firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 08:14:07 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ig7XjqP7AgqTDO3i7tSJ9jm64HwTu9Fy15JKLmBEcQqse6soXYYVKQ==
Age: 3361
shopzone.ge/wp-admin/discover%20bank/discover/login.php?section=cardmembersvcs/loginlogout/app/signin
138.201.207.84200 OK 8.3 kB URL HTTP/1.1 shopzone.ge/wp-admin/discover%20bank/discover/login.php?section=cardmembersvcs/loginlogout/app/signin
IP 138.201.207.84:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (541), with CRLF line terminators
Hash 87bc0da8c8fec1383b351f0bd7e09d53
676daa364e9c9177e3d6c600e873ab0b322ccaa9
bbea3366a40088cc1e36ca68cc8a298b875432857ea74f2dfee4f23c2f0c52d6
Analyzer Verdict Alert openphish Discover
fortinet Phishing
GET /wp-admin/discover%20bank/discover/login.php?section=cardmembersvcs/loginlogout/app/signin HTTP/1.1
Host: shopzone.ge
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Content-Length: 8266
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 23 Sep 2022 09:10:08 GMT
Server: LiteSpeed
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2401
Expires: Fri, 23 Sep 2022 09:50:10 GMT
Date: Fri, 23 Sep 2022 09:10:09 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8pWxm-mugTWBIGkPFiErX-S5RfhFAlQho_06mjxhQgunYIukxCPfhw==
age: 16495
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 09:10:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
shopzone.ge/scripts/vendors/mbox.js
138.201.207.84500 Internal Server Error 0 B URL HTTP/1.1 shopzone.ge/scripts/vendors/mbox.js
IP 138.201.207.84:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /scripts/vendors/mbox.js HTTP/1.1
Host: shopzone.ge
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shopzone.ge/wp-admin/discover%20bank/discover/login.php?section=cardmembersvcs/loginlogout/app/signin
HTTP/1.1 500 Internal Server Error
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Date: Fri, 23 Sep 2022 09:10:09 GMT
Server: LiteSpeed
shopzone.ge/scripts/optimized/dc-global-bottom.js
138.201.207.84500 Internal Server Error 0 B URL HTTP/1.1 shopzone.ge/scripts/optimized/dc-global-bottom.js
IP 138.201.207.84:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /scripts/optimized/dc-global-bottom.js HTTP/1.1
Host: shopzone.ge
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shopzone.ge/wp-admin/discover%20bank/discover/login.php?section=cardmembersvcs/loginlogout/app/signin
HTTP/1.1 500 Internal Server Error
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Date: Fri, 23 Sep 2022 09:10:09 GMT
Server: LiteSpeed
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9496a33ef8851b63c58e93357e7f325f
15e1efc56245d5114e9c4e69045efdf3042179fd
c6f60cc14ed4c7d0622b5fd821b7cee969b75b2861d4d18015b5166c3a1a46c3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5089
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:10:09 GMT
Last-Modified: Fri, 23 Sep 2022 07:45:20 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9496a33ef8851b63c58e93357e7f325f
15e1efc56245d5114e9c4e69045efdf3042179fd
c6f60cc14ed4c7d0622b5fd821b7cee969b75b2861d4d18015b5166c3a1a46c3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5089
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:10:09 GMT
Last-Modified: Fri, 23 Sep 2022 07:45:20 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9496a33ef8851b63c58e93357e7f325f
15e1efc56245d5114e9c4e69045efdf3042179fd
c6f60cc14ed4c7d0622b5fd821b7cee969b75b2861d4d18015b5166c3a1a46c3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5838
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:10:09 GMT
Last-Modified: Fri, 23 Sep 2022 07:32:52 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9496a33ef8851b63c58e93357e7f325f
15e1efc56245d5114e9c4e69045efdf3042179fd
c6f60cc14ed4c7d0622b5fd821b7cee969b75b2861d4d18015b5166c3a1a46c3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5472
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:10:09 GMT
Last-Modified: Fri, 23 Sep 2022 07:38:57 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
shopzone.ge/scripts/optimized/vendor-dc-global-bottom.js
138.201.207.84500 Internal Server Error 0 B URL HTTP/1.1 shopzone.ge/scripts/optimized/vendor-dc-global-bottom.js
IP 138.201.207.84:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /scripts/optimized/vendor-dc-global-bottom.js HTTP/1.1
Host: shopzone.ge
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shopzone.ge/wp-admin/discover%20bank/discover/login.php?section=cardmembersvcs/loginlogout/app/signin
HTTP/1.1 500 Internal Server Error
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Date: Fri, 23 Sep 2022 09:10:09 GMT
Server: LiteSpeed
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9496a33ef8851b63c58e93357e7f325f
15e1efc56245d5114e9c4e69045efdf3042179fd
c6f60cc14ed4c7d0622b5fd821b7cee969b75b2861d4d18015b5166c3a1a46c3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5253
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:10:09 GMT
Last-Modified: Fri, 23 Sep 2022 07:42:36 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
www.discovercard.com/registration/images/logo-discover-financial-services.gif
104.110.25.34200 OK 2.4 kB URL HTTP/2 www.discovercard.com/registration/images/logo-discover-financial-services.gif
IP 104.110.25.34:0
File type GIF image data, version 89a, 152 x 38\012- data
Hash 8273d32807e40ff5c884aaa10a171bf9
1107f887eb9d15b4f1209c6ec5790d1e87993b6b
40da5d11bdfffe97bd52a7c20a03fdebafa7a0a0756fe65f4859298e4ba54370
GET /registration/images/logo-discover-financial-services.gif HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shopzone.ge/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 18:57:15 GMT
accept-ranges: bytes
content-length: 2395
cache-control: no-cache, no-store, public, must-revalidate
pragma: no-cache
expires: 0
content-type: image/gif
