Report - med-dynamics.pl/

Report Overview

Submitted URL
med-dynamics.pl/
IP
172.67.162.109
ASN
#13335 CLOUDFLARENET
Submitted
2023-01-18 22:03:10
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
14

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	796 B	93.184.220.29
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	411 B	1.7 kB	142.250.74.106
med-dynamics.pl	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.8 kB	130 kB	172.67.162.109
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.1 kB	142.250.74.131
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.163.162.54
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.33.119.27
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
fuckablelovers.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	2.2 kB	185.162.11.197
fourth-4-cdn.com	173683	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	339 kB	159.69.46.22
example.org	2333	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	416 B	1.6 kB	93.184.216.34
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	66 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	406 B	31 kB	69.16.175.42
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	509 B	14 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-18	medium	med-dynamics.pl/	Phishing
2023-01-18	medium	med-dynamics.pl/templates/up-front-wp/wp-includes/js/jquery/jquery-migrate.min.js	Phishing
2023-01-18	medium	med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/respond.js	Phishing
2023-01-18	medium	med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/html5shiv.js	Phishing
2023-01-18	medium	med-dynamics.pl/templates/up-front-wp/wp-includes/js/jquery/jquery.js	Phishing
2023-01-18	medium	med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/holder.min.js	Phishing
2023-01-18	medium	med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/ie10-viewport-bug-workaround.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (31)

	URL	Size	First Seen	Last Seen
	med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/respond.js	10 kB	2023-03-07	2024-03-30
Pretty URL med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/respond.js IP 172.67.162.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:22:27 Last Seen2024-03-30 01:01:54 Times Seen106 Hash e759f50ab6ea901f26e306ecb203b772 4131f36460505f79244aacfe5901a0766360e8ba 2b3a2c8c64cb04fc366c855d46ef267322625b4e62ccbe17bdd66d79a7296ec6 Loading...

	med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/html5shiv.js	10 kB	2023-03-07	2023-12-04
Pretty URL med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/html5shiv.js IP 172.67.162.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:22:27 Last Seen2023-12-04 11:20:11 Times Seen33 Hash ee68da404bd6cbdab3adb3bf9219c207 d0a2038de8fc6b10dc3a3118e31a9855e61f1516 e527c316f63131331133a83355be80be8dcd0b512b0b6e1271cdb08d66364f84 Loading...

	med-dynamics.pl/	310 B	2023-03-13	2023-03-13
Pretty URL med-dynamics.pl/ IP 172.67.162.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:34:37 Last Seen2023-03-13 02:34:37 Times Seen1 Hash 65f62a6bd99775dd5c78b849214b7685 953978bed089831fd899821b15b670ac4e76028c 35e8ea0eac3dcc23c1d6f7c3cef7d947ce4215c4daa1fd83697970b0bf7c3ea0 Loading...

	code.jquery.com/jquery-3.3.1.min.js	87 kB	2023-03-07	2024-04-19
Pretty URL code.jquery.com/jquery-3.3.1.min.js IP 69.16.175.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 05:44:28 Times Seen105214 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	fuckablelovers.com/?utm_source=6RIEo4IQRGfl&utm_content=68-1408-202301190102556f51a2a5&utm_campaign=testpl20&utm_term=68	2.6 kB	2023-03-07	2024-03-15
Pretty URL fuckablelovers.com/?utm_source=6RIEo4IQRGfl&utm_content=68-1408-202301190102556f51a2a5&utm_campaign=testpl20&utm_term=68 IP 185.162.11.197 ASN #207728 EUROHOSTER Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:22:51 Last Seen2024-03-15 15:16:31 Times Seen27 Hash 64dea6e5fdf1b1f7715ee5928ba6ec0f 0064ea1ac0bfd7c8089112193fad422e8c8895ae 12e117de120a4d9336d506c5a1aebc1c20dbcde1f21fef18799e5c93e545fa5d Loading...

	fuckablelovers.com/?utm_source=6RIEo4IQRGfl&utm_content=68-1408-202301190102556f51a2a5&utm_campaign=testpl20&utm_term=68	246 B	2023-03-13	2023-03-13
Pretty URL fuckablelovers.com/?utm_source=6RIEo4IQRGfl&utm_content=68-1408-202301190102556f51a2a5&utm_campaign=testpl20&utm_term=68 IP 185.162.11.197 ASN #207728 EUROHOSTER Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:34:37 Last Seen2023-03-13 02:34:37 Times Seen1 Hash 1052605c860bb6ea8fd609d0d00831fb 8e1f788bdd424ff4d26e9e32e805fc048098ce3e eac69d752ef2d3742dc6568ac70e6b47bbd0b2d96605e23acf09542b72d34abf Loading...

	fourth-4-cdn.com/assets/f.js	1.7 kB	2023-03-07	2023-10-31
Pretty URL fourth-4-cdn.com/assets/f.js IP 159.69.46.22 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen621 Hash a24a01d7c840115d8957289ec65da34f efca55f9df9a38ecad17c36a9108cab6017b5cfd 4e683e575ca035ef147ae2b8984c2dcf1b885abc8f2e966db2e8c25b86cbb9e9 Loading...

	med-dynamics.pl/	1.9 kB	2023-03-13	2023-03-13
Pretty URL med-dynamics.pl/ IP 172.67.162.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:34:37 Last Seen2023-03-13 02:34:37 Times Seen1 Hash 5e82df397fc3ef9a902699781ea21da1 cb44b1ad4ecb94a12d7cf506a01994d4a51337de de4ebc127666066f3dc4b08662e2bb1e28ab50bd99c4cf96039bc217be78fb3f Loading...

	med-dynamics.pl/templates/up-front-wp/wp-includes/js/jquery/jquery.js	97 kB	2023-03-07	2023-11-20
Pretty URL med-dynamics.pl/templates/up-front-wp/wp-includes/js/jquery/jquery.js IP 172.67.162.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:22:27 Last Seen2023-11-20 21:56:41 Times Seen3 Hash ce8db5ce8852103466ad0f44e366445e e165f598c4b3124c743ce06e9da844cdf20d8827 7f14a9e4104660a801315454cb718263bf0740da033172270514664858fb8f1f Loading...

	med-dynamics.pl/	149 B	2023-03-13	2023-03-13
Pretty URL med-dynamics.pl/ IP 172.67.162.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:34:37 Last Seen2023-03-13 02:34:37 Times Seen1 Hash 4364654ef7723e9dcbf7fcdec1c649da 72305828db629b1106c9d9e4c5627d8a3813b0ed 4f70cbc2d66b195b9e83a729368f6ccf338c4813350ffa629d62655b10ba8ad0 Loading...

