delfintour.sk/ctis.ndmi/login.jsp.php?session_id=ImWLkwpSw28Yc9KVgIjoyeMc0YHrXOTGbPsvmRoTUwR6GC2XkmmSA85A6N24CVLNLdj74H0YeS4Vu7TO
200 OK
5510
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/login.jsp.php?session_id=ImWLkwpSw28Yc9KVgIjoyeMc0YHrXOTGbPsvmRoTUwR6GC2XkmmSA85A6N24CVLNLdj74H0YeS4Vu7TO
IP
Magic
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (722), with CRLF line terminators
Hash
bed59c21e7a9cb5e5db29734b8bc932f
37b3c8743a59cdcee2403ac48fca74a8dfdf1fb9
c61fe465d288e6c9a136bc026d2dabd53398e939b0a145678dfe697083037305
Analyzer
Verdict
Alert
fortinet
Phishing
NIDS
Severity
Alert
suricata
medium
ET PHISHING Suspicious HTML Decimal Obfuscated Title - Possible Phishing Landing Apr 19 2017
suricata
medium
ET PHISHING Suspicious HTML Hex Obfuscated Title - Possible Phishing Landing Jun 28 2017
GET /ctis.ndmi/login.jsp.php?session_id=ImWLkwpSw28Yc9KVgIjoyeMc0YHrXOTGbPsvmRoTUwR6GC2XkmmSA85A6N24CVLNLdj74H0YeS4Vu7TO HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
Vary: Accept-Encoding
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9524
Expires: Mon, 30 Jan 2023 23:31:28 GMT
Date: Mon, 30 Jan 2023 20:52:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9861
Expires: Mon, 30 Jan 2023 23:37:05 GMT
Date: Mon, 30 Jan 2023 20:52:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK
939
URL
HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
Magic
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 20:35:46 GMT
content-type: application/json
age: 1018
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4910
Expires: Mon, 30 Jan 2023 22:14:34 GMT
Date: Mon, 30 Jan 2023 20:52:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK
5348
URL
HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
Magic
PEM certificate\012- , ASCII text
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /DV7bQTdi3eAmctMFS7XccEuhXod9SjPfF5i9OtoyGufnKsXebUoqU3D8eir337D7fwFZ6NyYqY=
x-amz-request-id: 0TGQN30PHZ5ZZ2S2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 20:50:53 GMT
age: 111
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK
12
URL
HTTP/2
contile.services.mozilla.com/v1/tiles
IP
Magic
JSON data\012- , ASCII text, with no line terminators
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 20:52:44 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
delfintour.sk/ctis.ndmi/media/login.css
200 OK
1148
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/login.css
IP
Magic
ASCII text, with very long lines (4062), with no line terminators
Hash
db0653dd1c08f8aeab2383c387ba4da2
71ecb7e874dd248c40ffa36ff488fbf6804a52e2
76d895ec224678215958418012b4da9e94dd05e7eef223dc25362906e8cc46aa
GET /ctis.ndmi/media/login.css HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/login.jsp.php?session_id=ImWLkwpSw28Yc9KVgIjoyeMc0YHrXOTGbPsvmRoTUwR6GC2XkmmSA85A6N24CVLNLdj74H0YeS4Vu7TO
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: text/css
Content-Length: 1148
Connection: keep-alive
Last-Modified: Fri, 27 Sep 2019 17:19:18 GMT
ETag: "fde-5938c1609d180-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
delfintour.sk/ctis.ndmi/media/jcaptcha.css
200 OK
520
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/jcaptcha.css
IP
Magic
ASCII text, with very long lines (1479), with no line terminators
Hash
62aeae7d8d81ee83928071eb6c1d62fb
f0c9e4d5ece72b4033729cb938b0aaf1c0d71d79
4a518ace4869cd3eb5391b7afc42452956a58c51f9eb50ec40b450b30c066595
GET /ctis.ndmi/media/jcaptcha.css HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/login.jsp.php?session_id=ImWLkwpSw28Yc9KVgIjoyeMc0YHrXOTGbPsvmRoTUwR6GC2XkmmSA85A6N24CVLNLdj74H0YeS4Vu7TO
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: text/css
Content-Length: 520
Connection: keep-alive
Last-Modified: Thu, 26 Sep 2019 08:22:08 GMT
ETag: "5c7-593707723ac00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
delfintour.sk/ctis.ndmi/media/main.css
200 OK
20810
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/main.css
IP
Magic
ASCII text, with very long lines (65536), with no line terminators
Hash
8273ed02b181da29c9103e72a0e6c3d0
f9386899a1a4f54936f83b7f525bd83028c557ae
e654d5439c70ca8a10a210345baad9d87fb82c6abfac089b08f84a7583c1f5aa
GET /ctis.ndmi/media/main.css HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/login.jsp.php?session_id=ImWLkwpSw28Yc9KVgIjoyeMc0YHrXOTGbPsvmRoTUwR6GC2XkmmSA85A6N24CVLNLdj74H0YeS4Vu7TO
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: text/css
Content-Length: 20810
Connection: keep-alive
Last-Modified: Fri, 20 Mar 2020 16:20:32 GMT
ETag: "205e7-5a14baa19f400-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
delfintour.sk/ctis.ndmi/media/backbase.js
200 OK
75508
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/backbase.js
IP
Magic
HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash
719569339ca9b4e311bd6cfcfbcf387b
18e14333120e130a538d45a408651310bd69ac8a
feb06de3b5f2a4899b519aa4e3a563fdfd340a9caa981f8b5a8c081aeffbf383
GET /ctis.ndmi/media/backbase.js HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/login.jsp.php?session_id=ImWLkwpSw28Yc9KVgIjoyeMc0YHrXOTGbPsvmRoTUwR6GC2XkmmSA85A6N24CVLNLdj74H0YeS4Vu7TO
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 26 Sep 2019 08:22:08 GMT
ETag: "3ffdc-593707723ac00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
delfintour.sk/ctis.ndmi/media/main-all-base.js
200 OK
104539
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/main-all-base.js
IP
Magic
ASCII text, with very long lines (65536), with no line terminators
Hash
7b7e017581f42a3e06778fecf2c722f7
a3a7bec8d4da7cbc53e48127064c7ce2eb7c3b25
8fb1cb06a33ffe4844d455f1693b49792aa37e330c9f08a3da0cf80ed4efdf65
GET /ctis.ndmi/media/main-all-base.js HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/login.jsp.php?session_id=ImWLkwpSw28Yc9KVgIjoyeMc0YHrXOTGbPsvmRoTUwR6GC2XkmmSA85A6N24CVLNLdj74H0YeS4Vu7TO
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 30 Sep 2019 13:10:12 GMT
ETag: "77a15-593c4f4b61500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
delfintour.sk/ctis.ndmi/media/locale_en.gif
200 OK
70
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/locale_en.gif
IP
Magic
GIF image data, version 89a, 14 x 14\012- data
Hash
f93c9052c9244e395d965f30d21c66da
2ef0d6208255d8059d0f15e664640bb66570f741
3c243a2d63452b7a8392cdf93e637ec423b3241149831b2082283063d1e34413
GET /ctis.ndmi/media/locale_en.gif HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/login.jsp.php?session_id=ImWLkwpSw28Yc9KVgIjoyeMc0YHrXOTGbPsvmRoTUwR6GC2XkmmSA85A6N24CVLNLdj74H0YeS4Vu7TO
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: image/gif
Content-Length: 70
Connection: keep-alive
Last-Modified: Thu, 26 Sep 2019 08:22:08 GMT
ETag: "46-593707723ac00"
Accept-Ranges: bytes
delfintour.sk/ctis.ndmi/media/ajax-loader-2.gif
200 OK
3208
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/ajax-loader-2.gif
IP
Magic
GIF image data, version 89a, 32 x 32\012- data
Hash
f085e3360c7206e8ccc623bb5a285d96
06f9b2eed4f23a7471b567690b1b8d59223909a6
b6b693de4c17c014dad29abe5294359606104283674d45ee8348e9dc731ff540
GET /ctis.ndmi/media/ajax-loader-2.gif HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/login.jsp.php?session_id=ImWLkwpSw28Yc9KVgIjoyeMc0YHrXOTGbPsvmRoTUwR6GC2XkmmSA85A6N24CVLNLdj74H0YeS4Vu7TO
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: image/gif
Content-Length: 3208
Connection: keep-alive
Last-Modified: Thu, 26 Sep 2019 08:22:08 GMT
ETag: "c88-593707723ac00"
Accept-Ranges: bytes
delfintour.sk/ctis.ndmi/media/logo-red.png
200 OK
2079
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/logo-red.png
IP
Magic
PNG image data, 44 x 44, 8-bit colormap, non-interlaced\012- data
Hash
e4e141701cb25f97660b49d191eb2963
6fb16bfeab3664b454128d99eef54e3861bd3912
86c3ec119fc6352ca80ccc5b6e2e8fa76c924adecaf33de65da1b892e7b1aa3e
