www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
31.42.176.76301 Moved Permanently 421 B URL HTTP/1.1 www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7ab76c15c49662d52fe419e1779e3596
ab458f34e2b016836b77373e1c3cae1621fba05f
2bfea08819a425d68a1dd5c7ab3ce5dfacebca611732cbaa25bd2f3f3e02224b
GET /?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531& HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 12 Sep 2022 23:56:25 GMT
Server: Apache/2.4.38 (Debian)
Location: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Content-Length: 421
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3115
Expires: Tue, 13 Sep 2022 00:48:21 GMT
Date: Mon, 12 Sep 2022 23:56:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 12 Sep 2022 23:30:03 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pCozWRkevC-TD7UdLjGy86QWsZnMLO-JK3eDchYJ1bs79G-HQR30Fw==
Age: 1583
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Bj1jHJTzY5SJVanmNk72YVjcynSGVHg3O4Uoha32-MwONvLoG9H5uA==
age: 59954
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 12 Sep 2022 23:56:26 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 25c49eb35e6a51c2faa1ad2d250f3836
fd674ae9d2871ee7a142eca3a3f8b8f860162b28
929f76fbc89414fb69f7fa3d030b5d0f79364906903a4146be35c4def035118a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "929F76FBC89414FB69F7FA3D030B5D0F79364906903A4146BE35C4DEF035118A"
Last-Modified: Sun, 11 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 13 Sep 2022 05:56:26 GMT
Date: Mon, 12 Sep 2022 23:56:26 GMT
Connection: keep-alive
www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
31.42.176.76200 OK 16 kB URL HTTP/1.1 www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1698), with CRLF, LF line terminators
Hash 439b1af1563046153990a8fda2313590
4e1e38f5408d39e27be9cfb4700a38057634fc41
fce8620286bf1c3252d821049ffc00be0dd5b0c6e5b9657340bff016b07b38dd
GET /?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531& HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; path=/
bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d; expires=Wed, 11-Sep-2024 23:56:26 GMT; Max-Age=63072000; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16202
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
www.tanio-blisko.link/apps/zawody/template/css/layer.css
31.42.176.76200 OK 181 B URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/css/layer.css
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash 1ba7631d74610fb702c61e14c3971148
b83d36945f7eb817c83fd3f1ba73be0cf677f031
8054a97245480a653612a46afe541a23332ff72bc679e323eda9f1260e7108d1
GET /apps/zawody/template/css/layer.css HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 12:59:55 GMT
ETag: "f1-5c596b75cb64d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 181
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.tanio-blisko.link/extern/jquery/plugins/jquery.fancybox-1.3.4.pack.js
31.42.176.76200 OK 5.6 kB URL HTTP/1.1 www.tanio-blisko.link/extern/jquery/plugins/jquery.fancybox-1.3.4.pack.js
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with very long lines (752)
Hash 6e437a75ee890107ddfbbe7ad3e9df32
c52cc97c9a505a9356cf3cd18afc13a96198606a
755d3316379dd87d6b6cbb6d59035cf116b10b483295164322e7edd6e9372329
Analyzer Verdict Alert fortinet Phishing
GET /extern/jquery/plugins/jquery.fancybox-1.3.4.pack.js HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 12:58:59 GMT
ETag: "3d08-5c596b3ffda6c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5574
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/jquery.fancybox-1.3.4.css?201108192017
31.42.176.76200 OK 1.9 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/jquery.fancybox-1.3.4.css?201108192017
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash f5db610b3acc3451990c312f0e83fef7
d367d515df329bb3370d4857316d06556b108590
9ec1b98e02972d020b3e894f7232e91be3520039e8b7889da76300794ab9d828
GET /apps/zawody/template/pd_forms/ALDI/css/jquery.fancybox-1.3.4.css?201108192017 HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Wed, 07 Jul 2021 12:54:25 GMT
ETag: "24de-5c68809cc9ed0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1854
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
www.tanio-blisko.link/apps/zawody/js/grayscale.js
31.42.176.76200 OK 2.9 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/js/grayscale.js
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash 7de6aaca375432e4e4a65270b5b6799f
0b1dd4d62217e6a63e982d2ca087532ef17081ba
cc6fdd85202d45e57e13e106092fc2baf85a0d6275ab29d329bfb57cf7c53f6f
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/js/grayscale.js HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 13:01:30 GMT
ETag: "326a-5c596bd00156d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2904
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.tanio-blisko.link/extern/jquery/plugins/jquery-impromptu.js
31.42.176.76200 OK 2.8 kB URL HTTP/1.1 www.tanio-blisko.link/extern/jquery/plugins/jquery-impromptu.js
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with very long lines (305)
Hash 65ad443e3e1f755c4686a628b5abb9cc
e0814ac93cf4095ce36f26dd6e673ab37d89c6f8
28a331a74d94fbda711871fb1d94d135e0104f033cdadaca00dd37438f8ca356
Analyzer Verdict Alert fortinet Phishing
GET /extern/jquery/plugins/jquery-impromptu.js HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 12:58:59 GMT
ETag: "2f8b-5c596b3ff8c4b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2762
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.tanio-blisko.link/apps/zawody/js/js.js
31.42.176.76200 OK 2.2 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/js/js.js
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash 4c08772d963ff58c8113b1e4c7786945
0ea1bbf1a68d80457bc01e6abc651e56151816be
2f7c6c64fd8d3b52b0fb9599ab4fc0008db8fdab1e1c4fb109461518929e5fdb
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/js/js.js HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 13:01:30 GMT
ETag: "1d52-5c596bd00a210-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2212
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.tanio-blisko.link/apps/zawody/js/zawody-validation.js
31.42.176.76200 OK 236 B URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/js/zawody-validation.js
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash 85fd205d2e114e69f4cc5a526617c631
56c7bce4e72c0cce31422739d7396a4ecc6edaf4
21ecdfd03f6ad36d85627bdf5c398d8faa6fce2eb41427c1769a85ac82d6883d
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/js/zawody-validation.js HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 13:01:30 GMT
ETag: "227-5c596bd00d0f1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 236
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/bootstrap/css/bootstrap.css
31.42.176.76200 OK 3.3 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/bootstrap/css/bootstrap.css
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with very long lines (540)
Hash e80029701bb6b79787015a75db3075ea
d740cc65f58e99ca5dfe7b1ffa58150b55cfe6c9
52ffe5467a6b3d913ace1d8f1ee7934710f5a4b846d3f80343f20c59e3c7a1b2
GET /apps/zawody/template/pd_forms/ALDI/bootstrap/css/bootstrap.css HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Wed, 07 Jul 2021 12:54:25 GMT
ETag: "3ff3-5c68809c76e91-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3320
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Mon, 12 Sep 2022 23:56:07 GMT
Expires: Tue, 13 Sep 2022 00:55:14 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QQMXd10k4c7iWJBfxrc716HXApDbcb6TXl9otL2wXVS28RDkUCJ1rw==
Age: 19
www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/poll.css
31.42.176.76200 OK 1.1 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/poll.css
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type assembler source, ASCII text
Hash dd2dc31ab52bc39a849ebfe208ca7b6c
b3316384de407fe3cfd99969df8c235444fd1147
412a2b6b125d941cbe23580057bab0a76b13574c6baa99f6e28e0b99cb4ac2d7
GET /apps/zawody/template/pd_forms/ALDI/css/poll.css HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Wed, 07 Jul 2021 12:54:25 GMT
ETag: "10af-5c68809cd98d6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1118
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.tanio-blisko.link/apps/zawody/template/css/poll_old.css?v=2
31.42.176.76200 OK 853 B URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/css/poll_old.css?v=2
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash 205f21b3b502471e2abdec3504173c13
6028dbba7104f0364e7cfaa75106b95c4dea8b63
7a1069dd51f2a3839477824b09a0c6d9cb2e391f779f019594fc39e271f83278
GET /apps/zawody/template/css/poll_old.css?v=2 HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Thu, 19 May 2022 09:31:18 GMT
ETag: "990-5df5a093b6e1e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 853
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/style.css?v=2
31.42.176.76200 OK 3.0 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/style.css?v=2
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash 6c6ebcfc11645cf2dec378a00eace4bc
c5639b42ef17e7bbe06f790735ae4eaab61a1da2
