Overview

URL marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
IP107.6.24.226
ASNCOGECO-PEER1
Location Canada
Report completed2022-09-26 17:04:33 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-26 2 www.marekapm.com/wp-includes/js/wp-emoji-release.min.js?ver=c00e3595e388f06 (...) Phishing
2022-09-26 2 www.marekapm.com/wp-content/themes/primary/assets/css/navstylechange.css?ver=1.0 Phishing
2022-09-26 2 www.marekapm.com/wp-content/themes/primary/assets/css/jcarousel.responsive. (...) Phishing
2022-09-26 2 www.marekapm.com/wp-content/themes/primary/assets/css/jquery.bxslider.css?v (...) Phishing
2022-09-26 2 www.marekapm.com/wp-content/themes/primary/assets/css/testimonialrotator.cs (...) Phishing
2022-09-26 2 www.marekapm.com/wp-content/plugins/recent-posts-widget-with-thumbnails/pub (...) Phishing
2022-09-26 2 www.marekapm.com/wp-content/themes/primary/assets/css/magnific.css?ver=1.0 Phishing
2022-09-26 2 www.marekapm.com/wp-content/uploads/smile_fonts/icomoon/icomoon.css?ver=c00 (...) Phishing
2022-09-26 2 www.marekapm.com/wp-content/plugins/google-analytics-dashboard-for-wp/asset (...) Phishing
2022-09-26 2 www.marekapm.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 Phishing
2022-09-26 2 www.marekapm.com/wp-content/themes/primary/assets/js/modernizr.custom.js?ve (...) Phishing
2022-09-26 2 www.marekapm.com/wp-content/themes/primary/style.css?ver=1.0 Phishing
2022-09-26 2 www.marekapm.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 Phishing
2022-09-26 2 www.marekapm.com/wp-content/themes/primary/assets/js/retina.min.js?ver=1.0.0 Phishing
2022-09-26 2 www.marekapm.com/wp-content/themes/primary/assets/js/jquery.bxslider.min.js (...) Phishing
2022-09-26 2 www.marekapm.com/wp-content/themes/primary/assets/js/bootstrap.min.js?ver=1.0.0 Phishing
2022-09-26 2 www.marekapm.com/wp-content/themes/primary/assets/js/jcarousel.responsive.j (...) Phishing
2022-09-26 2 www.marekapm.com/wp-content/themes/primary/assets/js/jquery.jcarousel.min.j (...) Phishing
2022-09-26 2 www.marekapm.com/wp-content/themes/primary/assets/js/main.js?ver=1.0.0 Phishing
2022-09-26 2 www.marekapm.com/wp-content/themes/primary/assets/js/jquery.cycle.all.js?ve (...) Phishing
2022-09-26 2 www.marekapm.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?v (...) Phishing
2022-09-26 2 www.marekapm.com/wp-content/themes/primary/assets/fonts/et-line.woff Phishing
2022-09-26 2 www.marekapm.com/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=c (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (15)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-09-26 15:16:33 UTC 142.250.74.174
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-26 08:18:12 UTC 143.204.55.115
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-26 04:35:11 UTC 23.36.76.226
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-26 04:28:07 UTC 34.117.237.239
mnemonic passive DNS ocsp.pki.goog (11) 175 2017-06-14 07:23:31 UTC 2022-09-26 04:27:13 UTC 142.250.74.3
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-26 12:15:18 UTC 34.120.237.76
mnemonic passive DNS fonts.gstatic.com (3) 0 2014-08-29 13:43:22 UTC 2022-09-26 04:26:58 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS marekapm.com (2) 0 2017-08-28 15:45:20 UTC 2022-09-26 17:04:01 UTC 107.6.24.226 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-26 16:08:16 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-26 05:45:55 UTC 35.165.143.157
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-26 04:27:27 UTC 142.250.74.72
mnemonic passive DNS www.marekapm.com (40) 0 2016-06-17 19:50:35 UTC 2022-09-26 17:03:56 UTC 107.6.24.226 Unknown ranking
mnemonic passive DNS fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-09-26 10:36:51 UTC 142.250.74.10
mnemonic passive DNS stats.g.doubleclick.net (1) 96 2013-06-02 22:47:44 UTC 2022-09-26 04:28:46 UTC 64.233.162.156
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-26 04:26:56 UTC 143.204.55.25