date: Fri, 23 Sep 2022 09:10:09 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
www.discovercard.com/images/question-popup-off.gif
104.110.25.34200 OK 147 B URL HTTP/2 www.discovercard.com/images/question-popup-off.gif
IP 104.110.25.34:0
File type GIF image data, version 89a, 12 x 12\012- data
Hash 6e339af62775718ec3d2419a5290bde9
40d4d7d2964d042c8c0a48368c8e61961a168e36
9338be77b0bb0f06e446925ecc0d36d2a9e83a29f024e00023060db99c951bff
GET /images/question-popup-off.gif HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shopzone.ge/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 17:56:13 GMT
accept-ranges: bytes
content-length: 147
cache-control: no-cache, no-store, public, must-revalidate
pragma: no-cache
expires: 0
content-type: image/gif
date: Fri, 23 Sep 2022 09:10:09 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
www.discovercard.com/css/optimized/ac-global.css
104.110.25.34200 OK 9.2 kB URL HTTP/2 www.discovercard.com/css/optimized/ac-global.css
IP 104.110.25.34:0
File type ASCII text, with very long lines (55990), with no line terminators
Hash 8d12104cb1964aaff1460262f1dd8fa3
a0af98578967a5db7f9470b407985e7b8cf94ce3
ce7b1037aa0aa7cadd9fe1db4ac5bebb3d0835194cce1de3094baf9f6db22103
GET /css/optimized/ac-global.css HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shopzone.ge/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Wed, 22 Apr 2020 05:25:59 GMT
accept-ranges: bytes
cache-control: no-cache, no-store, public, must-revalidate
pragma: no-cache
expires: 0
content-type: text/css
content-encoding: gzip
content-length: 9227
date: Fri, 23 Sep 2022 09:10:09 GMT
vary: Accept-Encoding
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
www.discovercard.com/css/optimized/ac-global-screen.css
104.110.25.34200 OK 2.9 kB URL HTTP/2 www.discovercard.com/css/optimized/ac-global-screen.css
IP 104.110.25.34:0
File type ASCII text, with very long lines (5876), with CRLF line terminators
Hash 3cc868a135a39af442cfae97919a89b2
6b07a86c0954e1285ab8ca55020b57ce97581d4c
caaaa1cf653bcc834220ce69885cc9d3c132edbb54602c2ef8d3a2ed0be14b71
GET /css/optimized/ac-global-screen.css HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shopzone.ge/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 18:07:49 GMT
accept-ranges: bytes
cache-control: no-cache, no-store, public, must-revalidate
pragma: no-cache
expires: 0
content-type: text/css
content-encoding: gzip
content-length: 2874
date: Fri, 23 Sep 2022 09:10:09 GMT
vary: Accept-Encoding
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
www.discovercard.com/images/icon-lock.gif
104.110.25.34200 OK 72 B URL HTTP/2 www.discovercard.com/images/icon-lock.gif
IP 104.110.25.34:0
File type GIF image data, version 89a, 10 x 10\012- data
Hash 1b01781765683dde36032b6eab58f2d7
766e82e7283235551810203b9f15bc391dcf3acd
180fabdab945223febb42a698e458f019cbd321ea79fd886b00523d9f7a17222
GET /images/icon-lock.gif HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shopzone.ge/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 17:56:13 GMT
accept-ranges: bytes
content-length: 72
cache-control: no-cache, no-store, public, must-revalidate
pragma: no-cache
expires: 0
content-type: image/gif
date: Fri, 23 Sep 2022 09:10:09 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
www.discovercard.com/css/optimized/loginlogout-global.css
104.110.25.34200 OK 16 kB URL HTTP/2 www.discovercard.com/css/optimized/loginlogout-global.css
IP 104.110.25.34:0
File type ASCII text, with very long lines (495), with CRLF line terminators
Hash 4a478443f745a67a276642aadae4c4a5
df2624c11bd4913b532196a232f9fcf6f670e557
a715fc1f62ecce954d4a850804337a58883f94e6cfbdcb74f28f14a8b2007fd4
GET /css/optimized/loginlogout-global.css HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shopzone.ge/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 17:55:19 GMT
accept-ranges: bytes
cache-control: no-cache, no-store, public, must-revalidate
pragma: no-cache
expires: 0
content-type: text/css
content-encoding: gzip
content-length: 16391
date: Fri, 23 Sep 2022 09:10:09 GMT
vary: Accept-Encoding
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
www.discovercard.com/achome/images/promos/btn-learn-more-lg.png
104.110.25.34200 OK 1.5 kB URL HTTP/2 www.discovercard.com/achome/images/promos/btn-learn-more-lg.png
IP 104.110.25.34:0
File type PNG image data, 99 x 25, 8-bit colormap, non-interlaced\012- data
Hash c7253e73705179550e9fe256f1fadafb
a97c09de00aab680f3fdba2b0cdd7e743ffa2a91
2ff1afa3c4aa3531b49cb623cac70a8ff3cd1a961dfcf8dfd2fb7cb19da04cd6
GET /achome/images/promos/btn-learn-more-lg.png HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shopzone.ge/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 17:54:44 GMT
accept-ranges: bytes
content-length: 1524
cache-control: no-cache, no-store
pragma: no-cache
expires: 0
content-type: image/png
date: Fri, 23 Sep 2022 09:10:09 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
shopzone.ge/registration/images/btn-popup-close.gif
138.201.207.84500 Internal Server Error 0 B URL HTTP/1.1 shopzone.ge/registration/images/btn-popup-close.gif
IP 138.201.207.84:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /registration/images/btn-popup-close.gif HTTP/1.1
Host: shopzone.ge
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shopzone.ge/wp-admin/discover%20bank/discover/login.php?section=cardmembersvcs/loginlogout/app/signin
HTTP/1.1 500 Internal Server Error
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Date: Fri, 23 Sep 2022 09:10:09 GMT
Server: LiteSpeed
www.discovercard.com/loginlogout/app/images/credit-score-tracker-ac-placement.jpg
104.110.25.34301 Moved Permanently 293 B URL HTTP/1.1 www.discovercard.com/loginlogout/app/images/credit-score-tracker-ac-placement.jpg
