gjid=1406109745&cid=1631778435.1669451504&tid=UA-44718283-1&_gid=1628719901.1669451504&_r=1&_slc=1&z=1390870487
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f

HTTP Headers

POST /j/collect?v=1&_v=j98&a=1599263836&t=pageview&_s=1&dl=http%3A%2F%2Ftwojeloty.pl%2F&ul=en-us&de=UTF-8&dt=Twojeloty.pl%20-%20Tanie%20bilety%20lotnicze%2C%20promocyjne%20ceny.&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAAABAAAAACAAI~&jid=527696533&gjid=1406109745&cid=1631778435.1669451504&tid=UA-44718283-1&_gid=1628719901.1669451504&_r=1&_slc=1&z=1390870487 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://twojeloty.pl
Connection: keep-alive
Referer: http://twojeloty.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: http://twojeloty.pl
date: Sat, 26 Nov 2022 08:31:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:31:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.facebook.com/x/oauth/status?client_id=230993897025745&input_token&origin=1&redirect_uri=http%3A%2F%2Ftwojeloty.pl%2F&sdk=joey&wants_cookie_data=false

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/x/oauth/status?client_id=230993897025745&input_token&origin=1&redirect_uri=http%3A%2F%2Ftwojeloty.pl%2F&sdk=joey&wants_cookie_data=false
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /x/oauth/status?client_id=230993897025745&input_token&origin=1&redirect_uri=http%3A%2F%2Ftwojeloty.pl%2F&sdk=joey&wants_cookie_data=false HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://twojeloty.pl/
Origin: http://twojeloty.pl
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
access-control-expose-headers: fb-s
access-control-allow-credentials: true
access-control-allow-origin: http://twojeloty.pl
fb-s: unknown
fb-error-description: "This endpoint may only be called from an HTTPS Origin."
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
strict-transport-security: max-age=15552000; preload
x-fb-debug: CbSnL4V3md225u7dMrkW1lWFs4MOFoL8cwDnOpke8jUM1rxdD4C/OqOuIhX/coeRma8Ws/Ar2BdXAUhpA4ySGQ==
content-length: 0
date: Sat, 26 Nov 2022 08:31:44 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12562
Expires: Sat, 26 Nov 2022 12:01:07 GMT
Date: Sat, 26 Nov 2022 08:31:45 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12562
Expires: Sat, 26 Nov 2022 12:01:07 GMT
Date: Sat, 26 Nov 2022 08:31:45 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12562
Expires: Sat, 26 Nov 2022 12:01:07 GMT
Date: Sat, 26 Nov 2022 08:31:45 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12562
Expires: Sat, 26 Nov 2022 12:01:07 GMT
Date: Sat, 26 Nov 2022 08:31:45 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3502 bytes)
Hash
a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SRN-oOfa8Z0mQZFYkWAv32XFiXChfGjfwZkfWz-IzHubwrKgzwoTxQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 03:55:38 GMT
age: 16567
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8913 bytes)
Hash
5088223f5973e3cd56f03f50a1e84b79
0b6c9b51d10762a4747286ab5b1c2354fa39c622
8159e4f7eec7bea518bb29e3fdb070bab4fb70116205577f7b7d74ad4d0dfbc7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8913
x-amzn-requestid: d0a9414c-eccf-44e8-adb7-92654544eeb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWXEpeIAMFnzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-5825510666b3e80a5f83cafa;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: whO__FB0B2ywDP_p63eQ044RXbT207sX1i87I6nPAFUB85nSYc0Cuw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:06 GMT
age: 38739
etag: "0b6c9b51d10762a4747286ab5b1c2354fa39c622"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 02:19:43 GMT
age: 22322
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9914 bytes)
Hash
3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qKxrYxVsJWOXAbrn6IpwLycF3rknFLkQeDyKOLq5WyflvTLeUjg_Lg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:18:42 GMT
age: 36783
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30fddcf4-c88b-41c3-90f7-a4530639de73.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7025 bytes)
Hash
7e0c5064718601e80b7bfc931120ff70
741e5e48c4fb170efee9b611be5638d999a09bd2
d0b1537f43277e7f59152e6272d4f3888ab4618fa7fe0e4b24e2f851dbf0f4cd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30fddcf4-c88b-41c3-90f7-a4530639de73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7025
x-amzn-requestid: 2c9cd3bc-80d4-4578-a0aa-4f1ff7f19d30
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVNYGwaIAMFU8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813588-0c66a293144f894f001ae0cf;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: r2feThcq6D5u1ptiBnSuA5ZC00_W8moa4pb6xSxxeIEMbgoPtQdUyQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:51:02 GMT
age: 38443
etag: "741e5e48c4fb170efee9b611be5638d999a09bd2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9049 bytes)
Hash
c8dc4b8a7e9f7f4f84f0da568b43392b
3d32bff85cb7ec118c4496d0c3802829fdc9af3b
4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: utbUF-6Z7rMqPNdRKHJyI-IZoyTy6HpkNBY-60xcZ-6NDXBz1XN6-Q==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:48:40 GMT
age: 38585
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

twojeloty.pl/layouts/1006/img/bottombg.png

193.178.43.195

200 OK

1.4 MB

URL HTTP/1.1
twojeloty.pl/layouts/1006/img/bottombg.png
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
PNG image data, 2580 x 380, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 MB (1396189 bytes)
Hash
b6dfe2fc83bd6d6205f529ae1b18bf93
38097b84f28461b3d0f7234e0a954b65da89aef8
b681d786e41ecaaf96305406b436620c39b2b54d71d4f8ba295b1c5ce02724f9

HTTP Headers

GET /layouts/1006/img/bottombg.png HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/layouts/1006/style.css
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:43 GMT
content-type: image/png
last-modified: Thu, 13 Jan 2022 14:28:11 GMT
etag: "154ddd-61e036fb-3a7a3a9ed8ca174d;;;"
accept-ranges: bytes
content-length: 1396189
date: Sat, 26 Nov 2022 08:31:43 GMT
server: LiteSpeed
vary: User-Agent

twojeloty.pl/clients/104/img/slider/slider_0ce80938c9c19b6bee4741b60e472505.jpg?1669451509341

193.178.43.195

200 OK

41 kB

URL HTTP/1.1
twojeloty.pl/clients/104/img/slider/slider_0ce80938c9c19b6bee4741b60e472505.jpg?1669451509341
IP
193.178.43.195:0
ASN
#50840 HITME.PL

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 307x352, components 3\012- data
Size
41 kB (41184 bytes)
Hash
0510f5feac87f13bddd02c19f9d72b9f
6c8b0c6679e8ee495284a515f1e94220f03078b1
d46906284736b93c43af1922e725505f73a8f911c6c56462253c169844d2488d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /clients/104/img/slider/slider_0ce80938c9c19b6bee4741b60e472505.jpg?1669451509341 HTTP/1.1
Host: twojeloty.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://twojeloty.pl/
Cookie: PHPSESSID=1125d70e32d9bce128ac759bea20f267; _ga=GA1.2.1631778435.1669451504; _gid=GA1.2.1628719901.1669451504; _gat=1

HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:31:50 GMT
content-type: image/jpeg
last-modified: Thu, 13 Jan 2022 14:27:58 GMT
etag: "a0e0-61e036ee-c11af6cc91a86b29;;;"
accept-ranges: bytes
content-length: 41184
date: Sat, 26 Nov 2022 08:31:50 GMT
server: LiteSpeed
vary: User-Agent

static.xx.fbcdn.net/rsrc.php/v3/yi/l/0,cross/6-u0_Q0Sx7v.css?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

3.4 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yi/l/0,cross/6-u0_Q0Sx7v.css?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
assembler source, ASCII text, with very long lines (2642)
Size
3.4 kB (3400 bytes)
Hash
46f977e7355907e18bfe4329746a56c5
0317032f1ba78f524eecfcdeedf16604da673f51
d9c52c522e50701444b46d6c52ef2649d59f60280cbafc04f3fc527ee6bf5923