	fuckablelovers.com/p.js?a=1811289&cr=54210&lid=3911&mh=bHJVTHNwRXlVT09FYXVSbFJpcWFSYUJtZVJLQkxvaW9rcGZqZS0zNTk4NQ%3D%3D&mmid=2365&p=0&rf=&rn=zc4ZnJeUys4WmdeVEhG&t=testpl20	447 B	2023-03-13	2023-03-13
Pretty URL fuckablelovers.com/p.js?a=1811289&cr=54210&lid=3911&mh=bHJVTHNwRXlVT09FYXVSbFJpcWFSYUJtZVJLQkxvaW9rcGZqZS0zNTk4NQ%3D%3D&mmid=2365&p=0&rf=&rn=zc4ZnJeUys4WmdeVEhG&t=testpl20 IP 185.162.11.197 ASN #207728 EUROHOSTER Ltd. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:34:37 Last Seen2023-03-13 02:34:37 Times Seen1 Hash 760839672ce8d79695f706b5fcc06275 a1abcc63f4666231b11218623881ac54e1afaba1 3772732b465d7ac1c35cc281fb9b209de155e8c98900012d0c1043ec7084be1c Loading...

	med-dynamics.pl/templates/up-front-wp/wp-includes/js/jquery/jquery-migrate.min.js	9.6 kB	2023-03-07	2023-11-20
Pretty URL med-dynamics.pl/templates/up-front-wp/wp-includes/js/jquery/jquery-migrate.min.js IP 172.67.162.109 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:49 Last Seen2023-11-20 21:56:41 Times Seen38 Hash e489bd9969f80e9ba1ca4737179884fe ff448b2771742c4477aee675f3cda56c0320a5f2 f6412288a06f5b354674ebf8b3b1c732f40567f536bed66d859ddf69a0ace4ff Loading...

		Size	First Seen	Last Seen
	#1 Eval - 865d60fbd2123a5ca105dc8c39b68bc4	34 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen544 Hash 865d60fbd2123a5ca105dc8c39b68bc4 9a19e72987ca0b94195993eccdead217380422f5 1793bf3a5d4ab2080846499c0d7bf8b754b9a0f515ae7685f09ab7b6f0e743a2 Loading...

	#2 Eval - 0f125b86a1e89e966e13b42ab42efdb7	158 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen546 Hash 0f125b86a1e89e966e13b42ab42efdb7 6d24eeaf8ccfc3965e9e5f04fbf0fa9ec159e424 5fd2b7ac06f14aa445293ae600a6650f7a44e5f0b1e100e2b864221aee71fd26 Loading...

	#3 Eval - 3bb9e008d3a2239b92ee3b74c0aaa3d2	90 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen545 Hash 3bb9e008d3a2239b92ee3b74c0aaa3d2 52c4f08d77fd5a0dca86f7b7a408166d9407beb7 6c62e1035d91781258fef8d30617f55b5692ba56617087082c68069ddd95b168 Loading...

	#4 Eval - eeef57cc74dc2a3101f022b9802d26fc	44 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen545 Hash eeef57cc74dc2a3101f022b9802d26fc 32d6278eac4421b481acd319c236d8b6d2ce6c4b ef0cec074a1308361ef6b1a50fb53163d7dea6f35bfa7eaaa33d6f5cd853b4ba Loading...

	#5 Eval - dce26ae5191bbe3a22c0a2a1b20e7e71	33 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen545 Hash dce26ae5191bbe3a22c0a2a1b20e7e71 99fe80c51ce124916e3f453f562460ccc04f3824 f543f9b1beb8bb051d13da0f873ab6801661e63d8b16b88b1af69ff098fb07c6 Loading...

	#6 Eval - bdc221ed285dedd238295fd407d433e9	42 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen546 Hash bdc221ed285dedd238295fd407d433e9 6f44ea6c80c3756e40deb7c766dca37d76f06845 420ef951a9f49fcb514fde5a2d4bd07a98cf609fba23fcdc2fc660cb2cb10524 Loading...

	#7 Eval - e32ea645145fac83f4de1b47ff2a6d87	36 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen546 Hash e32ea645145fac83f4de1b47ff2a6d87 da42bb18a15c753cadea6c6589b133a363f79137 01c41e932bc9a6e9718861f97ad6fdb35bd4f2b699d11c479abb9788c1d52958 Loading...

	#8 Eval - 88f36eaa0f311923c0db116bf093330a	37 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen546 Hash 88f36eaa0f311923c0db116bf093330a a79facb2776d2cd1a1549ed35bbd4cc542e9bcda 92a69774ed25091a7d27f3692984ca2cf78cea3e730543b9d3a867ca3701fc5d Loading...

	#9 Eval - 035ce6a4e41ed43dc7975db08a853786	67 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen546 Hash 035ce6a4e41ed43dc7975db08a853786 922ebd78ad50c418b19aa21bc25a5796f96f7840 361a831d09ef76b907d6a416524915baec50c238905852e548fe0f2221a4620a Loading...

	#10 Eval - 2d2e18b27b534a54ae1f01421caccee7	24 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen546 Hash 2d2e18b27b534a54ae1f01421caccee7 051dc4e800f7474aa2992cd459ebe917086245a8 2daeb3ad53fdaffdb2055a20bab28c77ea1cc1111862db83ac5e074d63a3e381 Loading...

	#11 Eval - 4f0a1a87226ecdd35d0a017c04b462f9	38 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen546 Hash 4f0a1a87226ecdd35d0a017c04b462f9 4af7433c382b11a86845102de606dee7ee376c84 fe43b3c21a3b344dc633abee619610ebdbb8f1467c8a3ed3874c7c81f2ef5a86 Loading...

	#12 Eval - 39f66d094425a187ca0219efd1023cc9	142 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen546 Hash 39f66d094425a187ca0219efd1023cc9 866a5849a522dc3b29ca4b921b1afdae6cb746be 7c22b44f3ca365ec28b11ce4432231eea6de7569658bded3ac6c7b8644c51fd2 Loading...

	#13 Eval - 331169286f9999918c4a5dcaeb7e11a6	92 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen546 Hash 331169286f9999918c4a5dcaeb7e11a6 c971bded19e8bb062c43c212b14660a3ccb2b07f acb4db590b2797dcc50197ea1bad6bdfa76883bff09fd8ea23f0f21ae1fa0b60 Loading...

	#14 Eval - d7f9f551281c283a0c8ecdc22ccccc26	51 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen546 Hash d7f9f551281c283a0c8ecdc22ccccc26 960c95d3c6ae5091b9ea38bfeae93a511361a170 3906813149363f1ecb7fe2c95126d12999e7ddd966cfb00a50e446ea4423818a Loading...

	#15 Eval - a850fe1eb0542ada96adcbabbbfc02c6	28 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen546 Hash a850fe1eb0542ada96adcbabbbfc02c6 49f8702f4f1d0e791da84a5cb67b6d81999bb353 a4f48a08d01416c2784a28ba62c656e9e732761d75534f41f69892d61280fc6a Loading...

	#16 Eval - 136c205e0fcceb2b9d317bf3b2fe5212	73 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen546 Hash 136c205e0fcceb2b9d317bf3b2fe5212 2fc3b8b8bed2e7092a1cc7394441d96ab73377c1 4339a0c1f2bef4619c2d2f4f3c90d08e012bcf418288c88da1ac89faccf36ec9 Loading...