IP 104.110.25.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3b047ca2f44741fdf7a4b7eba0237a1a
4cccb932c0e64d2585a18330f3cfb58a0da6edb9
98b82bc7cbb9c7000a80cb8576beea64e2d2c124ab4a74c6ea04d74fb769d484
GET /loginlogout/app/images/credit-score-tracker-ac-placement.jpg HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shopzone.ge/
HTTP/1.1 301 Moved Permanently
Location: https://www.discover.com/loginlogout/app/images/credit-score-tracker-ac-placement.jpg
Content-Length: 293
Content-Type: text/html; charset=iso-8859-1
Date: Fri, 23 Sep 2022 09:10:09 GMT
Connection: keep-alive
Set-Cookie: DCID=www22; path=/; secure
ak_bmsc=E0DF67D86527CD26BDFE34E702B49C9E~000000000000000000000000000000~YAAQrk0kF3SzWFaDAQAAuYecaRF+c+3YF22N0ooNRbA0NgCIKQOhqPybP3oRog1C01hj/iW88WG2N7zw1Q47PNzmSOHNVL182oZHaqX1LVU8eOE/S3+Qk6Sd8NybmmOnrxiKEmQZMMfi7/0xEmnD5/9raGon4imrsb2+U53bsPy6n+vX7qrQQ+mJmUvxE+UtpmNhz9UQppopmRWj5C5Bfy0yl8gkXfytbAI+JHjcK+22urkz08QI+mcVOJ0Wr/lLDJMEZeFaQzsB1PgMJnX0dWnWeIXvGvyHm0p9DHcorDBMlDjA3D8g0GwzgVh1oT7iTcspTu9nDaiTRp8=; Domain=.discovercard.com; Path=/; Expires=Fri, 23 Sep 2022 11:10:09 GMT; Max-Age=7200; HttpOnly
www.discovercard.com/scripts/optimized/loginlogout-top.js
104.110.25.34200 OK 23 kB URL HTTP/2 www.discovercard.com/scripts/optimized/loginlogout-top.js
IP 104.110.25.34:0
File type HTML document, Non-ISO extended-ASCII text, with very long lines (26889), with CRLF line terminators
Hash ca6d6e78b4653770c803a8f026663182
f6105d4928fab2bd8391f9f6eb8fa34abb103b71
5fa44879f59041e99be7d4fb16e75dc9f774e78957309b9f743d7fbc501cefb1
GET /scripts/optimized/loginlogout-top.js HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shopzone.ge/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 18:57:16 GMT
accept-ranges: bytes
cache-control: no-cache, no-store, public, must-revalidate
pragma: no-cache
expires: 0
content-type: application/javascript
content-encoding: gzip
content-length: 22707
date: Fri, 23 Sep 2022 09:10:09 GMT
vary: Accept-Encoding
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 23 Sep 2022 09:03:22 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Fri, 23 Sep 2022 09:19:49 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CztupRmCPNCmg92X0NXMZnta7fyx38sACZ3G5NDoEYO_amNqgwoeTg==
Age: 407
www.discovercard.com/search/images/btn-search-gray-off.gif
104.110.25.34200 OK 907 B URL HTTP/2 www.discovercard.com/search/images/btn-search-gray-off.gif
IP 104.110.25.34:0
File type PNG image data, 54 x 20, 8-bit colormap, non-interlaced\012- data
Hash ca507abd440a827ccd08bac8f2c3c982
22510137e484d77168009c2eb32d1aa1ee35b03d
23463987921a39610e206599214b319a6fe88e106e695fecdcf6556603bb0b7d
GET /search/images/btn-search-gray-off.gif HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shopzone.ge/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 18:08:54 GMT
accept-ranges: bytes
content-length: 907
cache-control: no-cache, no-store, public, must-revalidate
pragma: no-cache
expires: 0
content-type: image/gif
date: Fri, 23 Sep 2022 09:10:09 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
www.discovercard.com/images/optimized/c_sprite.png
104.110.25.34200 OK 8.7 kB URL HTTP/2 www.discovercard.com/images/optimized/c_sprite.png
IP 104.110.25.34:0
File type PNG image data, 44 x 2007, 8-bit/color RGBA, non-interlaced\012- data
Hash 6a58b0af7af780f84eb533e2d0aae4cb
263c20bd63cab9574257fddd0a4b0bf73b7a1ee7
f80cd677405fca2aa43cb47cb4165fff83dedd3b0546c8d032c92c877e7be42e
GET /images/optimized/c_sprite.png HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.discovercard.com/css/optimized/loginlogout-global.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 18:57:11 GMT
accept-ranges: bytes
content-length: 8748
cache-control: no-cache, no-store
pragma: no-cache
expires: 0
content-type: image/png
date: Fri, 23 Sep 2022 09:10:09 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
www.discovercard.com/images/optimized/c_sprite1.png
104.110.25.34200 OK 553 B URL HTTP/2 www.discovercard.com/images/optimized/c_sprite1.png
IP 104.110.25.34:0
File type PNG image data, 1 x 1700, 8-bit/color RGBA, non-interlaced\012- data
Hash 1968a5bd7c9352316c890a99d5a54a42
1fa2a73d843bd7257420521dd55449755485435a
824ee2b3eaae3448987f4217fe35b22c2e479316ccaad58475403ae57236db12
GET /images/optimized/c_sprite1.png HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.discovercard.com/css/optimized/loginlogout-global.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 18:08:37 GMT
accept-ranges: bytes
content-length: 553
cache-control: no-cache, no-store
pragma: no-cache
expires: 0
content-type: image/png
date: Fri, 23 Sep 2022 09:10:09 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
www.discovercard.com/images/icon-question-popup-gray.gif
104.110.25.34200 OK 147 B URL HTTP/2 www.discovercard.com/images/icon-question-popup-gray.gif
IP 104.110.25.34:0
File type GIF image data, version 89a, 12 x 12\012- data
Hash 6e339af62775718ec3d2419a5290bde9
40d4d7d2964d042c8c0a48368c8e61961a168e36
9338be77b0bb0f06e446925ecc0d36d2a9e83a29f024e00023060db99c951bff
GET /images/icon-question-popup-gray.gif HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.discovercard.com/css/optimized/loginlogout-global.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 17:56:13 GMT
accept-ranges: bytes
content-length: 147
cache-control: no-cache, no-store, public, must-revalidate
pragma: no-cache
expires: 0
content-type: image/gif
date: Fri, 23 Sep 2022 09:10:09 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d188a626af91c6a4befc510450fe80e2
b9fc12bd6da3b1c6580d9f3d3261b48e1d02ac71
429c4e9d31698b99d1d521e9fca1035cc7811fd977c6207b9f3f95be2100e1e9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:10:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fls.doubleclick.net/activityj;src=2033010;type=cashbbou;cat=loginpag;ord=1;num=5282247371708.121?
142.250.74.70200 OK 346 B URL HTTP/2 fls.doubleclick.net/activityj;src=2033010;type=cashbbou;cat=loginpag;ord=1;num=5282247371708.121?
IP 142.250.74.70:0
File type ASCII text, with very long lines (462), with no line terminators
Hash ab0baf7b72c44df7b15dd858e902f48b
463c1c43e773879c34f9cd792f2beed010b42c74
f9394a6c0045868c3fefd76a5d416218b08010b98b243fcbba605a4442ee2721
GET /activityj;src=2033010;type=cashbbou;cat=loginpag;ord=1;num=5282247371708.121? HTTP/1.1
Host: fls.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shopzone.ge/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 23 Sep 2022 09:10:09 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 346
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 23-Sep-2022 09:25:09 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 86624f45fb3b7126dbe002f69c94dd86
30bcf274db5037122f989fb25dbf1e72c9ec417b
2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5360
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:10:09 GMT
Last-Modified: Fri, 23 Sep 2022 07:40:49 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d188a626af91c6a4befc510450fe80e2
b9fc12bd6da3b1c6580d9f3d3261b48e1d02ac71
429c4e9d31698b99d1d521e9fca1035cc7811fd977c6207b9f3f95be2100e1e9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:10:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f4589cef50f0426b60bf56a1fadb93a5
7db92337dc8c6161e31f89f49db18c4cd22b871f
db8b6e5f5a4e43b9e8e835e9434f0f94ead7965c04dc4641dad639ac778d8215
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:10:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/j/src=2033010;type=cashbbou;cat=loginpag;ord=1;num=5282247371708.121;~oref=http://shopzone.ge/
142.250.74.34302 Found 0 B URL HTTP/2 adservice.google.com/ddm/fls/j/src=2033010;type=cashbbou;cat=loginpag;ord=1;num=5282247371708.121;~oref=http://shopzone.ge/
IP 142.250.74.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ddm/fls/j/src=2033010;type=cashbbou;cat=loginpag;ord=1;num=5282247371708.121;~oref=http://shopzone.ge/ HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shopzone.ge/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 23 Sep 2022 09:10:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.no/ddm/fls/j/src=2033010;type=cashbbou;cat=loginpag;ord=1;num=5282247371708.121;~oref=http://shopzone.ge/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2aaec9cbe28343d60597d0371f8ed16b
4456dfef025ab6be775cf3fec5afb553dbfe28d7
7e2ae8341c557e5f590cab1a3ba0d1207ad4a039729b7552b48b40dbb6fc53c5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:10:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b19c871f8d68a5cf507d6d29cb89da17
11197481d015eb6d7811381df5ee51d9ff31bb3b
48ce88e049d6f9a08ab2bd0812c037b4b4401e1a788cacefb539831978054b7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:10:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/ddm/fls/j/src=2033010;type=cashbbou;cat=loginpag;ord=1;num=5282247371708.121;~oref=http://shopzone.ge/
142.250.74.130200 OK 177 B URL HTTP/2 adservice.google.no/ddm/fls/j/src=2033010;type=cashbbou;cat=loginpag;ord=1;num=5282247371708.121;~oref=http://shopzone.ge/
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 9393b28661a65a763699c108887882eb
c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
GET /ddm/fls/j/src=2033010;type=cashbbou;cat=loginpag;ord=1;num=5282247371708.121;~oref=http://shopzone.ge/ HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://shopzone.ge/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 23 Sep 2022 09:10:10 GMT
expires: Fri, 23 Sep 2022 09:10:10 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
shopzone.ge/scripts/vendors/mbox.js
138.201.207.84500 Internal Server Error 0 B URL HTTP/1.1 shopzone.ge/scripts/vendors/mbox.js
IP 138.201.207.84:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /scripts/vendors/mbox.js HTTP/1.1
Host: shopzone.ge
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shopzone.ge/wp-admin/discover%20bank/discover/login.php?section=cardmembersvcs/loginlogout/app/signin
HTTP/1.1 500 Internal Server Error
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Date: Fri, 23 Sep 2022 09:10:10 GMT
Server: LiteSpeed
www.discovercard.com/images/bullet-blue.gif
104.110.25.34200 OK 68 B URL HTTP/2 www.discovercard.com/images/bullet-blue.gif
IP 104.110.25.34:0
File type GIF image data, version 89a, 4 x 4\012- data
Hash f3b7e5d50cc2d3da8bcfbea5de55d575
998b5f61e0f33307a0306fd2dd509a635a12a4ed
fb2c359f2c3d053c6aa6c2e291faff3004f83ec078378c549f73ceffefce9fa1
GET /images/bullet-blue.gif HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.discovercard.com/css/optimized/loginlogout-global.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 18:08:36 GMT
accept-ranges: bytes
content-length: 68
cache-control: no-cache, no-store, public, must-revalidate
pragma: no-cache
expires: 0
content-type: image/gif
date: Fri, 23 Sep 2022 09:10:10 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b19c871f8d68a5cf507d6d29cb89da17
11197481d015eb6d7811381df5ee51d9ff31bb3b
48ce88e049d6f9a08ab2bd0812c037b4b4401e1a788cacefb539831978054b7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:10:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.discovercard.com/images/optimized/loginlogout_btn_sprite.png
104.110.25.34200 OK 6.0 kB URL HTTP/2 www.discovercard.com/images/optimized/loginlogout_btn_sprite.png
IP 104.110.25.34:0
File type PNG image data, 300 x 135, 8-bit colormap, non-interlaced\012- data
Hash fb454d4c60fd052b48330d4de7485013
93e687c3af83b3a52e99f0071ecfaf499e7117a1
97fbbb53c53c6d5b9af70e2b43942185f236114c0952e2d92dffc000ea8ff162
GET /images/optimized/loginlogout_btn_sprite.png HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.discovercard.com/css/optimized/loginlogout-global.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 18:08:37 GMT
accept-ranges: bytes
content-length: 6026
cache-control: no-cache, no-store
pragma: no-cache
expires: 0
content-type: image/png
date: Fri, 23 Sep 2022 09:10:10 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
shopzone.ge/scripts/optimized/dc-global-bottom.js
138.201.207.84500 Internal Server Error 0 B URL HTTP/1.1 shopzone.ge/scripts/optimized/dc-global-bottom.js
IP 138.201.207.84:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /scripts/optimized/dc-global-bottom.js HTTP/1.1
Host: shopzone.ge
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shopzone.ge/wp-admin/discover%20bank/discover/login.php?section=cardmembersvcs/loginlogout/app/signin
HTTP/1.1 500 Internal Server Error
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Date: Fri, 23 Sep 2022 09:10:10 GMT
Server: LiteSpeed
shopzone.ge/registration/images/btn-popup-close.gif
138.201.207.84500 Internal Server Error 0 B URL HTTP/1.1 shopzone.ge/registration/images/btn-popup-close.gif
IP 138.201.207.84:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /registration/images/btn-popup-close.gif HTTP/1.1
Host: shopzone.ge
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shopzone.ge/wp-admin/discover%20bank/discover/login.php?section=cardmembersvcs/loginlogout/app/signin
HTTP/1.1 500 Internal Server Error
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Date: Fri, 23 Sep 2022 09:10:10 GMT
Server: LiteSpeed
www.discover.com/loginlogout/app/images/credit-score-tracker-ac-placement.jpg
104.110.25.34404 Not Found 8.7 kB URL HTTP/2 www.discover.com/loginlogout/app/images/credit-score-tracker-ac-placement.jpg
IP 104.110.25.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1181), with CRLF, LF line terminators
Hash 30319d5307342633a572f5eb6702e93f
abaf3490638707965bb508846ded4163b3534c0d
06c054db46594d4cd3438f4fa0d368d2b8baa679d4bc8f161a63d2e4316006a8
GET /loginlogout/app/images/credit-score-tracker-ac-placement.jpg HTTP/1.1
Host: www.discover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://shopzone.ge/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, DENY
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
accept-ranges: bytes
content-encoding: gzip
content-length: 8738
content-type: text/html
date: Fri, 23 Sep 2022 09:10:10 GMT
vary: Accept-Encoding
set-cookie: dfswaf=!UWRdKAzH3MkO1P7GkteLEgpeI8iFc8+SzH2rQ0X25n2TmPkHFrEqPqX2AgWVRT5InEWkK+Z0R/ghR2My0XFzgqknNt0XiQedZGeQNz+/fQ==; path=/; Httponly; Secure; samesite=lax
DCID=www12; path=/; secure
ak_bmsc=5C186664C413B21AB60B4B65E061DA16~000000000000000000000000000000~YAAQrk0kF3azWFaDAQAA9ImcaREl/4NmxctGJg3ajcDd5jZ7ZrJdB9iL3U4DgU0MFxMiG12n1ta8ZhV4XS84mHfL08GwA8M1h42/rg5eFHyuC//0kUrfuc9PQsqNFOLeRHcsdYmb7vDB7Hq0HxkgZNso3PshEa5N5olDZJeWf9C+uzAGRSdQfNpFh7WQ020EDdAKtHyiqavyqm5KzC4+4AaNCd4MMgjqLcgExEs/QEES/uFCVuicTFA4RayXw6KMS3bmhUAu4+/NTqBal96TwIQH73a9MZfUCBNEfrcZ7eiitSLs54LXnF/jIBFkb0qsVbN4dG1Lb1/cfeuu1Psctz4SJUgRYdVJ8O3IfIXVzVnDNac25c5xckBTyE02g1YjB6LAdk+ozBSr3yY=; Domain=.discover.com; Path=/; Expires=Fri, 23 Sep 2022 11:10:09 GMT; Max-Age=7199; HttpOnly
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
shopzone.ge/scripts/optimized/vendor-dc-global-bottom.js
138.201.207.84500 Internal Server Error 0 B URL HTTP/1.1 shopzone.ge/scripts/optimized/vendor-dc-global-bottom.js
IP 138.201.207.84:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /scripts/optimized/vendor-dc-global-bottom.js HTTP/1.1
Host: shopzone.ge
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shopzone.ge/wp-admin/discover%20bank/discover/login.php?section=cardmembersvcs/loginlogout/app/signin
HTTP/1.1 500 Internal Server Error
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Date: Fri, 23 Sep 2022 09:10:10 GMT
Server: LiteSpeed
push.services.mozilla.com/
54.187.71.185101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.71.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: j5kdFCQuyVNK/Gkk+q6CwQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AdzVxQKeG4r0CCYWGg7Wk111pU4=
www.discovercard.com/images/bg-social-icons.png
104.110.25.34200 OK 4.1 kB URL HTTP/2 www.discovercard.com/images/bg-social-icons.png
IP 104.110.25.34:0
File type PNG image data, 22 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash f924a095931dbe3d2a048c79702784ba
89fe8a05234701d5f4f56766c5eeff267587f2c5
4f539319c027c53d3af91987b58bdf031ebc20603c62f9782f7acc67e291806a
GET /images/bg-social-icons.png HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.discovercard.com/css/optimized/ac-global.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 18:08:36 GMT
accept-ranges: bytes
content-length: 4076
cache-control: no-cache, no-store
pragma: no-cache
expires: 0
content-type: image/png
date: Fri, 23 Sep 2022 09:10:10 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
www.discovercard.com/images/bg-footer.png
104.110.25.34200 OK 250 B URL HTTP/2 www.discovercard.com/images/bg-footer.png
IP 104.110.25.34:0
File type PNG image data, 1 x 184, 8-bit colormap, non-interlaced\012- data
Hash 1cdbf25f4b279a89c186c4a8f5df20c3
55b2116b834f217f8a9387d78bc84f6210c3796e
c775671608781223d3c6355f2655c2eada5d811dd4412c9d4c054b5b657828ae
GET /images/bg-footer.png HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.discovercard.com/css/optimized/ac-global.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 17:56:13 GMT
accept-ranges: bytes
content-length: 250
cache-control: no-cache, no-store
pragma: no-cache
expires: 0
content-type: image/png
date: Fri, 23 Sep 2022 09:10:10 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
www.discovercard.com/images/icon-footer-down-arrow.png
104.110.25.34200 OK 208 B URL HTTP/2 www.discovercard.com/images/icon-footer-down-arrow.png
IP 104.110.25.34:0
File type PNG image data, 7 x 7, 8-bit colormap, non-interlaced\012- data
Hash 31a81b91a666d6500fbc2d7626a15591
2d82277e9864ad9be43ba6400e499e04a39d5fa7
7cdc24c5739df6dec49b9e53c538399945d8eccc986ff84735317ca5185c169a
GET /images/icon-footer-down-arrow.png HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.discovercard.com/css/optimized/ac-global.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 18:57:10 GMT
accept-ranges: bytes
content-length: 208
cache-control: no-cache, no-store
pragma: no-cache
expires: 0
content-type: image/png
date: Fri, 23 Sep 2022 09:10:10 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
www.discovercard.com/images/logo-it-pays-to-discover.png
104.110.25.34200 OK 5.0 kB URL HTTP/2 www.discovercard.com/images/logo-it-pays-to-discover.png
IP 104.110.25.34:0
File type PNG image data, 189 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash 672c1f522a55c771c32225e7ab94c112
c59aa4fdbbb9b5f5217d0845057df15613963c2f
b6bf543ad3b1547b54b9608d058aef4fd0412745d2517079a94da339900d8ea0
GET /images/logo-it-pays-to-discover.png HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.discovercard.com/css/optimized/ac-global.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 17:56:13 GMT
accept-ranges: bytes
content-length: 5035
cache-control: no-cache, no-store
pragma: no-cache
expires: 0
content-type: image/png
date: Fri, 23 Sep 2022 09:10:10 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
www.discovercard.com/images/bg-footer-btm.png
104.110.25.34200 OK 806 B URL HTTP/2 www.discovercard.com/images/bg-footer-btm.png
IP 104.110.25.34:0
File type PNG image data, 970 x 20, 8-bit colormap, non-interlaced\012- data
Hash ac6f8e73b337df23fbfe4338e2b86a94
6d32ad91e1c4e82219629462bdbc0811e161b7b8
88c115e368b88caf347417c33f4fbe321450fa8f1f667f0d933b937568a6cb4b
GET /images/bg-footer-btm.png HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.discovercard.com/css/optimized/ac-global.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 18:08:35 GMT
accept-ranges: bytes
content-length: 806
cache-control: no-cache, no-store
pragma: no-cache
expires: 0
content-type: image/png
date: Fri, 23 Sep 2022 09:10:10 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
www.discovercard.com/images/footer-line.png
104.110.25.34200 OK 126 B URL HTTP/2 www.discovercard.com/images/footer-line.png
IP 104.110.25.34:0
File type PNG image data, 1 x 10, 8-bit colormap, non-interlaced\012- data
Hash fb94321099459af1b40c8411bc3f8f57
55e065d2ee66fe7a81bab4cc405213605c1a8692
9b53f818b1aa9c91a5456738caedfe89c562996d9ed4deea9e0df50b718148b6
GET /images/footer-line.png HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.discovercard.com/css/optimized/ac-global.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 17:56:13 GMT
accept-ranges: bytes
content-length: 126
cache-control: no-cache, no-store
pragma: no-cache
expires: 0
content-type: image/png
date: Fri, 23 Sep 2022 09:10:10 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
www.discovercard.com/images/login-off.gif
104.110.25.34301 Moved Permanently 253 B URL HTTP/1.1 www.discovercard.com/images/login-off.gif
IP 104.110.25.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b2a440917300fbe719aac12901c63479
61a953f938f0b77aaed0ad9723275d0fc001b662
48819bdef388dd85aad754292775b246bc9653e0223daeb9cec111e2ba2cd57f
GET /images/login-off.gif HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shopzone.ge/
HTTP/1.1 301 Moved Permanently
Location: https://www.discover.com/images/login-off.gif
Content-Length: 253
Content-Type: text/html; charset=iso-8859-1
Date: Fri, 23 Sep 2022 09:10:10 GMT
Connection: keep-alive
Set-Cookie: dfswaf=!8PNxIWsLFckPpgzGkteLEgpeI8iFc1tdzh+ZNUGWnsM6y9vCzW5XVKPL43n+4F2BOnlQo3PkZOMq5pWll/rNoGfxwwZ0L5zG+OLHDqziVg==; path=/; Httponly; Secure; samesite=lax
DCID=www22; path=/; secure
ak_bmsc=8C74286E78E739DB363D0E6D08658985~000000000000000000000000000000~YAAQrk0kF3ezWFaDAQAAlYqcaREpNfUda7aElEArpXnAMtM4uSBoNxjvX89kqgMvge/NWLPNqD1p53sjK1C3Ztuhw2N087RdjXeqrAJdBvsyBDga1QbGjD1130OkZ2mmurDwyVmOcihStBADeyLXKNUXDq+dN2Ak3GgGBxbAjGCfIoNqu29HCy8KMOjEI1sKmcGcU5mprpFYFp8WHqZ23aVuU9tq0mPez/Nn14xyAOvegA8T5Oqd4je6FiMQXFziQBYGc0ip40L3I6bkPtvIdZI2SJTnP7ejouw4ZXKjjMkop4VAkrZtg9WbZm1EKvoa2bEdn+tXVRFaHGs=; Domain=.discovercard.com; Path=/; Expires=Fri, 23 Sep 2022 11:10:10 GMT; Max-Age=7200; HttpOnly
www.discover.com/images/login-off.gif
104.110.25.34200 OK 703 B URL HTTP/2 www.discover.com/images/login-off.gif
IP 104.110.25.34:0
File type GIF image data, version 89a, 64 x 20\012- data
Hash 7a604a64b6456d2e16dd97332da75546
50c27ab17db9128b6d7baf1dcf1405b74f5312a1
897bbcc31b17dd6e483ca3ccbd457e260e474bcecd823d1d04916567e2525568
GET /images/login-off.gif HTTP/1.1
Host: www.discover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://shopzone.ge/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, DENY
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
last-modified: Tue, 29 Mar 2011 10:31:49 GMT
accept-ranges: bytes
content-length: 703
cache-control: public, must-revalidate
content-type: image/gif
date: Fri, 23 Sep 2022 09:10:10 GMT
set-cookie: DCID=www12; path=/; secure
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.discovercard.com/images/favicon.ico
104.110.25.34200 OK 1.2 kB URL HTTP/2 www.discovercard.com/images/favicon.ico
IP 104.110.25.34:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash e2b5d9050d3b6f7282ac946c81c8b942
c9ca67aa3e3940ca41d733dcc281b616600ce8db
6a4aecb1d55e042a11a9f72169fde9015f0918ffeb828a4696a1b282bb3f7c93
GET /images/favicon.ico HTTP/1.1
Host: www.discovercard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shopzone.ge/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-security-policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains; preload
last-modified: Fri, 27 Oct 2017 18:57:10 GMT
accept-ranges: bytes
content-length: 1150
cache-control: no-cache, no-store
pragma: no-cache
expires: 0
content-type: image/x-icon
date: Fri, 23 Sep 2022 09:10:10 GMT
set-cookie: DCID=www22; path=/; secure
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 011479cb5ac623e75460f6bc85d352ba
78d91582750a4659ce209af8f185774fec86a690
f3440ccd5837af4dd1a8eb3f0ad6ff42ab93d7395785a8621390014f69ccc38f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6380
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 09:10:10 GMT
Last-Modified: Fri, 23 Sep 2022 07:23:50 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
b3.mookie1.com/1/TRACK_Discover/Discover/Retargeting_NX_Secure@Bottom3
34.74.10.165302 Found : Moved Temporarily 43 B URL HTTP/1.1 b3.mookie1.com/1/TRACK_Discover/Discover/Retargeting_NX_Secure@Bottom3
IP 34.74.10.165:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /1/TRACK_Discover/Discover/Retargeting_NX_Secure@Bottom3 HTTP/1.1
Host: b3.mookie1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shopzone.ge/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found : Moved Temporarily
Location: https://cdn-akamai.mookie1.com/html/empty.gif
Connection: close
Cache-Control: no-cache
Pragma: no-cache
sales.liveperson.net/hcp/html/mTag.js?site=33238650
162.252.74.5200 OK 18 kB URL HTTP/1.1 sales.liveperson.net/hcp/html/mTag.js?site=33238650
IP 162.252.74.5:0
Hash def739a9b7259aed34c75bd549e59e49
57033c7fa87f75537db049f29f8821d208287d76
3d6b6eee4e6bfeed58d3ad23159ad229deedd8ca20e25cced6a23cf1b7a9ceac
GET /hcp/html/mTag.js?site=33238650 HTTP/1.1
Host: sales.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shopzone.ge/
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Wed, 16 Sep 2015 19:55:44 GMT
Accept-Ranges: bytes
ETag: "0a0eacb9f0d01:0"
Server: WS
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
Access-Control-Allow-Methods: GET, POST, PATCH
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
Date: Fri, 23 Sep 2022 09:10:10 GMT
Content-Length: 17753
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3002
Expires: Fri, 23 Sep 2022 10:00:13 GMT
Date: Fri, 23 Sep 2022 09:10:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3002
Expires: Fri, 23 Sep 2022 10:00:13 GMT
Date: Fri, 23 Sep 2022 09:10:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3002
Expires: Fri, 23 Sep 2022 10:00:13 GMT
Date: Fri, 23 Sep 2022 09:10:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3002
Expires: Fri, 23 Sep 2022 10:00:13 GMT
Date: Fri, 23 Sep 2022 09:10:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac33f06-9198-44a5-b43b-9cbcc092cf52.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac33f06-9198-44a5-b43b-9cbcc092cf52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1eab8da8cc1495a0221efadddd1a0bcc
4156c37b612d5fb99c6b061187a3cb0b314ae4a8
2fc5dbd9216f775cd305de80d17db2e6c74abcb1e30bfa7065c4d763a7345026
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac33f06-9198-44a5-b43b-9cbcc092cf52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9481
x-amzn-requestid: d527d22a-6822-4b90-b9cb-034f58f73c24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0IGl7oAMFSKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4e7-13a676d9596cbd20663d2d8f;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V8vtLV7n0bPpR5xQtqcH6WK7uBV4ObaMdy_9qN_TtISqAozEwPe0hA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:15 GMT
age: 39536
etag: "4156c37b612d5fb99c6b061187a3cb0b314ae4a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:48:22 GMT
age: 40909
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bb1df1b-7300-4e0d-ad7a-6e90b6c03299.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bb1df1b-7300-4e0d-ad7a-6e90b6c03299.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2bbb3856eeac20d0ee556c96144bf6c
76ac1f33cd006227162e12e7142e754562bec0c0
1e3f6551d401346b6d809d8feb9b36a9e0006f99f518d1130aa9bd630bfb6801
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bb1df1b-7300-4e0d-ad7a-6e90b6c03299.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12538
x-amzn-requestid: 2ae96766-6999-44ec-8084-a19d26b3e118
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJOHYFIAMFXYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-060b96fa5fc99e79711bde3f;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: f2gWVJG2DTnIblkJjx4bkFIeg8GauM9TnrThPQPZTkAuL7D7AyG2TQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 17:48:34 GMT
age: 55297
etag: "76ac1f33cd006227162e12e7142e754562bec0c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 2ff2c324-51c5-484d-b049-3eacbdc1024a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yyj8THHdoAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a804e-0f4da4ba2a84679b3fd297fc;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 03:09:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: z0uCxl-5L4gijwJsCjssxmgnJr4yhzvtiZdcX4wOXzgiuh8-Yj92vg==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 04:32:56 GMT
age: 16635
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53fa68ad-0fdf-4958-b6f1-e38245c20380.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53fa68ad-0fdf-4958-b6f1-e38245c20380.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d22173527a1bc9b264170aaa07491248
944c0453511761e101cb9e50ba8af7545e32e357
c04b0975162a54e0afc5ae4a863f8e8393415d455e8f7ff3fc67a47868e09ec0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53fa68ad-0fdf-4958-b6f1-e38245c20380.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4947
x-amzn-requestid: 2d8325c6-7564-4fab-86ad-75bc44451ac8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YzHtOFNXoAMF5iQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632ab987-30ba7b1d6088630236d03486;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 07:13:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3NJdOO87M_on7FBlPCczqwUtjsq75kEXAxq9CcsiHDvuaUDCYhd9LQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:07:32 GMT
age: 39759
etag: "944c0453511761e101cb9e50ba8af7545e32e357"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b318ea5c36d2b22b925f7dfe382df5f
0264e73c4cfff0bb255757c7e1c760a5ad3ece80
0c2f58ea4f5f32bb327f292e1b8fb5a4a60230bffc3abc440a624df27ec0d6bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5340
x-amzn-requestid: b13bc974-e15d-43a4-a918-fbc35b09a36f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y19HljIAMFY8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4f2-2cb226ba4bd7c7e74d9ab2db;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8DCVWC4Ihr4R21i3ySyiWdUK0aGymTE22B842ZKolG-ZThiKSMX-uQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:26 GMT
age: 39525
etag: "0264e73c4cfff0bb255757c7e1c760a5ad3ece80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
sales.liveperson.net/hc/33238650/?&site=33238650&cmd=mTagKnockPage&lpCallId=310033032846-804884900158&protV=20&lpjson=1&id=6509565994&javaSupport=false&visitorStatus=INSITE_STATUS
162.252.74.5200 OK 150 B URL HTTP/1.1 sales.liveperson.net/hc/33238650/?&site=33238650&cmd=mTagKnockPage&lpCallId=310033032846-804884900158&protV=20&lpjson=1&id=6509565994&javaSupport=false&visitorStatus=INSITE_STATUS
IP 162.252.74.5:0
File type ASCII text, with no line terminators
Hash 3cf826d4274fa15b5b03522ae2babdee
c0972e8c3b3ea70b07954256b4737d82b6e8804e
5904f7b16bb8134275c76e08e44119f9143b2509aeee804c3b3dddd7954a3dca
GET /hc/33238650/?&site=33238650&cmd=mTagKnockPage&lpCallId=310033032846-804884900158&protV=20&lpjson=1&id=6509565994&javaSupport=false&visitorStatus=INSITE_STATUS HTTP/1.1
Host: sales.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shopzone.ge/
HTTP/1.1 200 OK
Content-Length: 150
Content-Type: application/x-javascript
Server: WS
P3P: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
Access-Control-Allow-Methods: GET, POST, PATCH
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
Date: Fri, 23 Sep 2022 09:10:11 GMT