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 107.6.24.226

Date UQ / IDS / BL URL IP
2022-09-26 17:04:39 +0000
0 - 0 - 22 www.marekapm.com/doc/docusi/abd21d25627a54372 (...) 107.6.24.226
2022-09-26 17:04:33 +0000
0 - 0 - 23 marekapm.com/doc/docusi/abd21d25627a543722aff (...) 107.6.24.226
2022-09-24 07:33:38 +0000
0 - 0 - 23 marekapm.com/doc/docusi/abd21d25627a543722aff (...) 107.6.24.226
2022-09-24 07:20:35 +0000
0 - 0 - 22 marekapm.com/doc/docusi/abd21d25627a543722aff (...) 107.6.24.226
2022-09-24 07:20:19 +0000
0 - 0 - 22 www.marekapm.com/doc/docusi/abd21d25627a54372 (...) 107.6.24.226

Last 5 reports on ASN: COGECO-PEER1

Date UQ / IDS / BL URL IP
2022-12-01 11:36:35 +0000
0 - 0 - 26 agrosuplidorescr.com/YML/lets/yahoo%20scampag (...) 69.90.221.130
2022-12-01 05:43:13 +0000
0 - 0 - 1 archives-directive.at.ply.gg/ 209.25.141.180
2022-11-30 14:29:20 +0000
0 - 0 - 1 sharpenedpens.com/arztbedarf/spritzen-kanulen (...) 64.34.204.44
2022-11-30 11:33:27 +0000
5 - 0 - 2 www.sjue.com/blog/2006/10/night-dive-independ (...) 64.34.173.227
2022-11-30 07:52:51 +0000
0 - 0 - 1 saridarmotors.com/ 209.15.226.231

Last 5 reports on domain: marekapm.com

Date UQ / IDS / BL URL IP
2022-09-26 17:04:39 +0000
0 - 0 - 22 www.marekapm.com/doc/docusi/abd21d25627a54372 (...) 107.6.24.226
2022-09-26 17:04:33 +0000
0 - 0 - 23 marekapm.com/doc/docusi/abd21d25627a543722aff (...) 107.6.24.226
2022-09-24 07:33:38 +0000
0 - 0 - 23 marekapm.com/doc/docusi/abd21d25627a543722aff (...) 107.6.24.226
2022-09-24 07:20:35 +0000
0 - 0 - 22 marekapm.com/doc/docusi/abd21d25627a543722aff (...) 107.6.24.226
2022-09-24 07:20:19 +0000
0 - 0 - 22 www.marekapm.com/doc/docusi/abd21d25627a54372 (...) 107.6.24.226

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-26 17:04:39 +0000
0 - 0 - 22 www.marekapm.com/doc/docusi/abd21d25627a54372 (...) 107.6.24.226
2022-09-24 07:33:38 +0000
0 - 0 - 23 marekapm.com/doc/docusi/abd21d25627a543722aff (...) 107.6.24.226
2022-09-24 07:20:35 +0000
0 - 0 - 22 marekapm.com/doc/docusi/abd21d25627a543722aff (...) 107.6.24.226
2022-09-24 07:20:19 +0000
0 - 0 - 22 www.marekapm.com/doc/docusi/abd21d25627a54372 (...) 107.6.24.226
2022-09-23 20:54:52 +0000
0 - 0 - 21 www.marekapm.com/doc/docusi/abd21d25627a54372 (...) 107.6.24.226


JavaScript

Executed Scripts (26)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (78)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 16:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vXuq-mqestFP_QMGCSKGPBFIKPLX_i0_ZcXANjh8PA2IG3pp7X2PUQ==
Age: 2944


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            GET /doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971 HTTP/1.1 
Host: marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         107.6.24.226
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Mon, 26 Sep 2022 17:04:22 GMT
Server: Apache
Location: https://marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Content-Length: 448
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   448
Md5:    fcde4731a0caef4b318f645bb51ea01b
Sha1:   f795103d0d2b192aa0db85b5cef0dab381127cb7
Sha256: 039d92b39e2400ebbb7b78771f14d3a70d2cb14df9a59f961a2bf80a00740aa6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11560
Expires: Mon, 26 Sep 2022 20:17:02 GMT
Date: Mon, 26 Sep 2022 17:04:22 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QeP713R8ofEfg9g0zrrwmlvhvdqg1opH8CcZSZN6XbdJrPW2kViuTw==
age: 44947
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 26 Sep 2022 17:04:23 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 16:10:46 GMT
Expires: Mon, 26 Sep 2022 16:42:05 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DvfMOCIF4jbXYcnfsc-pHRHs6fc2qwSC2LQu_6P97Xry9jLPoN7KMg==
Age: 3217


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3336
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 17:04:23 GMT
Last-Modified: Mon, 26 Sep 2022 16:08:47 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971 HTTP/1.1 
Host: marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         107.6.24.226
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
                                        
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
vary: Accept-Encoding
location: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
referrer-policy:
content-length: 0
date: Mon, 26 Sep 2022 17:04:23 GMT
server: Apache
X-Firefox-Spdy: h2

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: e47BX5oQKBTlSZzcpSY2xw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.165.143.157
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DqDuYFofSE9d2MvzphZQhcuLdXI=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 17:04:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=c00e3595e388f06baec2900097ee6af4 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Tue, 12 Apr 2022 15:56:24 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 5009
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   5009
Md5:    e6624e0b978e6ddba476be41aaaa82df
Sha1:   822e920d8233072110ed7c8a7f379e5b13209b18
Sha256: dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /gtag/js?id=UA-72693303-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Sep 2022 17:04:24 GMT
expires: Mon, 26 Sep 2022 17:04:24 GMT
cache-control: private, max-age=900
last-modified: Mon, 26 Sep 2022 16:09:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42230
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1720)
Size:   42230
Md5:    b2fe88cbc8897c4f9833df7ea15d815d
Sha1:   67d9a29bee50289f5437e495c22bbfbe52f387cb
Sha256: a724acb61e3e5fc5394283eb9d73c9c3b9bc2d70298222b7b7e1bae94e9ed874
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=c00e3595e388f06baec2900097ee6af4 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Mon, 04 Jul 2022 22:10:38 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 11681
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43771)
Size:   11681
Md5:    e5548800176e913a9084f47a3e1e04f6
Sha1:   eff4604acc5c26ae82a19188de2f98bf5b79d80c
Sha256: a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
                                        
                                            GET /wp-content/themes/primary/assets/css/navstylechange.css?ver=1.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 770
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   770
Md5:    251c6c5c382cc915cf9deb32ff0aff94
Sha1:   8b243f99a1426c42496f4623ef60ab74c444820f
Sha256: 4fb220b8e11c3f76e1ee6916006d6d95091cbad73f3d7f184490b36f277b91ee

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/primary/assets/css/bootstrap.min.css?ver=3.2.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 18224
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65367), with CRLF line terminators
Size:   18224
Md5:    de73d4bf358367deec54b7b2c2dbdb14
Sha1:   175da8f48364cdb6b8e4dbb1c9c9d5d41ea45390
Sha256: c78f705814d4de915bbf6693a4b42b21dbb85034c79cb0b2eddca826a76a0ee2
                                        
                                            GET /wp-content/themes/primary/assets/css/jcarousel.responsive.css?ver=1.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 561
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   561
Md5:    6dc40eb9f9beed01d830bc325964745d
Sha1:   dd984e040163bac7a8298e7853a5b7746a49fa72
Sha256: d9d13135a77fffeb2daefb28a617f07303288810c591b28f2aceedb58d4165b7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/primary/assets/css/font-awesome.min.css?ver=4.1.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 4696
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (20604)
Size:   4696
Md5:    93fad3ef87c6f9f1de33c9037bc4a7fb
Sha1:   6591de7f95f47a2e79cf645b027aeff4fcc8cbb6
Sha256: 7a2881300a0817f095e5631dc4a2d5083ee58d2c3c6f40b25e49a180d679cd5a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 17:04:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/primary/assets/css/et-line.css?ver=1.0.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 1641
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1512)
Size:   1641
Md5:    989fa5d46ff16e8b551d9bd8fc3a9ed8
Sha1:   bfc14eb00a0fc6e53140062448acdc7f39a79308
Sha256: 5f7e1552a3ccad6e58fe4c6ca38871166d311d539e39a007b7498030b183b88e
                                        
                                            GET /wp-content/themes/primary/assets/css/cubeportfolio-3.min.css?ver=1.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 7853
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65280)
Size:   7853
Md5:    b792be703598f633e8521e963150815e
Sha1:   8463016d556a802c44deadf3de636741bf26a5bd
Sha256: b4dfac1d6568f5776d23a78a95d11bc726602471e501885846d49380c7306af1
                                        
                                            GET /wp-content/themes/primary/assets/css/jquery.bxslider.css?ver=1.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 1153
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1153
Md5:    8dd5a2badd1bdb3732e07dbb6cc519c6
Sha1:   1660ddf34022aa45417681464a30192ed9f5357d
Sha256: 65eb41c2e094bb026a1bac45f17fd620ef1cd29772bb698522538f8d326fb20f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/primary/assets/css/testimonialrotator.css?ver=1.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 509
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   509
Md5:    d557a9c308ace9de86c6bd6d2c3d03ff
Sha1:   69eefbcd5081687eb9bbb938d38723094d31ec10
Sha256: 346bfb3e846f6c7c88b6b01091fd7e02a479f4aaa9dbb8bfc03d6245b30de0b1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:12 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 487
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (404)
Size:   487
Md5:    b566374773edb1976c00e88bd8bbe5a2
Sha1:   ccae1c15da77c0bc505538194bab99f533242ac2
Sha256: b40127c7e30f9fe09743cf9493a89cd6752129f31fe468fa15cebdd83d9f0766

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/primary/assets/css/responsive.css?ver=1.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 2453
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (390)
Size:   2453
Md5:    e066e7377f4bfb4528d32e317aab5daa
Sha1:   561bd04f6cc33ac0ba92f6673bf17a3280c17b92
Sha256: 689b85eb4b5704d1a4d7027f856f970f709f802788b5aabbfa7aa8dd02db4ef3
                                        
                                            GET /wp-content/themes/primary/assets/css/magnific.css?ver=1.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 1863
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1863
Md5:    02ddb313d7226959b138664575e6fe9f
Sha1:   fc37a2d538ad95446391617493e3409bfcc67b34
Sha256: 5ccc6bc13f8952ed55dd4c3786d4ae41d41b4c1757975b765108b0cadfe5213c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2016/03/imageedit_1_4510791294.gif HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: image/gif
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:40:03 GMT
accept-ranges: bytes
content-length: 11235
referrer-policy:
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 348 x 84\012- data
Size:   11235
Md5:    86b68ec42e5c5468b885e01525c5c22d
Sha1:   31c45e52194ca3d83abc57ee43e8507bf27e17e0
Sha256: 87052431a8bb111d3bffd7cb1e10692768ab3299783a1cff51dda2cb99767475
                                        
                                            GET /wp-content/uploads/smile_fonts/icomoon/icomoon.css?ver=c00e3595e388f06baec2900097ee6af4 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:40:05 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 1080
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4862), with no line terminators
Size:   1080
Md5:    4d9e1c4665bb2f67634eb14456213a1a
Sha1:   088d2b34b7e99a5a6d8083a6722b266c06158e65
Sha256: 2db2bf74d8b5a8ab936af28968b6afb1a602ecdc56b6fecd1147259a9d106765

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend-gtag.min.js?ver=7.8.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Mon, 22 Aug 2022 19:00:42 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 3244
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1571)
Size:   3244
Md5:    967b1fb5314d24ef7f24fcb9c90e7013
Sha1:   e971e58ebd738600b27b966ded6dab8733f22339
Sha256: c8d80ecc14430de7c5fd23d9abab5f71a62eb506344da0e1882845478d6eec50

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 20:06:06 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 4169
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   4169
Md5:    5629711d7fdd5b28441bac39b851299f
Sha1:   4e0bf2b7383097f7c352023a1b1b1b48a50356b6
Sha256: 44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/primary/assets/js/modernizr.custom.js?ver=1.0.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 4041
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document, ASCII text, with very long lines (8963)
Size:   4041
Md5:    c350e432d7145517389895856ae99705
Sha1:   32523f371cb0f907b6d944c4f67fbaf0f178a7bb
Sha256: 979f4b1a7d434fa678c5533e2842c1afe5a5cc3184e7dfab4076c44ab318b8a5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/primary/style.css?ver=1.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 14321
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (455)
Size:   14321
Md5:    9be82c7932192e6fa1d6af656ac1c7d9
Sha1:   6b0dda000f10d901daba817d53044028327ac2b6
Sha256: 9cdec5ed92c3e571dc3b50541821debf2920d50e8e9dd5ff56a2b64de38f0137

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Thu, 11 Mar 2021 02:07:24 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 30908
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   30908
Md5:    9640915738503451aa21181699feab5b
Sha1:   c053eaf36ef0da96619706b3abda326305063bd6
Sha256: f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.25 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Mon, 25 Jul 2022 21:37:07 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 12499
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Size:   12499
Md5:    220657eb4b466a803c2a248bb6e94ecb
Sha1:   ce2fdf97632bcd0c09243810268c103f5169035c
Sha256: d1af0b7ce586b82328931ed3573f1479c82caf98525e6501cfffb09bcde55efd
                                        
                                            GET /wp-content/themes/primary/assets/js/sticky.js?ver=1.0.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 748
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   748
Md5:    b3349e64286ff866f6dcd55b308fd4bb
Sha1:   b565a52c04b67f0e323a8b40ea039cc856374db8
Sha256: 9cd3570d0a7b2104c5449bf2be304c2a42003c5d0a81d098fc4c249b9372dd7a
                                        
                                            GET /wp-content/themes/primary/assets/js/retina.min.js?ver=1.0.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 1220
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2352)
Size:   1220
Md5:    19d9b071e784fd0b7dbef580571cbb84
Sha1:   7d88163fe9659f79184871bb56580064ec92f9be
Sha256: c7b32ca632255758c637e137f9f7b613b91f96d4718c3a0536df0fbf6503e98a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/primary/assets/js/jquery.bxslider.min.js?ver=1.0.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 5162
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19040)
Size:   5162
Md5:    f3bb76407c4ed0999771c696cee77648
Sha1:   c2bddad0ff58bbd5eb917a5fc828fd5b829444c0
Sha256: d305f8cedacf0afc7c21b85b8c1d31060c9daa99997aef4bd05883f1230a17c0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/primary/assets/js/jquery.parallax-1.1.3.js?ver=1.0.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 794
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   794
Md5:    81bbee5e9d1d7bcee748528a293d4fc0
Sha1:   264cdf1a5a58657b7a7bf20849b468164da9752a
Sha256: 10ee6c4ec5b799a1cce8c7c18744915735283090f4ab179db82dcf23c7c01053
                                        
                                            GET /wp-content/themes/primary/assets/js/bootstrap.min.js?ver=1.0.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 8535
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (31650)
Size:   8535
Md5:    799959c3ec75e9ce052c04c03765215c
Sha1:   dee6c34991fc2d8080ce7dbb432ceeb7ef652dc9
Sha256: 7fc18f8496aeb2cc51213a0f1aff925fd8cefa95149f5cf6764a003ce44b188e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/primary/assets/js/jcarousel.responsive.js?ver=1.0.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 427
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text
Size:   427
Md5:    9345b489ba01e0f52a40bf03ab66f557
Sha1:   357d25fd111ba0cb951afbdf3789f26f65ea5b15
Sha256: c05c20449147b2fe11c7f11304e198d94fb653f209b109a52daea199f77e5727

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/primary/assets/js/jquery.cubeportfolio.min.js?ver=1.0.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 9900
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (52947)
Size:   9900
Md5:    74db1790b335cc924eb22ec2792ddcfd
Sha1:   72bc3975e151645f341dbca133af7331507d2b4b
Sha256: f67e36a27009f6185420bab1ea631c12c2e22bd74c5a7449a1cbac1c28aef098
                                        
                                            GET /wp-content/themes/primary/assets/js/jquery.jcarousel.min.js?ver=1.0.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 5038
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17084)
Size:   5038
Md5:    80d1088f60e8bd55b7b1f8b3f5229272
Sha1:   f126898ac5be55bcc277a5bff18d4b342833f49c
Sha256: f56a6bac3e5d19b71e577c5f692591d649330f45e7e302d9d14a13551dc670ab

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/primary/assets/js/main.js?ver=1.0.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 655
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   655
Md5:    18954c9e3fd56b75b3a172df2582aaad
Sha1:   f7277b4194ca1325fa5f9fdb8bb4db4275be614e
Sha256: c09e2c1f3faa05434c528dc02858f3a3452b06864ac4439b97a86d44ed04746b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/primary/assets/js/testimonialrotator.js?ver=1.0.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 1712
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1712
Md5:    ac17a4b7dc559f518bb5739898960651
Sha1:   757c722513831c9a89de598ccae434966ef7ef52
Sha256: 0f556dee51ae77bd990c26b8a45d3864355b87cb23a083dc0064e825b811f22e
                                        
                                            GET /wp-content/themes/primary/assets/js/jquery.cycle.all.js?ver=1.0.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 13678
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   13678
Md5:    138b7f211eb94a67ebd9d2f1518f0870
Sha1:   48ef88494b198d06c49715f8eea20e51ca875b5e
Sha256: 6d22437d5f5c2abb143986def5f84a409fbb1a1a250d946ad9f71f8b504108a4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/primary/assets/js/magnific.popup.min.js?ver=1.0.0 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:39:56 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 6607
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18032)
Size:   6607
Md5:    cb671fb9f027bd0081eccf1c63826e36
Sha1:   d8d247cc98f25bb33d0b49874469a2ab51e9feb7
Sha256: 9874c0ebd487e3766e65ad7c4ce953ff59ab36d04c93db9b92a09432da80182a
                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.18 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Mon, 25 Jul 2022 21:37:07 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 48801
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (45108), with CRLF line terminators
Size:   48801
Md5:    b170d34eb9513986afe3dae7e1e270ee
Sha1:   d4a2aeaf78382477b364e82b2e5581088e61a395
Sha256: e89af2c7c1b57a3ce472bf17527ec1208cdb0823c195edbb63bb09db3a48276f
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3931
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 17:04:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3931
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 17:04:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3931
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 17:04:25 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.25 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: application/javascript
                                        
vary: Accept-Encoding
last-modified: Mon, 25 Jul 2022 21:37:07 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   102438
Md5:    34f8194ddb276c2f7eef62d8f3091eab
Sha1:   b5b7e175ce7b9550c1bd7356221cb18bb51f1bc9
Sha256: 14ab7d4de0449595ed1265273e131fa7099f5e4956d97f5ced5dcb95ba768eb9

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3931
Expires: Mon, 26 Sep 2022 18:09:56 GMT
Date: Mon, 26 Sep 2022 17:04:25 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HCJ483GPdpPhC7oYm1GrA02BqqST9sfqfCBSA93rZqaQYl-jezgP5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:20:40 GMT
age: 67425
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8637
Md5:    d02ede0c964f3346fd53ae2950bf2a62
Sha1:   e49306a3713cb724be024a4ddb5e90645718a718
Sha256: c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11728
x-amzn-requestid: bf60e58f-c4f4-45c7-923b-0d1539f720f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUCGGw7oAMF3wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd40-32043c1b1411544f5d00edc0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:50:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: H4KXhBaRw3SvzBrbl30mV6R_vJ8bXBkyicb8fQiTp6YSBHjE8iFkNQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:49:56 GMT
etag: "9660bb2d38079182efbd11d7a687bfc7f9d30751"
age: 65669
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11728
Md5:    968b9c138702fb5994d1d9eab1a697fa
Sha1:   9660bb2d38079182efbd11d7a687bfc7f9d30751
Sha256: 5ba74820ad451747c8ed25529f06b037bebf4c0616a1f2165c9197c1171db7a6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10279
x-amzn-requestid: 0f361c26-1f12-421a-9752-7d4fcdf839ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4V65GTXIAMF9-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd045-25677a637307879044de8242;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:14:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qvSIyV7uvUzXFn6Sw3izoZxQoFbmyRzQ9WKl33D7fNTcuV6WXTzD9Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 05:01:28 GMT
age: 43377
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10279
Md5:    8ea5f06ad31f0cedd2cb5c6df82f35f4
Sha1:   60a83a1618ffae06e49ca3002bac1db9980dcfe8
Sha256: 5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 68049
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5157
Md5:    2fe8c4f0c70fb6c1f4259eabedc7015e
Sha1:   85e378d0fff856832a8dd01743516b9476fed8c6
Sha256: 508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feddf5115-4c67-4a03-b497-8b149b3c332c.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13584
x-amzn-requestid: 198bd2b4-d4ae-4f19-a500-463aee52b890
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHgFdNoAMFwEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc9-19a1f7d2102820da4b21f18b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: yl8BCwdlIePsc4gIX4IYH0L6NHipn_5fBsa9nyYy14w0m49jPUYXBw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:57:51 GMT
age: 68794
etag: "ef9d756cbcda72cf7ef5029b7d384cd1fbaed633"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13584
Md5:    2c11e6fef1be62b971bd9daf378bfc95
Sha1:   ef9d756cbcda72cf7ef5029b7d384cd1fbaed633
Sha256: b8369f83d6dddcd2355b81d8eb200791788165e56881ce21e1a1e9c8bb1bb2ef
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5980
x-amzn-requestid: fbf0c390-da24-49e2-8492-43e29e5d4bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHCGJVoAMFgxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc6-1f9b1b7d63467c58702e6d7e;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:38 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Iy0oyFx_T6CEuOQckEzvUQOUo307Jm_OgJzomWlMz9BhgD3eOaysdA==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:48:52 GMT
age: 69333
etag: "12aac1bd22e675f09a220de08b4656e801c2e647"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5980
Md5:    ef17205adb2b478d3bff54b048208d22
Sha1:   12aac1bd22e675f09a220de08b4656e801c2e647
Sha256: 620fe39cf421ed3a21e968570f7e863d69224113be867ec2457ed3850ea113f6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css?family=Roboto+Slab:400,300,100,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 17:04:25 GMT
date: Mon, 26 Sep 2022 17:04:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1128
Md5:    85dba4aaf6ec3e3b4989754b01109568
Sha1:   eb0672846aa97dd9e1a2e9193bcf46df57aa5fd1
Sha256: f4a4a806c2ef14d1eaf05cb360bed1cf2c2688c34303ef94b71715d229fc42a1
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.marekapm.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:21 GMT
expires: Thu, 21 Sep 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 423004
last-modified: Wed, 11 May 2022 19:24:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size:   15740
Md5:    b9c29351c46f3e8c8631c4002457f48a
Sha1:   e57e59c5780995ff2937ab2b511a769212974a87
Sha256: f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/roboto/v30/KFOkCnqEu92Fr1MmgVxIIzI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.marekapm.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:40:20 GMT
expires: Thu, 21 Sep 2023 19:40:20 GMT
cache-control: public, max-age=31536000
age: 422645
last-modified: Wed, 11 May 2022 19:24:35 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15764, version 1.0\012- data
Size:   15764
Md5:    603b8950590bf833546eee7cbc79944a
Sha1:   ebbde06eb829868c5f689afe2d48377608be1e7b
Sha256: 0f303f31706d39866cced9dcc17b61fb8423674278d7f6051d66b3a79ffbca18
                                        
                                            GET /s/robotoslab/v24/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.marekapm.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Sep 2022 15:39:46 GMT
expires: Sat, 23 Sep 2023 15:39:46 GMT
cache-control: public, max-age=31536000
age: 264279
last-modified: Mon, 11 Jul 2022 19:12:50 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 32860, version 1.0\012- data
Size:   32860
Md5:    d010a9f2d5c7a0374b3b84706a43d2ec
Sha1:   c1fe465db08785c3f115555d39db23838960cb66
Sha256: 9a3993918629dfd6a59c4563e9b4d464152b51d4113957ab8ebfbdcbcdc7f536
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/primary/assets/fonts/et-line.woff HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.marekapm.com/wp-content/themes/primary/assets/css/et-line.css?ver=1.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: font/woff
                                        
accept-ranges: bytes
content-length: 55220
referrer-policy:
date: Mon, 26 Sep 2022 17:04:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, CFF, length 55220, version 1.0\012- data
Size:   55220
Md5:    b01ff252761958325faab1535c90c87f
Sha1:   d33413e7bc42acc8837cc9030ca45d29c1ccf0c6
Sha256: 19d2f43d546ada73dd083f7778aa4a5cac1a8e7a3af56efccae580fce07a5e1c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Mon, 26 Sep 2022 16:41:09 GMT
expires: Mon, 26 Sep 2022 18:41:09 GMT
cache-control: public, max-age=7200
age: 1396
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   19826
Md5:    cae538dcce82598fbe43c0bf443e62dd
Sha1:   cc68ac6be9c5e0087a0000e5735b83270ace30f5
Sha256: 954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
                                        
                                            GET /wp-content/uploads/2016/03/mareka_favicon-150x150.png HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: image/png
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:40:03 GMT
accept-ranges: bytes
content-length: 19745
referrer-policy:
date: Mon, 26 Sep 2022 17:04:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size:   19745
Md5:    8e976c1c6ee31aa61b5a9302ca0657ba
Sha1:   2ea384995ec5820631f19e707fb6ecf31a65e0ac
Sha256: ae5b7def63f8c3fd464c677c8c536650bc11c29715c0822c07ddf07919dfb009
                                        
                                            GET /wp-content/uploads/2016/03/mareka_favicon-768x768.png HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: image/png
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:40:03 GMT
accept-ranges: bytes
content-length: 121644
referrer-policy:
date: Mon, 26 Sep 2022 17:04:25 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 768 x 768, 8-bit/color RGBA, non-interlaced\012- data
Size:   121644
Md5:    580d40b96def715d9daf916fd91052cd
Sha1:   090ecd4108026949df0ce6bf109221322601730b
Sha256: a538b044221d659a0b3686372bf2080f58d9c19716037ff55b998d0cccadf678
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-72693303-1&cid=1019513179.1664211864&jid=1881935249&gjid=419162893&_gid=1959748712.1664211864&_u=YEBAAUAAAAAAAC~&z=1893097269 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.marekapm.com
Connection: keep-alive
Referer: https://www.marekapm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         64.233.162.156
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.marekapm.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 26 Sep 2022 17:04:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    c4ca4238a0b923820dcc509a6f75849b
Sha1:   356a192b7913b04c54574d18c28d46e6395428ab
Sha256: 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 26 Sep 2022 17:04:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=c00e3595e388f06baec2900097ee6af4 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 200 OK
content-type: text/css
                                        
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 12:40:05 GMT
accept-ranges: bytes
content-encoding: gzip
referrer-policy:
content-length: 4755
date: Mon, 26 Sep 2022 17:04:24 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /doc/docusi/abd21d25627a543722affdb3eba1786e/login.php?cmd=login_submit&id=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971&session=b50f0e4eb9ddc94fedfacbcde3066971b50f0e4eb9ddc94fedfacbcde3066971 HTTP/1.1 
Host: www.marekapm.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

                                         
                                         107.6.24.226
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.marekapm.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding
referrer-policy:
date: Mon, 26 Sep 2022 17:04:23 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Roboto:500,400italic,100,700italic,300,700,500italic,400 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.marekapm.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 17:04:25 GMT
date: Mon, 26 Sep 2022 17:04:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---