	#17 Eval - b11f88985a335e9bdcc0c7eeaa6648c9	25 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen546 Hash b11f88985a335e9bdcc0c7eeaa6648c9 7e35d81cbfb118763c7188a048ef625d1322b2ab c0fee6b934b08df7fd5858201cc0c4127a85dc7d0c8fd8eb83d58cfcc1cac18a Loading...

	#18 Eval - 353c097c4bc1cb8981c446327f0b6ff2	57 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen546 Hash 353c097c4bc1cb8981c446327f0b6ff2 7f3ffb28300633b2abaf93476f2ab1b0c0f1f4a7 93afe750f893331c7709e79b3b40b7122d4119cde3263346bdd3ad822216c2d7 Loading...

	#19 Eval - d554ac78aba7d227f20712dc0c274df0	37 B	2023-03-07	2023-10-31
Pretty Observations First Seen2023-03-07 12:03:02 Last Seen2023-10-31 07:28:58 Times Seen546 Hash d554ac78aba7d227f20712dc0c274df0 751a686c43fbe5b21f7a9427e1ad7cff97a2aefc 2d6f98223aee606d4b6ff2b57a1c847225406aa1380becd205bb685b3adf5871 Loading...

HTTP Transactions (54)

URL IP Response Size

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
37284a837312d6586460a3b86bbe7bd0
6ac0847abd48eb8607597218aaa2cb2d434c012b
6a0e11bb042555d72b397ae0cc3d5e242d3a3fe04418e28ffd222decca7d16ca

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A0E11BB042555D72B397AE0CC3D5E242D3A3FE04418E28FFD222DECCA7D16CA"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10398
Expires: Thu, 19 Jan 2023 00:56:16 GMT
Date: Wed, 18 Jan 2023 22:02:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cc07d664b5dadee6f9120d54904dfa57
df75a55b0b2019684a6c512bee528c51a2c4a756
14a1bd6315a3256468edafedfd1c02a6ba147914c0f01e8504e7d8cc67781c34

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14A1BD6315A3256468EDAFEDFD1C02A6BA147914C0F01E8504E7D8CC67781C34"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7174
Expires: Thu, 19 Jan 2023 00:02:33 GMT
Date: Wed, 18 Jan 2023 22:02:59 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6c8239f3894cfba54d1f3a9ea1c85db5
a70f2b3bf79f2aa26b0cc0340dd182565c3eb946
64dc0508d3fcea1ec92fb60310e9b3f5454c0b69f61e8453fd443bc46ab9471b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64DC0508D3FCEA1EC92FB60310E9B3F5454C0B69F61E8453FD443BC46AB9471B"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6176
Expires: Wed, 18 Jan 2023 23:45:55 GMT
Date: Wed, 18 Jan 2023 22:02:59 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 18 Jan 2023 21:34:28 GMT
content-type: application/json
age: 1711
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: i0Bzj22RrcKDpW2LEBeVkjja6rrOvQaS+624+TwL6oPsZ4s0D7Gb3OeMfhrvqvaE4G5MDGFvbRI=
x-amz-request-id: G3W6X05CW402SQ7D
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 18 Jan 2023 21:56:50 GMT
age: 369
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

med-dynamics.pl/

172.67.162.109

200 OK

12 kB

URL HTTP/1.1
med-dynamics.pl/
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, Unicode text, UTF-8 text, with very long lines (10340)
Size
12 kB (12078 bytes)
Hash
a38927f1b908788716a3b877c8c7ab15
15e697fa2c5c3a54f8253d86c3fe84f5c3ebd639
a2d0910f4a7ce6ab07dd68e68d92c7105369fcdd2424eb187f9262b6493772a5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.4.20
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gi3ewvfhrWaAcyLvudJk7Fvq4xLjFySOvp6SX%2FCZeLEm%2Bdcazm%2FB6GwojPCE2cgxVl58azqn57OqELljcGbtVRRiBOi6dkkVQkKMxC2td3rw1aI0Yq9c8zfRQxxthTFSMbM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e359881b50c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:02:59 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/blog.css

172.67.162.109

200 OK

1.3 kB

URL HTTP/1.1
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/blog.css
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
1.3 kB (1296 bytes)
Hash
82919c1042ba408c82a4b9dfec2ce363
c2c36170fe6d671f327cb1c28e30e6ea2e7c7dd6
06461ca9489fa83b256a9b01f1662161ed07c610e5b3efb3da4dc014489e8de6

HTTP Headers

GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/blog.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:36:25 GMT
Vary: Accept-Encoding
ETag: W/"5b9fc9f9-112c"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fVKzcyyPwJdrzzSDJW83bC9qXGMgYZbtnH0DgrXrlLGIBjlWphtqG5YQ6qtoonngiOxQswqFCtWgVvFHsmyQN9RDbkCT7eS2sz3%2FpJ3PRoZZu2oRmQsS1Dk9AUNzsqxybds%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e380c6db50c-OSL
alt-svc: h2=":443"; ma=60

med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/queries.css

172.67.162.109

200 OK

663 B

URL HTTP/1.1
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/queries.css
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with CRLF line terminators
Size
663 B (663 bytes)
Hash
df063c829d87ecb183ba08ca23440c7c
e1895eacf96200486d7b5b8b226a10da61cddba5
41e8ffaa8a2c35271df31c3302e6ee8e580f04cc33d0ff4fad5559188e524387

HTTP Headers

GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/queries.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:37:05 GMT
Vary: Accept-Encoding
ETag: W/"5b9fca21-7ac"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gOoWOVq%2Fx8LvwDK%2FvuN9Y33TaoDshVUVX4HM634egI8Ks6f%2Bdf1sAjxMF6lEvYQIYkPPQ4aKZsOFKad1hJpOFl7mLCczSVTQtjnO2edR6JBmUKstsWKjuqRCMbFzJqvdPhg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e3819c4b503-OSL
alt-svc: h2=":443"; ma=60

med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/sintony.css

172.67.162.109

200 OK

242 B

URL HTTP/1.1
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/sintony.css
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
242 B (242 bytes)
Hash
e147f1157bea280d69bfa4dcac35b388
e3f583d73efec4eddf25f5ddbbb8b0e33556a40c
381df771628f4d39ad316962876a2a3a430eabcdb84512b4e8dc1078b72e61d8

HTTP Headers

GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/sintony.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:37:11 GMT
ETag: W/"5b9fca27-1b7"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sjylP447al6eRfMdIcc7MhjEF4%2F4I2Xwd3kgeINdHfIGMWNFMS53k4yzY%2Fkgkve%2BAdueSvMLRSs66%2BuonheOhkInkSkaIddrn7FWRavdDnfG8LgrwCEQzOy74sqzNg6thWs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ba9e381bbc0afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/open-sans.css

172.67.162.109

200 OK

301 B

URL HTTP/1.1
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/open-sans.css
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
301 B (301 bytes)
Hash
b928fcd10aefda02796abc0d267c24a7
63c2ee4c56868eeb089dfeb8efac010a4d98fade
5e5ff4be1d607b2988ac82f307e27170d0ab9744008090f2f8a1ae04683a0d24

HTTP Headers

GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/open-sans.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:36:54 GMT
ETag: W/"5b9fca16-2ef"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NcEzRDGP40gVqCfug1atZkE16gwtl9wiNPEWVrmaYyY4Eu59DQeEBkeSfQjzOThODpb9iwoMvXHwfjkTPEaGeQzc8dxpprbBqFPj7k1lw69oT1Riu0ALXM2e7ULpO2IFJAY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ba9e381b06b4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/font-awesome.css

172.67.162.109

200 OK

6.0 kB

URL HTTP/1.1
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/font-awesome.css
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
troff or preprocessor input, ASCII text, with very long lines (306)
Size
6.0 kB (5995 bytes)
Hash
584d0fd05cdded369dcfab01398abe8b
ab06d729b620c72f424627ac87ad721d73eaedd8
4e9b3d46f48d094a75b9fc4c38cf4f897b701a47d566cb027bbcc6945e023011

HTTP Headers

GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/font-awesome.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:47:07 GMT
Vary: Accept-Encoding
ETag: W/"5b9fcc7b-681c"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5PgUBbx3MMzaQRWZ%2FulamxWrf9PLePQ4wvR7n240TsITWzLzowskl2v6Ez9FZvBfM9sIPDf%2FhyyfhAMq6zO%2BANQI2oyCbTR90eX4gTwEkOGeehullhx2OL4Z4PsOZWx9HKw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e381ab10b41-OSL
alt-svc: h2=":443"; ma=60

med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/bootstrap.css

172.67.162.109

200 OK

26 kB

URL HTTP/1.1
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/bootstrap.css
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (540), with CRLF line terminators
Size
26 kB (25610 bytes)
Hash
76de40f69f6480477186ec706a89ffba
dc07cb8b2970b90c207c1a742864af5623a5f5c4
1dc6eec77aa2f0086b135bda7f1b0fefe76859b5ada73b325d89ca63fc5268f8

HTTP Headers

GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/bootstrap.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:49:41 GMT
Vary: Accept-Encoding
ETag: W/"5b9fcd15-20b00"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LT5DM7Y32whHkEHfWNW%2BEx3JQieMQv8goluZRIioxH9roPjXYgLs33R7oRMuHB5aRYkPuIZHjP11h5nzgwhdHRjREK%2BC9t3htn9rsuUMmf2UBbXUnxoZ3%2FkBYrJrRCDLVbU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e381d380b4d-OSL
alt-svc: h2=":443"; ma=60

med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/styles.css

172.67.162.109

200 OK

5.6 kB

URL HTTP/1.1
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/styles.css
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
5.6 kB (5594 bytes)
Hash
b05b3a94d849d99b83af114c7e04d6fd
294be4dfe686d2cf1178639de1c56891a3164f25
d2fe4aded177d697b717d707dbcda2f1d14204656b1595f53f004126a105dbaa

HTTP Headers

GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/styles.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 26 Sep 2020 16:02:33 GMT
Vary: Accept-Encoding
ETag: W/"5f6f6619-501a"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AQHVBmGbrVxJ2%2Bjrgl6U05TMs4XHk9kCiN%2B%2FUnPr0nioKMT0Em0%2BJgdlW11jHrA7m46Pb0dp3Q4bmF2PpQ2SQu0uOeLx1cp5mtXB8t8hL%2F0X0I%2BlfkZpf%2BvcplcIi1HSTpE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e38ad1fb50c-OSL
alt-svc: h2=":443"; ma=60

med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/ie10-viewport-bug-workaround.css

172.67.162.109

200 OK

279 B

URL HTTP/1.1
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/ie10-viewport-bug-workaround.css
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
279 B (279 bytes)
Hash
c3c2d3a9096632825cc5597066e2dcee
12c73c0a6196610edf6215b1125ed127b0d88f00
a7c154229a046fb23bf6cb8f39541728c3078b6c9b60b9be020c0cd5430994c4

HTTP Headers

GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/ie10-viewport-bug-workaround.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:37:25 GMT
ETag: W/"5b9fca35-1b1"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0hA8uYtdiiOHrb2KwRkdzC%2FwsNY%2FNTGKRkEbRz6koszZknNMtxeBw80Oqi5rNHF8t3MOeCIeNEqn0ADR33DhavycpnqagVWnVzDOqoBKzEAN3UkIerx5in%2BJQs9ZRwMn0X4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ba9e38baa7b503-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

med-dynamics.pl/templates/up-front-wp/wp-includes/js/jquery/jquery-migrate.min.js

172.67.162.109

200 OK

4.2 kB

URL HTTP/1.1
med-dynamics.pl/templates/up-front-wp/wp-includes/js/jquery/jquery-migrate.min.js
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (9535)
Size
4.2 kB (4156 bytes)
Hash
7e146a486973f247bcf8638bcd3267a5
36654235b969f9590067e76739cf7da8b57fe9dc
26588fffa1a9c9aed6d155889008960f2eebef5fc71b9cd6d07bde4cb576121d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /templates/up-front-wp/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 06 Jan 2018 16:14:21 GMT
Vary: Accept-Encoding
ETag: W/"5a50f5dd-25a1"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2JfmIsSS6FDEIhHM2U99C%2FwTHmKiA7jAOl%2FBLVwpRVVnxuKum35EGZ2wK%2Bln4FcoAuQVPYH5TVDvIz0yVUsOa9SC4eiiPeGvIgURMRgJqqJkIVD2krx10KEyGvY57GCPFVI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e38eb820b41-OSL
alt-svc: h2=":443"; ma=60

med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/respond.js

172.67.162.109

200 OK

4.3 kB

URL HTTP/1.1
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/respond.js
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
4.3 kB (4274 bytes)
Hash
466e7869c765c998545761dce428ada7
8191fb17f92f6ecfc85b54077016f45d47e6b084
a4fe8d30c0e6f6c2b1533eaf6c08ba6676f28b0fcde07163be5869c5e2c45c02

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /templates/up-front-wp/wp-content/themes/up-front-wp/js/respond.js HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 06 Jan 2018 16:14:18 GMT
Vary: Accept-Encoding
ETag: W/"5a50f5da-27b4"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=47jfZ%2FrKv3onpp%2F%2F49AiPLFwd51cuV2uXqGQa7YeXmflcZBVups2AysxDrwR%2BeXxHu8VHtEa2q56b2%2FdpMP%2BdgG1GPZu4qf6UcSPuzaaYI7gDMaSIBvDy0QZjtfTaKLx7cQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e393ddbb50c-OSL
alt-svc: h2=":443"; ma=60

med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/style.css

172.67.162.109

200 OK

1.4 kB

URL HTTP/1.1
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/style.css
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with CRLF line terminators
Size
1.4 kB (1364 bytes)
Hash
915342d5a3589432409e40fc889cd36e
052452cc92b0c3c52a96e529f81f8ca8a68af9a3
87aff8fa34f4208a02a53a1ad3b0173f1fcf3897626f7210975769495e41c0e4