HTTP Headers

GET /rsrc.php/v3/yi/l/0,cross/6-u0_Q0Sx7v.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 25 Nov 2023 18:15:32 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Rvl35zVZB+GL/kMpdGpWxQ==
x-fb-debug: OEe60XrmeNinQg8kdCzvieqaBw/6kvFWWDV6EmWkTk+ljxpHUQk0j07sGwlS7zRqP10zNUg2s63OjwPPblBJAg==
content-length: 3400
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yP/l/0,cross/qaVSlhEOkZo.css?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

4.4 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yP/l/0,cross/qaVSlhEOkZo.css?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (4431)
Size
4.4 kB (4377 bytes)
Hash
2f266660dbeeb0b72d6c6f5c5fe0e1e8
b4469c6d8ec6f402f782363986e3261504123e0a
470700ca5d96a05b73896d7666520f3c950570bfd4668cc4b47fd5d0e8e6c517

HTTP Headers

GET /rsrc.php/v3/yP/l/0,cross/qaVSlhEOkZo.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 25 Nov 2023 17:51:29 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: LyZmYNvusLctbG9cX+Dh6A==
x-fb-debug: wOhciFEqU8/o8gE0as3QwgsmvuJpbISxjDnRtPBNUGAW6L/kz/o1x8qFpbXCZrA6/ZKOobDQW4qD80g7+nQnog==
content-length: 4377
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yk/l/0,cross/lkNcWOjl-U9.css?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

3.3 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yk/l/0,cross/lkNcWOjl-U9.css?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (3040)
Size
3.3 kB (3292 bytes)
Hash
b27f6cab20a6eda1d9b3030c9a09660d
3169ce97a78df1ed950dc27623c191485d3107ee
2b3945a951059474536dcbb24070db0e476148aa79db35e2431f49b5b93231da

HTTP Headers

GET /rsrc.php/v3/yk/l/0,cross/lkNcWOjl-U9.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 25 Nov 2023 17:51:29 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: sn9sqyCm7aHZswMMmglmDQ==
x-fb-debug: 3wrVtekQ/y7wS/2reIF/EwjJOawLhsjiLIMJy7/ZtA2A0fE2/nfgpyG+o6iqKOHalByy7AI5gFrrVw4T9r7XmA==
priority: u=2
content-length: 3292
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

830 B

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (724)
Size
830 B (830 bytes)
Hash
d63a02ce87c07ffcfa869fef7fc5f233
cae745fef84088abe3525bb77f75c55cd1d4cc2c
bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d

HTTP Headers

GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 18:18:38 GMT
cache-control: public,max-age=31536000,immutable
timing-allow-origin: *
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-fb-rlafr: 0
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: vKrIT7bDcuELxUQABfykTxFSmykRoUCEVhYV4TgDJd5oiZgsEJBZyhiv20JBlkWsTGEVyts+Yz2c1cL+WGyqLQ==
priority: u=2
content-length: 830
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yA/l/0,cross/DR_FSma19ee.css?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

1.6 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yA/l/0,cross/DR_FSma19ee.css?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (2124)
Size
1.6 kB (1573 bytes)
Hash
29572ece563ab6c68ea419f01925a1af
d806c94b27aa1ea5297428033f12e3f06c6475ee
3162fabf3b1ce5cb8418a809b71e2150d3c37c60825a5cdf1b7f91dc22fca048

HTTP Headers

GET /rsrc.php/v3/yA/l/0,cross/DR_FSma19ee.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 25 Nov 2023 18:54:19 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KVcuzlY6tsaOpBnwGSWhrw==
x-fb-debug: 1vv8HNVApt97s81dtK9rQIlET/oL9JCLPfVEZQblZz7zOW4dwySsazBHHwhhuQg7uAAkkeQUUzegYkBWXuuXcA==
content-length: 1573
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

91 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (18622)
Size
91 kB (91088 bytes)
Hash
151e87d38f4f425e44d9c851c9aecf05
762111e5095f5354be95b98ad476f6e7161ce6b1
f236f289f38c8081b496e0537ed3b2c66822e7a743f5d9d4959f955c64b0b2b0

HTTP Headers

GET /rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 00:22:04 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FR6H049PQl5E2chRya7PBQ==
x-fb-debug: 41mNogUMqbYJMwkqhJK5x6mP9W7KKPLBIwPJVTu8zy/nNnO3VPGXxBg0uCe8l34+TTDgnWz4SKygMETC77RVXw==
priority: u=3,i
content-length: 91088
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

12 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (5542)
Size
12 kB (12369 bytes)
Hash
0765d76d746716156d53d36ee6f80836
17e1546f87cc6417615caa10dcbbcb699c59471a
f1e6af63ae9ff0385126b72a492b0d34709514dd4c00074a1be28272c253d4f8

HTTP Headers

GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 15 Nov 2023 02:03:07 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: B2XXbXRnFhVtU9Nu5vgINg==
x-fb-debug: 0xPHDYvZge8swk7JhsZ5ELIEYcud4qPBQV2E2zQxSjSHT+wOY2wY+EXO4Me6uhdgl3HPef3XHIK9yshvgmDJ/Q==
priority: u=3,i
content-length: 12369
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

1.7 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1984)
Size
1.7 kB (1657 bytes)
Hash
16f083b23b565db9d2f20d1ad75933c1
6d74ad139c96b1e3fc9d541419788b5b4893ec9a
36b909cd9132a8996a1bbb221d05217c31506a6951bb408deeea6aa612dc4200

HTTP Headers

GET /rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 16 Nov 2023 22:24:40 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FvCDsjtWXbnS8g0a11kzwQ==
x-fb-debug: DPBbprD+WR1JkQp8+12RV5L7aPu0l9wEhB+zyXXmLLBejlnOoB6/sW7YTAqPr0a+bmM8AnZbmMS0hVd638ZZKw==
content-length: 1657
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yz/r/lYejkzyV906.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

387 B

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yz/r/lYejkzyV906.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (704)
Size
387 B (387 bytes)
Hash
9da384d66f2d9936747d501836c4d188
f5f9590c061a3671074c91dde669f216961a4ed6
ba3450d149a56fe56034a67c51445ec1263065da39c31df73e02fd37d5abbb58

HTTP Headers

GET /rsrc.php/v3/yz/r/lYejkzyV906.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 00:11:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: naOE1m8tmTZ0fVAYNsTRiA==
x-fb-debug: jIMYGJll1XLrWeQ92xbPn7JSbJEOjfvIlwqSFYBAJY/rHQs9I5KS9/IV+t7+KA7IELaGl+Yrri17S3BW1+WmKA==
content-length: 387
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3iOuX4/y2/l/pl_PL/m3C9wUm7Rze.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

8.3 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3iOuX4/y2/l/pl_PL/m3C9wUm7Rze.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (2905)
Size
8.3 kB (8331 bytes)
Hash
ad9651a8d13fd8d7e1ef62f85292e65b
5b0322c83e3cfe173e406896ed33009100fe9f12
9b4b397d1829294da96974c01f30fabf845a7a81a8f178c3221de392096a3d42

HTTP Headers

GET /rsrc.php/v3iOuX4/y2/l/pl_PL/m3C9wUm7Rze.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 00:34:02 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: rZZRqNE/2Nfh72L4UpLmWw==
x-fb-debug: ie1fPlKg+PF4hLVr4Mj3tSsmgZJVl6MSc1KHwTRYWRyq3CjiQQ+vsyFNyWDBgczHBUu7Whyj2t3ImN6aawLsfg==
content-length: 8331
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

293 B

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (327)
Size
293 B (293 bytes)
Hash
2f913d812811ef7e6fca30334c5972e2
d17caaa167443dc08696c672380f237e0db3fb02
ee8918a2f5d163099104b70f79065abc8fd309e69add57170546f2706956eef8

HTTP Headers

GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 00:30:25 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: L5E9gSgR735vyjAzTFly4g==
x-fb-debug: L8VzeyQXvcN6eQjIIOJCtS/LgPW9pegvZNUNNwZhkEQ8tySHb4MM53+OymxmoOO36BUiCE2IfCUN9gmAJeN/gg==
content-length: 293
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

16 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
C source, ASCII text, with very long lines (8741)
Size
16 kB (16232 bytes)
Hash
c92ef94e30a2dd9473fd9fe533472b73
97049e47de026939c75a885df9e8bb0fb56515ba
f2981c7109e60cf9f5a9e846a25800dbec20a923db028f310b6feb79415650bb

HTTP Headers

GET /rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 00:17:10 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: yS75TjCi3ZRz/Z/lM0crcw==
x-fb-debug: ihdwMQcRol5sHtSRXmEMFB/YIW9cI3nuMWAo6wo5s4uAg1qPZip0MHf6ehCCUUAy0ohw6m2pcOM5THzisKxOvg==
priority: u=3,i
content-length: 16232
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3i7Kf4/yj/l/pl_PL/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

24 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3i7Kf4/yj/l/pl_PL/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (42217)
Size
24 kB (23555 bytes)
Hash
570e07a179b9b3cc8ec38060faefb7c8
ef8afc516194079928e399b77fe93f182c9a7942
7a9f762b9eb095e578b38d2db63a3e86748e9d7a13fa6ee351847bd761a853f5

HTTP Headers

GET /rsrc.php/v3i7Kf4/yj/l/pl_PL/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 04:52:33 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Vw4HoXm5s8yOw4Bg+u+3yA==
x-fb-debug: CdabDOTvbgBzIEN0KnimCDiqBPSj23GnuyoTdX7SCxlpyo0hzWS1JIzKSzkyHPt4W9XtE58/tYofXxuA4DNvTQ==
content-length: 23555
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yD/r/u-BBUt81dFY.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

16 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yD/r/u-BBUt81dFY.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (15336)
Size
16 kB (16255 bytes)
Hash
1a57684b1bbad1c3239fa33bfb7bf4c9
5e2fc164f520b2e61813da6103e1026ff078c779
4a6c3da8ef6e418a2a3eabb2c60512dc28ce3b5daff71e3c2d1fa93af50b75ba

HTTP Headers

GET /rsrc.php/v3/yD/r/u-BBUt81dFY.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 17 Nov 2023 00:02:49 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: GldoSxu60cMjn6M7+3v0yQ==
x-fb-debug: VSnrl7Ja3Np9lkxsBFjZt29fAVgUNRls8sRsdeZYbj7n+vKHL8e7hCdzlpMWd3KlaNShJopcduHj61BEzx1+ag==
priority: u=3,i
content-length: 16255
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yQ/r/yo4pRGpgUg6.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

5.6 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yQ/r/yo4pRGpgUg6.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (4488)
Size
5.6 kB (5564 bytes)
Hash
43c6249e737214d2a94ed30fbdefdc7a
56e5cdea23f7c21c3028132dee54e3ec28a4f4d6
37f7763aec46b8cbe84a2699e21aa93a692ad0a82bc1b27014de82f94bc210dd

HTTP Headers

GET /rsrc.php/v3/yQ/r/yo4pRGpgUg6.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 25 Nov 2023 17:51:53 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Q8YknnNyFNKpTtMPve/ceg==
x-fb-debug: bE0d2tZEC3/P8cGBnyaMJiHcpb7DOOnt5ktxguVGwMUrcgByuGj8JI4bJ6e7mECFdBVCKao2AMpE+P8gCwY/GA==
content-length: 5564
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yQ/r/3wX2w-O_9zc.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

1.3 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yQ/r/3wX2w-O_9zc.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1491)
Size
1.3 kB (1286 bytes)
Hash
e0e53f8b49bf0ffb37c775b9c288a5c2
ade21104d506e6c9d4946e1afc9b88d80da7333c
5aa28d70ec74ee4b45e03fb453bb4adc23da65fbeb93c581411f0076b1444eb0

HTTP Headers

GET /rsrc.php/v3/yQ/r/3wX2w-O_9zc.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 15 Nov 2023 02:14:43 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 4OU/i0m/D/s3x3W5woilwg==
x-fb-debug: z5HVcUPtICpPrWQz1O2fL86eokvHEAFfksKzw71EJcu+kNfmxCH56tH624vVTPPTAwx8dwaLUVi5btvyDl/RLQ==
priority: u=3,i
content-length: 1286
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yW/r/0aTHA2C1d6g.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

7.2 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yW/r/0aTHA2C1d6g.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (4057)
Size
7.2 kB (7203 bytes)
Hash
d154ee35dc00c26a0061bc78814ec8fb
a678ce4ef1fd9568a9474ff7522f93b1c88e6e5a
ca5dfb4f0c76fcdaee2c440cf551695a7acbd4749139c265811b3acb36a5d1c1

HTTP Headers

GET /rsrc.php/v3/yW/r/0aTHA2C1d6g.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 00:22:40 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 0VTuNdwAwmoAYbx4gU7I+w==
x-fb-debug: XKBY5G0o4i6xXEZNYwunR8ahml3kLt5Mp5n8dD6uaKBa6vNUGVB6ht8aX6Uv3gGZoNki+weoG6QIRr7y89NPcA==
priority: u=3,i
content-length: 7203
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yq/r/6pd4iTcqYl_.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

5.0 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yq/r/6pd4iTcqYl_.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
C source, ASCII text, with very long lines (10494)
Size
5.0 kB (5016 bytes)
Hash
092b5c28d77f2d11674919ed34ea81a0
4c4f97066f7b733e29643697757417a0e2bee99d
1533d3e4e835168cd2456621fe6cf46db9255586262b7703b182155fa90e33d7

HTTP Headers

GET /rsrc.php/v3/yq/r/6pd4iTcqYl_.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 16 Nov 2023 16:21:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: CStcKNd/LRFnSRntNOqBoA==
x-fb-debug: bwlWuNDiGQgucpoJ/N458NDUkZ2BhhSUHAHVa/orYt3CYhAWTGbxKP/U4M4z92ZTgGgFL4K/dOiK9IEVfC4wUg==
priority: u=3,i
content-length: 5016
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3iAW84/y-/l/pl_PL/L3rRYxmZ_M5.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

36 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3iAW84/y-/l/pl_PL/L3rRYxmZ_M5.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (56860)
Size
36 kB (36129 bytes)
Hash
82c56a5abd541c0e9eb89e2e8cee13cb
062ededa1ec4712c8cc95df9d946bc0212a06305
3407b7215fc2412f560e3f135bd317fba12c2eaf18c8fae49a93d3ed249bed57

HTTP Headers

GET /rsrc.php/v3iAW84/y-/l/pl_PL/L3rRYxmZ_M5.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 02:16:44 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Ieg8/FWpgewfwds4E0EB0g==
x-fb-debug: wloXcZGqUQY3ADrlRmPWkvYs0UfsToUiC1fbjGBp4EsLKI80iS8m1Ed7m94sAgz38CIM6QJOMxe1VZ6g9vCSOQ==
priority: u=3,i
content-length: 6715
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/images/emoji.php/v9/t51/1/16/1f603.png

31.13.72.12

200 OK

505 B

URL HTTP/2
static.xx.fbcdn.net/images/emoji.php/v9/t51/1/16/1f603.png
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
505 B (505 bytes)
Hash
d2150a7921d060cb771e7707111778b0
3c2d0019a91698c6ecc22a54df40e76d7210feb9
7c8a69481a93d4998851e516683a3bc1afbb7164bc18a903230a0eed3c16d88d

HTTP Headers

GET /images/emoji.php/v9/t51/1/16/1f603.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: 0hUKeSHQYMt3HncHERd4sA==
expires: Sat, 18 Nov 2023 00:17:45 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
x-content-type-options: nosniff
timing-allow-origin: *
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: uHZbNdlHZ/PiOBEwCm6wLLo2fAzzEckXEKv7T8xiw9WvytXRk8ACIxjf2Ev7BoJeeJ/fR5YpXjRGLRyRc6bWUA==
content-length: 505
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/images/emoji.php/v9/t4c/1/16/1f642.png

31.13.72.12

200 OK

480 B

URL HTTP/2
static.xx.fbcdn.net/images/emoji.php/v9/t4c/1/16/1f642.png
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Size
480 B (480 bytes)
Hash
bd593830625290c781eaf9f691a5480a
1ffd5c2b32846ecf4a691e617f964eeaeb3124da
790febcf2123f481b536e9443d1843fb4fca516886c4df9ebbaa45c6c2e1f393

HTTP Headers

GET /images/emoji.php/v9/t4c/1/16/1f642.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: vVk4MGJSkMeB6vn2kaVICg==
expires: Fri, 17 Nov 2023 14:40:19 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
x-content-type-options: nosniff
timing-allow-origin: *
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 51KoRlgq3lbbstwFU1vbRTE6nykzFAfaDy58IUUR8Xay9tCZ0Pbs5cH+4kl/rBo+UT4T2OB59UDNpDPSVtmc5A==
priority: u=3,i
content-length: 480
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/y-/r/y841rZ2iNa0.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

474 B

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/y-/r/y841rZ2iNa0.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
data
Size
474 B (474 bytes)
Hash
11f647a26941dbd5bbb8abe00b21827e
9d2537640a392ba472911826e264a9ae6bb4e333
b9e43fde12d87229069da2db686729881cf0b43a99d0de1f6c8a2f89fdc82714

HTTP Headers

GET /rsrc.php/v3/y-/r/y841rZ2iNa0.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 03:01:59 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: cejpO15V8gEAE7CBT0465Q==
x-fb-debug: 321S4ign/ZrGN5wn83hxFqFwb0IRvOu0Ch8PgzGs4YJv2EsoYHMtgL/5ghUYeX4rtH3OB5x9ofiRPjaTTHKVIQ==
content-length: 8748
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/images/emoji.php/v9/t9f/1/16/1f61b.png

31.13.72.12

200 OK

502 B

URL HTTP/2
static.xx.fbcdn.net/images/emoji.php/v9/t9f/1/16/1f61b.png
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
502 B (502 bytes)
Hash
dc225c6fe598e1bf93f387a4de255f90
f91b62785fbf553ca17eaaf905695c3aff7253af
3925aa00c52f1cdbcc24e8e07738d60c23cb1aaa27d01a0c1dce412ff8a80794

HTTP Headers

GET /images/emoji.php/v9/t9f/1/16/1f61b.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: 3CJcb+WY4b+T84ek3iVfkA==
expires: Tue, 14 Nov 2023 04:34:59 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
x-content-type-options: nosniff
timing-allow-origin: *
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: Hc3p5L9AX4k2eTIzBoj21ppBIzSz5O4pHxi/bVaI1HW6DedcOYtQamh1qiSIdBjGltlmpk+a+7a0rYRd53NqYA==
content-length: 502
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.xx.fbcdn.net/rsrc.php/v3/yJ/r/wXhbxYJbfst.js?_nc_x=Ij3Wp8lg5Kz

31.13.72.12

200 OK

0 B

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yJ/r/wXhbxYJbfst.js?_nc_x=Ij3Wp8lg5Kz
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /rsrc.php/v3/yJ/r/wXhbxYJbfst.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 15 Nov 2023 01:40:21 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: QmOQLwjUKZxrrQqoyQG7hQ==
x-fb-debug: JqhJj/bvAxUsOKUmx3CiaFP/qnyKl+697no31BNYk0yEkExY/3R1VF1x5e/20IvZCEaRxNilSvjacCLZqhC5Tg==
content-length: 7865
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:31:50 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (52)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations