pyszny-box.link/
31.42.176.76301 Moved Permanently 316 B IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b30205e328f3558a5f3c9a0745768f3d
3af368ff774717a9473f314d4aa18da59caa56b4
8b2c86d578961381f76b802900958156c2b11e7436283ea335ed93786b97a014
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 08 Jan 2023 00:06:49 GMT
Server: Apache/2.4.38 (Debian)
Location: http://www.pyszny-box.link/
Content-Length: 316
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b782882bdabaf3b08e64120922b4a4b7
2035ed7fc9fb5b6ee9715601ba43de5f94d0c0e9
3fe7d1a9a55b86ec25d02634749ccfae11f3477033ba8cd7ac4131b7948ba619
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FE7D1A9A55B86EC25D02634749CCFAE11F3477033BA8CD7AC4131B7948BA619"
Last-Modified: Sat, 07 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16896
Expires: Sun, 08 Jan 2023 04:48:25 GMT
Date: Sun, 08 Jan 2023 00:06:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 516b9d6951b09439a51d5284994ed92f
5c78edb38bae36caa8e2db8ed6635a32e46c91dd
eaaf4ebc59d2a06d02b552154c5adb7c713ffc4a7f5caabcff1c2b4cd6ec5c7b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EAAF4EBC59D2A06D02B552154C5ADB7C713FFC4A7F5CAABCFF1C2B4CD6EC5C7B"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11029
Expires: Sun, 08 Jan 2023 03:10:38 GMT
Date: Sun, 08 Jan 2023 00:06:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 07 Jan 2023 23:41:26 GMT
content-type: application/json
age: 1523
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 600f7ba6e1a6fbbd176cd2df19b1e4d9
cdd72b25fd91ee980aba193b12e890096e4fe852
860214860947dfbe26099f018747154823b175fceb2821a390cc655da191a6d0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "860214860947DFBE26099F018747154823B175FCEB2821A390CC655DA191A6D0"
Last-Modified: Thu, 05 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10946
Expires: Sun, 08 Jan 2023 03:09:15 GMT
Date: Sun, 08 Jan 2023 00:06:49 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: w5VloKmp23i1f79Ro+cOzoeqWMsU09ekL0PA6gdGlNsFPjdC1Cz9FoCSt1HWHUFX8AAsDyw5O60=
x-amz-request-id: 1CZ3NZ99M6P62DPZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 08 Jan 2023 00:00:36 GMT
age: 373
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 00:06:49 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.pyszny-box.link/
31.42.176.76301 Moved Permanently 321 B IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2942393a7adcb871d0a1e8b286853e4b
dfc64646e57ba50f0b4091f111a5909a0d26ce1e
fd86d873d189b85723a118079716cdfca0a40c1916857dae080965ae1785067d
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 08 Jan 2023 00:06:49 GMT
Server: Apache/2.4.38 (Debian)
Location: https://www.pyszny-box.link/
Content-Length: 321
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 07 Jan 2023 23:33:41 GMT
age: 1988
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8589b6a84dd5a09ec546aff38bbd2515
1c3a3d8a69ae7a3ebda64292caf0e0f5968e81f7
f013da155203f0509d56e8174c2ae5ed23aad413b4391f276efd388519743b17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1365
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 00:06:50 GMT
Last-Modified: Sat, 07 Jan 2023 23:44:05 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5424fd3e32a62e49d661c591a778a591
922ffd20de07d9d22bd7bdf5fde93104527e6a41
d0d092768d250657f6c386014f92660b30d9fc0365b919c0ddae919baff0fe87
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D0D092768D250657F6C386014F92660B30D9FC0365B919C0DDAE919BAFF0FE87"
Last-Modified: Sun, 08 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 08 Jan 2023 06:06:50 GMT
Date: Sun, 08 Jan 2023 00:06:50 GMT
Connection: keep-alive
www.pyszny-box.link/
31.42.176.76200 OK 16 kB IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1698), with CRLF, LF line terminators
Hash 56e04df8614d6f5d8ab230ed2d71ca13
aafca9772f4c2f03e4d420576b8162c3b05200fb
9e9fe5d569024bc7a86099c1629d5c3106385bde6b7925ee74a33e5cdd6bdcd3
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; path=/
bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a; expires=Tue, 07-Jan-2025 00:06:50 GMT; Max-Age=63072000; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16499
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.pyszny-box.link/apps/zawody/template/css/layer.css
31.42.176.76200 OK 181 B URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/css/layer.css
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash 1ba7631d74610fb702c61e14c3971148
b83d36945f7eb817c83fd3f1ba73be0cf677f031
8054a97245480a653612a46afe541a23332ff72bc679e323eda9f1260e7108d1
GET /apps/zawody/template/css/layer.css HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 12:59:55 GMT
ETag: "f1-5c596b75cb64d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 181
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.pyszny-box.link/apps/zawody/js/grayscale.js
31.42.176.76200 OK 2.9 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/js/grayscale.js
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash 7de6aaca375432e4e4a65270b5b6799f
0b1dd4d62217e6a63e982d2ca087532ef17081ba
cc6fdd85202d45e57e13e106092fc2baf85a0d6275ab29d329bfb57cf7c53f6f
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/js/grayscale.js HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 13:01:30 GMT
ETag: "326a-5c596bd00156d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2904
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/jquery.fancybox-1.3.4.css?201108192017
31.42.176.76200 OK 1.9 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/jquery.fancybox-1.3.4.css?201108192017
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash f5db610b3acc3451990c312f0e83fef7
d367d515df329bb3370d4857316d06556b108590
9ec1b98e02972d020b3e894f7232e91be3520039e8b7889da76300794ab9d828
GET /apps/zawody/template/pd_forms/MILKA4/css/jquery.fancybox-1.3.4.css?201108192017 HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Mon, 11 Apr 2022 05:37:34 GMT
ETag: "24de-5dc5a5764e182-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1854
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.pyszny-box.link/extern/jquery/plugins/jquery-impromptu.js
31.42.176.76200 OK 2.8 kB URL HTTP/1.1 www.pyszny-box.link/extern/jquery/plugins/jquery-impromptu.js
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with very long lines (305)
Hash 65ad443e3e1f755c4686a628b5abb9cc
e0814ac93cf4095ce36f26dd6e673ab37d89c6f8
28a331a74d94fbda711871fb1d94d135e0104f033cdadaca00dd37438f8ca356
Analyzer Verdict Alert fortinet Phishing
GET /extern/jquery/plugins/jquery-impromptu.js HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 12:58:59 GMT
ETag: "2f8b-5c596b3ff8c4b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2762
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.pyszny-box.link/apps/zawody/js/js.js
31.42.176.76200 OK 2.2 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/js/js.js
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash 4c08772d963ff58c8113b1e4c7786945
0ea1bbf1a68d80457bc01e6abc651e56151816be
2f7c6c64fd8d3b52b0fb9599ab4fc0008db8fdab1e1c4fb109461518929e5fdb
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/js/js.js HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 13:01:30 GMT
ETag: "1d52-5c596bd00a210-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2212
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.pyszny-box.link/extern/jquery/plugins/jquery.fancybox-1.3.4.pack.js
31.42.176.76200 OK 5.6 kB URL HTTP/1.1 www.pyszny-box.link/extern/jquery/plugins/jquery.fancybox-1.3.4.pack.js
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with very long lines (752)
Hash 6e437a75ee890107ddfbbe7ad3e9df32
c52cc97c9a505a9356cf3cd18afc13a96198606a
755d3316379dd87d6b6cbb6d59035cf116b10b483295164322e7edd6e9372329
Analyzer Verdict Alert fortinet Phishing
GET /extern/jquery/plugins/jquery.fancybox-1.3.4.pack.js HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 12:58:59 GMT
ETag: "3d08-5c596b3ffda6c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5574
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
34.223.160.237101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.223.160.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 22mFZ+ZmKK9IyTnNZgd4NA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: G03VTeRCRHhLE1rh/DxhZATif/A=
www.pyszny-box.link/apps/zawody/js/zawody-validation.js
31.42.176.76200 OK 236 B URL HTTP/1.1 www.pyszny-box.link/apps/zawody/js/zawody-validation.js
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash 85fd205d2e114e69f4cc5a526617c631
56c7bce4e72c0cce31422739d7396a4ecc6edaf4
21ecdfd03f6ad36d85627bdf5c398d8faa6fce2eb41427c1769a85ac82d6883d
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/js/zawody-validation.js HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 13:01:30 GMT
ETag: "227-5c596bd00d0f1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 236
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 17cf9dce587a0172ed5024014092613a
c4d54d41bb2065c443b71ce4cb0765afcf25ff5d
c9e7f02104dba48ac14728545d4e4fbc2393ab6c2cb4b36504aad9626f8d10b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 00:06:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/bootstrap/css/bootstrap.css
31.42.176.76200 OK 3.3 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/bootstrap/css/bootstrap.css
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with very long lines (540)
Hash e80029701bb6b79787015a75db3075ea
d740cc65f58e99ca5dfe7b1ffa58150b55cfe6c9
52ffe5467a6b3d913ace1d8f1ee7934710f5a4b846d3f80343f20c59e3c7a1b2
GET /apps/zawody/template/pd_forms/MILKA4/bootstrap/css/bootstrap.css HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Mon, 11 Apr 2022 05:37:34 GMT
ETag: "3ff3-5dc5a57652fa4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3320
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/poll.css
31.42.176.76200 OK 1.2 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/poll.css
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type assembler source, ASCII text
Hash b9108441fadb157fa5c794b1c2f0dfa3
acad296806fde93cebe1b4bf2fcb5a36ca684904
9e83b98be2ad16b6b32c5455f1cf47444215ac817abc39350c9dca4805467ec9
GET /apps/zawody/template/pd_forms/MILKA4/css/poll.css HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Mon, 11 Apr 2022 05:37:35 GMT
ETag: "111d-5dc5a5766b64d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1155
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.pyszny-box.link/apps/zawody/template/css/poll_old.css?v=2
31.42.176.76200 OK 853 B URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/css/poll_old.css?v=2
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash 205f21b3b502471e2abdec3504173c13
6028dbba7104f0364e7cfaa75106b95c4dea8b63
7a1069dd51f2a3839477824b09a0c6d9cb2e391f779f019594fc39e271f83278
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/template/css/poll_old.css?v=2 HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Thu, 19 May 2022 09:31:18 GMT
ETag: "990-5df5a093b6e1e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 853
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/style.css?v=2
31.42.176.76200 OK 3.9 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/style.css?v=2
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash 63b3fe7e28e2fc29c9fe448324e81b60
f24930a36f66ff1e210322c59b1f791ca6d3b2b9
d182063f5624003c5763f4ac1a5839bf5e4f6977a2fc34ff8d405b2c37fd3cab
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/template/pd_forms/MILKA4/css/style.css?v=2 HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Mon, 11 Apr 2022 05:37:35 GMT
ETag: "4882-5dc5a57679112-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3946
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.pyszny-box.link/apps/zawody/template/css/jquery-ui.min.css
31.42.176.76200 OK 3.2 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/css/jquery-ui.min.css
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with very long lines (14607)
Hash 53f7adcf3773d07e3271c168a6fc6c04
0523ddf3100e5d200ef8fc76042effb791f78517
675df5a0029c1fd785b5818c1bcd39245466f049884559f029f5d03793e8b4d4
GET /apps/zawody/template/css/jquery-ui.min.css HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 12:59:55 GMT
ETag: "3e5b-5c596b75bcbe7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3167
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 63bccc1f66ce9e92e4b40dfb3d397e96
b256695f795919c1fa3d0de461cf4d44fb7573f3
739ed63c77b8f2f8ae1e929d2e6ce784986ea0d3230d2a65cc9f733837c8a581
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 00:06:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.pyszny-box.link/apps/zawody/js/jquery-ui.min.js
31.42.176.76200 OK 10 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/js/jquery-ui.min.js
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with very long lines (33373)
Hash 1aa2ebc583e5b8d623c60f437c3c5136
1342ab16c62b9a380c71c331c885b84fb44af22f
3a4350554bd87be86ddd289e258deb6bfd827c6324a8ce13412744c2dc75ebb0
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/js/jquery-ui.min.js HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 13:01:30 GMT
ETag: "8325-5c596bcfeec86-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10320
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f3bf71643ae5219a72dda1da70667cf6
00e3e8da4828280fa90ad6f8550b32a1afe9eda7
a62b2beef5db6770d7caefcc77a94da89d1d64e3de538b47926c8b6dee469137
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 00:06:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.pyszny-box.link/apps/zawody/js/script.js
31.42.176.76200 OK 1.3 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/js/script.js
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with CRLF line terminators
Hash 805a77b36cc75105f445cc65518a05c2
da0c2d2410fe959af3fe28d2efe0570b15d72d36
ac65d463ccb4c9b7342095de53634a9e2cb987ac3df64fc605a13602995ae37e
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/js/script.js HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 13:01:30 GMT
ETag: "16b3-5c596bd00156d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1328
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ajax.googleapis.com/ajax/libs/jquery/1.6.0/jquery.min.js
142.250.74.138200 OK 32 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.6.0/jquery.min.js
IP 142.250.74.138:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65171)
Hash 12b75ff20159e7c092978f63de8ef7bf
e8608278978129a7ada1d0e55e31559ac1686418
63ac57453f834518218a5fc37597af4922156d7a80b414ba37b53ebafe6ff9a3
GET /ajax/libs/jquery/1.6.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31755
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 17:41:08 GMT
expires: Sat, 06 Jan 2024 17:41:08 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 109542
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/blinks.css
31.42.176.76200 OK 281 B URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/blinks.css
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with CRLF line terminators
Hash deb6a97da1c23439c6671d9285037687
afea12be1f0de70293d489512c5a0d9bb5742c1d
73591c7759d9a941c1ab3937a5ec7b8b452d2c2567d97a676439a985d1037075
GET /apps/zawody/template/pd_forms/MILKA4/css/blinks.css HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/style.css?v=2
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Mon, 11 Apr 2022 05:37:34 GMT
ETag: "3e8-5dc5a5764c241-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 281
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/zonapro.css
31.42.176.76200 OK 359 B URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/zonapro.css
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with CRLF line terminators
Hash dd478c30283a3080bed7acc9f02239a7
cbe7a70b173ffde8ce4fc0992c0027369f5bc3b9
7baaa45853bb46bf068c5b02aed13f7fd70dc0bcb0ac01d37812dcddaccdb89f
GET /apps/zawody/template/pd_forms/MILKA4/css/zonapro.css HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/style.css?v=2
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Mon, 11 Apr 2022 05:37:34 GMT
ETag: "d6a-5dc5a57652003-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 359
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.google.com/recaptcha/api.js?render=6LewwnAeAAAAAFNXs39CiVktetphdqhyyqDmq8F9
142.250.74.132200 OK 580 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LewwnAeAAAAAFNXs39CiVktetphdqhyyqDmq8F9
IP 142.250.74.132:0
File type ASCII text, with very long lines (884), with no line terminators
Hash f7235d48f5aec4d30a793200c4445e8f
08179605c01601372690ed1b715da42ca82e70e1
7b41da39249af0bfd5ad454acbb1e9fa922aebd13c799561b3ece21711c7714e
GET /recaptcha/api.js?render=6LewwnAeAAAAAFNXs39CiVktetphdqhyyqDmq8F9 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 08 Jan 2023 00:06:50 GMT
date: Sun, 08 Jan 2023 00:06:50 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 580
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.pyszny-box.link/apps/zawody/template/images/images/main_preloader.gif
31.42.176.76200 OK 6.7 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/images/images/main_preloader.gif
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type GIF image data, version 89a, 64 x 64\012- data
Hash 1da45519428297bcfc57c20dea048fa0
3663552f3ca880be8aef0028c11c967f8e1306ed
632e59ba64e2ab65fd7d0f1cb0cbdd2be45b7e459f3a270c58445e13d1b493e0
GET /apps/zawody/template/images/images/main_preloader.gif HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 12:59:55 GMT
ETag: "1a00-5c596b75e8b18"
Accept-Ranges: bytes
Content-Length: 6656
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/gif
www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/images/label_m.png
31.42.176.76200 OK 16 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/images/label_m.png
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type PNG image data, 360 x 272, 8-bit colormap, non-interlaced\012- data
Hash 64b36d07f8e90f3363d80beb0d1e9383
36906d37833ba4af8eef360bdccb6fce179546a0
1d91328031b7e92ac4f866b2c65c8608a972b6e32fdba6290909ebcc01cf0f41
GET /apps/zawody/template/pd_forms/MILKA4/images/label_m.png HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Mon, 11 Apr 2022 05:37:35 GMT
ETag: "3d12-5dc5a576bc74c"
Accept-Ranges: bytes
Content-Length: 15634
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 63bccc1f66ce9e92e4b40dfb3d397e96
b256695f795919c1fa3d0de461cf4d44fb7573f3
739ed63c77b8f2f8ae1e929d2e6ce784986ea0d3230d2a65cc9f733837c8a581
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 00:06:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-38057940-18
142.250.74.168200 OK 471 B URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-38057940-18
IP 142.250.74.168:0
Hash 17cf9dce587a0172ed5024014092613a
c4d54d41bb2065c443b71ce4cb0765afcf25ff5d
c9e7f02104dba48ac14728545d4e4fbc2393ab6c2cb4b36504aad9626f8d10b1
GET /gtag/js?id=UA-38057940-18 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 08 Jan 2023 00:06:50 GMT
expires: Sun, 08 Jan 2023 00:06:50 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45345
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/images/label.png
31.42.176.76200 OK 21 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/images/label.png
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type PNG image data, 539 x 368, 8-bit colormap, non-interlaced\012- data
Hash 381815ca776271eb9c806bf7b69e0f38
b3fd1332b021d0fbba11824c09966c8574114863
15df453883341e4f5bb47afd1a782b0a0d3caea915727478ae48c2d4d9c0154b
GET /apps/zawody/template/pd_forms/MILKA4/images/label.png HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Mon, 11 Apr 2022 05:37:34 GMT
ETag: "505a-5dc5a57659d06"
Accept-Ranges: bytes
Content-Length: 20570
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 910d902590c4dce2c5fde148d455a94c
05617b6a2fd1a7eb4fcb098a7ce48011d3f835bc
3bfd7cff0474a36458748e4cc6dfa647fdd7bd8b4fa792079042a04c7dffe0b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 00:06:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/fonts/zona_pro_regular_thefontsmaster.com-webfont.woff2
31.42.176.76200 OK 17 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/fonts/zona_pro_regular_thefontsmaster.com-webfont.woff2
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type Web Open Font Format (Version 2), TrueType, length 17092, version 1.0\012- data
Hash 65f45343306b599e6f5fe3dba8f2e967
9697d1b33bbb2aea712064114108e030e459acd3
af50dca6debcad36ea37332a8887e80eea8cf5704271371bdb2fb47798284164
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/template/pd_forms/MILKA4/css/fonts/zona_pro_regular_thefontsmaster.com-webfont.woff2 HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/zonapro.css
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Mon, 11 Apr 2022 05:37:34 GMT
ETag: "42c4-5dc5a5764d1e1"
Accept-Ranges: bytes
Content-Length: 17092
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff2
www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/fonts/zona_pro_bold_thefontsmaster.com-webfont.woff2
31.42.176.76200 OK 17 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/fonts/zona_pro_bold_thefontsmaster.com-webfont.woff2
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type Web Open Font Format (Version 2), TrueType, length 17360, version 1.393\012- data
Hash 7ffc1c3e9cc4945375a7bc82d8c16c4d
ad8765a0924c0229e0dcd075884cb6dd914a3f2c
b3526f37223174382874af83197695613412a8f2475aa258a72e4d5ed9372e2d
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/template/pd_forms/MILKA4/css/fonts/zona_pro_bold_thefontsmaster.com-webfont.woff2 HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/zonapro.css
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Mon, 11 Apr 2022 05:37:34 GMT
ETag: "43d0-5dc5a5764c241"
Accept-Ranges: bytes
Content-Length: 17360
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2
www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/fonts/zona_pro_extrabold_thefontsmaster.com-webfont.woff2
31.42.176.76200 OK 17 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/fonts/zona_pro_extrabold_thefontsmaster.com-webfont.woff2
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type Web Open Font Format (Version 2), TrueType, length 16868, version 1.0\012- data
Hash 3f6adf0bb39bb5e037925212ed810c21
f78e5b840a5781af62c886e582c9c6a9f4602cd0
f67d4b40c30ee55ac559d76090286aa24c14d9d37218bc8a7ad9852a5a8522f0
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/template/pd_forms/MILKA4/css/fonts/zona_pro_extrabold_thefontsmaster.com-webfont.woff2 HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/zonapro.css
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Mon, 11 Apr 2022 05:37:34 GMT
ETag: "41e4-5dc5a5764d1e1"
Accept-Ranges: bytes
Content-Length: 16868
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2
www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/images/bg.jpg
31.42.176.76200 OK 211 kB URL HTTP/1.1 www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/images/bg.jpg
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1919x738, components 3\012- data
Size 211 kB (210922 bytes)
Hash 05ebb4fea6aea18c73737b7baaacdf02
b93ed7b30f82b3e1c0fd4ab394558d71fda41194
e3f0ff7babaac632ddbecb8e5721aa37d8c43b49b0646ba00ac28ec531172c09
GET /apps/zawody/template/pd_forms/MILKA4/images/bg.jpg HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/css/style.css?v=2
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Mon, 11 Apr 2022 05:37:35 GMT
ETag: "337ea-5dc5a57679112"
Accept-Ranges: bytes
Content-Length: 210922
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/images/favico.png
31.42.176.76404 Not Found 0 B URL HTTP/1.0 www.pyszny-box.link/apps/zawody/template/pd_forms/MILKA4/images/favico.png
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /apps/zawody/template/pd_forms/MILKA4/images/favico.png HTTP/1.1
Host: www.pyszny-box.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Cookie: PHPSESSID=km5obf8j033rg9qg9o3uv5t4f1; bq_tr_usr_ident=8d876c63ddf16a9193b8f1e91f81116a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.0 404 Not Found
Date: Sun, 08 Jan 2023 00:06:50 GMT
Server: Apache/2.4.38 (Debian)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 294742535da40d02498d9e1c865d4014
99d45ec581ccba41915745f22da696aa9c5758ea
645f09beffda2d924626cedd5aa832a5a0e1b136ddf3fdc0b65fd9526f8b5531
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 00:06:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash da7ec93331115a56d02c21741e842b75
404bb54f30808d62e5a981f4a92b6afebe0c3003
3b2283c2f0d27b3a2c83e9275017ea72ae7245e5e7bac35627f99fe9e940035c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 671
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 00:06:50 GMT
Last-Modified: Sat, 07 Jan 2023 23:55:39 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
142.250.74.35200 OK 165 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (658)
Size 165 kB (164706 bytes)
Hash 0b7fccb24ee065a01fdde10928c03c3f
9b198014f81844820588c202cc24bf5e03bf3dd7
68756de8f0d6742525ddaca56ab350e34d822777e86939fea27eb704ae013280
GET /recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.pyszny-box.link
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164706
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jan 2023 16:14:32 GMT
expires: Sat, 06 Jan 2024 16:14:32 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Dec 2022 05:24:10 GMT
content-type: text/javascript
age: 114738
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 294742535da40d02498d9e1c865d4014
99d45ec581ccba41915745f22da696aa9c5758ea
645f09beffda2d924626cedd5aa832a5a0e1b136ddf3fdc0b65fd9526f8b5531
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 00:06:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
157.240.240.1200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.240.1:0
File type ASCII text, with very long lines (64348)
Hash 4aa5723e20bb937995d58baee63ccef3
4f4451ce70e0f1174447f509b9ecfae0030d69b8
a442ce52f0330fe4e1d6e25a76d9cf569cf7e649416caf201d0570a1cadf7de8
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: V/CGZlt1R55g8nfeoe1jE+G9u/4AxYpg5prCmKlkl0nJK8BeEfyHp/3k0wT++0qPn+WXCx+fZ51twKXyho7vlg==
content-length: 27613
x-fb-trip-id: 1679558926
date: Sun, 08 Jan 2023 00:06:50 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash da7ec93331115a56d02c21741e842b75
404bb54f30808d62e5a981f4a92b6afebe0c3003
3b2283c2f0d27b3a2c83e9275017ea72ae7245e5e7bac35627f99fe9e940035c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 671
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 00:06:50 GMT
Last-Modified: Sat, 07 Jan 2023 23:55:39 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 07 Jan 2023 22:41:08 GMT
expires: Sun, 08 Jan 2023 00:41:08 GMT
cache-control: public, max-age=7200
age: 5142
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bca7f62d320a595159ceae1b30ef4c65
0e0c7a42f0d017f617b40aea757cf0a0a4d71d9a
e30f2266b5b10dd868954bba127f6a8e85ba6f8422b565ca17aee0e9074b9d99
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 00:06:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-38057940-18&cid=715900728.1673136399&jid=1798659803&gjid=1768464877&_gid=833412769.1673136399&_u=YEBAAUAAAAAAACAAI~&z=1064216726
74.125.131.154200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-38057940-18&cid=715900728.1673136399&jid=1798659803&gjid=1768464877&_gid=833412769.1673136399&_u=YEBAAUAAAAAAACAAI~&z=1064216726
IP 74.125.131.154:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-38057940-18&cid=715900728.1673136399&jid=1798659803&gjid=1768464877&_gid=833412769.1673136399&_u=YEBAAUAAAAAAACAAI~&z=1064216726 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.pyszny-box.link
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.pyszny-box.link
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 08 Jan 2023 00:06:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bca7f62d320a595159ceae1b30ef4c65
0e0c7a42f0d017f617b40aea757cf0a0a4d71d9a
e30f2266b5b10dd868954bba127f6a8e85ba6f8422b565ca17aee0e9074b9d99
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 00:06:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=196290621588360&ev=PageView&dl=https%3A%2F%2Fwww.pyszny-box.link%2F&rl=&if=false&ts=1673136399115&sw=1280&sh=1024&v=2.9.91&r=stable&ec=0&o=30&fbp=fb.1.1673136399114.812135260&it=1673136398915&coo=false&rqm=GET
157.240.240.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=196290621588360&ev=PageView&dl=https%3A%2F%2Fwww.pyszny-box.link%2F&rl=&if=false&ts=1673136399115&sw=1280&sh=1024&v=2.9.91&r=stable&ec=0&o=30&fbp=fb.1.1673136399114.812135260&it=1673136398915&coo=false&rqm=GET
IP 157.240.240.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=196290621588360&ev=PageView&dl=https%3A%2F%2Fwww.pyszny-box.link%2F&rl=&if=false&ts=1673136399115&sw=1280&sh=1024&v=2.9.91&r=stable&ec=0&o=30&fbp=fb.1.1673136399114.812135260&it=1673136398915&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.pyszny-box.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 08 Jan 2023 00:06:51 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jan 2023 21:48:03 GMT
expires: Fri, 05 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 181128
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jan 2023 16:40:43 GMT
expires: Fri, 05 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 199568
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17111
Expires: Sun, 08 Jan 2023 04:52:02 GMT
Date: Sun, 08 Jan 2023 00:06:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17111
Expires: Sun, 08 Jan 2023 04:52:02 GMT
Date: Sun, 08 Jan 2023 00:06:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17111
Expires: Sun, 08 Jan 2023 04:52:02 GMT
Date: Sun, 08 Jan 2023 00:06:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd30a0870-7ffa-4b03-b726-03d60ff15842.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd30a0870-7ffa-4b03-b726-03d60ff15842.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0c58ad285780651622892d30a6c1e66f
90eb61d9434ce2574932168ec17109285e38f88f
8b782f6d2f34d2c328c33f92e11fb0503114f3044472939a5622f985a61ca10f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd30a0870-7ffa-4b03-b726-03d60ff15842.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4140
x-amzn-requestid: b3b64efa-b34d-45d9-bb88-6f6cd6944a2b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eTNhhGI6IAMFT2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b78fa3-6f8071403bde1f0040135133;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 03:04:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qP1ax3jngiUrVO_nfUrYvu8JibmU6lLbqWqiwYHdvHqKfzToxPTWpQ==
via: 1.1 0cf6c59c77f0fff670ae085179adc458.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 03:55:20 GMT
age: 72691
etag: "90eb61d9434ce2574932168ec17109285e38f88f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash afcc8f4875f4b74ca0640829b689731e
584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df
3e487396389c4330abc99bc99053eecc6aaf56f7afa398d70c30e1f4709577a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13626
x-amzn-requestid: 4769eaeb-0c78-4054-ad47-eefdd6ab2d03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWHMZErbIAMF6sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8b8b5-4c7bacfe060899044e361f70;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 00:11:33 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: H3uGFYbyPSwFZQCvn99EtVQw1Xz9DBbTgrK2FmfoKYBcZXkj60CbuQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 13:36:28 GMT
age: 37823
etag: "584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea675957-36a1-4a10-8735-4cba73296e89.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea675957-36a1-4a10-8735-4cba73296e89.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5dc193698e3154c6727f0f8a468f4896
ac3e055c64cc024e55bbdc2bdfdb07799f06f83b
4e7fa4cc65a3514cd05a6582a7bcafa3b898cf9cf5fcc5f580c4b05c2b09e5e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea675957-36a1-4a10-8735-4cba73296e89.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14548
x-amzn-requestid: 0cd053bc-a097-4556-b8c0-915bbb88f514
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eTwpdHmRIAMFQRQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b7c7d5-2ef52fce3665e4186b885964;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 07:03:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: zMJf0AJITcZpkBO6RdriTA5M4yIcO7e6N1_KmCh923nYMmOsRfuSGA==
via: 1.1 1949caaabae48a894fcd770a3e1384f6.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 07:37:21 GMT
age: 59370
etag: "ac3e055c64cc024e55bbdc2bdfdb07799f06f83b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd37b37f6-0573-4e9c-a9a7-e929e467ad92.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd37b37f6-0573-4e9c-a9a7-e929e467ad92.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a1cff64e08720bab2f19d7f3649776cb
9a3a7926851f5b902977cd16430e1cc4289bd222
b3dadac3a431a57c0c2cb3627dfcba8d81917efc0f227d9b7c9cd356e072a28f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd37b37f6-0573-4e9c-a9a7-e929e467ad92.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6903
x-amzn-requestid: 4b171872-69b6-443a-8a17-2567e164549f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eTxzEFnkIAMF09w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b7c9ad-6affd2bd5d1bc0572faa2b3b;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 07:11:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MgqFc4776MQBMl3kw1pcarHATAyMgD4e0P-V1Oc264tM7EG2SKLJwg==
via: 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 07:38:25 GMT
age: 59306
etag: "9a3a7926851f5b902977cd16430e1cc4289bd222"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F973f3653-99a9-4d8b-a3ca-26124b0a7350.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F973f3653-99a9-4d8b-a3ca-26124b0a7350.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9c7a07834f3ef5cfbd27c91b49c2df3e
5f53a0fd71f8ba434419f6c43e922d785302a7fa
43fe896ad03ec8ca66cccca45cf4edebf2d6b2801fe0b10e5cf215a753fb1d34
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F973f3653-99a9-4d8b-a3ca-26124b0a7350.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11694
x-amzn-requestid: 840b4dd7-e46f-4e7c-8d4f-711d2aab8595
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eJ4C9GjVIAMFfhg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b3d3ac-134744d563ff9f7455c10c72;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 07:05:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: NKMYtNmSuvrXPstZaEeOXBgJm7TW-AahjcU_3HotwVdyx5pryt06_Q==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 12:50:43 GMT
age: 40568
etag: "5f53a0fd71f8ba434419f6c43e922d785302a7fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fc3fbba-c748-477d-b1a9-4218da052cc0.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fc3fbba-c748-477d-b1a9-4218da052cc0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fc604aed78008733f09b024b71a6fda9
0f3f633b0b34ac3662febdc45704362c49622a42
7c4f5871e571148c25f83b8676846ab1b0e82be3f4a1b3fb7c05bfe23e29c1b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fc3fbba-c748-477d-b1a9-4218da052cc0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9644
x-amzn-requestid: 63281b3f-e673-4836-9729-7f595b0fb8b3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDu5FkioAMF9tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e65f-5869b987090de6f758472be9;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JsNm98uTnFfNyDnk651OGxB92JTaNKc7H92yP3FCBhUb9BBsFs-Ygg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 21:44:42 GMT
age: 8529
etag: "0f3f633b0b34ac3662febdc45704362c49622a42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2