Report - managementulcalitatii.com/

Report Overview

Submitted URL
managementulcalitatii.com/
IP
45.88.202.115
ASN
#58110 IP Volume LTD
Submitted
2023-02-02 10:22:41
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.7 kB	9.8 kB	23.33.119.27
static.zdassets.com	2154	2018-06-24T00:11:55Z	2023-03-13T05:10:10Z	4.3 kB	18 kB	104.18.70.113
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	682 B	1.1 kB	93.184.220.29
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	1.5 kB	79 kB	216.58.207.227
pixel.epik.com	403460	2020-11-24T22:54:11Z	2023-03-13T06:40:29Z	910 B	338 B	102.223.180.96
epikcs.zendesk.com	unknown	2022-12-02T14:50:34Z	2023-03-13T06:40:29Z	952 B	1.9 kB	104.16.51.111
managementulcalitatii.com	unknown	2019-11-03T08:52:06Z	2023-02-01T11:20:07Z	4.7 kB	118 kB	45.88.202.115
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	839 B	2.4 kB	142.250.74.138
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.149.149.164
serve.targetednetworks.com	unknown	2022-06-20T16:32:25Z	2023-03-13T06:40:28Z	385 B	463 B	45.33.20.235
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.3 kB	51 kB	34.120.237.76
ekr.zdassets.com	2396	2018-06-14T01:52:57Z	2023-03-13T05:10:10Z	445 B	1.2 kB	104.18.72.113
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.1 kB	4.2 kB	142.250.74.131

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-02	medium	serve.targetednetworks.com/delivery/load	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	static.zdassets.com/ekr/snippet.js?key=1546ebb5-45e1-49c4-94dc-4b5d44a6d66c	23 kB	2023-03-07	2023-07-05
Pretty URL static.zdassets.com/ekr/snippet.js?key=1546ebb5-45e1-49c4-94dc-4b5d44a6d66c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:26 Last Seen2023-07-05 14:48:33 Times Seen125 Hash 5cae6ce528dce0c327b2bcbaad459fdb 802aa044d8f09eb89502b5343a1623a5ab0c6c32 c71a7bdc6e1f2f8875556b690007a65be9e5ae1fb285f76d85180c89a3fa52d2 Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-9352-34c91d3.js	47 kB	2023-03-09	2023-03-13
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-9352-34c91d3.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:20:05 Last Seen2023-03-13 17:50:56 Times Seen1 Hash 75cbe5d2f9523420cd75ea3f672b4a58 effbb78372f20a60eb4a539821d2e93239e5bd1e 58ad140c3048282dda6f6322e56e0bba2f282dc61df66bca6aa361e282df5d35 Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-3646-34c91d3.js	67 kB	2023-03-13	2023-03-13
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-3646-34c91d3.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:03:00 Last Seen2023-03-13 17:50:55 Times Seen1 Hash feb9d7952ea7f3f98336619f8e9743b9 aa0bdad8e4f3b06fd8d72f27be530bc0b91498e7 f8335895b15e9e3d7c40b12e1fe3b31fa71c6a295e8478e68801b9a75335a5be Loading...

	managementulcalitatii.com/js/lab.min.js	4.5 kB	2023-03-07	2024-04-19
Pretty URL managementulcalitatii.com/js/lab.min.js IP 45.88.202.115 ASN #58110 IP Volume LTD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:06 Last Seen2024-04-19 09:04:09 Times Seen274 Hash 5bae8f54eb5be64b131e498e2c233bbc 25aa4807d5d07f1dbd9705866fbe6540ad0fd1d5 565169484eb0f13570db78742dcf091e83129a2a0471ae485aa13a890f378258 Loading...

	managementulcalitatii.com/	753 B	2023-03-07	2024-04-19
Pretty URL managementulcalitatii.com/ IP 45.88.202.115 ASN #58110 IP Volume LTD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:52:59 Last Seen2024-04-19 09:04:09 Times Seen160 Hash 1df7db4198ceaf590098823a286204fb a0da12deb58ea99699e806115a4b2842f6fdfadc f2597d9cc3691e795cdb008e9439bb959ff3bae05ce7f5a244a20415b1130ce7 Loading...

	managementulcalitatii.com/	1.7 kB	2023-03-08	2024-04-19
Pretty URL managementulcalitatii.com/ IP 45.88.202.115 ASN #58110 IP Volume LTD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 19:48:07 Last Seen2024-04-19 09:04:09 Times Seen160 Hash b0cd30e214cf2522c8732d4e6837eb7f e6d1b9159dd136d4a147bc070b933e919c5f3e92 96437dd10bf3a29f171ac1bcfebf5048961a065045db351d8c15dbd6b3e2b4af Loading...

	managementulcalitatii.com/js/global.js?v=1	2.0 kB	2023-03-07	2024-04-19
Pretty URL managementulcalitatii.com/js/global.js?v=1 IP 45.88.202.115 ASN #58110 IP Volume LTD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:06 Last Seen2024-04-19 09:04:09 Times Seen275 Hash 7b08992307bf75cff71e268fe1bec7b7 6518204f41cec36228d2c19c2d138cf1c4d972ee 24704d232f9937d71f8aec02c4308ed0b1e4fa237e144fc373fd520b6d935076 Loading...

	managementulcalitatii.com/js/openpixel.min.js?t=1675382400000	7.1 kB	2023-03-07	2024-04-19
Pretty URL managementulcalitatii.com/js/openpixel.min.js?t=1675382400000 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:06 Last Seen2024-04-19 09:04:09 Times Seen263 Hash c3f7401540792da8651fd98ba29d6234 18031b36055b29f303e50b950c840c2a38d0d99a 9d3d199481d627ddbcc19f0117d96cd434708338822064b2bc63a3dddd54c8dc Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-messenger-34c91d3.js	14 kB	2023-03-13	2023-03-13
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-messenger-34c91d3.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:02:36 Last Seen2023-03-13 17:50:56 Times Seen1 Hash 214afa5816e69099b4b488860c973e32 a5fa3f0fc0e9cc73e87eb2f3c3b81a4d7ea03592 b3b828b611491f9444f352509eb6dbcada898741a822308cf3f9d67681348630 Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-9524-34c91d3.js	9.0 kB	2023-03-09	2023-03-13
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-9524-34c91d3.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:39:56 Last Seen2023-03-13 17:50:55 Times Seen1 Hash 8368a7ac9bda15d64ba1686611ee7347 225648324cea3d3dede813a99afd0b02811f8ac4 853e1bc06e993acf637845431f1f4b99f8f476188d117c8fd54549ebef38fa21 Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 10:22:55 Times Seen36956311 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-1663-34c91d3.js	75 kB	2023-03-13	2023-03-13
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-1663-34c91d3.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:02:36 Last Seen2023-03-13 17:50:55 Times Seen1 Hash 121c32804f53f19378dc9591681cffc9 9e9d3dbb4b9eb1bc4ef67e38aae6f2a4036ddcf4 509130826359e219b37856e6045fdf16364202c6fc341ed682f1ca0800637b0f Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-281-34c91d3.js	128 kB	2023-03-13	2023-03-13
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-281-34c91d3.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:02:36 Last Seen2023-03-13 17:50:56 Times Seen1 Hash f99b3aecc9c558596aa12a98ec643365 4dd5dba91b0b9156bcecde0fcef6092f93f8eb76 9c82d621086c6f39d38b3b70afae043d070ef2b4e02e2e0827e3879705b823fd Loading...

	managementulcalitatii.com/	503 B	2023-03-07	2024-04-19
Pretty URL managementulcalitatii.com/ IP 45.88.202.115 ASN #58110 IP Volume LTD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:52:59 Last Seen2024-04-19 09:04:09 Times Seen210 Hash 7afd8ec8b107440dd5b9b97ffd741aeb 6b2af8755871c434f58401b577c33f98f86278d1 1abb7c8345dfea671293202daf2d7edb43f8af648dc0151775db964f7b6c6cde Loading...

	managementulcalitatii.com/	413 B	2023-03-13	2023-03-13
Pretty URL managementulcalitatii.com/ IP 45.88.202.115 ASN #58110 IP Volume LTD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:04:10 Last Seen2023-03-13 14:56:17 Times Seen1 Hash fb45e092ac7332b89484c99873bca803 4cda0eb6b240ca330386b81ddda40bdc3c461c85 1e1dcd382e47ab41f2b6885598e1fdee0c45a318caa8ede36073f7a40163ae98 Loading...

	static.zdassets.com/web_widget/latest/web-widget-framework-c82fe813e62b58e096bc.js	162 kB	2023-03-13	2023-03-13
Pretty URL static.zdassets.com/web_widget/latest/web-widget-framework-c82fe813e62b58e096bc.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:54:57 Last Seen2023-03-13 18:05:42 Times Seen1 Hash 5c97db2a2d29c595e26430d1c8358d6a d4025c60eb86fdec8f7b2c854a15232e6343b169 af4a6d9424e18ced13b9ab3ee007ef3d54a0e23d19c21d1747e73b43465d6563 Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-7551-34c91d3.js	19 kB	2023-03-09	2023-03-13
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-7551-34c91d3.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:39:56 Last Seen2023-03-13 17:50:55 Times Seen1 Hash b6375fecac03a35b22cde2f004c0fa57 1c8d9cb345d283d4f71551f2f1ae8257f0d7e2f9 41648d0a12fe7f401a80fb06518cc074a15113c6f5efc8aa4d7fc0d3f48f2fdd Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-34c91d3.js	15 kB	2023-03-13	2023-03-14
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-34c91d3.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:02:36 Last Seen2023-03-14 15:30:28 Times Seen1 Hash 33f44e263cc049fe99ee30fc157cc9ea 92b244531da7fe994fa047951e3105635a7c1abf 58fca4d19145332228ca462c75848f97613752f7f8bdb4351d4dd198b6aeaca5 Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-9865-34c91d3.js	13 kB	2023-03-09	2023-03-13
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-9865-34c91d3.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 11:39:56 Last Seen2023-03-13 17:50:55 Times Seen1 Hash 6825954fa6a452cbc50034ed21755927 bdc59334c146e70133f5c0ca61b7811a52b1b763 95a0a583ec72d7ff98e53e79bb1afd8581f68ca3d47d94c3588f40387acdc736 Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-5614-34c91d3.js	11 kB	2023-03-09	2023-03-13
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-5614-34c91d3.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:20:05 Last Seen2023-03-13 17:50:55 Times Seen1 Hash 719f990fafee92dfdd57b3143a3b0a43 ad1918e680fd97de9dd330b5248de00e2c1e3083 bd0cec6f7cc4c361e4342a96130a1957687711e946b4eec5f50a9f7b689f2d63 Loading...

	managementulcalitatii.com/	60 B	2023-03-07	2024-04-19
Pretty URL managementulcalitatii.com/ IP 45.88.202.115 ASN #58110 IP Volume LTD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:52:59 Last Seen2024-04-19 09:04:09 Times Seen157 Hash 4565f7185c529cb80f4bf611467329e0 276632bf2a2f4187840d650327170a9438886a2c 2c7e3d808764189c15cd1d9ebea39226f6c19747cba202f5114cd61c0af47bcd Loading...

	static.zdassets.com/web_widget/latest/messenger/web-widget-9809-34c91d3.js	29 kB	2023-03-07	2023-03-17
Pretty URL static.zdassets.com/web_widget/latest/messenger/web-widget-9809-34c91d3.js IP 104.18.70.113 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:46 Last Seen2023-03-17 11:33:44 Times Seen1 Hash 7f90e3a97a3bcf5c1aab74f58af70fcf 062191d31d8b4b2da9a2465bb16f665f846c64a6 2510b807540118c7902fc2a55344cb5b8be791d830c6e37cecdb70f30125b034 Loading...

HTTP Transactions (62)

URL IP Response Size

managementulcalitatii.com/

45.88.202.115

301 Moved Permanently

162 B

URL HTTP/1.1
managementulcalitatii.com/
IP
45.88.202.115:0
ASN
#58110 IP Volume LTD

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET / HTTP/1.1
Host: managementulcalitatii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 02 Feb 2023 10:22:29 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://managementulcalitatii.com/

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19855
Expires: Thu, 02 Feb 2023 15:53:24 GMT
Date: Thu, 02 Feb 2023 10:22:29 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2178
Expires: Thu, 02 Feb 2023 10:58:47 GMT
Date: Thu, 02 Feb 2023 10:22:29 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6343
Expires: Thu, 02 Feb 2023 12:08:12 GMT
Date: Thu, 02 Feb 2023 10:22:29 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 09:43:29 GMT
content-type: application/json
age: 2340
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 4cc6QmkHRW/WBR1UXoOslRrtDFFBSWHQLNFQdykZMLWXPQInlpCSIksafLPLBlBC3bAJklizH8c=
x-amz-request-id: TVRZ4VWNPGFX9CR0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 09:23:02 GMT
age: 3567
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 10:22:29 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
37623ec5d7251cb5a9c7de8bf87fedf0
e4c1c6291e423efe50615f5e989a9aed5a8bd79e
ae507ffdf16e49db0b69c807496f57a752fee3ed1f71d309b8e9ee700fc2732a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AE507FFDF16E49DB0B69C807496F57A752FEE3ED1F71D309B8E9EE700FC2732A"
Last-Modified: Wed, 01 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21559
Expires: Thu, 02 Feb 2023 16:21:48 GMT
Date: Thu, 02 Feb 2023 10:22:29 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 09:30:30 GMT
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
age: 3120
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20080
Expires: Thu, 02 Feb 2023 15:57:10 GMT
Date: Thu, 02 Feb 2023 10:22:30 GMT
Connection: keep-alive

managementulcalitatii.com/css/bootstrap-custom.min.css

45.88.202.115

200 OK

5.2 kB

URL HTTP/2
managementulcalitatii.com/css/bootstrap-custom.min.css
IP
45.88.202.115:0
ASN
#58110 IP Volume LTD

File type
ASCII text, with very long lines (25011), with no line terminators
Size
5.2 kB (5219 bytes)
Hash
d06023a3a7739c3b7ba9904f83801a02
6c6d72f90df1ef41b0ec42d4fe0ac778d70ecf89
1334089a055032bbfe82c476f9a47ee9b3b5fcfbc41c7fbe81cf23bdc6a94132

HTTP Headers

GET /css/bootstrap-custom.min.css HTTP/1.1
Host: managementulcalitatii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://managementulcalitatii.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 10:22:30 GMT
content-type: text/css
content-length: 5219
last-modified: Fri, 02 Dec 2022 17:39:11 GMT
etag: "61b3-5eedbd0cd5274-gzip"
vary: Accept-Encoding
content-encoding: gzip
expires: Fri, 17 Feb 2023 10:22:30 GMT
cache-control: max-age=1296000
x-upstream-cache: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2

managementulcalitatii.com/css/parking2.min.css?v=6

45.88.202.115

200 OK

3.6 kB

URL HTTP/2
managementulcalitatii.com/css/parking2.min.css?v=6
IP
45.88.202.115:0
ASN
#58110 IP Volume LTD

File type
ASCII text, with very long lines (20636), with no line terminators
Size
3.6 kB (3636 bytes)
Hash
5cf2b01f9651658e25089bf3cd23966d
180057cebbc65913dcb36114d2d79641a315a3e8
c18a4ab8c98ff4ce903823e7103783d1e20dfec722f5f2262ec1bb0d8f2354ad

HTTP Headers

GET /css/parking2.min.css?v=6 HTTP/1.1
Host: managementulcalitatii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://managementulcalitatii.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 10:22:30 GMT
content-type: text/css
content-length: 3636
last-modified: Fri, 02 Dec 2022 17:39:11 GMT
etag: "509c-5eedbd0cd6214-gzip"
vary: Accept-Encoding
content-encoding: gzip
expires: Fri, 17 Feb 2023 10:22:30 GMT
cache-control: max-age=1296000
x-upstream-cache: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2

managementulcalitatii.com/js/lab.min.js

45.88.202.115

200 OK

1.7 kB

URL HTTP/2
managementulcalitatii.com/js/lab.min.js
IP
45.88.202.115:0
ASN
#58110 IP Volume LTD

File type
ASCII text, with very long lines (4493), with no line terminators
Size
1.7 kB (1742 bytes)
Hash
8fad69de47e5fc77fca5fa1919633d5d
862db45036d4fa4cc12d1a86108cb2cf67ebfccb
2923bca21647bf9fc2819c28bf2536464f33a3bb76344cdb0740bf86477e917b

HTTP Headers

GET /js/lab.min.js HTTP/1.1
Host: managementulcalitatii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://managementulcalitatii.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 10:22:30 GMT
content-type: text/javascript
content-length: 1742
last-modified: Fri, 02 Dec 2022 17:39:11 GMT
etag: "118d-5eedbd0cdcf74-gzip"
vary: Accept-Encoding
content-encoding: gzip
expires: Fri, 17 Feb 2023 10:22:30 GMT
cache-control: max-age=1296000
x-upstream-cache: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2

managementulcalitatii.com/js/global.js?v=1

45.88.202.115

200 OK

815 B

URL HTTP/2
managementulcalitatii.com/js/global.js?v=1
IP
45.88.202.115:0
ASN
#58110 IP Volume LTD

File type
ASCII text
Size
815 B (815 bytes)
Hash
b8ffea10ebb902712bcfa786a9cebbb7
8ae6d6f6517ce28302841048640a4414227ec8c2
65489ebee4804ab5870c1e451b13ee9c1677e6175211dc7e107d73b920516ec0

HTTP Headers

GET /js/global.js?v=1 HTTP/1.1
Host: managementulcalitatii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://managementulcalitatii.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 10:22:30 GMT
content-type: application/javascript
content-length: 815
last-modified: Fri, 02 Dec 2022 17:39:11 GMT
etag: "7bb-5eedbd0cdbfd4-gzip"
vary: Accept-Encoding
content-encoding: gzip
expires: Fri, 17 Feb 2023 10:22:30 GMT
cache-control: max-age=1296000
x-upstream-cache: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2

managementulcalitatii.com/images/epik-domain-names-dark.svg

45.88.202.115

200 OK

2.0 kB

URL HTTP/2
managementulcalitatii.com/images/epik-domain-names-dark.svg
IP
45.88.202.115:0
ASN
#58110 IP Volume LTD

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1280)
Size
2.0 kB (2020 bytes)
Hash
aab2da6978bc7571be5d72c6ea25c7c1
164d6da02054a6b0df43046065b2ee37214728a0
7655ac0dc329e0d5144343e1a52ca847747ea171de4416fcf18236d27a687243

HTTP Headers

GET /images/epik-domain-names-dark.svg HTTP/1.1
Host: managementulcalitatii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://managementulcalitatii.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 10:22:30 GMT
content-type: image/svg+xml
content-length: 2020
last-modified: Fri, 02 Dec 2022 17:39:11 GMT
etag: "1497-5eedbd0cd6214-gzip"
vary: Accept-Encoding
content-encoding: gzip
expires: Fri, 17 Feb 2023 10:22:30 GMT
cache-control: max-age=1296000
x-upstream-cache: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 10:22:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 10:22:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
83f1f9ed912e0adcc9cc4724105e63f2
821a616522f52919d883c02058c98f98235f4ba7
375259885f6aaa13054ee69315c9d96880112f0278392f6515bd59d62b33d92a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6510
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 10:22:30 GMT
Last-Modified: Thu, 02 Feb 2023 08:34:00 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 10:22:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

54.149.149.164

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.149.149.164:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Uhdwulp3XFy3D0ELqp6EJg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Vwirh4QyY6DO4wtM4hUyfhJxCxg=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 10:22:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 10:22:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://managementulcalitatii.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 303630
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?display=swap&family=Open+Sans:400,600

142.250.74.138

200 OK

1.1 kB

URL HTTP/2
fonts.googleapis.com/css?display=swap&family=Open+Sans:400,600
IP
142.250.74.138:0
ASN
#15169 GOOGLE

File type
data
Size
1.1 kB (1126 bytes)
Hash
c116217fb091e89247e5ad256ddf9117
6297383085a6fa4bc539dc7871ac5331e33731f2
744a75f7af6dd3cbe4dc15b6231c4e9531513d07513e5a701f580e8905f4d7a0

HTTP Headers

GET /css?display=swap&family=Open+Sans:400,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://managementulcalitatii.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 10:22:30 GMT
date: Thu, 02 Feb 2023 10:22:30 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

managementulcalitatii.com/images/opt/domain_pay_left2.jpg

45.88.202.115

200 OK

14 kB

URL HTTP/2
managementulcalitatii.com/images/opt/domain_pay_left2.jpg
IP
45.88.202.115:0
ASN
#58110 IP Volume LTD

File type
data
Size
14 kB (13721 bytes)
Hash
7e2dd15e9fff9181b3a80284aea07868
fdea0463f0eedadabc757dcc03e9f43c58fe4cac
1674e701af7f77a9d10bac2fae462b71a144096c35a6395daf038b30167b511d

HTTP Headers

GET /images/opt/domain_pay_left2.jpg HTTP/1.1
Host: managementulcalitatii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://managementulcalitatii.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 10:22:30 GMT
content-type: image/jpeg
vary: Accept-Encoding
last-modified: Thu, 26 Jan 2023 20:20:02 GMT
etag: W/"1c24-5f330794ff275"
expires: Fri, 17 Feb 2023 10:22:30 GMT
cache-control: max-age=1296000
x-upstream-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Size
16 kB (15752 bytes)
Hash
b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://managementulcalitatii.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 01:49:59 GMT
expires: Sat, 27 Jan 2024 01:49:59 GMT
cache-control: public, max-age=31536000
age: 549151
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://managementulcalitatii.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:52:41 GMT
expires: Tue, 30 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 228589
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 10:22:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

managementulcalitatii.com/images/parking2/bg/a18.jpg

45.88.202.115

200 OK

86 kB

URL HTTP/2
managementulcalitatii.com/images/parking2/bg/a18.jpg
IP
45.88.202.115:0
ASN
#58110 IP Volume LTD

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1440x850, components 3\012- data
Size
86 kB (86385 bytes)
Hash
08ccb24b38285ea4e45e152b4dc08119
fb2324af38ab654fae0c0b7f9be6e1f70461837e
be3dd3c9fab8561b6ef4b0ebb90b1bad1001f0c1014c941d015f249d8b41f76e

HTTP Headers

GET /images/parking2/bg/a18.jpg HTTP/1.1
Host: managementulcalitatii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://managementulcalitatii.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 10:22:30 GMT
content-type: image/jpeg
vary: Accept-Encoding
last-modified: Fri, 02 Dec 2022 17:39:11 GMT
etag: W/"110c6-5eedbd0cd90f4"
expires: Fri, 17 Feb 2023 10:22:30 GMT
cache-control: max-age=1296000
x-upstream-cache: STALE
content-encoding: gzip
X-Firefox-Spdy: h2

managementulcalitatii.com/favicon.ico

45.88.202.115

200 OK

371 B

URL HTTP/2
managementulcalitatii.com/favicon.ico
IP
45.88.202.115:0
ASN
#58110 IP Volume LTD

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
371 B (371 bytes)
Hash
1e5f93189ac5093e9d1ed772f149846f
1e79acdbfe0eb635aa0b1bcedf824e3d5853e263
0db3d154eaa39a840ed30269a08cac5cb5d279e8a768790f2393a79c96cfe85b

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: managementulcalitatii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://managementulcalitatii.com/
Cookie: __opix_uid=1-45y6746q-ldmy8imu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 10:22:31 GMT
content-type: image/vnd.microsoft.icon
content-length: 371
last-modified: Fri, 02 Dec 2022 17:39:11 GMT
etag: "47e-5eedbd0cd6214-gzip"
vary: Accept-Encoding
content-encoding: gzip
expires: Fri, 17 Feb 2023 10:22:31 GMT
cache-control: max-age=1296000
x-upstream-cache: STALE
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8be8de3b56e8177c60b4c06f7dfb222c
f94d988d15c9adcb9642b2308a93f62ee76ce442
caff645a7e7840d6f6cafc62e36a047910ca80d4a2a84f8f0de8e523ac147a54

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CAFF645A7E7840D6F6CAFC62E36A047910CA80D4A2A84F8F0DE8E523AC147A54"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4460
Expires: Thu, 02 Feb 2023 11:36:51 GMT
Date: Thu, 02 Feb 2023 10:22:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ccfac2ed92e391fbc23ff7b9d9c510cb
d7caa6edf6540a7ba5e80676091691097e4fdc0d
3bd9b80b5a0cc9d5e14474598f4f54e8b57e356cf6ee271105e84324b0bc726f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3BD9B80B5A0CC9D5E14474598F4F54E8B57E356CF6EE271105E84324B0BC726F"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12236
Expires: Thu, 02 Feb 2023 13:46:27 GMT
Date: Thu, 02 Feb 2023 10:22:31 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
9a8075b65864734faf5d4550ef2e1cde
f8545bbf31e975edfc8d8145c548528482bfd67e
99d8c1ae872e86eef5d3b6b8e36542d0227b54935da9357af982b2ce8f15f832

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=120035
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 10:22:31 GMT
Etag: "63dac0ca-117"
Expires: Fri, 03 Feb 2023 19:43:06 GMT
Last-Modified: Wed, 01 Feb 2023 19:43:06 GMT
Server: nginx
Content-Length: 279

pixel.epik.com/pixel.gif?id=parking&uid=1-45y6746q-ldmy8imu&ev=pageload&ed=ManagementulCalitatii.com&v=1&dl=https%3A%2F%2Fmanagementulcalitatii.com%2F&rl=&ts=1675333376306&de=UTF-8&sr=1280x1024&vp=1280x939&cd=24&dt=ManagementulCalitatii.com%20domain%20is%20for%20sale%20%7C%20Buy%20with%20Epik.com&bn=Firefox%20105&md=false&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&tz=0&utm_source=&utm_medium=&utm_term=&utm_content=&utm_campaign=

102.223.180.96

200 OK

42 B

URL HTTP/1.1
pixel.epik.com/pixel.gif?id=parking&uid=1-45y6746q-ldmy8imu&ev=pageload&ed=ManagementulCalitatii.com&v=1&dl=https%3A%2F%2Fmanagementulcalitatii.com%2F&rl=&ts=1675333376306&de=UTF-8&sr=1280x1024&vp=1280x939&cd=24&dt=ManagementulCalitatii.com%20domain%20is%20for%20sale%20%7C%20Buy%20with%20Epik.com&bn=Firefox%20105&md=false&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&tz=0&utm_source=&utm_medium=&utm_term=&utm_content=&utm_campaign=
IP
102.223.180.96:0
ASN
#0

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

POST /pixel.gif?id=parking&uid=1-45y6746q-ldmy8imu&ev=pageload&ed=ManagementulCalitatii.com&v=1&dl=https%3A%2F%2Fmanagementulcalitatii.com%2F&rl=&ts=1675333376306&de=UTF-8&sr=1280x1024&vp=1280x939&cd=24&dt=ManagementulCalitatii.com%20domain%20is%20for%20sale%20%7C%20Buy%20with%20Epik.com&bn=Firefox%20105&md=false&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&tz=0&utm_source=&utm_medium=&utm_term=&utm_content=&utm_campaign= HTTP/1.1
Host: pixel.epik.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://managementulcalitatii.com
Connection: keep-alive
Referer: https://managementulcalitatii.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 10:22:31 GMT
Content-Type: image/gif
Content-Length: 42
Last-Modified: Mon, 09 Jan 2023 14:22:48 GMT
Connection: keep-alive
ETag: "63bc2338-2a"
Expires: Thu, 02 Feb 2023 11:22:31 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes

serve.targetednetworks.com/delivery/load

45.33.20.235

302 Moved Temporarily

167 B

URL HTTP/1.1
serve.targetednetworks.com/delivery/load
IP
45.33.20.235:0
ASN
#63949 Linode, LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
1dd977065c1e457e5fe1c16c8c83abdd
6dc6acfc9432bd4f48927f4d3ffe23ca6a2eb504
a2b66bda5d606b25a9a6f90b47113590083c3f2477e319567cbc783412c34f83

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /delivery/load HTTP/1.1
Host: serve.targetednetworks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://managementulcalitatii.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: openresty/1.13.6.1
Date: Thu, 02 Feb 2023 10:22:31 GMT
Content-Type: text/html
Content-Length: 167
Connection: close
Location: http://serve.targetednetworks.com/delivery/load
Set-Cookie: mtmssl=1;Domain=serve.targetednetworks.com;Path=/;Max-Age=120

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17292
Expires: Thu, 02 Feb 2023 15:10:43 GMT
Date: Thu, 02 Feb 2023 10:22:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17292
Expires: Thu, 02 Feb 2023 15:10:43 GMT
Date: Thu, 02 Feb 2023 10:22:31 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17292
Expires: Thu, 02 Feb 2023 15:10:43 GMT
Date: Thu, 02 Feb 2023 10:22:31 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg

34.120.237.76

200 OK

15 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
15 kB (14593 bytes)
Hash
0ceb09fa3caa0fcda4a6314141e2d019
d08f43956f6859e4c2385231bb5506262257445f
a2100701c69f86920b14714b19ec14db9ebfd91000f0ec2397b8f27d981bc1ee

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 14593
x-amzn-requestid: 796fc590-5a08-4765-b861-e5f707e4d7f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdLoFHQoAMFaAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbe3-3f93635c337e77e453bba394;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gYo5IyA5mM2B5nw6O2QkkZ6-go2CzG8Nwb_pWSixGplAl7LsbmWUiQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:55:43 GMT
age: 44808
etag: "d08f43956f6859e4c2385231bb5506262257445f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17292
Expires: Thu, 02 Feb 2023 15:10:43 GMT
Date: Thu, 02 Feb 2023 10:22:31 GMT
Connection: keep-alive

34.120.237.76

200 OK

2.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601fd155-b928-42c6-bfb0-f3599f52fdf5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.5 kB (2530 bytes)
Hash
5a1ddd54f3c344b36a26476a33ccfe20
3cc3a77f6a59cafed25fa0882e13644f4eebef50
65cef0476175fca421fef73419440b82dcb763879b79385f2cacc43f42b3237b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F601fd155-b928-42c6-bfb0-f3599f52fdf5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2530
x-amzn-requestid: 3ce99c09-61b5-4a51-97ec-c40c443238ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freplHVZoAMFz5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade3d-605687635e0a740e49ff78b9;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:48:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Hs72kBEkTiVNiWczvw7UONt_cbyvWuU_erpoJHQS8z1s1M601xIdug==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:28 GMT
age: 44703
etag: "3cc3a77f6a59cafed25fa0882e13644f4eebef50"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5356 bytes)
Hash
7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i697kJpdT4ZPeMLWIftWf16pWCic0-v4tL4GDKfVfTZLo-E4-3FwDQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 43253
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9600 bytes)
Hash
3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 91987222-d376-4099-a4e9-5f877b5212be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLzO2FSDIAMFktg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce325e-281a7e062ee3039d42ae8f83;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:08:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: SEH32iK4aCkxhxQyu3fSlW8uVM1Oj5hwnl2U09k_THEOdAqdEeVMJw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:03:43 GMT
age: 44329
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (5011 bytes)
Hash
3c56d08c13f357f91a14309b48d75e88
739ff0319e25b99fbf69b6a1c12159d4dda7549b
7f2a2004b2b587a18e99bae5ef216de0a0a12f4ab8e7c817df8eb8aa41f4be73

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5011
x-amzn-requestid: 0760d4c6-1e6b-4e68-8c90-37229f8110e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5JE0AIAMFn8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6d-43fb25a727dd969b6219bd6f;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zQlfIcpWrJw9N6I7WNmV5feaR9QNy3FUSCOJQeyAnYS0oEH12dtzqg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:35 GMT
age: 44577
etag: "739ff0319e25b99fbf69b6a1c12159d4dda7549b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-7551-34c91d3.js

104.18.70.113

200 OK

6.9 kB

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-7551-34c91d3.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (18596), with no line terminators
Size
6.9 kB (6914 bytes)
Hash
36d57ad3e589690b46d7f14ae0c94405
aacb7852c800ae6470305241b8dc363a80b095c9
f0fb8c7c95cb617165319b4ada78d883a6f099d5f4aaf66c4b6b9591640c806b

HTTP Headers

GET /web_widget/latest/messenger/web-widget-7551-34c91d3.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 10:22:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: hZNOKi8zS/6SKct+sb02M+AR5cYn3UjtuVqnNhzv9GPeTintHXjOA+kAoMCx9xCbeIj99rTatpKOz5ToYGp1Kg==
x-amz-request-id: 8SCB06QFJNTB99XM
x-amz-replication-status: COMPLETED
last-modified: Mon, 30 Jan 2023 01:14:23 GMT
etag: W/"b6375fecac03a35b22cde2f004c0fa57"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 30 Jan 2024 01:14:22 GMT
x-amz-version-id: guunTJfmfq6iWmszggvUbuhW5.KJK8QS
cf-cache-status: HIT
age: 103169
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IUlp1t2Vbi6nqLZ1rISls5lDxO8XSN%2BD9Zw1KLO%2FNYFevZoKf1%2B1gE4hQgHSdLmuU9aX71j%2B7Mt75oyel2AZYP5wmBEImwyYCSDBHyMSb5FhDBeyLILVFoBGUg6ncSUcf6DJDSo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 793234c9ef8f0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2

epikcs.zendesk.com/frontendevents/pv?client=1B752747-577B-429A-A0E0-83861AF69088

104.16.51.111

200 OK

0 B

URL HTTP/2
epikcs.zendesk.com/frontendevents/pv?client=1B752747-577B-429A-A0E0-83861AF69088
IP
104.16.51.111:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /frontendevents/pv?client=1B752747-577B-429A-A0E0-83861AF69088 HTTP/1.1
Host: epikcs.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managementulcalitatii.com/
Content-Type: application/json
Origin: https://managementulcalitatii.com
Content-Length: 524
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 10:22:32 GMT
content-length: 0
access-control-allow-origin: *
vary: Origin
x-zendesk-zorg: yes
x-request-id: 793234cb1d74b4f9-IAD
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=La3qMeTGgwmhnl3tIMaff%2FtYVd7v5WsmiZ7UZ0Wmx6Mve3UWpWanftkweO68cWDs4x%2B%2Bk3Z4geez0r0iJNcpUwEKfwzdH%2BHiQSVGKcQUZby8zOAVXSSFPz1X9Ovd9VmwSbDJVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=42769d3ce2715f4347dcb48789e49766e37b5056-1675333352; path=/; domain=.epikcs.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 793234cb1d74b4f9-OSL
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc092e5e-3a14-4d43-9814-99fd9d49d6c8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7450 bytes)
Hash
41c44051cc3b4c69924df66048e7566b
5c6a12595c3f6005fec4baa84b16575951e72178
72dff70bcb417c088aba013a486e1dbabe099b40fb718a283f1ba220b142b848

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc092e5e-3a14-4d43-9814-99fd9d49d6c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7450
x-amzn-requestid: 1b3ef150-9b12-4b8b-94e6-0d6debbd24ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTDFmPoAMF-UQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-0fea883b0ce1a1b933dc2be8;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qON7fRZ1XPCkl7ldiGagd0UcPynLKMzysXr8LZSRvS1ily9cN5w_wA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:22:55 GMT
age: 43183
etag: "5c6a12595c3f6005fec4baa84b16575951e72178"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-9352-34c91d3.js

104.18.70.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-9352-34c91d3.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/messenger/web-widget-9352-34c91d3.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 10:22:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: Qo7TLqSOu1nqI1DXPlKbMEfD6/Lgw/0h0tWiEK0UrHo3QKPyOujF6q8d1Hb8p16EYnFZKNk6wuk=
x-amz-request-id: 8SC90GNW4M9JM83T
x-amz-replication-status: COMPLETED
last-modified: Mon, 30 Jan 2023 01:14:23 GMT
etag: W/"75cbe5d2f9523420cd75ea3f672b4a58"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 30 Jan 2024 01:14:22 GMT
x-amz-version-id: VL0Lv4A0OWsNsI5ZtTsFbAHWs8L.BcWg
cf-cache-status: HIT
age: 103171
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=60%2F0Ncu056GSEbVYzYycM5NkQObX%2Bv%2BG3MhuUczem8s57xxGnHCtubhRj46YIii%2Bq6y4sbjZJhllDCOPgeKtDtpKqXsGnnSTBTOj0qrFPMD%2FUZDNa%2FnBs4RiSgvZ%2BIIsEtQEBd8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 793234c8ae480b59-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-2294-34c91d3.js

104.18.70.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-2294-34c91d3.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/messenger/web-widget-2294-34c91d3.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 10:22:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: zskmuJEpE0sxpqxU8MvMRAZ9QHoveF0/HLY3M69VeQRA0laWpA3+As4HfyU6hNdQprwSxrM0A/JCDJ+jVPAveg==
x-amz-request-id: 8SCF7TTYTATYADGE
x-amz-replication-status: COMPLETED
last-modified: Mon, 30 Jan 2023 01:14:23 GMT
etag: W/"26ffd532833c050a2d0721bd59dd40b0"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 30 Jan 2024 01:14:22 GMT
x-amz-version-id: IGBcyjyPeQbAPZyerOzsIHf9ov3AkIJR
cf-cache-status: HIT
age: 103169
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l1wY%2BsR8tNaMcSmf7BZunWd8jLR3Rox3I9%2BEweLXXrPp5j4s%2FS0gotEQK4mnZIOAzWkIykCnQYtjo66nQGhGU5BocoBiYYzGCHCPYs83ousPDEcvejwqfY5ne5XFFZ9wzEn5rK0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 793234c9df850b59-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-6940-34c91d3.js

104.18.70.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-6940-34c91d3.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/messenger/web-widget-6940-34c91d3.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 10:22:32 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: /y5Z2IAKpqMjBJlnzG7Z6qT3WoR9ujMFO278LWeLd1omAyDGczIqxbo1ejoqJqMf2RAaW7s+gdhPh6srEiAi0A==
x-amz-request-id: 8SC5RSX973QF6R2K
x-amz-replication-status: COMPLETED
last-modified: Mon, 30 Jan 2023 01:14:22 GMT
etag: W/"3ef86e81a648e42867331ae358948d59"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 30 Jan 2024 01:14:21 GMT
x-amz-version-id: k5mp.dGvc_v.cT1wriCP5ykybGDhfzPg
cf-cache-status: HIT
age: 103170
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tT%2BudcgbyKs6c68vavMO4AA7kD5mwHO3asxl0YpjVEz9MuuQk%2BM2hXvnNqjk3aOpgj%2BFZx3%2BGyNcGfiIDPlMrJ1rERgvjh%2BHqBIwqjdW5bolCrkZSr4mfArGneTcbRWZrW%2BSfQE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 793234c9ffa50b59-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-34c91d3.js

104.18.70.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-34c91d3.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/messenger/web-widget-locales/messenger/en-us-json-34c91d3.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 10:22:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: pP8dC6f99yQDjRSsTojHmL3qQfXB5jtiTiUwQDaJTSAqg2TZpmmRsXJfYNDS8lJBn/0tCpd6jsY=
x-amz-request-id: RKKSTEV1DFGSDM5K
x-amz-replication-status: COMPLETED
last-modified: Mon, 30 Jan 2023 01:14:24 GMT
etag: W/"33f44e263cc049fe99ee30fc157cc9ea"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 30 Jan 2024 01:14:23 GMT
x-amz-version-id: BJcUOrkV1XR2uQDcwvEsgTwE_jrT7l4U
cf-cache-status: HIT
age: 103144
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6M3ynqDvjIAq%2F9ycwB0I1t9kTScncmZM1O08Efq4WSO3tSoKY0E7OlrX%2F%2BPLtRME0jY%2BRGRCTBRPNy1fkdYWb9eodeJ%2BciReFe%2B0R32EVpPF2%2BED4GnrD0CJ8n7TvvOIqpTYu9g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 793234c99f460b59-OSL
content-encoding: br
X-Firefox-Spdy: h2

ekr.zdassets.com/compose/1546ebb5-45e1-49c4-94dc-4b5d44a6d66c

104.18.72.113

200 OK

0 B

URL HTTP/2
ekr.zdassets.com/compose/1546ebb5-45e1-49c4-94dc-4b5d44a6d66c
IP
104.18.72.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /compose/1546ebb5-45e1-49c4-94dc-4b5d44a6d66c HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://managementulcalitatii.com
Connection: keep-alive
Referer: https://managementulcalitatii.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 02 Feb 2023 10:22:31 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: 
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cdn-cache-control: max-age=60
cache-control: max-age=600, public, stale-while-revalidate=600, stale-if-error=21600
etag: W/"f0279cab21c85162a4c1b686aaf84250"
x-request-id: 793234c25841b529-SEA, 793234c25841b529-SEA
x-runtime: 0.002511
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=01MQY%2F0kx1YM6jhRwRh%2FIbW7PIVY5YEBjxUvBp7cRoJeZkwZ7oncKc9MokYPznoJnsLtgA9lOWnIVVHlAcTwIvJXZTsFNK2bilXNo8aNMYT64FLWVFALofC4GaBHtpGHRQg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 793234c25841b529-OSL
content-encoding: br
X-Firefox-Spdy: h2

managementulcalitatii.com/images/opt/domain_pay_right2.jpg

45.88.202.115

200 OK

0 B

URL HTTP/2
managementulcalitatii.com/images/opt/domain_pay_right2.jpg
IP
45.88.202.115:0
ASN
#58110 IP Volume LTD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/opt/domain_pay_right2.jpg HTTP/1.1
Host: managementulcalitatii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://managementulcalitatii.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 10:22:30 GMT
content-type: image/jpeg
vary: Accept-Encoding
last-modified: Thu, 26 Jan 2023 20:20:02 GMT
etag: W/"20eb-5f330794ff275"
expires: Fri, 17 Feb 2023 10:22:30 GMT
cache-control: max-age=1296000
x-upstream-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2

epikcs.zendesk.com/embeddable/config

104.16.51.111

200 OK

0 B

URL HTTP/2
epikcs.zendesk.com/embeddable/config
IP
104.16.51.111:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /embeddable/config HTTP/1.1
Host: epikcs.zendesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://managementulcalitatii.com/
Origin: https://managementulcalitatii.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 02 Feb 2023 10:22:31 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers: 
access-control-max-age: 7200
cache-control: public, max-age=60, stale-while-revalidate=600, stale-if-error=3600
x-zendesk-origin-server: embeddable-app-server-66cb495985-645xm
x-request-id: 793234c67f21b4f9-IAD
x-runtime: 0.002291
vary: Origin, Accept-Encoding
x-cached: MISS
last-modified: Thu, 02 Feb 2023 10:16:44 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n441hlxi%2FggXyJl2RhY0uLUINM9h%2BM1kJMmJYlfuOTHyqYxG%2BmasAe1DM8sbbDeymvkud6gu1nqXQSFzDJwe2XMJePIRFunjgtaphxzt22K84VxHwQTFwPEAsSwAu0Ttt70r5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=52a027f9e1da812b43595fdef7aec45a0f439802-1675333351; path=/; domain=.epikcs.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 793234c67f21b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-281-34c91d3.js

104.18.70.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-281-34c91d3.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/messenger/web-widget-281-34c91d3.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 10:22:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: xdNMN4NCm9gh+mRbttEaWhHcatFqdRvLjSfjZDfBSqRVhwJUr7ogdWN4Kz8CmJke8q62JTO53I8=
x-amz-request-id: 8SCBD2HTE0GDAM1C
x-amz-replication-status: COMPLETED
last-modified: Mon, 30 Jan 2023 01:14:23 GMT
etag: W/"f99b3aecc9c558596aa12a98ec643365"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 30 Jan 2024 01:14:22 GMT
x-amz-version-id: bElY5qxH6TuyocvPtUEPSD0M3RhevCsp
cf-cache-status: HIT
age: 103170
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xc01IgzFkdRQKv%2BtuSBPmQ%2BKPSWRMBtzBlc2OfvWAFszeFxQ9sTm5SxI%2F6lNHVqorVp%2BG1l3fnOMeHfU4gxGvB%2BW8QfRVn66s9GsCZIcwKfwVeX40K6JHUL%2FOr5Q9njsVh5wIZ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 793234c8be700b59-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-9865-34c91d3.js

104.18.70.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-9865-34c91d3.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/messenger/web-widget-9865-34c91d3.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 10:22:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: fjUnNGPrLrEPi4TCawLY7QiWOnrymqOzbfWfbNNQmK6RJiu4udx806gO08S5UrtitJ35dzFs/lo=
x-amz-request-id: 8SC1N9E8FQ5CH0CD
x-amz-replication-status: COMPLETED
last-modified: Mon, 30 Jan 2023 01:14:23 GMT
etag: W/"6825954fa6a452cbc50034ed21755927"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 30 Jan 2024 01:14:22 GMT
x-amz-version-id: 5aLPDpeWFJlLrtHAFzyHiu0lr0i.4ce4
cf-cache-status: HIT
age: 103169
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YHpwTuVM2laZNRKe8%2BJYrZyUrzfenn%2FNVypMlz9IQr9PYtEGJ6fpVX7U25%2BJtxqi9HiSOsWvVn2%2BbJ6a3ijAPfLjUeoACfXxcj3vWxeT8vIris5AoDjM9IjHrq1SdYrbMMJPnbY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 793234c9ef980b59-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-5614-34c91d3.js

104.18.70.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-5614-34c91d3.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/messenger/web-widget-5614-34c91d3.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 10:22:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: Hf8/x1iVI68oX6R9uT3IgrsXSENxPRPWt4cRbxNQ4THHr42tLIyZJBErC9gOToNS+hrxZnZOB+Co6czsuGQWPg==
x-amz-request-id: 8SCEMH60SVRXTBS9
x-amz-replication-status: COMPLETED
last-modified: Mon, 30 Jan 2023 01:14:23 GMT
etag: W/"719f990fafee92dfdd57b3143a3b0a43"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 30 Jan 2024 01:14:22 GMT
x-amz-version-id: er3zUTYHRLRrNHJu1WLg6095KPj_S1fT
cf-cache-status: HIT
age: 103169
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TgxStYP3N2zwbNN2NdC7XY3%2B5IKx6nZ1IkkWrWaXZ%2BTuYxrD870COmSZ2NSHbfb%2BWWhCukN1fbGxRypNhjEJyKx22Zoy4Sh0xt6sQmOyStb1DqYh6QkZ219aRupmGmrlP%2FXP0uY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 793234c9ef9e0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2

managementulcalitatii.com/

45.88.202.115

200 OK

0 B

URL HTTP/2
managementulcalitatii.com/
IP
45.88.202.115:0
ASN
#58110 IP Volume LTD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: managementulcalitatii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 10:22:30 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.1.33-51+ubuntu22.04.1+deb.sury.org+1
access-control-allow-origin: http://managementulcalitatii.com
vary: Accept-Encoding, Accept-Encoding
expires: Thu, 02 Feb 2023 10:37:30 GMT
cache-control: max-age=900
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?display=swap&family=Roboto:400,900

142.250.74.138

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?display=swap&family=Roboto:400,900
IP
142.250.74.138:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?display=swap&family=Roboto:400,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://managementulcalitatii.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 10:22:30 GMT
date: Thu, 02 Feb 2023 10:22:30 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-9524-34c91d3.js

104.18.70.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-9524-34c91d3.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/messenger/web-widget-9524-34c91d3.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 10:22:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: g/OFQjuePdmXjVSA6GKbzevM56r24ntKiNZozgJGq/NsH//TJb2lJXdMr5BIeM08y4rtotlGjZ5kstsSKlAnrg==
x-amz-request-id: 8SC6NZ0YKBAXFXAQ
x-amz-replication-status: COMPLETED
last-modified: Mon, 30 Jan 2023 01:14:23 GMT
etag: W/"8368a7ac9bda15d64ba1686611ee7347"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 30 Jan 2024 01:14:22 GMT
x-amz-version-id: MckhzVyw0GfGC5fk984axP7bRK9rVG_t
cf-cache-status: HIT
age: 103171
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pyAG051BE4DQ9OWz5suPIMIJsxQ8l6WKIkFHsfTzV9aAnqris2GVjIjm7fObZ9jvNb4eBIWFET2jtMvrbAbLRZMjdtg38%2BHvfdK0Yaq4Pkf6Ao9G7cqxkx4G3tna1ktIiNuebUY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 793234c8ae490b59-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/messenger/web-widget-9809-34c91d3.js

104.18.70.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/messenger/web-widget-9809-34c91d3.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/messenger/web-widget-9809-34c91d3.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 10:22:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: Xi84OkyMSqE1X3x4+FqiPOYJh06hi3VGglntOQj+XxpVRtuJ9oAow6f4WLQhrcBzFuZh2/B/KS9B9s7JUpYTLg==
x-amz-request-id: 8SC6N3J6V2CB27PH
x-amz-replication-status: COMPLETED
last-modified: Mon, 30 Jan 2023 01:14:23 GMT
etag: W/"7f90e3a97a3bcf5c1aab74f58af70fcf"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 30 Jan 2024 01:14:22 GMT
x-amz-version-id: X9Bh_y80OEGkRiCPbleHRdIyJ6C5hvm_
cf-cache-status: HIT
age: 103169
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aBXBsQ2ezV%2BqwcvR466NiSB6Tv3bmUWjz4AzIlqKS7m67GABzaKnCrXc9EytRRz3vox2Ckgj%2FT7r%2B7qynEV%2Bto5EGHuCFoHriUUUbX6dcmJlfdVIdIqb82C%2BPET7w0y2RPBbr5Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 793234c9ef910b59-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.zdassets.com/web_widget/latest/web-widget-framework-c82fe813e62b58e096bc.js

104.18.70.113

200 OK

0 B

URL HTTP/2
static.zdassets.com/web_widget/latest/web-widget-framework-c82fe813e62b58e096bc.js
IP
104.18.70.113:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /web_widget/latest/web-widget-framework-c82fe813e62b58e096bc.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 10:22:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: ndff87uIS/sesGzUKeSADcGds13tZiq25CUrjWZEdXa2jMUAkmL2pmb5JKzj+ohOz6faFpkS9ww=
x-amz-request-id: MJRJ9ZGS34G4N411
x-amz-replication-status: COMPLETED
last-modified: Mon, 30 Jan 2023 01:09:01 GMT
etag: W/"5c97db2a2d29c595e26430d1c8358d6a"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 30 Jan 2024 01:09:00 GMT
x-amz-version-id: 1cCOlxhNqu17ys_QySYbf1YbpGnPAUXV
cf-cache-status: HIT
age: 103179
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g2ZNfO5GPtK8ifMvHAt9am4hwHoTG3QoZb3l785LGdSD7bQ7KPOm0KOm8CX%2BCyiRpK5IbJa2LlSojyT2J%2F9wM9KwGqjw1AhhdxTv282HI%2F0xOfMCV3FlfywSFmkC6UF4So%2FltXg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 793234c58bac0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML