r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 37284a837312d6586460a3b86bbe7bd0
6ac0847abd48eb8607597218aaa2cb2d434c012b
6a0e11bb042555d72b397ae0cc3d5e242d3a3fe04418e28ffd222decca7d16ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A0E11BB042555D72B397AE0CC3D5E242D3A3FE04418E28FFD222DECCA7D16CA"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10398
Expires: Thu, 19 Jan 2023 00:56:16 GMT
Date: Wed, 18 Jan 2023 22:02:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cc07d664b5dadee6f9120d54904dfa57
df75a55b0b2019684a6c512bee528c51a2c4a756
14a1bd6315a3256468edafedfd1c02a6ba147914c0f01e8504e7d8cc67781c34
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14A1BD6315A3256468EDAFEDFD1C02A6BA147914C0F01E8504E7D8CC67781C34"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7174
Expires: Thu, 19 Jan 2023 00:02:33 GMT
Date: Wed, 18 Jan 2023 22:02:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6c8239f3894cfba54d1f3a9ea1c85db5
a70f2b3bf79f2aa26b0cc0340dd182565c3eb946
64dc0508d3fcea1ec92fb60310e9b3f5454c0b69f61e8453fd443bc46ab9471b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64DC0508D3FCEA1EC92FB60310E9B3F5454C0B69F61E8453FD443BC46AB9471B"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6176
Expires: Wed, 18 Jan 2023 23:45:55 GMT
Date: Wed, 18 Jan 2023 22:02:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 18 Jan 2023 21:34:28 GMT
content-type: application/json
age: 1711
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: i0Bzj22RrcKDpW2LEBeVkjja6rrOvQaS+624+TwL6oPsZ4s0D7Gb3OeMfhrvqvaE4G5MDGFvbRI=
x-amz-request-id: G3W6X05CW402SQ7D
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 18 Jan 2023 21:56:50 GMT
age: 369
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
med-dynamics.pl/
172.67.162.109200 OK 12 kB IP 172.67.162.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, Unicode text, UTF-8 text, with very long lines (10340)
Hash a38927f1b908788716a3b877c8c7ab15
15e697fa2c5c3a54f8253d86c3fe84f5c3ebd639
a2d0910f4a7ce6ab07dd68e68d92c7105369fcdd2424eb187f9262b6493772a5
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.4.20
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gi3ewvfhrWaAcyLvudJk7Fvq4xLjFySOvp6SX%2FCZeLEm%2Bdcazm%2FB6GwojPCE2cgxVl58azqn57OqELljcGbtVRRiBOi6dkkVQkKMxC2td3rw1aI0Yq9c8zfRQxxthTFSMbM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e359881b50c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:02:59 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/blog.css
172.67.162.109200 OK 1.3 kB URL HTTP/1.1 med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/blog.css
IP 172.67.162.109:0
Hash 82919c1042ba408c82a4b9dfec2ce363
c2c36170fe6d671f327cb1c28e30e6ea2e7c7dd6
06461ca9489fa83b256a9b01f1662161ed07c610e5b3efb3da4dc014489e8de6
GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/blog.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:36:25 GMT
Vary: Accept-Encoding
ETag: W/"5b9fc9f9-112c"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fVKzcyyPwJdrzzSDJW83bC9qXGMgYZbtnH0DgrXrlLGIBjlWphtqG5YQ6qtoonngiOxQswqFCtWgVvFHsmyQN9RDbkCT7eS2sz3%2FpJ3PRoZZu2oRmQsS1Dk9AUNzsqxybds%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e380c6db50c-OSL
alt-svc: h2=":443"; ma=60
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/queries.css
172.67.162.109200 OK 663 B URL HTTP/1.1 med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/queries.css
IP 172.67.162.109:0
File type ASCII text, with CRLF line terminators
Hash df063c829d87ecb183ba08ca23440c7c
e1895eacf96200486d7b5b8b226a10da61cddba5
41e8ffaa8a2c35271df31c3302e6ee8e580f04cc33d0ff4fad5559188e524387
GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/queries.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:37:05 GMT
Vary: Accept-Encoding
ETag: W/"5b9fca21-7ac"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gOoWOVq%2Fx8LvwDK%2FvuN9Y33TaoDshVUVX4HM634egI8Ks6f%2Bdf1sAjxMF6lEvYQIYkPPQ4aKZsOFKad1hJpOFl7mLCczSVTQtjnO2edR6JBmUKstsWKjuqRCMbFzJqvdPhg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e3819c4b503-OSL
alt-svc: h2=":443"; ma=60
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/sintony.css
172.67.162.109200 OK 242 B URL HTTP/1.1 med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/sintony.css
IP 172.67.162.109:0
Hash e147f1157bea280d69bfa4dcac35b388
e3f583d73efec4eddf25f5ddbbb8b0e33556a40c
381df771628f4d39ad316962876a2a3a430eabcdb84512b4e8dc1078b72e61d8
GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/sintony.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:37:11 GMT
ETag: W/"5b9fca27-1b7"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sjylP447al6eRfMdIcc7MhjEF4%2F4I2Xwd3kgeINdHfIGMWNFMS53k4yzY%2Fkgkve%2BAdueSvMLRSs66%2BuonheOhkInkSkaIddrn7FWRavdDnfG8LgrwCEQzOy74sqzNg6thWs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ba9e381bbc0afe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/open-sans.css
172.67.162.109200 OK 301 B URL HTTP/1.1 med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/open-sans.css
IP 172.67.162.109:0
Hash b928fcd10aefda02796abc0d267c24a7
63c2ee4c56868eeb089dfeb8efac010a4d98fade
5e5ff4be1d607b2988ac82f307e27170d0ab9744008090f2f8a1ae04683a0d24
GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/open-sans.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:36:54 GMT
ETag: W/"5b9fca16-2ef"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NcEzRDGP40gVqCfug1atZkE16gwtl9wiNPEWVrmaYyY4Eu59DQeEBkeSfQjzOThODpb9iwoMvXHwfjkTPEaGeQzc8dxpprbBqFPj7k1lw69oT1Riu0ALXM2e7ULpO2IFJAY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ba9e381b06b4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/font-awesome.css
172.67.162.109200 OK 6.0 kB URL HTTP/1.1 med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/font-awesome.css
IP 172.67.162.109:0
File type troff or preprocessor input, ASCII text, with very long lines (306)
Hash 584d0fd05cdded369dcfab01398abe8b
ab06d729b620c72f424627ac87ad721d73eaedd8
4e9b3d46f48d094a75b9fc4c38cf4f897b701a47d566cb027bbcc6945e023011
GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/font-awesome.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:47:07 GMT
Vary: Accept-Encoding
ETag: W/"5b9fcc7b-681c"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5PgUBbx3MMzaQRWZ%2FulamxWrf9PLePQ4wvR7n240TsITWzLzowskl2v6Ez9FZvBfM9sIPDf%2FhyyfhAMq6zO%2BANQI2oyCbTR90eX4gTwEkOGeehullhx2OL4Z4PsOZWx9HKw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e381ab10b41-OSL
alt-svc: h2=":443"; ma=60
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/bootstrap.css
172.67.162.109200 OK 26 kB URL HTTP/1.1 med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/bootstrap.css
IP 172.67.162.109:0
File type ASCII text, with very long lines (540), with CRLF line terminators
Hash 76de40f69f6480477186ec706a89ffba
dc07cb8b2970b90c207c1a742864af5623a5f5c4
1dc6eec77aa2f0086b135bda7f1b0fefe76859b5ada73b325d89ca63fc5268f8
GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/bootstrap.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:49:41 GMT
Vary: Accept-Encoding
ETag: W/"5b9fcd15-20b00"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LT5DM7Y32whHkEHfWNW%2BEx3JQieMQv8goluZRIioxH9roPjXYgLs33R7oRMuHB5aRYkPuIZHjP11h5nzgwhdHRjREK%2BC9t3htn9rsuUMmf2UBbXUnxoZ3%2FkBYrJrRCDLVbU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e381d380b4d-OSL
alt-svc: h2=":443"; ma=60
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/styles.css
172.67.162.109200 OK 5.6 kB URL HTTP/1.1 med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/styles.css
IP 172.67.162.109:0
Hash b05b3a94d849d99b83af114c7e04d6fd
294be4dfe686d2cf1178639de1c56891a3164f25
d2fe4aded177d697b717d707dbcda2f1d14204656b1595f53f004126a105dbaa
GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/styles.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 26 Sep 2020 16:02:33 GMT
Vary: Accept-Encoding
ETag: W/"5f6f6619-501a"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AQHVBmGbrVxJ2%2Bjrgl6U05TMs4XHk9kCiN%2B%2FUnPr0nioKMT0Em0%2BJgdlW11jHrA7m46Pb0dp3Q4bmF2PpQ2SQu0uOeLx1cp5mtXB8t8hL%2F0X0I%2BlfkZpf%2BvcplcIi1HSTpE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e38ad1fb50c-OSL
alt-svc: h2=":443"; ma=60
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/ie10-viewport-bug-workaround.css
172.67.162.109200 OK 279 B URL HTTP/1.1 med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/css/ie10-viewport-bug-workaround.css
IP 172.67.162.109:0
Hash c3c2d3a9096632825cc5597066e2dcee
12c73c0a6196610edf6215b1125ed127b0d88f00
a7c154229a046fb23bf6cb8f39541728c3078b6c9b60b9be020c0cd5430994c4
GET /templates/up-front-wp/wp-content/themes/up-front-wp/css/ie10-viewport-bug-workaround.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:37:25 GMT
ETag: W/"5b9fca35-1b1"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0hA8uYtdiiOHrb2KwRkdzC%2FwsNY%2FNTGKRkEbRz6koszZknNMtxeBw80Oqi5rNHF8t3MOeCIeNEqn0ADR33DhavycpnqagVWnVzDOqoBKzEAN3UkIerx5in%2BJQs9ZRwMn0X4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ba9e38baa7b503-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
med-dynamics.pl/templates/up-front-wp/wp-includes/js/jquery/jquery-migrate.min.js
172.67.162.109200 OK 4.2 kB URL HTTP/1.1 med-dynamics.pl/templates/up-front-wp/wp-includes/js/jquery/jquery-migrate.min.js
IP 172.67.162.109:0
File type ASCII text, with very long lines (9535)
Hash 7e146a486973f247bcf8638bcd3267a5
36654235b969f9590067e76739cf7da8b57fe9dc
26588fffa1a9c9aed6d155889008960f2eebef5fc71b9cd6d07bde4cb576121d
Analyzer Verdict Alert fortinet Phishing
GET /templates/up-front-wp/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 06 Jan 2018 16:14:21 GMT
Vary: Accept-Encoding
ETag: W/"5a50f5dd-25a1"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2JfmIsSS6FDEIhHM2U99C%2FwTHmKiA7jAOl%2FBLVwpRVVnxuKum35EGZ2wK%2Bln4FcoAuQVPYH5TVDvIz0yVUsOa9SC4eiiPeGvIgURMRgJqqJkIVD2krx10KEyGvY57GCPFVI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e38eb820b41-OSL
alt-svc: h2=":443"; ma=60
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/respond.js
172.67.162.109200 OK 4.3 kB URL HTTP/1.1 med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/respond.js
IP 172.67.162.109:0
Hash 466e7869c765c998545761dce428ada7
8191fb17f92f6ecfc85b54077016f45d47e6b084
a4fe8d30c0e6f6c2b1533eaf6c08ba6676f28b0fcde07163be5869c5e2c45c02
Analyzer Verdict Alert fortinet Phishing
GET /templates/up-front-wp/wp-content/themes/up-front-wp/js/respond.js HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 06 Jan 2018 16:14:18 GMT
Vary: Accept-Encoding
ETag: W/"5a50f5da-27b4"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=47jfZ%2FrKv3onpp%2F%2F49AiPLFwd51cuV2uXqGQa7YeXmflcZBVups2AysxDrwR%2BeXxHu8VHtEa2q56b2%2FdpMP%2BdgG1GPZu4qf6UcSPuzaaYI7gDMaSIBvDy0QZjtfTaKLx7cQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e393ddbb50c-OSL
alt-svc: h2=":443"; ma=60
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/style.css
172.67.162.109200 OK 1.4 kB URL HTTP/1.1 med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/style.css
IP 172.67.162.109:0
File type ASCII text, with CRLF line terminators
Hash 915342d5a3589432409e40fc889cd36e
052452cc92b0c3c52a96e529f81f8ca8a68af9a3
87aff8fa34f4208a02a53a1ad3b0173f1fcf3897626f7210975769495e41c0e4
GET /templates/up-front-wp/wp-content/themes/up-front-wp/style.css HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Sep 2018 15:37:42 GMT
Vary: Accept-Encoding
ETag: W/"5b9fca46-ca8"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BMn0lYoWDBPzIgKdb8jQOSiasa6O3oH%2F0%2F%2FqhdTZhAtAN0W5Dy%2BL85zDHUMGaPAsWyenzazruwMYa%2FMdLM32ubWuI1%2F6smrKT3O%2BpLYI1aCFTqW%2BCUovfF8Ld2o5WK0qlY4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e38dc910afe-OSL
alt-svc: h2=":443"; ma=60
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/html5shiv.js
172.67.162.109200 OK 3.5 kB URL HTTP/1.1 med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/html5shiv.js
IP 172.67.162.109:0
File type HTML document, ASCII text
Hash 5c52f9d42b52b9c96767949746ed5ab0
2b151865c7b4d1161a66209eecfd15c898458658
ed476b836b704df572195de9a073bec8507dfa7af06cdde4d1edf79a1f7819ff
Analyzer Verdict Alert fortinet Phishing
GET /templates/up-front-wp/wp-content/themes/up-front-wp/js/html5shiv.js HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 06 Jan 2018 16:14:17 GMT
Vary: Accept-Encoding
ETag: W/"5a50f5d9-27cd"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kx2LafaoFN7o9p6X9d%2B5i%2BXeFNeKdcpduqsdVeGjsRFqOYR7srUhlBzrr3lMrjNyYqMXCCt3VUEHrML30a8l6X5IfRHP5YyLTmIuHAEZzFMZiqrhWnBDwqDdSF3M%2BNo1lsU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e38fe130b4d-OSL
alt-svc: h2=":443"; ma=60
med-dynamics.pl/templates/up-front-wp/wp-includes/js/jquery/jquery.js
172.67.162.109200 OK 40 kB URL HTTP/1.1 med-dynamics.pl/templates/up-front-wp/wp-includes/js/jquery/jquery.js
IP 172.67.162.109:0
File type Unicode text, UTF-8 text, with very long lines (32028)
Hash 85d1e7bbe3ca374c280bff2fc6f1b7bc
2f452dd1de43b3c85615ff755ab6fc1b43abf9df
2e8c6d33aa523e9cada44e4c35335c2dfecde0b491d544b7570463b79005e75a
Analyzer Verdict Alert fortinet Phishing
GET /templates/up-front-wp/wp-includes/js/jquery/jquery.js HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 06 Jan 2018 16:14:22 GMT
Vary: Accept-Encoding
ETag: W/"5a50f5de-17bab"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ceWUY6%2B7oE5t92cFySoixJOwS%2BQDliaEEaWD3lmeRnSeFUIel99ieJ8uk%2BG%2FbkPi3IOP49PJvp%2BAkUG1Iy%2Fxi6gFT0q1DVNrPKJ4sm436RIBi6hU%2FbjTGHhQmkJVzJGVqDU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e38ec3cb4ff-OSL
alt-svc: h2=":443"; ma=60
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/holder.min.js
172.67.162.109200 OK 13 kB URL HTTP/1.1 med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/holder.min.js
IP 172.67.162.109:0
File type Unicode text, UTF-8 text, with very long lines (32011)
Hash 6fbbe84c7570859e2cf70a20f9f1e898
d75fb3e5fbbc54934e31d8a4ad8d34d0209770fe
cec8235a4dbb9c7654761aba9ab0c070ec2908ffc7b23767c79813f169774e98
Analyzer Verdict Alert fortinet Phishing
GET /templates/up-front-wp/wp-content/themes/up-front-wp/js/holder.min.js HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 06 Jan 2018 16:14:17 GMT
Vary: Accept-Encoding
ETag: W/"5a50f5d9-7e1b"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p3Si6okVgrtHoFfaiq7HJcHgtOd6YojK6hJxZOqkZvPjjTPrR3mARRxvQW4g7PX%2BHrBUt%2BtQoCc9UZRvnbGn4%2FO%2FQJBzp2Chh7EA3bCU%2Bz5dYLcRg6ryKo0FKoDMueaTySI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78ba9e397bd9b503-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 18 Jan 2023 21:17:25 GMT
age: 2734
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/ie10-viewport-bug-workaround.js
172.67.162.109200 OK 424 B URL HTTP/1.1 med-dynamics.pl/templates/up-front-wp/wp-content/themes/up-front-wp/js/ie10-viewport-bug-workaround.js
IP 172.67.162.109:0
Hash 03985dd7dbd89dc05815e24164ab11f8
041eaa40f19e56a4a02aabb1624ac1fbe6df2a96
72e34699c5c5e5a0a40042977d00332a4e19d01ff67c41277673a86e5e46f2cf
Analyzer Verdict Alert fortinet Phishing
GET /templates/up-front-wp/wp-content/themes/up-front-wp/js/ie10-viewport-bug-workaround.js HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 06 Jan 2018 16:14:18 GMT
ETag: W/"5a50f5da-281"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZgxFd6PPLSb9UAQjHS3NGsbJBro8Amgey3aejjGiRnY6qcG0bA6utUyn9OhyVr6xsFsOXhvVZI6li11idFSpH8ITt5ANeC7jguWgzQ6NDP6%2BU%2FY37%2BOaXSLU4d%2FiLO%2F1ICo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ba9e399e4eb50c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
med-dynamics.pl/favicon.ico
172.67.162.109404 Not Found 20 B URL HTTP/1.1 med-dynamics.pl/favicon.ico
IP 172.67.162.109:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /favicon.ico HTTP/1.1
Host: med-dynamics.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://med-dynamics.pl/
HTTP/1.1 404 Not Found
Date: Wed, 18 Jan 2023 22:02:59 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.20
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=od9aUa5AomicDFeexC%2BDRLfy6ekOzDKayijl7SxHQmRu%2FHeOx7fX45pMf7VM7UkmRuXEQB3HiiU35GUqz1K5GMZiVgD5u0WLLFjfSXiQFETm%2FB6j%2BAd6%2BjQOiaB9TbqJPEM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78ba9e3b1db7b503-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 79af32d8e279b4cfec147ab51cb6fcb3
d726903292bd1e08a6d9fe0719d2cd5b33dc5fe6
bfcb2d8f14d89736ac6b771f1618a8fc5e707691d60807a574fb719c8e9393ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 504
Cache-Control: max-age=126733
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 22:02:59 GMT
Etag: "63c7b6a8-1d7"
Expires: Fri, 20 Jan 2023 09:15:12 GMT
Last-Modified: Wed, 18 Jan 2023 09:06:48 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
code.jquery.com/jquery-3.3.1.min.js
69.16.175.42200 OK 30 kB URL HTTP/2 code.jquery.com/jquery-3.3.1.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (65451)
Hash d549b312f7a7d228b4ec229a6547dfdc
0766794582ad530ec0f8c2595f741086afffa312
f6488b2915e0ceee723f4320492511d46c6ba1860d5975d085e6da8913f55f44
GET /jquery-3.3.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fuckablelovers.com
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 18 Jan 2023 22:02:59 GMT
content-encoding: gzip
content-length: 30288
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-1538f"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-sp-metadata: HS256.CKP1oZ4GEocBCiQ3NDU2OTA4Ny0yNzA4LTQyNGMtYWY0ZS05MWEwNWNmNmRlMDQQ+OiCoKvU+wIaBgiT2aGeBiIMOTEuOTAuNDIuMTU0KJKuAzADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GiwIARIkYjU2MGM0OWEtOGM1ZS00ZDkxLWEwNzQtMDY4YWQwN2M4ZmJjGNDsASIYCAISFGNkczI0MC5zazEuaHdjZG4ubmV0.iDFDqy410S3sWOeeA3nmmsxyO9GmUbbV7pD4jwf5OAE=
x-hw: 1674079379.dop220.sk1.t,1674079379.cds262.sk1.hn,1674079379.cds240.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 607bf9684e4803d817fdd1120427dcdd
886fa77396c792751868f05806793937a4f11be6
d17df5470015b9c3be3fc1e9c8fa5f2b732231eed453b689e94897f6f1da3911
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 22:02:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fuckablelovers.com/p.js?a=1811289&cr=54210&lid=3911&mh=bHJVTHNwRXlVT09FYXVSbFJpcWFSYUJtZVJLQkxvaW9rcGZqZS0zNTk4NQ%3D%3D&mmid=2365&p=0&rf=&rn=zc4ZnJeUys4WmdeVEhG&t=testpl20
185.162.11.197200 OK 447 B URL HTTP/2 fuckablelovers.com/p.js?a=1811289&cr=54210&lid=3911&mh=bHJVTHNwRXlVT09FYXVSbFJpcWFSYUJtZVJLQkxvaW9rcGZqZS0zNTk4NQ%3D%3D&mmid=2365&p=0&rf=&rn=zc4ZnJeUys4WmdeVEhG&t=testpl20
IP 185.162.11.197:0
ASN #207728 EUROHOSTER Ltd.
Hash 760839672ce8d79695f706b5fcc06275
a1abcc63f4666231b11218623881ac54e1afaba1
3772732b465d7ac1c35cc281fb9b209de155e8c98900012d0c1043ec7084be1c
GET /p.js?a=1811289&cr=54210&lid=3911&mh=bHJVTHNwRXlVT09FYXVSbFJpcWFSYUJtZVJLQkxvaW9rcGZqZS0zNTk4NQ%3D%3D&mmid=2365&p=0&rf=&rn=zc4ZnJeUys4WmdeVEhG&t=testpl20 HTTP/1.1
Host: fuckablelovers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/?utm_source=6RIEo4IQRGfl&utm_content=68-1408-202301190102556f51a2a5&utm_campaign=testpl20&utm_term=68
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTEwOTE1bQAAAApSSkxZQnFWdlFLbQAAAANoaWRtAAAAJWxyVUxzcEV5VU9PRWF1UmxSaXFhUmFCbWVSS0JMb2lva3BmamVtAAAAAmhsZAADbmlsbQAAAAVzdWJfMW0AAAACNjhtAAAABXN1Yl8ybQAAAB42OC0xNDA4LTIwMjMwMTE5MDEwMjU1NmY1MWEyYTVtAAAAB3RyYWNrZXJtAAAACHRlc3RwbDIwbQAAAAN1bnFtAAAADFZBaG9xV3laYkJ1ag.8DnKkbV1roRNh8_FFS9pYyQgn_7eMZELOz3s1GspmHQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:02:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 447
cache-control: max-age=0, private, must-revalidate
cross-origin-window-policy: deny
set-cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTEwOTE1bQAAAApSSkxZQnFWdlFLbQAAAANoaWRtAAAAJWxyVUxzcEV5VU9PRWF1UmxSaXFhUmFCbWVSS0JMb2lva3BmamVtAAAAAmhsYQFtAAAABXN1Yl8xbQAAAAI2OG0AAAAFc3ViXzJtAAAAHjY4LTE0MDgtMjAyMzAxMTkwMTAyNTU2ZjUxYTJhNW0AAAAHdHJhY2tlcm0AAAAIdGVzdHBsMjBtAAAAA3VucW0AAAAMVkFob3FXeVpiQnVq.ANZEpRbQ-aNGp_nfF1578wIgxQAFbOpk19g9_h3bOao; path=/; expires=Thu, 18 Jan 2024 22:02:59 GMT; max-age=31536000
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat&subset=latin-ext
142.250.74.106200 OK 971 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat&subset=latin-ext
IP 142.250.74.106:0
Hash a7a4ce22d7076b299b7befcbad9f790c
b86b1e2d036103f1110543dec7464711eba33111
551bffac29a8fa30c7ea2f1759d26a1b6f56d0af3bcd7132c448114cad2f4a05
GET /css?family=Montserrat&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 18 Jan 2023 22:03:00 GMT
date: Wed, 18 Jan 2023 22:03:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db72b0cf36b635e3c0825b954e3f0571
f0f3d97119b058f86553062c835f89b1b283945d
bf6ecaa45a5dbd66d0c657e5f33345ac46bdc94d8cae1274fcaf01c0ff302b97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 22:03:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.163.162.54101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.162.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BLdjdMpFHoqtULQM4t6BlA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3gzlJGdQpcxZIf6fa/hYGA88nbc=
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Hash b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fuckablelovers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 07:46:37 GMT
expires: Fri, 12 Jan 2024 07:46:37 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
age: 569783
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db72b0cf36b635e3c0825b954e3f0571
f0f3d97119b058f86553062c835f89b1b283945d
bf6ecaa45a5dbd66d0c657e5f33345ac46bdc94d8cae1274fcaf01c0ff302b97
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 22:03:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fourth-4-cdn.com/assets/f.js
159.69.46.22200 OK 863 B URL HTTP/2 fourth-4-cdn.com/assets/f.js
IP 159.69.46.22:0
ASN #24940 Hetzner Online GmbH
Hash 776bb206d5154e17e1aa3b158a533837
52f3112ce7f3f41c0380aa6b0cb3118513b3f068
2e130a86665ce84afdc664b02b22d39b8b14d054d56156fcd6153f1851d0d7d3
GET /assets/f.js HTTP/1.1
Host: fourth-4-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 06 Apr 2022 12:56:50 GMT
vary: Accept-Encoding
etag: W/"624d8e12-681"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
content-encoding: gzip
X-Firefox-Spdy: h2
fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m1.jpg
159.69.46.22200 OK 78 kB URL HTTP/2 fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m1.jpg
IP 159.69.46.22:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 780x1120, components 3\012- data
Hash 87d2f3c5fea561e6df9cc94593fe1723
c1455e7cda561c85ee691b4b7731620e3f53b85f
19c573814c76cdda702b11983eaf88df534951837417efc6ccf60a1fda89193f
GET /assets/f9340ffec0a33b5754f3f978f877293b/images/m1.jpg HTTP/1.1
Host: fourth-4-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: image/jpeg
content-length: 77741
last-modified: Tue, 28 Dec 2021 08:50:04 GMT
etag: "61cacfbc-12fad"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/d1.jpg
159.69.46.22200 OK 56 kB URL HTTP/2 fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/d1.jpg
IP 159.69.46.22:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 651x956, components 3\012- data
Hash ba15f02e63fca7a1981ebf50c2a8a6ca
4777aab75e719ff6b388aa6330f302e9aebc0c47
f22404c0b91377907e55d21d8dbd9708d8f3e6af4c48b6b0e583cd73ce2c5f87
GET /assets/f9340ffec0a33b5754f3f978f877293b/images/d1.jpg HTTP/1.1
Host: fourth-4-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: image/jpeg
content-length: 55549
last-modified: Tue, 28 Dec 2021 08:50:04 GMT
etag: "61cacfbc-d8fd"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m3.jpg
159.69.46.22200 OK 40 kB URL HTTP/2 fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m3.jpg
IP 159.69.46.22:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 568x717, components 3\012- data
Hash e29f39fc90d55854a6f4aea9f78b5c70
81459c9e9ab2c85662c62ae863fb9bf0a670f06e
178bf8460ed9a56290c0d47dce3918b023d41d4c54538c143655f7641e2472a1
GET /assets/f9340ffec0a33b5754f3f978f877293b/images/m3.jpg HTTP/1.1
Host: fourth-4-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: image/jpeg
content-length: 39474
last-modified: Tue, 28 Dec 2021 08:50:04 GMT
etag: "61cacfbc-9a32"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m4.jpg
159.69.46.22200 OK 25 kB URL HTTP/2 fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m4.jpg
IP 159.69.46.22:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 553x804, components 3\012- data
Hash cf59df42bb31cbb605acf20d6646c85f
0ececc8ae5a7764fcc269961490284e53eb4087a
5fbad6231a35a9f12ac3fa4e41ec4ec2bb8fa66da98835d5f927e6e1b738b8a7
GET /assets/f9340ffec0a33b5754f3f978f877293b/images/m4.jpg HTTP/1.1
Host: fourth-4-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: image/jpeg
content-length: 24817
last-modified: Tue, 28 Dec 2021 08:50:04 GMT
etag: "61cacfbc-60f1"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m5.jpg
159.69.46.22200 OK 38 kB URL HTTP/2 fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m5.jpg
IP 159.69.46.22:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 553x784, components 3\012- data
Hash 7a6b7f286cfd14f0fbfdae30fac1b87b
4e65a5fd547e34cd98231cae66092158a11d426c
5b991638960f3d3d7731752b02324f27c04d6d22ee72be772c3e3b376f8d180f
GET /assets/f9340ffec0a33b5754f3f978f877293b/images/m5.jpg HTTP/1.1
Host: fourth-4-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: image/jpeg
content-length: 37500
last-modified: Tue, 28 Dec 2021 08:50:04 GMT
etag: "61cacfbc-927c"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m2.jpg
159.69.46.22200 OK 100 kB URL HTTP/2 fourth-4-cdn.com/assets/f9340ffec0a33b5754f3f978f877293b/images/m2.jpg
IP 159.69.46.22:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 753x1103, components 3\012- data
Hash 5a9e6e341d6dc1cdeeeddda66f884e4a
4cdb39582707b865603960e29a9678d2b02b786b
a18f39d979f64998a05b03c2bfa9a4547a454786e598cc9bc8599d4fcb936344
GET /assets/f9340ffec0a33b5754f3f978f877293b/images/m2.jpg HTTP/1.1
Host: fourth-4-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: image/jpeg
content-length: 99760
last-modified: Tue, 28 Dec 2021 08:50:04 GMT
etag: "61cacfbc-185b0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
example.org/media.ext
93.184.216.34404 Not Found 1.3 kB IP 93.184.216.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 84238dfc8092e5d9c0dac8ef93371a07
4a3ce8ee11e091dd7923f4d8c6e5b5e41ec7c047
ea8fac7c65fb589b0d53560f5251f74f9e9b243478dcb6b3ea79b5e36449c8d9
GET /media.ext HTTP/1.1
Host: example.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://fuckablelovers.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
accept-ranges: bytes
age: 380465
cache-control: max-age=604800
content-type: text/html; charset=UTF-8
date: Wed, 18 Jan 2023 22:03:00 GMT
expires: Wed, 25 Jan 2023 22:03:00 GMT
last-modified: Sat, 14 Jan 2023 12:21:55 GMT
server: ECS (nyb/1D25)
vary: Accept-Encoding
x-cache: 404-HIT
content-length: 1256
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14550
Expires: Thu, 19 Jan 2023 02:05:31 GMT
Date: Wed, 18 Jan 2023 22:03:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14550
Expires: Thu, 19 Jan 2023 02:05:31 GMT
Date: Wed, 18 Jan 2023 22:03:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14550
Expires: Thu, 19 Jan 2023 02:05:31 GMT
Date: Wed, 18 Jan 2023 22:03:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14550
Expires: Thu, 19 Jan 2023 02:05:31 GMT
Date: Wed, 18 Jan 2023 22:03:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 816accd72419764cabc1d038af58446c
ad835d9c9a783175d3c5d1a32f1e34baf0ed2f08
d0b6f144ddc797108e6e85b4e835bfbeadd138ef7987661ee9e3d22790db254f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8efa7cc-44c0-4841-af38-b9d070233ba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8889
x-amzn-requestid: 10583804-866b-41bc-a99b-6209bd7ae1c2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1eHMCoAMF4kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714ef-2351e46019a0918724721b89;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: I_gazElY6tP9IsrCWRM7CHI5Jd6uVuruMwXcJV_nNHFI55YqmqG7zg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 00:41:55 GMT
etag: "ad835d9c9a783175d3c5d1a32f1e34baf0ed2f08"
content-type: image/jpeg
age: 76866
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f491398239265c63ac162d47ab006ce6
c95e1bba76e910100e86f8abf789e5b5c1a2baa6
cdada2d9608e9d3f8e03cf9ced211550b6f7c8f7e0b5ee027a96f45af38523f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7741
x-amzn-requestid: 9af04340-5be9-42b0-96be-0264661c6dae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A6LEMtoAMFW_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c7150d-2348c8846249175e74efc226;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:37:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _7YOm38n8-T2LAL-cRA7R8KvEUBhXEM0dOXjOZ6HyPRNfMu6Z0Fh3g==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:10:03 GMT
age: 85978
etag: "c95e1bba76e910100e86f8abf789e5b5c1a2baa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9200e43ca808b9ecec74828e03853d4c
3070340147ced46e5fdf73408272aa39391976fb
abdaedfc2da45180c463607686b20afd82113b78cfa78b0f28ab169b9858469b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6454
x-amzn-requestid: 79329eb3-8d89-423f-8626-32c5e2e2831a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gHpeoAMF-Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-5e859dc121cd322c6b684eee;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1s69950hZsdFKexBAVy2ZepTsxPeLCnI7bDdYfAH_NXrB1_Kt-N2_w==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 21:45:18 GMT
age: 1063
etag: "3070340147ced46e5fdf73408272aa39391976fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f112ea3865f38cbbcc8400b58320fa0
dacc584338546bf60f26b2a0bec48e9b584640dc
7feb3c0691f40354701d1cb0bf3c834d1eeead4a7297fac3afc0f4a7ca2c94cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8853
x-amzn-requestid: ff98ec33-294a-4a13-b064-3cd4744cd2b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0LLKHPnIAMF0vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4bf14-233cbc6407c6b138144d7abb;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:05:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QZZaGtGl3Z-4G4DxO4R_gjfDdQVgJc30Ur9EyLAvbGFhv4LfaXziPQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:21:58 GMT
etag: "dacc584338546bf60f26b2a0bec48e9b584640dc"
content-type: image/jpeg
age: 85263
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d134f7ac9a5ca8ab7a9461bd20706bb7
aa47af3e7517390d10e89f0f18237cfdcc63cbed
3431c8027f09bb284fe48ef8e4458fd43d8cc961250601b3028b83a7ba19f6ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13111
x-amzn-requestid: 7a9bb405-c68d-496f-b608-e9d295c44c50
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0MStGBBIAMFXag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4c0dd-75d87c0d763744951f13febd;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:13:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jkIL919Q7OFO6bACXTrDan0f9D9rgrN0DJMQv1DYPLeWqT1CywCAEg==
via: 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 03:29:16 GMT
age: 66825
etag: "aa47af3e7517390d10e89f0f18237cfdcc63cbed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ec6c49f056e786896d54fe22c242391
cc6b64ff3f09853843b62e555456a1ad9f0909fb
42f0571efba18630c8deee17e98c6939a7050b04f613ad10515caf503e496b4d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5663
x-amzn-requestid: 9a1c75a4-1c8d-4bd2-b6ca-7fccb8b43c12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gF5goAMFveA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-1d274e8074771db651e80979;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sAxuQECVKx0dfc2UM_E_70nKN8za1SBN4opMWr_74gT5ScurgZGVLw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:10:07 GMT
age: 85974
etag: "cc6b64ff3f09853843b62e555456a1ad9f0909fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c759021-8a43-4fb0-84ba-bf79089c1960.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c759021-8a43-4fb0-84ba-bf79089c1960.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 534484a90a0be81c6c44151dcef60410
398061999a4d44ed006e97b00803ee0745a48c11
e61ceb050b97cff3e9a6786badb551ecee7754eb56aa8d104de4de2781f75ba2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c759021-8a43-4fb0-84ba-bf79089c1960.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7457
x-amzn-requestid: 8b204568-d2be-4585-8e04-647e42f76e93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0K85HWnIAMFbJA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4beb8-20988afb6b598ec71d175953;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:04:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7f1AtZzcTrMZ6gvh7Mg-62fvbFYejkIZaGNORi58T-as80WCOCTQEQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 04:54:40 GMT
age: 61708
etag: "398061999a4d44ed006e97b00803ee0745a48c11"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fuckablelovers.com/?utm_source=6RIEo4IQRGfl&utm_content=68-1408-202301190102556f51a2a5&utm_campaign=testpl20&utm_term=68
185.162.11.197200 OK 0 B URL HTTP/2 fuckablelovers.com/?utm_source=6RIEo4IQRGfl&utm_content=68-1408-202301190102556f51a2a5&utm_campaign=testpl20&utm_term=68
IP 185.162.11.197:0
ASN #207728 EUROHOSTER Ltd.
GET /?utm_source=6RIEo4IQRGfl&utm_content=68-1408-202301190102556f51a2a5&utm_campaign=testpl20&utm_term=68 HTTP/1.1
Host: fuckablelovers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://med-dynamics.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:02:59 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cache-control: max-age=0, private, must-revalidate
cross-origin-window-policy: deny
set-cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTEwOTE1bQAAAApSSkxZQnFWdlFLbQAAAANoaWRtAAAAJWxyVUxzcEV5VU9PRWF1UmxSaXFhUmFCbWVSS0JMb2lva3BmamVtAAAAAmhsZAADbmlsbQAAAAVzdWJfMW0AAAACNjhtAAAABXN1Yl8ybQAAAB42OC0xNDA4LTIwMjMwMTE5MDEwMjU1NmY1MWEyYTVtAAAAB3RyYWNrZXJtAAAACHRlc3RwbDIwbQAAAAN1bnFtAAAADFZBaG9xV3laYkJ1ag.8DnKkbV1roRNh8_FFS9pYyQgn_7eMZELOz3s1GspmHQ; path=/; expires=Thu, 18 Jan 2024 22:02:59 GMT; max-age=31536000
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-xss-protection: 1; mode=block
content-encoding: gzip
X-Firefox-Spdy: h2
fuckablelovers.com/favicon.ico
185.162.11.197200 OK 0 B URL HTTP/2 fuckablelovers.com/favicon.ico
IP 185.162.11.197:0
ASN #207728 EUROHOSTER Ltd.
GET /favicon.ico HTTP/1.1
Host: fuckablelovers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fuckablelovers.com/?utm_source=6RIEo4IQRGfl&utm_content=68-1408-202301190102556f51a2a5&utm_campaign=testpl20&utm_term=68
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTEwOTE1bQAAAApSSkxZQnFWdlFLbQAAAANoaWRtAAAAJWxyVUxzcEV5VU9PRWF1UmxSaXFhUmFCbWVSS0JMb2lva3BmamVtAAAAAmhsYQFtAAAABXN1Yl8xbQAAAAI2OG0AAAAFc3ViXzJtAAAAHjY4LTE0MDgtMjAyMzAxMTkwMTAyNTU2ZjUxYTJhNW0AAAAHdHJhY2tlcm0AAAAIdGVzdHBsMjBtAAAAA3VucW0AAAAMVkFob3FXeVpiQnVq.ANZEpRbQ-aNGp_nfF1578wIgxQAFbOpk19g9_h3bOao; __fjs=1010101011110101110
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 22:03:00 GMT
content-type: image/x-icon
X-Firefox-Spdy: h2