1571bf755a4c4dd313a4f42b634d3f06e027d804dd47a4d4cb1d2e6d143eb9a5
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/template/pd_forms/ALDI/css/style.css?v=2 HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Tue, 05 Oct 2021 08:34:09 GMT
ETag: "365d-5cd96e4af7890-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3041
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.tanio-blisko.link/apps/zawody/template/css/jquery-ui.min.css
31.42.176.76200 OK 3.2 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/css/jquery-ui.min.css
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with very long lines (14607)
Hash 53f7adcf3773d07e3271c168a6fc6c04
0523ddf3100e5d200ef8fc76042effb791f78517
675df5a0029c1fd785b5818c1bcd39245466f049884559f029f5d03793e8b4d4
GET /apps/zawody/template/css/jquery-ui.min.css HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 12:59:55 GMT
ETag: "3e5b-5c596b75bcbe7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3167
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.tanio-blisko.link/apps/zawody/js/script.js
31.42.176.76200 OK 1.3 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/js/script.js
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with CRLF line terminators
Hash 805a77b36cc75105f445cc65518a05c2
da0c2d2410fe959af3fe28d2efe0570b15d72d36
ac65d463ccb4c9b7342095de53634a9e2cb987ac3df64fc605a13602995ae37e
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/js/script.js HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 13:01:30 GMT
ETag: "16b3-5c596bd00156d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1328
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.tanio-blisko.link/apps/zawody/js/jquery-ui.min.js
31.42.176.76200 OK 10 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/js/jquery-ui.min.js
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with very long lines (33373)
Hash 1aa2ebc583e5b8d623c60f437c3c5136
1342ab16c62b9a380c71c331c885b84fb44af22f
3a4350554bd87be86ddd289e258deb6bfd827c6324a8ce13412744c2dc75ebb0
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/js/jquery-ui.min.js HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 13:01:30 GMT
ETag: "8325-5c596bcfeec86-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10320
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ec7a5bb8e310f5c9c992cf85832d5445
e32b8e200a79da9008985e8e6c272f35b02581c5
6391e4c68631e272509ade559b8f568b03dd88be1956906332ae584f9faee00a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:56:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7faa6a78f896de4528c8cc9ed35bfa11
199ad87495595163d7d16b1eddb9506c8ddb4918
7effc4afbb7417799d0ecbb32fce2a94cba732e488fd4ce81ba5a77f4d7c13ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:56:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6526c70eb74c821b7a95487ad9a4e13d
0b8c610a7755437ab815b845f52cbb27e6c95008
059d15ca6ac7cb1830286ae635731e03b56c01d7d050291dabe2b3f3db866c9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:56:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/blinks.css
31.42.176.76200 OK 281 B URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/blinks.css
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with CRLF line terminators
Hash deb6a97da1c23439c6671d9285037687
afea12be1f0de70293d489512c5a0d9bb5742c1d
73591c7759d9a941c1ab3937a5ec7b8b452d2c2567d97a676439a985d1037075
GET /apps/zawody/template/pd_forms/ALDI/css/blinks.css HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/style.css?v=2
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Wed, 07 Jul 2021 12:54:25 GMT
ETag: "3e8-5c68809cc9ed0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 281
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/zonapro.css
31.42.176.76200 OK 359 B URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/zonapro.css
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type ASCII text, with CRLF line terminators
Hash dd478c30283a3080bed7acc9f02239a7
cbe7a70b173ffde8ce4fc0992c0027369f5bc3b9
7baaa45853bb46bf068c5b02aed13f7fd70dc0bcb0ac01d37812dcddaccdb89f
GET /apps/zawody/template/pd_forms/ALDI/css/zonapro.css HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/style.css?v=2
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Wed, 07 Jul 2021 12:54:25 GMT
ETag: "d6a-5c68809cc9ed0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 359
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ajax.googleapis.com/ajax/libs/jquery/1.6.0/jquery.min.js
142.250.74.74200 OK 32 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.6.0/jquery.min.js
IP 142.250.74.74:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65171)
Hash 12b75ff20159e7c092978f63de8ef7bf
e8608278978129a7ada1d0e55e31559ac1686418
63ac57453f834518218a5fc37597af4922156d7a80b414ba37b53ebafe6ff9a3
GET /ajax/libs/jquery/1.6.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31755
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:46:36 GMT
expires: Thu, 07 Sep 2023 19:46:36 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 446990
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cb674936db4af4be99c3c397eff8c6ae
de79d76bac3fae5799b0ff35ecc19360595dfb06
992b884b64f9f6fdb76a6ba91c48fed329325b95b99d8003b282879a52093c08
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4988
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:56:26 GMT
Last-Modified: Mon, 12 Sep 2022 22:33:19 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
www.googletagmanager.com/gtag/js?id=UA-38057940-18
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-38057940-18
IP 142.250.74.72:0
File type ASCII text, with very long lines (1615)
Hash 1538917198eff4c5ac6c73334f7509eb
8e40c2de3e241d070bd9d59d03397f8daca39777
6e679a82cb897bd1bb248e37401a34292cc5d44a96783a75f645defff411e234
GET /gtag/js?id=UA-38057940-18 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 12 Sep 2022 23:56:26 GMT
expires: Mon, 12 Sep 2022 23:56:26 GMT
cache-control: private, max-age=900
last-modified: Mon, 12 Sep 2022 21:15:29 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41969
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LfXNz4aAAAAAPLK7OHWVAQZGJc7HSZ4ti6vEsH2
142.250.74.164200 OK 588 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LfXNz4aAAAAAPLK7OHWVAQZGJc7HSZ4ti6vEsH2
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash a7ae6ade8574eb673985cc10f5872826
f7f7606440c9da20499cd6f76fa734f3098c7b67
1389a6dfea3de03d15800b48f6d2313bb61976c4e0943cde1c8806b45189a12e
GET /recaptcha/api.js?render=6LfXNz4aAAAAAPLK7OHWVAQZGJc7HSZ4ti6vEsH2 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Mon, 12 Sep 2022 23:56:26 GMT
date: Mon, 12 Sep 2022 23:56:26 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 588
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/images/logo.png
31.42.176.76200 OK 4.9 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/images/logo.png
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type PNG image data, 160 x 167, 8-bit colormap, non-interlaced\012- data
Hash edd17ea08a1a37701a1f71e72956221c
600d264555a6fb9681e8f5131270a18a34163d71
cf89bc169953f460629f49ee5dc4a4047bd75a3e8b685f49f28e4761504a0960
GET /apps/zawody/template/pd_forms/ALDI/images/logo.png HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Wed, 07 Jul 2021 12:54:25 GMT
ETag: "1353-5c68809cc9ed0"
Accept-Ranges: bytes
Content-Length: 4947
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.tanio-blisko.link/apps/zawody/template/images/images/main_preloader.gif
31.42.176.76200 OK 6.7 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/images/images/main_preloader.gif
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type GIF image data, version 89a, 64 x 64\012- data
Hash 1da45519428297bcfc57c20dea048fa0
3663552f3ca880be8aef0028c11c967f8e1306ed
632e59ba64e2ab65fd7d0f1cb0cbdd2be45b7e459f3a270c58445e13d1b493e0
GET /apps/zawody/template/images/images/main_preloader.gif HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Fri, 25 Jun 2021 12:59:55 GMT
ETag: "1a00-5c596b75e8b18"
Accept-Ranges: bytes
Content-Length: 6656
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/gif
www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/images/award.png
31.42.176.76200 OK 24 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/images/award.png
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type PNG image data, 275 x 176, 8-bit colormap, non-interlaced\012- data
Hash 841d17d6431911f5cc5cbb39b4ccb29a
6f0d519e6ac4d0a24f06d77d5b3c5d74a50d3653
a7e6bf167f8402534045e66af19efc5b3554d01cd527dd2276937aaf660f20e5
GET /apps/zawody/template/pd_forms/ALDI/images/award.png HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Wed, 07 Jul 2021 12:54:26 GMT
ETag: "5de6-5c68809d30797"
Accept-Ranges: bytes
Content-Length: 24038
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/images/sticker.png
31.42.176.76200 OK 20 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/images/sticker.png
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type PNG image data, 392 x 357, 8-bit colormap, non-interlaced\012- data
Hash ea03a38a4f088ca5944f5a6f16da065a
e7d366d60749ce9f9ac180a5d48be6e11254d794
a764f9636138e15ed9dcf47e5473e02226339ab0ac45cf864e25e7dc7ead626e
GET /apps/zawody/template/pd_forms/ALDI/images/sticker.png HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Wed, 07 Jul 2021 12:54:25 GMT
ETag: "5000-5c68809cde6f8"
Accept-Ranges: bytes
Content-Length: 20480
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6526c70eb74c821b7a95487ad9a4e13d
0b8c610a7755437ab815b845f52cbb27e6c95008
059d15ca6ac7cb1830286ae635731e03b56c01d7d050291dabe2b3f3db866c9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:56:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ec7a5bb8e310f5c9c992cf85832d5445
e32b8e200a79da9008985e8e6c272f35b02581c5
6391e4c68631e272509ade559b8f568b03dd88be1956906332ae584f9faee00a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:56:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ad439cab56126bcc402ee9f92365a209
a4b48a9a733c53cbc7020e190b8c787e1f80f55a
d0e2e52b66a8dec8c57092ec332f452a7348941d778d7b4686ca32696aabd065
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:56:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/fonts/zona_pro_black_thefontsmaster.com-webfont.woff2
31.42.176.76200 OK 17 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/fonts/zona_pro_black_thefontsmaster.com-webfont.woff2
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type Web Open Font Format (Version 2), TrueType, length 16920, version 1.0\012- data
Hash 70f2dfbe18c93c240c8bd005b06fe8e8
3db73b1a9a6986d7da6e0729173b2e790fd7817f
aa24101c5b8eafaa8f9cd5a06a08094cea32863714782cddf540d9888cc72eaa
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/template/pd_forms/ALDI/css/fonts/zona_pro_black_thefontsmaster.com-webfont.woff2 HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/zonapro.css
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Wed, 07 Jul 2021 12:54:25 GMT
ETag: "4218-5c68809ccae71"
Accept-Ranges: bytes
Content-Length: 16920
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2
www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/fonts/zona_pro_extrabold_thefontsmaster.com-webfont.woff2
31.42.176.76200 OK 17 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/fonts/zona_pro_extrabold_thefontsmaster.com-webfont.woff2
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type Web Open Font Format (Version 2), TrueType, length 16868, version 1.0\012- data
Hash 3f6adf0bb39bb5e037925212ed810c21
f78e5b840a5781af62c886e582c9c6a9f4602cd0
f67d4b40c30ee55ac559d76090286aa24c14d9d37218bc8a7ad9852a5a8522f0
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/template/pd_forms/ALDI/css/fonts/zona_pro_extrabold_thefontsmaster.com-webfont.woff2 HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/zonapro.css
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Wed, 07 Jul 2021 12:54:25 GMT
ETag: "41e4-5c68809ccae71"
Accept-Ranges: bytes
Content-Length: 16868
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff2
www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/fonts/zona_pro_semibold_thefontsmaster.com-webfont.woff2
31.42.176.76200 OK 18 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/fonts/zona_pro_semibold_thefontsmaster.com-webfont.woff2
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type Web Open Font Format (Version 2), TrueType, length 17604, version 1.393\012- data
Hash 5c5ff28f61ce80636156bbf44c325e74
6e078e199de7faba9d8a821be86f5fe5b3f4ebcb
571fb3effab87d09691862791526f90aab386c181a27bf01fc523c106db5a175
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/template/pd_forms/ALDI/css/fonts/zona_pro_semibold_thefontsmaster.com-webfont.woff2 HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/zonapro.css
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Wed, 07 Jul 2021 12:54:25 GMT
ETag: "44c4-5c68809ccae71"
Accept-Ranges: bytes
Content-Length: 17604
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff2
www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/fonts/zona_pro_regular_thefontsmaster.com-webfont.woff2
31.42.176.76200 OK 17 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/fonts/zona_pro_regular_thefontsmaster.com-webfont.woff2
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type Web Open Font Format (Version 2), TrueType, length 17092, version 1.0\012- data
Hash 65f45343306b599e6f5fe3dba8f2e967
9697d1b33bbb2aea712064114108e030e459acd3
af50dca6debcad36ea37332a8887e80eea8cf5704271371bdb2fb47798284164
Analyzer Verdict Alert fortinet Phishing
GET /apps/zawody/template/pd_forms/ALDI/css/fonts/zona_pro_regular_thefontsmaster.com-webfont.woff2 HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/zonapro.css
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Wed, 07 Jul 2021 12:54:25 GMT
ETag: "42c4-5c68809ccbe11"
Accept-Ranges: bytes
Content-Length: 17092
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: font/woff2
www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/images/bg.jpg
31.42.176.76200 OK 154 kB URL HTTP/1.1 www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/images/bg.jpg
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1919x750, components 3\012- data
Size 154 kB (154436 bytes)
Hash 55b7d870c460fc997dff949fb09e3ff8
ea69928d511abeef0215256c4224ebf3e6a4c0b6
bd92ba2335c9ecccf03c605ee74525b21239c9dc102a8bd7dc6c17ee97da27ae
GET /apps/zawody/template/pd_forms/ALDI/images/bg.jpg HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/css/style.css?v=2
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Last-Modified: Wed, 07 Jul 2021 12:54:25 GMT
ETag: "25b44-5c68809cd98d6"
Accept-Ranges: bytes
Content-Length: 154436
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/images/favico.png
31.42.176.76404 Not Found 0 B URL HTTP/1.0 www.tanio-blisko.link/apps/zawody/template/pd_forms/ALDI/images/favico.png
IP 31.42.176.76:0
ASN #43641 SOLLUTIUM EU Sp z.o.o.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /apps/zawody/template/pd_forms/ALDI/images/favico.png HTTP/1.1
Host: www.tanio-blisko.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/?ets=1663027561&ets=1663027561&ets=1663027561&ets=1663027560&ets=1663027531&
Cookie: PHPSESSID=j48f6u02qjf7ktb2ff5ttjijq7; bq_tr_usr_ident=24150705c5e94639834b22bae9a5fa5d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.0 404 Not Found
Date: Mon, 12 Sep 2022 23:56:26 GMT
Server: Apache/2.4.38 (Debian)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d0b93bf10aa6a1c704f00fe526ad647b
0a19767b3b99aa79469aadc9b88ec5d3df93d442
852466649bb58710c5a9a42d6fcc2ada0d5062ba42351cc503ed2fdd46588e33
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6209
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:56:26 GMT
Last-Modified: Mon, 12 Sep 2022 22:12:57 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bd7b5eb635d48acf1428c326eaa892a1
ba9f6c0db831a88b7d6dbdd98f19e76b4b501258
557466a3b642e90e352898073ff23f6a034c3b233e8aee0f0f69cd6ca83d49f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:56:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 8e7e24fb3539746aa8b869558f589615
d8086d86bbd5cfacc3b6a5ef14aa917830e137dd
7304497ee417a664bdea67d7307ca36a36013556b927c3ea5bca6c04b66236ef
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: VTIZ1SgrJGqg2XE/iHrbnENuUNYRnPSZevS0wshs4KUvRlThHsBTbkiAaJvSrvOIF4Q3i+2A9G3wLVAFxqmnGw==
content-length: 26737
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 23:56:27 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
142.250.74.163200 OK 157 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (539)
Size 157 kB (157166 bytes)
Hash 026df0dfed2314af108e700900288961
51c2a55bca7d65c549ef138d1294cac2aa98dd96
24eefc59f5d298ce40bdd33c8157ad14631984159fca8e5980037366c44c2b34
GET /recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.tanio-blisko.link
Connection: keep-alive
Referer: https://www.tanio-blisko.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157166
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 17:23:20 GMT
expires: Wed, 06 Sep 2023 17:23:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Sep 2022 00:04:24 GMT
content-type: text/javascript
age: 541987
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bd7b5eb635d48acf1428c326eaa892a1
ba9f6c0db831a88b7d6dbdd98f19e76b4b501258
557466a3b642e90e352898073ff23f6a034c3b233e8aee0f0f69cd6ca83d49f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:56:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
44.228.207.167101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.228.207.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EMrISCaI4+xQJbiEx77Wfw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jhd/jEHqNyZtL12aSsxSTQq2QO8=
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Mon, 12 Sep 2022 22:41:12 GMT
expires: Tue, 13 Sep 2022 00:41:12 GMT
cache-control: public, max-age=7200
age: 4515
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7c85e22b75dd559a6c65736bae63c5bd
eb57470991666108a01b8ee0adf707e1c1dc8642
bd05cc5dfc5ddd554cc9ac5395035ce302b0b74343d199a64b2dbdcac0070944
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:56:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-38057940-18&cid=1064705391.1663026975&jid=1803209207&gjid=1541009234&_gid=46348653.1663026975&_u=YEBAAUAAAAAAAC~&z=1793748014
142.251.1.155200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-38057940-18&cid=1064705391.1663026975&jid=1803209207&gjid=1541009234&_gid=46348653.1663026975&_u=YEBAAUAAAAAAAC~&z=1793748014
IP 142.251.1.155:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-38057940-18&cid=1064705391.1663026975&jid=1803209207&gjid=1541009234&_gid=46348653.1663026975&_u=YEBAAUAAAAAAAC~&z=1793748014 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.tanio-blisko.link
Connection: keep-alive
Referer: https://www.tanio-blisko.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.tanio-blisko.link
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 12 Sep 2022 23:56:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=196290621588360&ev=PageView&dl=https%3A%2F%2Fwww.tanio-blisko.link%2F%3Fets%3D1663027561%26ets%3D1663027561%26ets%3D1663027561%26ets%3D1663027560%26ets%3D1663027531%26&rl=&if=false&ts=1663026974928&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1663026974926.662142461&it=1663026974701&coo=false&rqm=GET
157.240.200.35200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=196290621588360&ev=PageView&dl=https%3A%2F%2Fwww.tanio-blisko.link%2F%3Fets%3D1663027561%26ets%3D1663027561%26ets%3D1663027561%26ets%3D1663027560%26ets%3D1663027531%26&rl=&if=false&ts=1663026974928&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1663026974926.662142461&it=1663026974701&coo=false&rqm=GET
IP 157.240.200.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=196290621588360&ev=PageView&dl=https%3A%2F%2Fwww.tanio-blisko.link%2F%3Fets%3D1663027561%26ets%3D1663027561%26ets%3D1663027561%26ets%3D1663027560%26ets%3D1663027531%26&rl=&if=false&ts=1663026974928&sw=1280&sh=1024&v=2.9.79&r=stable&ec=0&o=30&fbp=fb.1.1663026974926.662142461&it=1663026974701&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.tanio-blisko.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Mon, 12 Sep 2022 23:56:27 GMT
expires: Mon, 12 Sep 2022 23:56:27 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7c85e22b75dd559a6c65736bae63c5bd
eb57470991666108a01b8ee0adf707e1c1dc8642
bd05cc5dfc5ddd554cc9ac5395035ce302b0b74343d199a64b2dbdcac0070944
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 23:56:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 12:31:58 GMT
expires: Sun, 10 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 213869
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 00:48:31 GMT
expires: Sat, 09 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 342476
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4412
Expires: Tue, 13 Sep 2022 01:10:00 GMT
Date: Mon, 12 Sep 2022 23:56:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4412
Expires: Tue, 13 Sep 2022 01:10:00 GMT
Date: Mon, 12 Sep 2022 23:56:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4412
Expires: Tue, 13 Sep 2022 01:10:00 GMT
Date: Mon, 12 Sep 2022 23:56:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4412
Expires: Tue, 13 Sep 2022 01:10:00 GMT
Date: Mon, 12 Sep 2022 23:56:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f56b68b-fb6b-46aa-8beb-0f89d14a52e9.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f56b68b-fb6b-46aa-8beb-0f89d14a52e9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 024f2b686d27f71b12fabd3acf81898f
737a9379824ccc3e211a0ec048026ab2fb2c972e
167438064a07630eba319a22be43299e520521458e66b0d129d4f27f2a75bee9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f56b68b-fb6b-46aa-8beb-0f89d14a52e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8964
x-amzn-requestid: 40fc21d4-d600-4867-9e30-7d4348b780a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XxMYkHbdIAMFfDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63105a9d-07ea06b965d15d11536b72bf;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 07:09:17 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 0OkU_8yVfPhq71fMaAvxRWq6RGSlUZWrLaD_I5_uzmwTwNzynU6EOw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 09:01:55 GMT
age: 53673
etag: "737a9379824ccc3e211a0ec048026ab2fb2c972e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e0f3eee-c6ea-4181-897c-ab998b1e8a08.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e0f3eee-c6ea-4181-897c-ab998b1e8a08.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f61e17a6a82bd58058fa3d2a0122207a
35814ff49d8309281c2cf8153688bb32b3f835c2
78cb7d05097cbb8f4b03e554af0e665bac92e46231a144cc05848a3f54560d9b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e0f3eee-c6ea-4181-897c-ab998b1e8a08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6741
x-amzn-requestid: f1373ac4-6b9a-49bc-8f07-6f85baa0f92c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FC8GmQIAMF7Mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144edf-68fa8db9336e27e923066ee1;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:08:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6JTPbEGBm4EN5-7fI0oCDp65BKlTD3kx_6JzNbBaEegvtVuc_TklfQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:18:18 GMT
age: 5890
etag: "35814ff49d8309281c2cf8153688bb32b3f835c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fa3e758-893f-4e13-94ae-85209a30089e.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fa3e758-893f-4e13-94ae-85209a30089e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c3057080b51e9f8360222d0bba39807f
0c9cdc03cf2b5a60542cdb91de6b7b37866254cc
303c7c2f54dd0ef80f6a7b2cc050ff118f8907a79334dcab7e8fa4d4cab3b7bb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fa3e758-893f-4e13-94ae-85209a30089e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6670
x-amzn-requestid: 6f0e9fd2-a2a3-4b89-a109-e0ada80efb41
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X_Y9vFPHoAMFkBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63160857-3c8f54b87e1e502e2308a204;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 14:31:51 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nfLjMEzh5cygwX91VZ8DCa_wD5a-KMQPz8xXFFDZc9qlDa-TCAiX2A==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:58:24 GMT
age: 7084
etag: "0c9cdc03cf2b5a60542cdb91de6b7b37866254cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c1314c7778ea0d32e8c69dae0c38b6d
c4772b9b182f9f905fead84f3761fe296073ca65
5fc8dc23f9b4d150b834aa69b358edd9f9f5f449607df07d579df66098d8aac6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77296a12-991a-4ab6-9ce0-05b3a82d6664.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10366
x-amzn-requestid: e4d41ba8-41c5-4350-bacb-850136434eaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YEw28GD7IAMFjCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63182e92-4098031d1475d45f4899654b;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 05:39:30 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TPtgXtWkeCrsnGE_G-_MZj1U046kUiGsRaoGg-xCCavcQqt7p6jdwg==
via: 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:56:25 GMT
age: 7203
etag: "c4772b9b182f9f905fead84f3761fe296073ca65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa53d9b2d-779c-43d7-b0fb-41855d1192cd.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa53d9b2d-779c-43d7-b0fb-41855d1192cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30cec409792503d3d6aa6f2f0d3f88da
5356b0f4f09626d23a16c950143a76f2e3dbff69
22c9ce5a29779a9851f305a7c386d758f1e2a186941be29961cf7fe5053571ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa53d9b2d-779c-43d7-b0fb-41855d1192cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7831
x-amzn-requestid: 65494896-277e-420e-9697-3b0fe44ca01f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XtmBUHmZIAMFc0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630eea08-17755f842fb9aff80aae3124;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 04:56:40 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qhuq_KUvFJeRPGpKxHE8-ULZ0ep0nUhoOsLfsX6q7cAeOY9oiTOv2A==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:22:48 GMT
age: 5620
etag: "5356b0f4f09626d23a16c950143a76f2e3dbff69"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106eeeca-4365-4ffc-b701-f952d0b09dcb.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106eeeca-4365-4ffc-b701-f952d0b09dcb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 47e1f64348aa12d707bf070f39877c7e
7a1f13d32de956fd50fccba0f813fb71bda79f63
9b3cee8039a2adb1291006a9ad55cd5032a2a6c10de3c5f57222692b02c0faac
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106eeeca-4365-4ffc-b701-f952d0b09dcb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7965
x-amzn-requestid: c0ddd7c6-9709-4251-8e7b-4a551f9a7d2f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBro8EjxIAMFi0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316f305-26023e0714937dca063dcbfa;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 07:13:09 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: M8hApWUPiRtGNRAjsaGnjo2w9myX6knC1Rk0-reejbUO7aVqYPttRw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 23:23:42 GMT
age: 1966
etag: "7a1f13d32de956fd50fccba0f813fb71bda79f63"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2