GET /ctis.ndmi/media/logo-red.png HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/login.jsp.php?session_id=ImWLkwpSw28Yc9KVgIjoyeMc0YHrXOTGbPsvmRoTUwR6GC2XkmmSA85A6N24CVLNLdj74H0YeS4Vu7TO
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: image/png
Content-Length: 2079
Connection: keep-alive
Last-Modified: Thu, 26 Sep 2019 08:22:08 GMT
ETag: "81f-593707723ac00"
Accept-Ranges: bytes
delfintour.sk/ctis.ndmi/media/campaigne_1_ENG.png
200 OK
46532
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/campaigne_1_ENG.png
IP
Magic
PNG image data, 296 x 212, 8-bit/color RGBA, non-interlaced\012- data
Hash
b775b77d2d29313be09e5e746f6cd1f6
cb286faea1400306bc7efbe88119659adf837e0f
cb45d428c00e88ea0e73eca797ebb0222173c4bb22a86935a4d94137695a42ef
GET /ctis.ndmi/media/campaigne_1_ENG.png HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/login.jsp.php?session_id=ImWLkwpSw28Yc9KVgIjoyeMc0YHrXOTGbPsvmRoTUwR6GC2XkmmSA85A6N24CVLNLdj74H0YeS4Vu7TO
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: image/png
Content-Length: 46532
Connection: keep-alive
Last-Modified: Thu, 26 Sep 2019 08:22:08 GMT
ETag: "b5c4-593707723ac00"
Accept-Ranges: bytes
delfintour.sk/ctis.ndmi/media/AOB_1Million_Eng.png
200 OK
45517
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/AOB_1Million_Eng.png
IP
Magic
PNG image data, 296 x 212, 8-bit/color RGB, non-interlaced\012- data
Hash
cc3f5ce59e432095fb2fee45ea9d40e1
4e4f0ba0397e4e70b975a4dedce5a5900379c321
96d3248a53eb08b35389e45e35ba8891b04f4ea9d7a70c05c96fc9b8fe303633
GET /ctis.ndmi/media/AOB_1Million_Eng.png HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/login.jsp.php?session_id=ImWLkwpSw28Yc9KVgIjoyeMc0YHrXOTGbPsvmRoTUwR6GC2XkmmSA85A6N24CVLNLdj74H0YeS4Vu7TO
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: image/png
Content-Length: 45517
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 08:05:10 GMT
ETag: "b1cd-5ed193b651980"
Accept-Ranges: bytes
delfintour.sk/ctis.ndmi/media/sprite-corners-rounded.png
200 OK
246
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/sprite-corners-rounded.png
IP
Magic
PNG image data, 16 x 20, 8-bit colormap, non-interlaced\012- data
Hash
13cefa14429d6c083df4c04dffb80f15
f7bbde539bd645f4a43bfaa3628e1937f2ca3b87
6a1423dcdc9a531df9d5dfc5a1ea720eec868eda0a56e1580a0c71c69e79b8fe
GET /ctis.ndmi/media/sprite-corners-rounded.png HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/media/main.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: image/png
Content-Length: 246
Connection: keep-alive
Last-Modified: Sun, 29 Sep 2019 08:35:12 GMT
ETag: "f6-593acff64b000"
Accept-Ranges: bytes
delfintour.sk/ctis.ndmi/media/icon-questionmark-grey_2019.png
200 OK
362
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/icon-questionmark-grey_2019.png
IP
Magic
PNG image data, 19 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash
0ee5a2df1e19db0f33573dd1cad378f9
7c81f65c8ec075a03b10104d297ce18bcf13785c
79fb86c959989a8d2c920e6e4550c396fcee47ec4deda2549b237aca12dd981d
GET /ctis.ndmi/media/icon-questionmark-grey_2019.png HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/login.jsp.php?session_id=ImWLkwpSw28Yc9KVgIjoyeMc0YHrXOTGbPsvmRoTUwR6GC2XkmmSA85A6N24CVLNLdj74H0YeS4Vu7TO
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: image/png
Content-Length: 362
Connection: keep-alive
Last-Modified: Fri, 27 Sep 2019 17:19:30 GMT
ETag: "16a-5938c16c0ec80"
Accept-Ranges: bytes
delfintour.sk/ctis.ndmi/media/keypad-bg.gif
200 OK
439
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/keypad-bg.gif
IP
Magic
GIF image data, version 89a, 84 x 128\012- data
Hash
4b3e105c2c0a87a3d4c46ead1f2640a2
5ed49317561375c49ecdb9fc525c445f9737b0f6
31d4c1cd3bf18363ff7643f87a54fecd70376fed89cd5805ced2e323127fa334
GET /ctis.ndmi/media/keypad-bg.gif HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/media/main.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: image/gif
Content-Length: 439
Connection: keep-alive
Last-Modified: Fri, 27 Sep 2019 17:13:46 GMT
ETag: "1b7-5938c023fe680"
Accept-Ranges: bytes
delfintour.sk/ctis.ndmi/media/key-button.gif
200 OK
379
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/key-button.gif
IP
Magic
GIF image data, version 89a, 40 x 20\012- data
Hash
4119e04ec2eff69239a3663b4a0075c5
3be4575fe849aaef8f1d21e0819907a795d18342
d3dbb7567bec3fa266960ee53ee72d534e1834e481ff502a0901fcb32af7ff23
GET /ctis.ndmi/media/key-button.gif HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/media/main.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: image/gif
Content-Length: 379
Connection: keep-alive
Last-Modified: Fri, 27 Sep 2019 17:14:00 GMT
ETag: "17b-5938c03158600"
Accept-Ranges: bytes
delfintour.sk/ctis.ndmi/media/keypad-backspace.png
200 OK
209
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/keypad-backspace.png
IP
Magic
PNG image data, 9 x 8, 8-bit/color RGBA, non-interlaced\012- data
Hash
bbc723952114cf1dda41c231860a61ce
447058c6f08098bc5dcf41e6654f254e0ace3444
1723fd2bd8c98417e8739ab2853cb92dfb0e50113a7a9726d2cceb69d00eea05
GET /ctis.ndmi/media/keypad-backspace.png HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/media/main.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: image/png
Content-Length: 209
Connection: keep-alive
Last-Modified: Sun, 29 Sep 2019 08:34:04 GMT
ETag: "d1-593acfb571700"
Accept-Ranges: bytes
delfintour.sk/ctis.ndmi/media/sprite-icons-bar-status_2019.png
200 OK
643
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/sprite-icons-bar-status_2019.png
IP
Magic
PNG image data, 12 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash
48a49b834f2f316618c58cd48404b711
0f2654bb5490b18db7504789cae08ffaea881843
620195c7ce8c374b49f3438ad4b3edc1aa33c7ee839d13436f202fc38a55acbb
GET /ctis.ndmi/media/sprite-icons-bar-status_2019.png HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/media/login.css
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: image/png
Content-Length: 643
Connection: keep-alive
Last-Modified: Fri, 27 Sep 2019 17:14:30 GMT
ETag: "283-5938c04df4980"
Accept-Ranges: bytes
delfintour.sk/ctis.ndmi/media/favicon.ico
200 OK
3262
URL
HTTP/1.1
delfintour.sk/ctis.ndmi/media/favicon.ico
IP
Magic
MS Windows icon resource - 1 icon, 32x32, 24 bits/pixel\012- data
Hash
830fd617ff8b5b8a8ac6713cd0c1d02f
0357369c0516e195cfa22b1eb2372831557b9c82
88a44fa39621aa19944ef9e13e88853f445d772b5f49fe0758738e06c8fa20da
GET /ctis.ndmi/media/favicon.ico HTTP/1.1
Host: delfintour.sk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://delfintour.sk/ctis.ndmi/login.jsp.php?session_id=ImWLkwpSw28Yc9KVgIjoyeMc0YHrXOTGbPsvmRoTUwR6GC2XkmmSA85A6N24CVLNLdj74H0YeS4Vu7TO
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 30 Jan 2023 20:52:44 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 3262
Connection: keep-alive
Last-Modified: Sat, 28 Sep 2019 09:07:58 GMT
ETag: "cbe-5939956bc1780"
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK
329
URL
HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
Magic
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 20:49:04 GMT
age: 220
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4603
Expires: Mon, 30 Jan 2023 22:09:28 GMT
Date: Mon, 30 Jan 2023 20:52:45 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols
0
URL
HTTP/1.1
push.services.mozilla.com/
IP
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bqzQNmlZv9gF/0zGMdjlOQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Hj9VJhZIYJ2syLyykhKI8667/hs=
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4491
Expires: Mon, 30 Jan 2023 22:07:37 GMT
Date: Mon, 30 Jan 2023 20:52:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4491
Expires: Mon, 30 Jan 2023 22:07:37 GMT
Date: Mon, 30 Jan 2023 20:52:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK
503
IP
ASN
#20940 Akamai International B.V.
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4491
Expires: Mon, 30 Jan 2023 22:07:37 GMT
Date: Mon, 30 Jan 2023 20:52:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
200 OK
9457
URL
HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
IP
Magic
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash
51aa950d5eed7b90cab6632107092edc
e4388ced02e5576867e77547496dec1ac2338ef7
588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9457
x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkBOGHVoAMFQtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3EXFa0gb46AbdZ9ZznGiPTemGZ7zWh9WLs5Yr1zmfyh_jyKA6o7xoA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:19:57 GMT
age: 81169
etag: "e4388ced02e5576867e77547496dec1ac2338ef7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
200 OK
11568
URL
HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP
Magic
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash
b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 79b70f1f-a157-4dd4-8743-825714195b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9T3UGA3oAMFSlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c86695-36e60aba09c152c73b8aefcb;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 21:37:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HvqpQI-tR9W2NwvIgoi8loQaD--rOgVYFdLdkdlaXMhe4ts9mYqahg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:50:16 GMT
age: 82950
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
200 OK
10997
URL
HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP
Magic
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash
65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: skGKI_MWvDwpAbGibUcr8wTlimgoPU9ZYhEHltd3uhdJZ_GoNznVAA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:08:57 GMT
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
age: 81829
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
200 OK
7679
URL
HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
IP
Magic
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash
3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VHh2SQ21xoDoBnGvM2kRiposhXuCE-DdWW1bM35kEykjbHYmhsldVA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:51:22 GMT
age: 82884
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
200 OK
4475
URL
HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP
Magic
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash
4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 05:47:49 GMT
age: 54297
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
200 OK
8464
URL
HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
IP
Magic
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash
fe31ee140c2fd62e616c8a1edc9e78bb
7aa5fbdc8156514770ae620e81f1afef1c77890f
799af4bf9fa07ed27ebdc9d1a3344ee8a2b6529f076c263495b93290c47a1cc4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8464
x-amzn-requestid: bf2cf356-ebb1-469b-ba35-a79bb009cad6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3qGeboAMFzNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e697-7c96841f52b6a96d1b0eaf34;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: y6bDvcD7a3-A4DLC3cSdZT-yewV1kkFqcGr7AMuqvUeGA4A0pgF4wQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:59:27 GMT
age: 82399
etag: "7aa5fbdc8156514770ae620e81f1afef1c77890f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
85.248.226.7
34.117.237.239
23.36.77.32![URL delfintour.sk/ctis.ndmi/media/locale_en.gif](/search?q=http.url.addr:"delfintour.sk%2fctis.ndmi%2fmedia%2flocale_en.gif"){kind=link}
![URL delfintour.sk/ctis.ndmi/media/ajax-loader-2.gif](/search?q=http.url.addr:"delfintour.sk%2fctis.ndmi%2fmedia%2fajax-loader-2.gif"){kind=link}
![URL delfintour.sk/ctis.ndmi/media/logo-red.png](/search?q=http.url.addr:"delfintour.sk%2fctis.ndmi%2fmedia%2flogo-red.png"){kind=link}
![URL delfintour.sk/ctis.ndmi/media/campaigne_1_ENG.png](/search?q=http.url.addr:"delfintour.sk%2fctis.ndmi%2fmedia%2fcampaigne_1_ENG.png"){kind=link}
![URL delfintour.sk/ctis.ndmi/media/AOB_1Million_Eng.png](/search?q=http.url.addr:"delfintour.sk%2fctis.ndmi%2fmedia%2fAOB_1Million_Eng.png"){kind=link}
![URL delfintour.sk/ctis.ndmi/media/sprite-corners-rounded.png](/search?q=http.url.addr:"delfintour.sk%2fctis.ndmi%2fmedia%2fsprite-corners-rounded.png"){kind=link}
![URL delfintour.sk/ctis.ndmi/media/icon-questionmark-grey_2019.png](/search?q=http.url.addr:"delfintour.sk%2fctis.ndmi%2fmedia%2ficon-questionmark-grey_2019.png"){kind=link}
![URL delfintour.sk/ctis.ndmi/media/keypad-bg.gif](/search?q=http.url.addr:"delfintour.sk%2fctis.ndmi%2fmedia%2fkeypad-bg.gif"){kind=link}
![URL delfintour.sk/ctis.ndmi/media/key-button.gif](/search?q=http.url.addr:"delfintour.sk%2fctis.ndmi%2fmedia%2fkey-button.gif"){kind=link}
![URL delfintour.sk/ctis.ndmi/media/keypad-backspace.png](/search?q=http.url.addr:"delfintour.sk%2fctis.ndmi%2fmedia%2fkeypad-backspace.png"){kind=link}
![URL delfintour.sk/ctis.ndmi/media/sprite-icons-bar-status_2019.png](/search?q=http.url.addr:"delfintour.sk%2fctis.ndmi%2fmedia%2fsprite-icons-bar-status_2019.png"){kind=link}
![URL img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg](/search?q=http.url.addr:"img-getpocket.cdn.mozilla.net%2f296x148%2ffilters%3aformat%28jpeg%29%3aquality%2860%29%3ano_upscale%28%29%3astrip_exif%28%29%2fhttps%253A%252F%252Fs3.amazonaws.com%252Fpocket-curatedcorpusapi-prod-images%252F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg"){kind=link}
![URL img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg](/search?q=http.url.addr:"img-getpocket.cdn.mozilla.net%2f296x148%2ffilters%3aformat%28jpeg%29%3aquality%2860%29%3ano_upscale%28%29%3astrip_exif%28%29%2fhttps%253A%252F%252Fs3.amazonaws.com%252Fpocket-curatedcorpusapi-prod-images%252Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg"){kind=link}
![URL img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg](/search?q=http.url.addr:"img-getpocket.cdn.mozilla.net%2f296x148%2ffilters%3aformat%28jpeg%29%3aquality%2860%29%3ano_upscale%28%29%3astrip_exif%28%29%2fhttps%253A%252F%252Fs3.amazonaws.com%252Fpocket-curatedcorpusapi-prod-images%252F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg"){kind=link}
![URL img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg](/search?q=http.url.addr:"img-getpocket.cdn.mozilla.net%2f296x148%2ffilters%3aformat%28jpeg%29%3aquality%2860%29%3ano_upscale%28%29%3astrip_exif%28%29%2fhttps%253A%252F%252Fs3.amazonaws.com%252Fpocket-curatedcorpusapi-prod-images%252F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg"){kind=link}
![URL img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg](/search?q=http.url.addr:"img-getpocket.cdn.mozilla.net%2f296x148%2ffilters%3aformat%28jpeg%29%3aquality%2860%29%3ano_upscale%28%29%3astrip_exif%28%29%2fhttps%253A%252F%252Fs3.amazonaws.com%252Fpocket-curatedcorpusapi-prod-images%252F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg"){kind=link}
![URL img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg](/search?q=http.url.addr:"img-getpocket.cdn.mozilla.net%2f296x148%2ffilters%3aformat%28jpeg%29%3aquality%2860%29%3ano_upscale%28%29%3astrip_exif%28%29%2fhttps%253A%252F%252Fs3.amazonaws.com%252Fpocket-curatedcorpusapi-prod-images%252F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg"){kind=link}