HTTP Headers

GET /templates/up-front-wp/wp-content/themes/up-front-wp/style.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:37:42 GMT
Vary: Accept-Encoding
ETag: W/"5b9fca46-ca8"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BMn0lYoWDBPzIgKdb8jQOSiasa6O3oH%2F0%2F%2FqhdTZhAtAN0W5Dy%2BL85zDHUMGaPAsWyenzazruwMYa%2FMdLM32ubWuI1%2F6smrKT3O%2BpLYI1aCFTqW%2BCUovfF8Ld2o5WK0qlY4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e38dc910afe-OSL
alt-svc: h2=":443"; ma=60

med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/html5shiv.js

172.67.162.109

200 OK

3.5 kB

URL HTTP/1.1
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/html5shiv.js
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
HTML document, ASCII text
Size
3.5 kB (3494 bytes)
Hash
5c52f9d42b52b9c96767949746ed5ab0
2b151865c7b4d1161a66209eecfd15c898458658
ed476b836b704df572195de9a073bec8507dfa7af06cdde4d1edf79a1f7819ff

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /templates/up-front-wp/wp-content/themes/up-front-wp/js/html5shiv.js HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 06 Jan 2018 16:14:17 GMT
Vary: Accept-Encoding
ETag: W/"5a50f5d9-27cd"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kx2LafaoFN7o9p6X9d%2B5i%2BXeFNeKdcpduqsdVeGjsRFqOYR7srUhlBzrr3lMrjNyYqMXCCt3VUEHrML30a8l6X5IfRHP5YyLTmIuHAEZzFMZiqrhWnBDwqDdSF3M%2BNo1lsU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e38fe130b4d-OSL
alt-svc: h2=":443"; ma=60

med-dynamics.pl/templates/up-front-wp/wp-includes/js/jquery/jquery.js

172.67.162.109

200 OK

40 kB

URL HTTP/1.1
med-dynamics.pl/templates/up-front-wp/wp-includes/js/jquery/jquery.js
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (32028)
Size
40 kB (39476 bytes)
Hash
85d1e7bbe3ca374c280bff2fc6f1b7bc
2f452dd1de43b3c85615ff755ab6fc1b43abf9df
2e8c6d33aa523e9cada44e4c35335c2dfecde0b491d544b7570463b79005e75a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /templates/up-front-wp/wp-includes/js/jquery/jquery.js HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 06 Jan 2018 16:14:22 GMT
Vary: Accept-Encoding
ETag: W/"5a50f5de-17bab"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ceWUY6%2B7oE5t92cFySoixJOwS%2BQDliaEEaWD3lmeRnSeFUIel99ieJ8uk%2BG%2FbkPi3IOP49PJvp%2BAkUG1Iy%2Fxi6gFT0q1DVNrPKJ4sm436RIBi6hU%2FbjTGHhQmkJVzJGVqDU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e38ec3cb4ff-OSL
alt-svc: h2=":443"; ma=60

med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/holder.min.js

172.67.162.109

200 OK

13 kB

URL HTTP/1.1
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/holder.min.js
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (32011)
Size
13 kB (13068 bytes)
Hash
6fbbe84c7570859e2cf70a20f9f1e898
d75fb3e5fbbc54934e31d8a4ad8d34d0209770fe
cec8235a4dbb9c7654761aba9ab0c070ec2908ffc7b23767c79813f169774e98

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /templates/up-front-wp/wp-content/themes/up-front-wp/js/holder.min.js HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 06 Jan 2018 16:14:17 GMT
Vary: Accept-Encoding
ETag: W/"5a50f5d9-7e1b"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p3Si6okVgrtHoFfaiq7HJcHgtOd6YojK6hJxZOqkZvPjjTPrR3mARRxvQW4g7PX%2BHrBUt%2BtQoCc9UZRvnbGn4%2FO%2FQJBzp2Chh7EA3bCU%2Bz5dYLcRg6ryKo0FKoDMueaTySI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e397bd9b503-OSL
alt-svc: h2=":443"; ma=60

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 18 Jan 2023 21:17:25 GMT
age: 2734
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/ie10-viewport-bug-workaround.js

172.67.162.109

200 OK

424 B

URL HTTP/1.1
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/ie10-viewport-bug-workaround.js
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
424 B (424 bytes)
Hash
03985dd7dbd89dc05815e24164ab11f8
041eaa40f19e56a4a02aabb1624ac1fbe6df2a96
72e34699c5c5e5a0a40042977d00332a4e19d01ff67c41277673a86e5e46f2cf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /templates/up-front-wp/wp-content/themes/up-front-wp/js/ie10-viewport-bug-workaround.js HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 06 Jan 2018 16:14:18 GMT
ETag: W/"5a50f5da-281"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZgxFd6PPLSb9UAQjHS3NGsbJBro8Amgey3aejjGiRnY6qcG0bA6utUyn9OhyVr6xsFsOXhvVZI6li11idFSpH8ITt5ANeC7jguWgzQ6NDP6%2BU%2FY37%2BOaXSLU4d%2FiLO%2F1ICo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ba9e399e4eb50c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

med-dynamics.pl/favicon.ico

172.67.162.109

404 Not Found

20 B

URL HTTP/1.1
med-dynamics.pl/favicon.ico
IP
172.67.162.109:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/

HTTP/1.1 404 Not Found
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.20
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=od9aUa5AomicDFeexC%2BDRLfy6ekOzDKayijl7SxHQmRu%2FHeOx7fX45pMf7VM7UkmRuXEQB3HiiU35GUqz1K5GMZiVgD5u0WLLFjfSXiQFETm%2FB6j%2BAd6%2BjQOiaB9TbqJPEM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ba9e3b1db7b503-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
79af32d8e279b4cfec147ab51cb6fcb3
d726903292bd1e08a6d9fe0719d2cd5b33dc5fe6
bfcb2d8f14d89736ac6b771f1618a8fc5e707691d60807a574fb719c8e9393ab

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 504
Cache-Control: max-age=126733
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 22:02:59 GMT
Etag: "63c7b6a8-1d7"
Expires: Fri, 20 Jan 2023 09:15:12 GMT
Last-Modified: Wed, 18 Jan 2023 09:06:48 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

code.jquery.com/jquery-3.3.1.min.js

69.16.175.42

200 OK

30 kB

URL HTTP/2
code.jquery.com/jquery-3.3.1.min.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65451)
Size
30 kB (30288 bytes)
Hash
d549b312f7a7d228b4ec229a6547dfdc
0766794582ad530ec0f8c2595f741086afffa312
f6488b2915e0ceee723f4320492511d46c6ba1860d5975d085e6da8913f55f44

HTTP Headers

GET /jquery-3.3.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fuckablelovers.com
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 18 Jan 2023 22:02:59 GMT
content-encoding: gzip
content-length: 30288
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-1538f"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-sp-metadata: HS256.CKP1oZ4GEocBCiQ3NDU2OTA4Ny0yNzA4LTQyNGMtYWY0ZS05MWEwNWNmNmRlMDQQ+OiCoKvU+wIaBgiT2aGeBiIMOTEuOTAuNDIuMTU0KJKuAzADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GiwIARIkYjU2MGM0OWEtOGM1ZS00ZDkxLWEwNzQtMDY4YWQwN2M4ZmJjGNDsASIYCAISFGNkczI0MC5zazEuaHdjZG4ubmV0.iDFDqy410S3sWOeeA3nmmsxyO9GmUbbV7pD4jwf5OAE=
x-hw: 1674079379.dop220.sk1.t,1674079379.cds262.sk1.hn,1674079379.cds240.sk1.c
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
607bf9684e4803d817fdd1120427dcdd
886fa77396c792751868f05806793937a4f11be6
d17df5470015b9c3be3fc1e9c8fa5f2b732231eed453b689e94897f6f1da3911

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 22:02:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fuckablelovers.com/p.js?a=1811289&cr=54210&lid=3911&mh=bHJVTHNwRXlVT09FYXVSbFJpcWFSYUJtZVJLQkxvaW9rcGZqZS0zNTk4NQ%3D%3D&mmid=2365&p=0&rf=&rn=zc4ZnJeUys4WmdeVEhG&t=testpl20

185.162.11.197

200 OK

447 B

URL HTTP/2
fuckablelovers.com/p.js?a=1811289&cr=54210&lid=3911&mh=bHJVTHNwRXlVT09FYXVSbFJpcWFSYUJtZVJLQkxvaW9rcGZqZS0zNTk4NQ%3D%3D&mmid=2365&p=0&rf=&rn=zc4ZnJeUys4WmdeVEhG&t=testpl20
IP
185.162.11.197:0
ASN
#207728 EUROHOSTER Ltd.

File type
ASCII text
Size
447 B (447 bytes)
Hash
760839672ce8d79695f706b5fcc06275
a1abcc63f4666231b11218623881ac54e1afaba1
3772732b465d7ac1c35cc281fb9b209de155e8c98900012d0c1043ec7084be1c

HTTP Headers

GET /p.js?a=1811289&cr=54210&lid=3911&mh=bHJVTHNwRXlVT09FYXVSbFJpcWFSYUJtZVJLQkxvaW9rcGZqZS0zNTk4NQ%3D%3D&mmid=2365&p=0&rf=&rn=zc4ZnJeUys4WmdeVEhG&t=testpl20 HTTP/1.1
Host: fuckablelovers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/?utm_source=6RIEo4IQRGfl&utm_content=68-1408-202301190102556f51a2a5&utm_campaign=testpl20&utm_term=68
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTEwOTE1bQAAAApSSkxZQnFWdlFLbQAAAANoaWRtAAAAJWxyVUxzcEV5VU9PRWF1UmxSaXFhUmFCbWVSS0JMb2lva3BmamVtAAAAAmhsZAADbmlsbQAAAAVzdWJfMW0AAAACNjhtAAAABXN1Yl8ybQAAAB42OC0xNDA4LTIwMjMwMTE5MDEwMjU1NmY1MWEyYTVtAAAAB3RyYWNrZXJtAAAACHRlc3RwbDIwbQAAAAN1bnFtAAAADFZBaG9xV3laYkJ1ag.8DnKkbV1roRNh8_FFS9pYyQgn_7eMZELOz3s1GspmHQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:02:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 447
cache-control: max-age=0, private, must-revalidate
cross-origin-window-policy: deny
set-cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTEwOTE1bQAAAApSSkxZQnFWdlFLbQAAAANoaWRtAAAAJWxyVUxzcEV5VU9PRWF1UmxSaXFhUmFCbWVSS0JMb2lva3BmamVtAAAAAmhsYQFtAAAABXN1Yl8xbQAAAAI2OG0AAAAFc3ViXzJtAAAAHjY4LTE0MDgtMjAyMzAxMTkwMTAyNTU2ZjUxYTJhNW0AAAAHdHJhY2tlcm0AAAAIdGVzdHBsMjBtAAAAA3VucW0AAAAMVkFob3FXeVpiQnVq.ANZEpRbQ-aNGp_nfF1578wIgxQAFbOpk19g9_h3bOao; path=/; expires=Thu, 18 Jan 2024 22:02:59 GMT; max-age=31536000
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Montserrat&subset=latin-ext

142.250.74.106

200 OK

971 B

URL HTTP/2
fonts.googleapis.com/css?family=Montserrat&subset=latin-ext
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
971 B (971 bytes)
Hash
a7a4ce22d7076b299b7befcbad9f790c
b86b1e2d036103f1110543dec7464711eba33111
551bffac29a8fa30c7ea2f1759d26a1b6f56d0af3bcd7132c448114cad2f4a05

HTTP Headers

GET /css?family=Montserrat&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 18 Jan 2023 22:03:00 GMT
date: Wed, 18 Jan 2023 22:03:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db72b0cf36b635e3c0825b954e3f0571
f0f3d97119b058f86553062c835f89b1b283945d
bf6ecaa45a5dbd66d0c657e5f33345ac46bdc94d8cae1274fcaf01c0ff302b97

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 22:03:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

35.163.162.54

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.163.162.54:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BLdjdMpFHoqtULQM4t6BlA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3gzlJGdQpcxZIf6fa/hYGA88nbc=

fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2

216.58.207.227

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Size
13 kB (12708 bytes)
Hash
b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394

HTTP Headers

GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fuckablelovers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 07:46:37 GMT
expires: Fri, 12 Jan 2024 07:46:37 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
age: 569783
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db72b0cf36b635e3c0825b954e3f0571
f0f3d97119b058f86553062c835f89b1b283945d
bf6ecaa45a5dbd66d0c657e5f33345ac46bdc94d8cae1274fcaf01c0ff302b97

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 22:03:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fourth-4-cdn.com/assets/f.js

159.69.46.22

200 OK

863 B

URL HTTP/2
fourth-4-cdn.com/assets/f.js
IP
159.69.46.22:0
ASN
#24940 Hetzner Online GmbH

File type
data
Size
863 B (863 bytes)
Hash
776bb206d5154e17e1aa3b158a533837
52f3112ce7f3f41c0380aa6b0cb3118513b3f068
2e130a86665ce84afdc664b02b22d39b8b14d054d56156fcd6153f1851d0d7d3

HTTP Headers

GET /assets/f.js HTTP/1.1
Host: fourth-4-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 06 Apr 2022 12:56:50 GMT
vary: Accept-Encoding
etag: W/"624d8e12-681"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
content-encoding: gzip
X-Firefox-Spdy: h2

fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m1.jpg

159.69.46.22

200 OK

78 kB

URL HTTP/2
fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m1.jpg
IP
159.69.46.22:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 780x1120, components 3\012- data
Size
78 kB (77741 bytes)
Hash
87d2f3c5fea561e6df9cc94593fe1723
c1455e7cda561c85ee691b4b7731620e3f53b85f
19c573814c76cdda702b11983eaf88df534951837417efc6ccf60a1fda89193f

HTTP Headers

GET /assets/f9340ffec0a33b5754f3f978f877293b/images/m1.jpg HTTP/1.1
Host: fourth-4-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: image/jpeg
content-length: 77741
last-modified: Tue, 28 Dec 2021 08:50:04 GMT
etag: "61cacfbc-12fad"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2

fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/d1.jpg

159.69.46.22

200 OK

56 kB

URL HTTP/2
fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/d1.jpg
IP
159.69.46.22:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 651x956, components 3\012- data
Size
56 kB (55549 bytes)
Hash
ba15f02e63fca7a1981ebf50c2a8a6ca
4777aab75e719ff6b388aa6330f302e9aebc0c47
f22404c0b91377907e55d21d8dbd9708d8f3e6af4c48b6b0e583cd73ce2c5f87

HTTP Headers

GET /assets/f9340ffec0a33b5754f3f978f877293b/images/d1.jpg HTTP/1.1
Host: fourth-4-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: image/jpeg
content-length: 55549
last-modified: Tue, 28 Dec 2021 08:50:04 GMT
etag: "61cacfbc-d8fd"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2

fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m3.jpg

159.69.46.22

200 OK

40 kB

URL HTTP/2
fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m3.jpg
IP
159.69.46.22:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 568x717, components 3\012- data
Size
40 kB (39474 bytes)
Hash
e29f39fc90d55854a6f4aea9f78b5c70
81459c9e9ab2c85662c62ae863fb9bf0a670f06e
178bf8460ed9a56290c0d47dce3918b023d41d4c54538c143655f7641e2472a1

HTTP Headers

GET /assets/f9340ffec0a33b5754f3f978f877293b/images/m3.jpg HTTP/1.1
Host: fourth-4-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: image/jpeg
content-length: 39474
last-modified: Tue, 28 Dec 2021 08:50:04 GMT
etag: "61cacfbc-9a32"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2

fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m4.jpg

159.69.46.22

200 OK

25 kB

URL HTTP/2
fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m4.jpg
IP
159.69.46.22:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 553x804, components 3\012- data
Size
25 kB (24817 bytes)
Hash
cf59df42bb31cbb605acf20d6646c85f
0ececc8ae5a7764fcc269961490284e53eb4087a
5fbad6231a35a9f12ac3fa4e41ec4ec2bb8fa66da98835d5f927e6e1b738b8a7

HTTP Headers

GET /assets/f9340ffec0a33b5754f3f978f877293b/images/m4.jpg HTTP/1.1
Host: fourth-4-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: image/jpeg
content-length: 24817
last-modified: Tue, 28 Dec 2021 08:50:04 GMT
etag: "61cacfbc-60f1"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2

fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m5.jpg

159.69.46.22

200 OK

38 kB

URL HTTP/2
fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m5.jpg
IP
159.69.46.22:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 553x784, components 3\012- data
Size
38 kB (37500 bytes)
Hash
7a6b7f286cfd14f0fbfdae30fac1b87b
4e65a5fd547e34cd98231cae66092158a11d426c
5b991638960f3d3d7731752b02324f27c04d6d22ee72be772c3e3b376f8d180f

HTTP Headers

GET /assets/f9340ffec0a33b5754f3f978f877293b/images/m5.jpg HTTP/1.1
Host: fourth-4-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: image/jpeg
content-length: 37500
last-modified: Tue, 28 Dec 2021 08:50:04 GMT
etag: "61cacfbc-927c"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2

fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m2.jpg

159.69.46.22

200 OK

100 kB

URL HTTP/2
fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m2.jpg
IP
159.69.46.22:0
ASN
#24940 Hetzner Online GmbH

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 753x1103, components 3\012- data
Size
100 kB (99760 bytes)
Hash
5a9e6e341d6dc1cdeeeddda66f884e4a
4cdb39582707b865603960e29a9678d2b02b786b
a18f39d979f64998a05b03c2bfa9a4547a454786e598cc9bc8599d4fcb936344

HTTP Headers

GET /assets/f9340ffec0a33b5754f3f978f877293b/images/m2.jpg HTTP/1.1
Host: fourth-4-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: image/jpeg
content-length: 99760
last-modified: Tue, 28 Dec 2021 08:50:04 GMT
etag: "61cacfbc-185b0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2

example.org/media.ext

93.184.216.34

404 Not Found

1.3 kB

URL HTTP/2
example.org/media.ext
IP
93.184.216.34:0
ASN
#15133 EDGECAST

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.3 kB (1256 bytes)
Hash
84238dfc8092e5d9c0dac8ef93371a07
4a3ce8ee11e091dd7923f4d8c6e5b5e41ec7c047
ea8fac7c65fb589b0d53560f5251f74f9e9b243478dcb6b3ea79b5e36449c8d9

HTTP Headers

GET /media.ext HTTP/1.1
Host: example.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
accept-ranges: bytes
age: 380465
cache-control: max-age=604800
content-type: text/html; charset=UTF-8
date: Wed, 18 Jan 2023 22:03:00 GMT
expires: Wed, 25 Jan 2023 22:03:00 GMT
last-modified: Sat, 14 Jan 2023 12:21:55 GMT
server: ECS (nyb/1D25)
vary: Accept-Encoding
x-cache: 404-HIT
content-length: 1256
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14550
Expires: Thu, 19 Jan 2023 02:05:31 GMT
Date: Wed, 18 Jan 2023 22:03:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14550
Expires: Thu, 19 Jan 2023 02:05:31 GMT
Date: Wed, 18 Jan 2023 22:03:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14550
Expires: Thu, 19 Jan 2023 02:05:31 GMT
Date: Wed, 18 Jan 2023 22:03:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14550
Expires: Thu, 19 Jan 2023 02:05:31 GMT
Date: Wed, 18 Jan 2023 22:03:01 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8889 bytes)
Hash
816accd72419764cabc1d038af58446c
ad835d9c9a783175d3c5d1a32f1e34baf0ed2f08
d0b6f144ddc797108e6e85b4e835bfbeadd138ef7987661ee9e3d22790db254f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8889
x-amzn-requestid: 10583804-866b-41bc-a99b-6209bd7ae1c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1eHMCoAMF4kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714ef-2351e46019a0918724721b89;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: I_gazElY6tP9IsrCWRM7CHI5Jd6uVuruMwXcJV_nNHFI55YqmqG7zg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 00:41:55 GMT
etag: "ad835d9c9a783175d3c5d1a32f1e34baf0ed2f08"
content-type: image/jpeg
age: 76866
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7741 bytes)
Hash
f491398239265c63ac162d47ab006ce6
c95e1bba76e910100e86f8abf789e5b5c1a2baa6
cdada2d9608e9d3f8e03cf9ced211550b6f7c8f7e0b5ee027a96f45af38523f1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7741
x-amzn-requestid: 9af04340-5be9-42b0-96be-0264661c6dae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A6LEMtoAMFW_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c7150d-2348c8846249175e74efc226;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:37:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _7YOm38n8-T2LAL-cRA7R8KvEUBhXEM0dOXjOZ6HyPRNfMu6Z0Fh3g==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:10:03 GMT
age: 85978
etag: "c95e1bba76e910100e86f8abf789e5b5c1a2baa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6454 bytes)
Hash
9200e43ca808b9ecec74828e03853d4c
3070340147ced46e5fdf73408272aa39391976fb
abdaedfc2da45180c463607686b20afd82113b78cfa78b0f28ab169b9858469b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6454
x-amzn-requestid: 79329eb3-8d89-423f-8626-32c5e2e2831a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gHpeoAMF-Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-5e859dc121cd322c6b684eee;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1s69950hZsdFKexBAVy2ZepTsxPeLCnI7bDdYfAH_NXrB1_Kt-N2_w==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 21:45:18 GMT
age: 1063
etag: "3070340147ced46e5fdf73408272aa39391976fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8853 bytes)
Hash
3f112ea3865f38cbbcc8400b58320fa0
dacc584338546bf60f26b2a0bec48e9b584640dc
7feb3c0691f40354701d1cb0bf3c834d1eeead4a7297fac3afc0f4a7ca2c94cb

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8853
x-amzn-requestid: ff98ec33-294a-4a13-b064-3cd4744cd2b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0LLKHPnIAMF0vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4bf14-233cbc6407c6b138144d7abb;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:05:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QZZaGtGl3Z-4G4DxO4R_gjfDdQVgJc30Ur9EyLAvbGFhv4LfaXziPQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:21:58 GMT
etag: "dacc584338546bf60f26b2a0bec48e9b584640dc"
content-type: image/jpeg
age: 85263
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13111 bytes)
Hash
d134f7ac9a5ca8ab7a9461bd20706bb7
aa47af3e7517390d10e89f0f18237cfdcc63cbed
3431c8027f09bb284fe48ef8e4458fd43d8cc961250601b3028b83a7ba19f6ce

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13111
x-amzn-requestid: 7a9bb405-c68d-496f-b608-e9d295c44c50
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0MStGBBIAMFXag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4c0dd-75d87c0d763744951f13febd;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:13:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jkIL919Q7OFO6bACXTrDan0f9D9rgrN0DJMQv1DYPLeWqT1CywCAEg==
via: 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 03:29:16 GMT
age: 66825
etag: "aa47af3e7517390d10e89f0f18237cfdcc63cbed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5663 bytes)
Hash
4ec6c49f056e786896d54fe22c242391
cc6b64ff3f09853843b62e555456a1ad9f0909fb
42f0571efba18630c8deee17e98c6939a7050b04f613ad10515caf503e496b4d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5663
x-amzn-requestid: 9a1c75a4-1c8d-4bd2-b6ca-7fccb8b43c12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gF5goAMFveA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-1d274e8074771db651e80979;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sAxuQECVKx0dfc2UM_E_70nKN8za1SBN4opMWr_74gT5ScurgZGVLw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:10:07 GMT
age: 85974
etag: "cc6b64ff3f09853843b62e555456a1ad9f0909fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c759021-8a43-4fb0-84ba-bf79089c1960.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7457 bytes)
Hash
534484a90a0be81c6c44151dcef60410
398061999a4d44ed006e97b00803ee0745a48c11
e61ceb050b97cff3e9a6786badb551ecee7754eb56aa8d104de4de2781f75ba2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c759021-8a43-4fb0-84ba-bf79089c1960.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7457
x-amzn-requestid: 8b204568-d2be-4585-8e04-647e42f76e93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0K85HWnIAMFbJA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4beb8-20988afb6b598ec71d175953;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:04:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7f1AtZzcTrMZ6gvh7Mg-62fvbFYejkIZaGNORi58T-as80WCOCTQEQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 04:54:40 GMT
age: 61708
etag: "398061999a4d44ed006e97b00803ee0745a48c11"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fuckablelovers.com/?utm_source=6RIEo4IQRGfl&utm_content=68-1408-202301190102556f51a2a5&utm_campaign=testpl20&utm_term=68

185.162.11.197

200 OK

0 B

URL HTTP/2
fuckablelovers.com/?utm_source=6RIEo4IQRGfl&utm_content=68-1408-202301190102556f51a2a5&utm_campaign=testpl20&utm_term=68
IP
185.162.11.197:0
ASN
#207728 EUROHOSTER Ltd.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /?utm_source=6RIEo4IQRGfl&utm_content=68-1408-202301190102556f51a2a5&utm_campaign=testpl20&utm_term=68 HTTP/1.1
Host: fuckablelovers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://med-dynamics.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:02:59 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=0, private, must-revalidate
cross-origin-window-policy: deny
set-cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTEwOTE1bQAAAApSSkxZQnFWdlFLbQAAAANoaWRtAAAAJWxyVUxzcEV5VU9PRWF1UmxSaXFhUmFCbWVSS0JMb2lva3BmamVtAAAAAmhsZAADbmlsbQAAAAVzdWJfMW0AAAACNjhtAAAABXN1Yl8ybQAAAB42OC0xNDA4LTIwMjMwMTE5MDEwMjU1NmY1MWEyYTVtAAAAB3RyYWNrZXJtAAAACHRlc3RwbDIwbQAAAAN1bnFtAAAADFZBaG9xV3laYkJ1ag.8DnKkbV1roRNh8_FFS9pYyQgn_7eMZELOz3s1GspmHQ; path=/; expires=Thu, 18 Jan 2024 22:02:59 GMT; max-age=31536000
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2

fuckablelovers.com/favicon.ico

185.162.11.197

200 OK

0 B

URL HTTP/2
fuckablelovers.com/favicon.ico
IP
185.162.11.197:0
ASN
#207728 EUROHOSTER Ltd.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: fuckablelovers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/?utm_source=6RIEo4IQRGfl&utm_content=68-1408-202301190102556f51a2a5&utm_campaign=testpl20&utm_term=68
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTEwOTE1bQAAAApSSkxZQnFWdlFLbQAAAANoaWRtAAAAJWxyVUxzcEV5VU9PRWF1UmxSaXFhUmFCbWVSS0JMb2lva3BmamVtAAAAAmhsYQFtAAAABXN1Yl8xbQAAAAI2OG0AAAAFc3ViXzJtAAAAHjY4LTE0MDgtMjAyMzAxMTkwMTAyNTU2ZjUxYTJhNW0AAAAHdHJhY2tlcm0AAAAIdGVzdHBsMjBtAAAAA3VucW0AAAAMVkFob3FXeVpiQnVq.ANZEpRbQ-aNGp_nfF1578wIgxQAFbOpk19g9_h3bOao; __fjs=1010101011110101110
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: image/x-icon
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (31)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML