firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 16:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vXuq-mqestFP_QMGCSKGPBFIKPLX_i0_ZcXANjh8PA2IG3pp7X2PUQ==
Age: 2944
marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
107.6.24.226301 Moved Permanently 448 B URL HTTP/1.1 marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
IP 107.6.24.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fcde4731a0caef4b318f645bb51ea01b
f795103d0d2b192aa0db85b5cef0dab381127cb7
039d92b39e2400ebbb7b78771f14d3a70d2cb14df9a59f961a2bf80a00740aa6
GET /doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971 HTTP/1.1
Host: marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 26 Sep 2022 17:04:22 GMT
Server: Apache
Location: https://marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Content-Length: 448
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11560
Expires: Mon, 26 Sep 2022 20:17:02 GMT
Date: Mon, 26 Sep 2022 17:04:22 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QeP713R8ofEfg9g0zrrwmlvhvdqg1opH8CcZSZN6XbdJrPW2kViuTw==
age: 44947
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 17:04:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 16:10:46 GMT
Expires: Mon, 26 Sep 2022 16:42:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DvfMOCIF4jbXYcnfsc-pHRHs6fc2qwSC2LQu_6P97Xry9jLPoN7KMg==
Age: 3217
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5adb7eb1d103eadeeafac36e663ffdd3
23b784388dd634fa736cd60aed71570661e73d02
5c95ba48bc342887b4f7ef697bd4def50f6f2f472f654169179e5ac44df883d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3336
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:04:23 GMT
Last-Modified: Mon, 26 Sep 2022 16:08:47 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
107.6.24.226301 Moved Permanently 0 B URL HTTP/2 marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
IP 107.6.24.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971 HTTP/1.1
Host: marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
vary: Accept-Encoding
location: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
referrer-policy:
content-length: 0
content-type: text/html; charset=UTF-8
date: Mon, 26 Sep 2022 17:04:23 GMT
server: Apache
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.165.143.157101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.143.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: e47BX5oQKBTlSZzcpSY2xw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DqDuYFofSE9d2MvzphZQhcuLdXI=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c939f97c8bcbfea356e92036803714bc
608c795e7c4fb943a4db49a4e4533c41ea717023
b05b38c78c15c259720bfc6783ac65ab60ceb1e6037b45b08113f183554f08cb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:04:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.marekapm.com/wp-includes/js/wp-emoji-release.min.js?ver=c00e3595e388f06baec2900097ee6af4
107.6.24.226200 OK 5.0 kB URL HTTP/2 www.marekapm.com/wp-includes/js/wp-emoji-release.min.js?ver=c00e3595e388f06baec2900097ee6af4
IP 107.6.24.226:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=c00e3595e388f06baec2900097ee6af4 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 12 Apr 2022 15:56:24 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 5009
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-72693303-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-72693303-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash b2fe88cbc8897c4f9833df7ea15d815d
67d9a29bee50289f5437e495c22bbfbe52f387cb
a724acb61e3e5fc5394283eb9d73c9c3b9bc2d70298222b7b7e1bae94e9ed874
GET /gtag/js?id=UA-72693303-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Sep 2022 17:04:24 GMT
expires: Mon, 26 Sep 2022 17:04:24 GMT
cache-control: private, max-age=900
last-modified: Mon, 26 Sep 2022 16:09:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42230
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.marekapm.com/wp-includes/css/dist/block-library/style.min.css?ver=c00e3595e388f06baec2900097ee6af4
107.6.24.226200 OK 12 kB URL HTTP/2 www.marekapm.com/wp-includes/css/dist/block-library/style.min.css?ver=c00e3595e388f06baec2900097ee6af4
IP 107.6.24.226:0
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
GET /wp-includes/css/dist/block-library/style.min.css?ver=c00e3595e388f06baec2900097ee6af4 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Mon, 04 Jul 2022 22:10:38 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 11681
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/css/navstylechange.css?ver=1.0
107.6.24.226200 OK 770 B URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/css/navstylechange.css?ver=1.0
IP 107.6.24.226:0
Hash 251c6c5c382cc915cf9deb32ff0aff94
8b243f99a1426c42496f4623ef60ab74c444820f
4fb220b8e11c3f76e1ee6916006d6d95091cbad73f3d7f184490b36f277b91ee
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/primary/assets/css/navstylechange.css?ver=1.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 770
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/css/bootstrap.min.css?ver=3.2.0
107.6.24.226200 OK 18 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/css/bootstrap.min.css?ver=3.2.0
IP 107.6.24.226:0
File type ASCII text, with very long lines (65367), with CRLF line terminators
Hash de73d4bf358367deec54b7b2c2dbdb14
175da8f48364cdb6b8e4dbb1c9c9d5d41ea45390
c78f705814d4de915bbf6693a4b42b21dbb85034c79cb0b2eddca826a76a0ee2
GET /wp-content/themes/primary/assets/css/bootstrap.min.css?ver=3.2.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 18224
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/css/jcarousel.responsive.css?ver=1.0
107.6.24.226200 OK 561 B URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/css/jcarousel.responsive.css?ver=1.0
IP 107.6.24.226:0
File type ASCII text, with CRLF line terminators
Hash 6dc40eb9f9beed01d830bc325964745d
dd984e040163bac7a8298e7853a5b7746a49fa72
d9d13135a77fffeb2daefb28a617f07303288810c591b28f2aceedb58d4165b7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/primary/assets/css/jcarousel.responsive.css?ver=1.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 561
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/css/font-awesome.min.css?ver=4.1.0
107.6.24.226200 OK 4.7 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/css/font-awesome.min.css?ver=4.1.0
IP 107.6.24.226:0
File type ASCII text, with very long lines (20604)
Hash 93fad3ef87c6f9f1de33c9037bc4a7fb
6591de7f95f47a2e79cf645b027aeff4fcc8cbb6
7a2881300a0817f095e5631dc4a2d5083ee58d2c3c6f40b25e49a180d679cd5a
GET /wp-content/themes/primary/assets/css/font-awesome.min.css?ver=4.1.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 4696
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:04:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.marekapm.com/wp-content/themes/primary/assets/css/et-line.css?ver=1.0.0
107.6.24.226200 OK 1.6 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/css/et-line.css?ver=1.0.0
IP 107.6.24.226:0
File type ASCII text, with very long lines (1512)
Hash 989fa5d46ff16e8b551d9bd8fc3a9ed8
bfc14eb00a0fc6e53140062448acdc7f39a79308
5f7e1552a3ccad6e58fe4c6ca38871166d311d539e39a007b7498030b183b88e
GET /wp-content/themes/primary/assets/css/et-line.css?ver=1.0.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 1641
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/css/cubeportfolio-3.min.css?ver=1.0
107.6.24.226200 OK 7.9 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/css/cubeportfolio-3.min.css?ver=1.0
IP 107.6.24.226:0
File type ASCII text, with very long lines (65280)
Hash b792be703598f633e8521e963150815e
8463016d556a802c44deadf3de636741bf26a5bd
b4dfac1d6568f5776d23a78a95d11bc726602471e501885846d49380c7306af1
GET /wp-content/themes/primary/assets/css/cubeportfolio-3.min.css?ver=1.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 7853
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/css/jquery.bxslider.css?ver=1.0
107.6.24.226200 OK 1.2 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/css/jquery.bxslider.css?ver=1.0
IP 107.6.24.226:0
Hash 8dd5a2badd1bdb3732e07dbb6cc519c6
1660ddf34022aa45417681464a30192ed9f5357d
65eb41c2e094bb026a1bac45f17fd620ef1cd29772bb698522538f8d326fb20f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/primary/assets/css/jquery.bxslider.css?ver=1.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 1153
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/css/testimonialrotator.css?ver=1.0
107.6.24.226200 OK 509 B URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/css/testimonialrotator.css?ver=1.0
IP 107.6.24.226:0
Hash d557a9c308ace9de86c6bd6d2c3d03ff
69eefbcd5081687eb9bbb938d38723094d31ec10
346bfb3e846f6c7c88b6b01091fd7e02a479f4aaa9dbb8bfc03d6245b30de0b1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/primary/assets/css/testimonialrotator.css?ver=1.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 509
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1
107.6.24.226200 OK 487 B URL HTTP/2 www.marekapm.com/wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1
IP 107.6.24.226:0
File type ASCII text, with very long lines (404)
Hash b566374773edb1976c00e88bd8bbe5a2
ccae1c15da77c0bc505538194bab99f533242ac2
b40127c7e30f9fe09743cf9493a89cd6752129f31fe468fa15cebdd83d9f0766
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:12 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 487
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/css/responsive.css?ver=1.0
107.6.24.226200 OK 2.5 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/css/responsive.css?ver=1.0
IP 107.6.24.226:0
File type ASCII text, with very long lines (390)
Hash e066e7377f4bfb4528d32e317aab5daa
561bd04f6cc33ac0ba92f6673bf17a3280c17b92
689b85eb4b5704d1a4d7027f856f970f709f802788b5aabbfa7aa8dd02db4ef3
GET /wp-content/themes/primary/assets/css/responsive.css?ver=1.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 2453
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/css/magnific.css?ver=1.0
107.6.24.226200 OK 1.9 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/css/magnific.css?ver=1.0
IP 107.6.24.226:0
Hash 02ddb313d7226959b138664575e6fe9f
fc37a2d538ad95446391617493e3409bfcc67b34
5ccc6bc13f8952ed55dd4c3786d4ae41d41b4c1757975b765108b0cadfe5213c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/primary/assets/css/magnific.css?ver=1.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 1863
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/uploads/2016/03/imageedit_1_4510791294.gif
107.6.24.226200 OK 11 kB URL HTTP/2 www.marekapm.com/wp-content/uploads/2016/03/imageedit_1_4510791294.gif
IP 107.6.24.226:0
File type GIF image data, version 89a, 348 x 84\012- data
Hash 86b68ec42e5c5468b885e01525c5c22d
31c45e52194ca3d83abc57ee43e8507bf27e17e0
87052431a8bb111d3bffd7cb1e10692768ab3299783a1cff51dda2cb99767475
GET /wp-content/uploads/2016/03/imageedit_1_4510791294.gif HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:40:03 GMT
accept-ranges: bytes
content-length: 11235
referrer-policy:
content-type: image/gif
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/uploads/smile_fonts/icomoon/icomoon.css?ver=c00e3595e388f06baec2900097ee6af4
107.6.24.226200 OK 1.1 kB URL HTTP/2 www.marekapm.com/wp-content/uploads/smile_fonts/icomoon/icomoon.css?ver=c00e3595e388f06baec2900097ee6af4
IP 107.6.24.226:0
File type ASCII text, with very long lines (4862), with no line terminators
Hash 4d9e1c4665bb2f67634eb14456213a1a
088d2b34b7e99a5a6d8083a6722b266c06158e65
2db2bf74d8b5a8ab936af28968b6afb1a602ecdc56b6fecd1147259a9d106765
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/smile_fonts/icomoon/icomoon.css?ver=c00e3595e388f06baec2900097ee6af4 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:40:05 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 1080
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.8.0
107.6.24.226200 OK 3.2 kB URL HTTP/2 www.marekapm.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.8.0
IP 107.6.24.226:0
File type ASCII text, with very long lines (1571)
Hash 967b1fb5314d24ef7f24fcb9c90e7013
e971e58ebd738600b27b966ded6dab8733f22339
c8d80ecc14430de7c5fd23d9abab5f71a62eb506344da0e1882845478d6eec50
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.8.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Mon, 22 Aug 2022 19:00:42 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 3244
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
107.6.24.226200 OK 4.2 kB URL HTTP/2 www.marekapm.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 107.6.24.226:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 20:06:06 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 4169
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/js/modernizr.custom.js?ver=1.0.0
107.6.24.226200 OK 4.0 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/js/modernizr.custom.js?ver=1.0.0
IP 107.6.24.226:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (8963)
Hash c350e432d7145517389895856ae99705
32523f371cb0f907b6d944c4f67fbaf0f178a7bb
979f4b1a7d434fa678c5533e2842c1afe5a5cc3184e7dfab4076c44ab318b8a5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/primary/assets/js/modernizr.custom.js?ver=1.0.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 4041
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/style.css?ver=1.0
107.6.24.226200 OK 14 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/style.css?ver=1.0
IP 107.6.24.226:0
File type ASCII text, with very long lines (455)
Hash 9be82c7932192e6fa1d6af656ac1c7d9
6b0dda000f10d901daba817d53044028327ac2b6
9cdec5ed92c3e571dc3b50541821debf2920d50e8e9dd5ff56a2b64de38f0137
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/primary/style.css?ver=1.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 14321
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
107.6.24.226200 OK 31 kB URL HTTP/2 www.marekapm.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 107.6.24.226:0
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 11 Mar 2021 02:07:24 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 30908
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.25
107.6.24.226200 OK 12 kB URL HTTP/2 www.marekapm.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.25
IP 107.6.24.226:0
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 220657eb4b466a803c2a248bb6e94ecb
ce2fdf97632bcd0c09243810268c103f5169035c
d1af0b7ce586b82328931ed3573f1479c82caf98525e6501cfffb09bcde55efd
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.25 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Mon, 25 Jul 2022 21:37:07 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 12499
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/js/sticky.js?ver=1.0.0
107.6.24.226200 OK 748 B URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/js/sticky.js?ver=1.0.0
IP 107.6.24.226:0
Hash b3349e64286ff866f6dcd55b308fd4bb
b565a52c04b67f0e323a8b40ea039cc856374db8
9cd3570d0a7b2104c5449bf2be304c2a42003c5d0a81d098fc4c249b9372dd7a
GET /wp-content/themes/primary/assets/js/sticky.js?ver=1.0.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 748
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/js/retina.min.js?ver=1.0.0
107.6.24.226200 OK 1.2 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/js/retina.min.js?ver=1.0.0
IP 107.6.24.226:0
File type ASCII text, with very long lines (2352)
Hash 19d9b071e784fd0b7dbef580571cbb84
7d88163fe9659f79184871bb56580064ec92f9be
c7b32ca632255758c637e137f9f7b613b91f96d4718c3a0536df0fbf6503e98a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/primary/assets/js/retina.min.js?ver=1.0.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 1220
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/js/jquery.bxslider.min.js?ver=1.0.0
107.6.24.226200 OK 5.2 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/js/jquery.bxslider.min.js?ver=1.0.0
IP 107.6.24.226:0
File type ASCII text, with very long lines (19040)
Hash f3bb76407c4ed0999771c696cee77648
c2bddad0ff58bbd5eb917a5fc828fd5b829444c0
d305f8cedacf0afc7c21b85b8c1d31060c9daa99997aef4bd05883f1230a17c0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/primary/assets/js/jquery.bxslider.min.js?ver=1.0.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 5162
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/js/jquery.parallax-1.1.3.js?ver=1.0.0
107.6.24.226200 OK 794 B URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/js/jquery.parallax-1.1.3.js?ver=1.0.0
IP 107.6.24.226:0
Hash 81bbee5e9d1d7bcee748528a293d4fc0
264cdf1a5a58657b7a7bf20849b468164da9752a
10ee6c4ec5b799a1cce8c7c18744915735283090f4ab179db82dcf23c7c01053
GET /wp-content/themes/primary/assets/js/jquery.parallax-1.1.3.js?ver=1.0.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 794
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/js/bootstrap.min.js?ver=1.0.0
107.6.24.226200 OK 8.5 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/js/bootstrap.min.js?ver=1.0.0
IP 107.6.24.226:0
File type ASCII text, with very long lines (31650)
Hash 799959c3ec75e9ce052c04c03765215c
dee6c34991fc2d8080ce7dbb432ceeb7ef652dc9
7fc18f8496aeb2cc51213a0f1aff925fd8cefa95149f5cf6764a003ce44b188e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/primary/assets/js/bootstrap.min.js?ver=1.0.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 8535
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/js/jcarousel.responsive.js?ver=1.0.0
107.6.24.226200 OK 427 B URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/js/jcarousel.responsive.js?ver=1.0.0
IP 107.6.24.226:0
File type HTML document, ASCII text
Hash 9345b489ba01e0f52a40bf03ab66f557
357d25fd111ba0cb951afbdf3789f26f65ea5b15
c05c20449147b2fe11c7f11304e198d94fb653f209b109a52daea199f77e5727
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/primary/assets/js/jcarousel.responsive.js?ver=1.0.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 427
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/js/jquery.cubeportfolio.min.js?ver=1.0.0
107.6.24.226200 OK 9.9 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/js/jquery.cubeportfolio.min.js?ver=1.0.0
IP 107.6.24.226:0
File type ASCII text, with very long lines (52947)
Hash 74db1790b335cc924eb22ec2792ddcfd
72bc3975e151645f341dbca133af7331507d2b4b
f67e36a27009f6185420bab1ea631c12c2e22bd74c5a7449a1cbac1c28aef098
GET /wp-content/themes/primary/assets/js/jquery.cubeportfolio.min.js?ver=1.0.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 9900
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/js/jquery.jcarousel.min.js?ver=1.0.0
107.6.24.226200 OK 5.0 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/js/jquery.jcarousel.min.js?ver=1.0.0
IP 107.6.24.226:0
File type ASCII text, with very long lines (17084)
Hash 80d1088f60e8bd55b7b1f8b3f5229272
f126898ac5be55bcc277a5bff18d4b342833f49c
f56a6bac3e5d19b71e577c5f692591d649330f45e7e302d9d14a13551dc670ab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/primary/assets/js/jquery.jcarousel.min.js?ver=1.0.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 5038
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/js/main.js?ver=1.0.0
107.6.24.226200 OK 655 B URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/js/main.js?ver=1.0.0
IP 107.6.24.226:0
File type ASCII text, with CRLF line terminators
Hash 18954c9e3fd56b75b3a172df2582aaad
f7277b4194ca1325fa5f9fdb8bb4db4275be614e
c09e2c1f3faa05434c528dc02858f3a3452b06864ac4439b97a86d44ed04746b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/primary/assets/js/main.js?ver=1.0.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 655
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/js/testimonialrotator.js?ver=1.0.0
107.6.24.226200 OK 1.7 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/js/testimonialrotator.js?ver=1.0.0
IP 107.6.24.226:0
Hash ac17a4b7dc559f518bb5739898960651
757c722513831c9a89de598ccae434966ef7ef52
0f556dee51ae77bd990c26b8a45d3864355b87cb23a083dc0064e825b811f22e
GET /wp-content/themes/primary/assets/js/testimonialrotator.js?ver=1.0.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 1712
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/js/jquery.cycle.all.js?ver=1.0.0
107.6.24.226200 OK 14 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/js/jquery.cycle.all.js?ver=1.0.0
IP 107.6.24.226:0
Hash 138b7f211eb94a67ebd9d2f1518f0870
48ef88494b198d06c49715f8eea20e51ca875b5e
6d22437d5f5c2abb143986def5f84a409fbb1a1a250d946ad9f71f8b504108a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/primary/assets/js/jquery.cycle.all.js?ver=1.0.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 13678
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/themes/primary/assets/js/magnific.popup.min.js?ver=1.0.0
107.6.24.226200 OK 6.6 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/js/magnific.popup.min.js?ver=1.0.0
IP 107.6.24.226:0
File type ASCII text, with very long lines (18032)
Hash cb671fb9f027bd0081eccf1c63826e36
d8d247cc98f25bb33d0b49874469a2ab51e9feb7
9874c0ebd487e3766e65ad7c4ce953ff59ab36d04c93db9b92a09432da80182a
GET /wp-content/themes/primary/assets/js/magnific.popup.min.js?ver=1.0.0 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 6607
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
107.6.24.226200 OK 49 kB URL HTTP/2 www.marekapm.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18
IP 107.6.24.226:0
File type ASCII text, with very long lines (45108), with CRLF line terminators
Hash b170d34eb9513986afe3dae7e1e270ee
d4a2aeaf78382477b364e82b2e5581088e61a395
e89af2c7c1b57a3ce472bf17527ec1208cdb0823c195edbb63bb09db3a48276f
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Mon, 25 Jul 2022 21:37:07 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 48801
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3931
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 17:04:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3931
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 17:04:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3931
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 17:04:25 GMT
Connection: keep-alive
www.marekapm.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.25
107.6.24.226200 OK 102 kB URL HTTP/2 www.marekapm.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.25
IP 107.6.24.226:0
Size 102 kB (102438 bytes)
Hash 34f8194ddb276c2f7eef62d8f3091eab
b5b7e175ce7b9550c1bd7356221cb18bb51f1bc9
14ab7d4de0449595ed1265273e131fa7099f5e4956d97f5ced5dcb95ba768eb9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.25 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Mon, 25 Jul 2022 21:37:07 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-type: application/javascript
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3931
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 17:04:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d02ede0c964f3346fd53ae2950bf2a62
e49306a3713cb724be024a4ddb5e90645718a718
c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HCJ483GPdpPhC7oYm1GrA02BqqST9sfqfCBSA93rZqaQYl-jezgP5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:20:40 GMT
age: 67425
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 968b9c138702fb5994d1d9eab1a697fa
9660bb2d38079182efbd11d7a687bfc7f9d30751
5ba74820ad451747c8ed25529f06b037bebf4c0616a1f2165c9197c1171db7a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11728
x-amzn-requestid: bf60e58f-c4f4-45c7-923b-0d1539f720f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUCGGw7oAMF3wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd40-32043c1b1411544f5d00edc0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:50:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: H4KXhBaRw3SvzBrbl30mV6R_vJ8bXBkyicb8fQiTp6YSBHjE8iFkNQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:49:56 GMT
etag: "9660bb2d38079182efbd11d7a687bfc7f9d30751"
content-type: image/jpeg
age: 65669
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 0f361c26-1f12-421a-9752-7d4fcdf839ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4V65GTXIAMF9-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd045-25677a637307879044de8242;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:14:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qvSIyV7uvUzXFn6Sw3izoZxQoFbmyRzQ9WKl33D7fNTcuV6WXTzD9Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 05:01:28 GMT
age: 43377
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2fe8c4f0c70fb6c1f4259eabedc7015e
85e378d0fff856832a8dd01743516b9476fed8c6
508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 68049
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c11e6fef1be62b971bd9daf378bfc95
ef9d756cbcda72cf7ef5029b7d384cd1fbaed633
b8369f83d6dddcd2355b81d8eb200791788165e56881ce21e1a1e9c8bb1bb2ef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13584
x-amzn-requestid: 198bd2b4-d4ae-4f19-a500-463aee52b890
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHgFdNoAMFwEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc9-19a1f7d2102820da4b21f18b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yl8BCwdlIePsc4gIX4IYH0L6NHipn_5fBsa9nyYy14w0m49jPUYXBw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:57:51 GMT
age: 68794
etag: "ef9d756cbcda72cf7ef5029b7d384cd1fbaed633"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef17205adb2b478d3bff54b048208d22
12aac1bd22e675f09a220de08b4656e801c2e647
620fe39cf421ed3a21e968570f7e863d69224113be867ec2457ed3850ea113f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5980
x-amzn-requestid: fbf0c390-da24-49e2-8492-43e29e5d4bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHCGJVoAMFgxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc6-1f9b1b7d63467c58702e6d7e;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:38 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Iy0oyFx_T6CEuOQckEzvUQOUo307Jm_OgJzomWlMz9BhgD3eOaysdA==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:48:52 GMT
age: 69333
etag: "12aac1bd22e675f09a220de08b4656e801c2e647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto+Slab:400,300,100,700
142.250.74.10200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto+Slab:400,300,100,700
IP 142.250.74.10:0
Hash 85dba4aaf6ec3e3b4989754b01109568
eb0672846aa97dd9e1a2e9193bcf46df57aa5fd1
f4a4a806c2ef14d1eaf05cb360bed1cf2c2688c34303ef94b71715d229fc42a1
GET /css?family=Roboto+Slab:400,300,100,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 17:04:25 GMT
date: Mon, 26 Sep 2022 17:04:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.marekapm.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:21 GMT
expires: Thu, 21 Sep 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 423004
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15764, version 1.0\012- data
Hash 603b8950590bf833546eee7cbc79944a
ebbde06eb829868c5f689afe2d48377608be1e7b
0f303f31706d39866cced9dcc17b61fb8423674278d7f6051d66b3a79ffbca18
GET /s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.marekapm.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:40:20 GMT
expires: Thu, 21 Sep 2023 19:40:20 GMT
cache-control: public, max-age=31536000
age: 422645
last-modified: Wed, 11 May 2022 19:24:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
142.250.74.163200 OK 33 kB URL HTTP/2 fonts.gstatic.com/s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 32860, version 1.0\012- data
Hash d010a9f2d5c7a0374b3b84706a43d2ec
c1fe465db08785c3f115555d39db23838960cb66
9a3993918629dfd6a59c4563e9b4d464152b51d4113957ab8ebfbdcbcdc7f536
GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.marekapm.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 15:39:46 GMT
expires: Sat, 23 Sep 2023 15:39:46 GMT
cache-control: public, max-age=31536000
age: 264279
last-modified: Mon, 11 Jul 2022 19:12:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.marekapm.com/wp-content/themes/primary/assets/fonts/et-line.woff
107.6.24.226200 OK 55 kB URL HTTP/2 www.marekapm.com/wp-content/themes/primary/assets/fonts/et-line.woff
IP 107.6.24.226:0
File type Web Open Font Format, CFF, length 55220, version 1.0\012- data
Hash b01ff252761958325faab1535c90c87f
d33413e7bc42acc8837cc9030ca45d29c1ccf0c6
19d2f43d546ada73dd083f7778aa4a5cac1a8e7a3af56efccae580fce07a5e1c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/primary/assets/fonts/et-line.woff HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.marekapm.com/wp-content/themes/primary/assets/css/et-line.css?ver=1.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-length: 55220
referrer-policy:
content-type: font/woff
date: Mon, 26 Sep 2022 17:04:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Mon, 26 Sep 2022 16:41:09 GMT
expires: Mon, 26 Sep 2022 18:41:09 GMT
cache-control: public, max-age=7200
age: 1396
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/uploads/2016/03/mareka_favicon-150x150.png
107.6.24.226200 OK 20 kB URL HTTP/2 www.marekapm.com/wp-content/uploads/2016/03/mareka_favicon-150x150.png
IP 107.6.24.226:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 8e976c1c6ee31aa61b5a9302ca0657ba
2ea384995ec5820631f19e707fb6ecf31a65e0ac
ae5b7def63f8c3fd464c677c8c536650bc11c29715c0822c07ddf07919dfb009
GET /wp-content/uploads/2016/03/mareka_favicon-150x150.png HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:40:03 GMT
accept-ranges: bytes
content-length: 19745
referrer-policy:
content-type: image/png
date: Mon, 26 Sep 2022 17:04:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/wp-content/uploads/2016/03/mareka_favicon-768x768.png
107.6.24.226200 OK 122 kB URL HTTP/2 www.marekapm.com/wp-content/uploads/2016/03/mareka_favicon-768x768.png
IP 107.6.24.226:0
File type PNG image data, 768 x 768, 8-bit/color RGBA, non-interlaced\012- data
Size 122 kB (121644 bytes)
Hash 580d40b96def715d9daf916fd91052cd
090ecd4108026949df0ce6bf109221322601730b
a538b044221d659a0b3686372bf2080f58d9c19716037ff55b998d0cccadf678
GET /wp-content/uploads/2016/03/mareka_favicon-768x768.png HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:40:03 GMT
accept-ranges: bytes
content-length: 121644
referrer-policy:
content-type: image/png
date: Mon, 26 Sep 2022 17:04:25 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 002d49bafbcc428a44fe523322ad9e05
b39aad0d1e941121f28af8f9b6d76f19216800d5
59a10c7762be219b689cd518aea4d034aa725c6a632b7f866989dcf984b5e007
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-72693303-1&cid=1019513179.1664211864&jid=1881935249&gjid=419162893&_gid=1959748712.1664211864&_u=YEBAAUAAAAAAAC~&z=1893097269
64.233.162.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-72693303-1&cid=1019513179.1664211864&jid=1881935249&gjid=419162893&_gid=1959748712.1664211864&_u=YEBAAUAAAAAAAC~&z=1893097269
IP 64.233.162.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-72693303-1&cid=1019513179.1664211864&jid=1881935249&gjid=419162893&_gid=1959748712.1664211864&_u=YEBAAUAAAAAAAC~&z=1893097269 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.marekapm.com
Connection: keep-alive
Referer: https://www.marekapm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.marekapm.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 26 Sep 2022 17:04:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.marekapm.com/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=c00e3595e388f06baec2900097ee6af4
107.6.24.226200 OK 0 B URL HTTP/2 www.marekapm.com/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=c00e3595e388f06baec2900097ee6af4
IP 107.6.24.226:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=c00e3595e388f06baec2900097ee6af4 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:40:05 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 4755
content-type: text/css
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
107.6.24.226404 Not Found 0 B URL HTTP/2 www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
IP 107.6.24.226:0
GET /doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971 HTTP/1.1
Host: www.marekapm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.marekapm.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
referrer-policy:
content-type: text/html; charset=UTF-8
date: Mon, 26 Sep 2022 17:04:23 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:500,400italic,100,700italic,300,700,500italic,400
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:500,400italic,100,700italic,300,700,500italic,400
IP 142.250.74.10:0
GET /css?family=Roboto:500,400italic,100,700italic,300,700,500italic,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 17:04:25 GMT
date: Mon, 26 Sep 2022 17:04:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2