eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
301 Moved Permanently 329 B URL HTTP/1.1 eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2ccdb49661de46bd09296b35ed88f10f
b9d4dffd0429187208324b2d66411a4d39fe537a
495db4521c00c0353cdde5ab6f8a297f8f5f465bed34153e0b83fdb0133a8cd9
Analyzer Verdict Alert fortinet Phishing
GET /praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy HTTP/1.1
Host: eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 26 Jan 2023 18:48:42 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 329
Connection: keep-alive
Location: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Age: 0
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 0
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12254
Expires: Thu, 26 Jan 2023 22:12:57 GMT
Date: Thu, 26 Jan 2023 18:48:43 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7305
Expires: Thu, 26 Jan 2023 20:50:28 GMT
Date: Thu, 26 Jan 2023 18:48:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 26 Jan 2023 18:35:16 GMT
content-type: application/json
age: 807
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7399
Expires: Thu, 26 Jan 2023 20:52:02 GMT
Date: Thu, 26 Jan 2023 18:48:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: N2LWNPwaKbyJJFl8B9u+KOlMIbkxpkZftCdiyfQyRxixkHsSsXBKn/HII+qkPbLGDMLY1ehKLcqv5v8ztjLPqA==
x-amz-request-id: QDCVTT8CDNXDA1QZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 26 Jan 2023 18:20:13 GMT
age: 1710
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 18:48:43 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 26 Jan 2023 17:49:01 GMT
age: 3582
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
200 OK 9.6 kB URL HTTP/1.1 www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (873), with CRLF, CR, LF line terminators
Hash 6b0d6783ccf4bc3b99816835f979dbe3
e2bc65be58dbb1ff61d6b71556cb192c174c64ec
d5257defbd50d7597910cfd941cb2b65e87ae5dc1f774f286903dd16684af852
Analyzer Verdict Alert fortinet Phishing
GET /praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 9577
Connection: keep-alive
Cache-Control: max-age=0, no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Set-Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e; path=/; HttpOnly
X-Mod-Pagespeed: enabled
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 0
Pragma: no-cache
X-CDN-nazwa.pl-policyused: app=no-cache
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 0
www.eurocare.com.pl/templates/eurocare/html/mod_btquickcontact/layouts/default/css/A.btquickcontact.css.pagespeed.cf.7VCxWrDE5j.css
200 OK 103 B URL HTTP/1.1 www.eurocare.com.pl/templates/eurocare/html/mod_btquickcontact/layouts/default/css/A.btquickcontact.css.pagespeed.cf.7VCxWrDE5j.css
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type ASCII text, with no line terminators
Hash 7fa6e9ae193d8807a1e8e831cc0c180f
8e6e01ecf182b99371968e6f6e534685e5949e15
a3ed5aa360a33030fc89aee180ff8ba020933b136a56ee9ccf4809dbd8dbc1a9
GET /templates/eurocare/html/mod_btquickcontact/layouts/default/css/A.btquickcontact.css.pagespeed.cf.7VCxWrDE5j.css HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: text/css
Content-Length: 103
Connection: keep-alive
X-CDN-nazwa.pl-policyused: cdn=1209600
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 143858
X-Original-Content-Length: 158
Accept-Ranges: bytes
Age: 143858
Expires: Tue, 07 Feb 2023 17:45:30 GMT
Cache-Control: max-age=1209600
Etag: W/"0"
Last-Modified: Tue, 24 Jan 2023 17:45:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Apache/2
www.eurocare.com.pl/media/system/js/caption.js
200 OK 1.7 kB URL HTTP/1.1 www.eurocare.com.pl/media/system/js/caption.js
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type ASCII text, with very long lines (413)
Hash 5ad0404934a73926d44909e9cc53289f
7466d983ba3bbfe7ad9eb40acd058483836348e6
4b6d6353da104b485036a6cb9abe23d8bf4e36d78c172f121a4b63cd8368f835
Analyzer Verdict Alert fortinet Phishing
GET /media/system/js/caption.js HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: application/javascript
Content-Length: 1664
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:05:49 GMT
ETag: "1092-545d06be16140-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Age: 209131
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 209131
www.eurocare.com.pl/media/jui/js/jquery-migrate.min.js
200 OK 4.4 kB URL HTTP/1.1 www.eurocare.com.pl/media/jui/js/jquery-migrate.min.js
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type ASCII text, with very long lines (7107)
Hash 11131df54d9e3a837720d767360c0f24
1efa75d90c9bf77292bb943f73c1a4c13f42e0f4
cfcb4eb5b632d6f7731c91d5c7e06ec26ad9de7624576620f19141dba638448e
Analyzer Verdict Alert fortinet Malware
GET /media/jui/js/jquery-migrate.min.js HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: application/javascript
Content-Length: 4383
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:05:32 GMT
ETag: "2ac6-545d06addfb00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Age: 283782
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 283782
www.eurocare.com.pl/modules/mod_btquickcontact/assets/js/filestyle.jquery.js
200 OK 2.2 kB URL HTTP/1.1 www.eurocare.com.pl/modules/mod_btquickcontact/assets/js/filestyle.jquery.js
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
Hash 56e6b7096fa29acd4ba86c453dd20953
329f510cca0dbe0ddc478ec5524d43e22e807a81
64875d9cc81e203a18a3df3b0f29e71da0756111ee1f52bd0b5ab5b6bbe22409
Analyzer Verdict Alert fortinet Phishing
GET /modules/mod_btquickcontact/assets/js/filestyle.jquery.js HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: application/javascript
Content-Length: 2190
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:08:37 GMT
ETag: "177b-545d075e4db40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Age: 283782
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 283782
www.eurocare.com.pl/modules/mod_btquickcontact/assets/js/validate.jquery.js
200 OK 12 kB URL HTTP/1.1 www.eurocare.com.pl/modules/mod_btquickcontact/assets/js/validate.jquery.js
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type Unicode text, UTF-8 text, with very long lines (1251)
Hash a5799fa803f4c6b9ffc946b2bea772f2
036b7556333020486eedc53f43d3bef5d081fd01
b96d4a8e4f649ff8c5b00416ccff8195fc2b9aad1fdaf5a6b553c67c8ae42a68
Analyzer Verdict Alert fortinet Phishing
GET /modules/mod_btquickcontact/assets/js/validate.jquery.js HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: application/javascript
Content-Length: 12226
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:08:37 GMT
ETag: "e10d-545d075e4db40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Age: 229849
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 229849
www.eurocare.com.pl/modules/mod_btquickcontact/assets/js/form.jquery.js
200 OK 12 kB URL HTTP/1.1 www.eurocare.com.pl/modules/mod_btquickcontact/assets/js/form.jquery.js
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
Hash b89827e0915f598a5e0c1119bef5a213
6cab676b0386eefab74d7eef2844b3c609568c8a
b84843ac25b90730e56aa12bcbe56d1fd5be3ae76e9865d229e61702e5264958
Analyzer Verdict Alert fortinet Phishing
GET /modules/mod_btquickcontact/assets/js/form.jquery.js HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: application/javascript
Content-Length: 11900
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:08:37 GMT
ETag: "a086-545d075e4db40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Age: 229849
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 229849
www.eurocare.com.pl/modules/mod_btquickcontact/assets/js/default.js
200 OK 1.4 kB URL HTTP/1.1 www.eurocare.com.pl/modules/mod_btquickcontact/assets/js/default.js
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
Hash f7f54f18182d5e5279b8dcb67f411738
f2d042798dfc4cd763d2cd6381737df27b9a8671
82ce7d9ecd231afeb47197b12ee328989791165ddfd19a0e9e671f44abb7d88c
Analyzer Verdict Alert fortinet Phishing
GET /modules/mod_btquickcontact/assets/js/default.js HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: application/javascript
Content-Length: 1411
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:08:37 GMT
ETag: "eee-545d075e4db40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Age: 143858
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 143858
www.eurocare.com.pl/media/system/js/mootools-core.js
200 OK 28 kB URL HTTP/1.1 www.eurocare.com.pl/media/system/js/mootools-core.js
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type ASCII text, with very long lines (785)
Hash 7de11a9f96514d11ccd655eac56c694b
ab79475e129110da2d770f1f46f3b283aeebedc5
94d7d69ee313026099d66603bec0391bdc18896ae19f6cf6ff20c90e26d9857f
Analyzer Verdict Alert fortinet Phishing
GET /media/system/js/mootools-core.js HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: application/javascript
Content-Length: 28250
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:05:49 GMT
ETag: "1565c-545d06be16140-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Age: 283782
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 283782
www.eurocare.com.pl/media/jui/js/bootstrap.min.js
200 OK 9.0 kB URL HTTP/1.1 www.eurocare.com.pl/media/jui/js/bootstrap.min.js
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type ASCII text, with very long lines (29024)
Hash 5c0c43a41d1fd011b0d0cb69d448876d
d00c7adf6654b8f0f681730c237e085352e4f70a
a106b7075c370a668d3beccdf6b6bbf345960f7dd3547208028261a7831f8715
Analyzer Verdict Alert fortinet Malware
GET /media/jui/js/bootstrap.min.js HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: application/javascript
Content-Length: 9049
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:05:31 GMT
ETag: "808b-545d06aceb8c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Age: 179955
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 179955
www.eurocare.com.pl/media/system/js/core.js
200 OK 3.0 kB URL HTTP/1.1 www.eurocare.com.pl/media/system/js/core.js
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type Unicode text, UTF-8 text, with very long lines (4073)
Hash d1161ab40c17f5e13e9968acba571a5c
eb7961ed90fbbb8a9bf36c8699ee2bd551c4221c
c7d8033f4076920054fc2677f20e0796df1bf7d8d3e22e35e3d3fd109aa5fef4
Analyzer Verdict Alert fortinet Phishing
GET /media/system/js/core.js HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: application/javascript
Content-Length: 3048
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:05:49 GMT
ETag: "1e7e-545d06be16140-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Age: 283782
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 283782
www.eurocare.com.pl/templates/eurocare/css/coal-grid.css
200 OK 2.3 kB URL HTTP/1.1 www.eurocare.com.pl/templates/eurocare/css/coal-grid.css
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type ASCII text, with very long lines (8877)
Hash 50d42bc505768c356dbfd120a2cb7061
ef5a26ba82055a8e40f969b5b0aa89a350b9dfdf
e8923b45eb730ce276762be52cf19a3e0c0177b2d58be8459dedaed453f72dc2
GET /templates/eurocare/css/coal-grid.css HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: text/css
Content-Length: 2317
Connection: keep-alive
X-CDN-nazwa.pl-policyused: cdn=1209600
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 283782
X-Original-Content-Length: 8878
Last-Modified: Wed, 29 Aug 2018 09:08:39 GMT
ETag: "22ae-5748f4ddf73fd"
Accept-Ranges: bytes
Vary: Accept-Encoding
Cache-Control: max-age=1209600
Age: 283782
Content-Encoding: gzip
X-Content-Type-Options: nosniff
Server: Apache/2
www.eurocare.com.pl/templates/eurocare/css/A.font-awesome.css.pagespeed.cf.O-mS0UXZZi.css
200 OK 5.3 kB URL HTTP/1.1 www.eurocare.com.pl/templates/eurocare/css/A.font-awesome.css.pagespeed.cf.O-mS0UXZZi.css
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type ASCII text, with very long lines (21795)
Hash 36b3c5dce90e88771dd340d0d3c2962b
c5a913c48ba6a81fe834135654caf2f32c4e27fb
f95ad10ae63a781ad57c7488c1abb5799731badaff13447f707d243831a10c81
GET /templates/eurocare/css/A.font-awesome.css.pagespeed.cf.O-mS0UXZZi.css HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: text/css
Content-Length: 5254
Connection: keep-alive
X-CDN-nazwa.pl-policyused: cdn=1209600
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 229849
X-Original-Content-Length: 28747
Accept-Ranges: bytes
Age: 229849
Expires: Tue, 07 Feb 2023 00:57:01 GMT
Cache-Control: max-age=1209600
Etag: W/"0"
Last-Modified: Tue, 24 Jan 2023 00:57:01 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Apache/2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11096
Expires: Thu, 26 Jan 2023 21:53:39 GMT
Date: Thu, 26 Jan 2023 18:48:43 GMT
Connection: keep-alive
www.eurocare.com.pl/media/jui/js/jquery-noconflict.js
200 OK 1.4 kB URL HTTP/1.1 www.eurocare.com.pl/media/jui/js/jquery-noconflict.js
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
Hash 9b19d45c3b78b84d7bc854ef37caec30
ca394eada9cd299958e173a8c41b9949ed661c7c
07e33abdef3bc4366dc3033b18e5db3f5e8ffb2c33ec60d02ce20bf65f38d798
Analyzer Verdict Alert fortinet Malware
GET /media/jui/js/jquery-noconflict.js HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: application/javascript
Content-Length: 1379
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:05:32 GMT
ETag: "ebc-545d06addfb00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Age: 90286
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 90286
www.eurocare.com.pl/templates/eurocare/js/modernizr.js
200 OK 7.5 kB URL HTTP/1.1 www.eurocare.com.pl/templates/eurocare/js/modernizr.js
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type HTML document, ASCII text, with very long lines (14618)
Hash 6c27e522996b35e50674d6b661b0cc86
afed02aaaccaf6acd01325eb335b8a60a00792ed
2f776378618d8fa4f54088518a442705c708991df7c5376f9816d965fc83014a
Analyzer Verdict Alert fortinet Malware
GET /templates/eurocare/js/modernizr.js HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: application/javascript
Content-Length: 7524
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:06:16 GMT
ETag: "4a39-545d06d7d5e00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Age: 209131
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 209131
www.eurocare.com.pl/media/jui/js/jquery.min.js
200 OK 35 kB URL HTTP/1.1 www.eurocare.com.pl/media/jui/js/jquery.min.js
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type ASCII text, with very long lines (32038)
Hash a8c9df8224439560fb6347009303aefe
cfda8fc7d041963cb84915ec016ec215e9bb818d
5e0eeb5ee7a808080629378c1e688c0929c9a7ec23808a8b0acd4d4ba17b0bb4
Analyzer Verdict Alert fortinet Malware
GET /media/jui/js/jquery.min.js HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: application/javascript
Content-Length: 34634
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:05:32 GMT
ETag: "1857c-545d06addfb00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Age: 209131
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 209131
www.eurocare.com.pl/templates/eurocare/js/jquery.viewport.js
200 OK 1.7 kB URL HTTP/1.1 www.eurocare.com.pl/templates/eurocare/js/jquery.viewport.js
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type ASCII text, with very long lines (1224)
Hash 3fb5037a26f778d79cc09c44777c7b3a
3037e01a30d317ea353cf8f7ba44d51dee24cbad
fa4ecabe8039aba9a297883e99c6a756d6e6dae4cea4a0980d24401a9a82c8c6
Analyzer Verdict Alert fortinet Malware
GET /templates/eurocare/js/jquery.viewport.js HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: application/javascript
Content-Length: 1672
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:06:16 GMT
ETag: "135a-545d06d7d5e00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Age: 90285
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 90285
www.eurocare.com.pl/templates/eurocare/js/onpageload.js?v1.89
200 OK 3.9 kB URL HTTP/1.1 www.eurocare.com.pl/templates/eurocare/js/onpageload.js?v1.89
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type Unicode text, UTF-8 text, with very long lines (771)
Hash 19d424e5936d42677ecf474eeba07322
5155f8038ff66fc6ba7f43f94a130c492c08075e
4965f55e44bfbecd794e5e4197175a22ff2572fe5326e9a8e7725ff433fe4722
Analyzer Verdict Alert fortinet Malware
GET /templates/eurocare/js/onpageload.js?v1.89 HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: application/javascript
Content-Length: 3869
Connection: keep-alive
Last-Modified: Mon, 01 Apr 2019 09:54:40 GMT
ETag: "30e5-58575024fb800-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1209600
Age: 90284
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 90284
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2ebcc7cd4c50e87a984668828c1e612e
f693d36335f333e3647f9fb2460e34dd73e17421
27f1d63422ccd02a6af514c2c0a36ac6f4e0d6f74ad6d9fc8c32e8ea487ffe15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 18:48:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e53b1d8b1f244c97e073382328e5c650
d1933a186c3b5351a8539f18e3f4f74237aefccc
2b3e14ffcd8e42c946fc8a66a44a97e543849ac1fd3fdefd85f774c86839716e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 18:48:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?hl=pl-PL&render=explicit
200 OK 555 B URL HTTP/2 www.google.com/recaptcha/api.js?hl=pl-PL&render=explicit
IP
File type ASCII text, with very long lines (852), with no line terminators
Hash cac34dc6e4ce0fe27aa88eb1a42820a4
7461ab4b4d3fad26037f58ed04b20b5eb599aac5
ed543e8a9d0452851524141bd4c005682f125a82e68dfb5195b61bb7ae543a1a
GET /recaptcha/api.js?hl=pl-PL&render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 26 Jan 2023 18:48:43 GMT
date: Thu, 26 Jan 2023 18:48:43 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.eurocare.com.pl/templates/eurocare/img/eurocare_logo.svg
200 OK 4.6 kB URL HTTP/1.1 www.eurocare.com.pl/templates/eurocare/img/eurocare_logo.svg
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash bfaff7266ded071b2318baf8b6c03795
0846835777657ee4128d7ac0a8cd39948e8b5bb1
30007017f2dc72a67a7b42424de317dd829a0226a533772aff2fadb95e4d6946
Analyzer Verdict Alert fortinet Phishing
GET /templates/eurocare/img/eurocare_logo.svg HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: image/svg+xml
Content-Length: 4566
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:06:14 GMT
ETag: "11d6-545d06d6a54ea"
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Age: 264906
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 264906
www.eurocare.com.pl/templates/eurocare/img/eurocare_logo_white.svg
200 OK 4.6 kB URL HTTP/1.1 www.eurocare.com.pl/templates/eurocare/img/eurocare_logo_white.svg
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 9be915f98599f65def113f0b9a1ddc3b
9031930cbe1e39f261e0db8755c121687043ac6e
93f01f670a978b854858f7117b018fa517daf66646c5d7a132aba146064ea3a7
Analyzer Verdict Alert fortinet Phishing
GET /templates/eurocare/img/eurocare_logo_white.svg HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: image/svg+xml
Content-Length: 4566
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:06:14 GMT
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Etag: "11d6-545d06d6b353d"
Age: 90283
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 90283
fonts.googleapis.com/css?family=Dosis:500,700,300&subset=latin,latin-ext
200 OK 897 B URL HTTP/2 fonts.googleapis.com/css?family=Dosis:500,700,300&subset=latin,latin-ext
IP
Hash 56663cef2f098ea55a2b79f6996207b7
4764fec09822e1e8d490f7ff86b6755f28f30de4
cc8ac306ce23ece1d22400a68257466a1b14c9837e8dd63343986652c4926a7f
GET /css?family=Dosis:500,700,300&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 26 Jan 2023 18:48:43 GMT
date: Thu, 26 Jan 2023 18:48:43 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,400italic,700,700italic&subset=latin,latin-ext
200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,400italic,700,700italic&subset=latin,latin-ext
IP
Hash 536da7c1584378dc6aeddc06b9180e7a
451dc04c62ced0bc2221b3c41e8816b60911ab9e
b89775fdbaf57ba0a414d9055d4056a94d87297526b50f75125b8b99c44d73ba
GET /css?family=Open+Sans:400,400italic,700,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 26 Jan 2023 18:48:43 GMT
date: Thu, 26 Jan 2023 18:48:43 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash afeb3476c3b5b8e10f11db443b8528af
f419163f1e43fece9e428e088c49c65e145846ed
8f9bbf884ae3cddaf2f3eff5d31abf823004207b33bc925651516c60af1f37a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 18:48:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.livechatinc.com/tracking.js
301 Moved Permanently 0 B URL HTTP/1.1 cdn.livechatinc.com/tracking.js
IP
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://cdn.livechatinc.com/tracking.js
Cache-Control: max-age=28800
Expires: Fri, 27 Jan 2023 02:48:44 GMT
Date: Thu, 26 Jan 2023 18:48:44 GMT
Connection: keep-alive
Content-Type: application/javascript; charset=utf-8
Access-Control-Allow-Origin: *
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.eurocare.com.pl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:52:41 GMT
expires: Tue, 23 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 258963
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 31320, version 1.0\012- data
Hash 3fe71527811fbfedd2c07962e1bc49e7
f63e158a0480c5d711b5e268db0e75e57d87a8a5
24c0e724005344165ee0a0ff4c96a914e174bb4caa20c8a533fb194d92853e95
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.eurocare.com.pl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31320
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 10:24:39 GMT
expires: Mon, 22 Jan 2024 10:24:39 GMT
cache-control: public, max-age=31536000
age: 375845
last-modified: Mon, 15 Aug 2022 18:11:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_U.woff2
200 OK 29 kB URL HTTP/2 fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_U.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 29436, version 1.0\012- data
Hash 4e29aceac72b453671f585e88f69c24a
35115af67eca17e02698954f1533b69515ecbbf9
b9d88c1280c412b1bccb32e6d99da3369feeb3fae8b64900e7066a1829385699
GET /s/dosis/v27/HhyaU5sn9vOmLzloC_U.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.eurocare.com.pl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 11:58:10 GMT
expires: Fri, 26 Jan 2024 11:58:10 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:56:41 GMT
content-type: font/woff2
age: 24634
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzlmC_W6EQ.woff2
200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzlmC_W6EQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 14000, version 1.0\012- data
Hash 8b5538683f339e9377c03fd20b8189bb
3c91782e693819e7f32e335c0b9908471120b1a0
be6aaf19ff76acaf5ec283cb28493267ecee498daa598e11316349090402bc90
GET /s/dosis/v27/HhyaU5sn9vOmLzlmC_W6EQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.eurocare.com.pl
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 05:30:11 GMT
expires: Fri, 26 Jan 2024 05:30:11 GMT
cache-control: public, max-age=31536000
age: 47913
last-modified: Mon, 11 Jul 2022 20:56:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-5N9JFZ
302 Found 250 B URL HTTP/1.1 www.googletagmanager.com/gtm.js?id=GTM-5N9JFZ
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash bdad1292bd82500ce73d664fe315973e
2df3e2eb2bca785cadc0f499c79372c9d070e958
5c930ffb385bd1778782359829d09b5c37e83d8d7e3e8d37c9bfe00f96d96060
GET /gtm.js?id=GTM-5N9JFZ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtm.js?id=GTM-5N9JFZ
Cross-Origin-Resource-Policy: cross-origin
Date: Thu, 26 Jan 2023 18:48:44 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 250
X-XSS-Protection: 0
www.eurocare.com.pl/templates/eurocare/img/cross_line.svg
200 OK 637 B URL HTTP/1.1 www.eurocare.com.pl/templates/eurocare/img/cross_line.svg
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 89b5fc32dc6bc77ef85b9e0de0661ea2
33b2a805c2f2e28221415d5e296323668819901d
5d74803f48482603f71d6d7df140bba7a77e23b3876a5244a5a6d0cc3f97875e
Analyzer Verdict Alert fortinet Phishing
GET /templates/eurocare/img/cross_line.svg HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/templates/eurocare/css/A.project-specific1.css,qv.1.893.pagespeed.cf.HfNRijciT4.css
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:44 GMT
Content-Type: image/svg+xml
Content-Length: 637
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:06:14 GMT
ETag: "27d-545d06d67feb1"
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Age: 90284
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 90284
www.eurocare.com.pl/templates/eurocare/img/blended_home_2.svg
200 OK 607 B URL HTTP/1.1 www.eurocare.com.pl/templates/eurocare/img/blended_home_2.svg
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash ff152fadfb5a1f84a7cca28f24024c45
5d1b34702a78f667a13ba67904af38d739e2281b
39708e4d6b719e3af785e52e1bab8c72f901177caf0b5306f21195fca15a761d
Analyzer Verdict Alert fortinet Phishing
GET /templates/eurocare/img/blended_home_2.svg HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/templates/eurocare/css/A.project-specific1.css,qv.1.893.pagespeed.cf.HfNRijciT4.css
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:44 GMT
Content-Type: image/svg+xml
Content-Length: 607
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:06:14 GMT
ETag: "25f-545d06d66c886"
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Age: 90284
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 90284
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hmf0vr06gzSavRq6ywBLmw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bHEn8GkVdKKbkfjhVW6SMQI+Sec=
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash afeb3476c3b5b8e10f11db443b8528af
f419163f1e43fece9e428e088c49c65e145846ed
8f9bbf884ae3cddaf2f3eff5d31abf823004207b33bc925651516c60af1f37a9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 18:48:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.eurocare.com.pl/templates/eurocare/fonts/fontawesome-webfont.woff2?v=4.3.0
200 OK 57 kB URL HTTP/1.1 www.eurocare.com.pl/templates/eurocare/fonts/fontawesome-webfont.woff2?v=4.3.0
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type Web Open Font Format (Version 2), TrueType, length 56780, version 4.197\012- data
Hash 97493d3f11c0a3bd5cbd959f5d19b699
1075231650f579955905bb2f6527148a8e2b4b16
aadc3580d2b64ff5a7e6f1425587db4e8b033efcbf8f5c332ca52a5ed580c87c
Analyzer Verdict Alert fortinet Phishing
GET /templates/eurocare/fonts/fontawesome-webfont.woff2?v=4.3.0 HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.eurocare.com.pl/templates/eurocare/css/A.font-awesome.css.pagespeed.cf.O-mS0UXZZi.css
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:44 GMT
Content-Type: font/woff2
Content-Length: 56780
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:06:14 GMT
ETag: "ddcc-545d06d626196"
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Age: 0
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 0
cdn.livechatinc.com/tracking.js
200 OK 26 kB URL HTTP/2 cdn.livechatinc.com/tracking.js
IP
ASN #20940 Akamai International B.V.
Hash 349345e8baec106d74b4eb289b8d2b0b
5c4a724241c19e2de9063da2c3dc0c4a3366ea7a
a69d354aa4044e3786dc89e3a46f415276b8657f0caa8c8355b12558cfde8695
GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.eurocare.com.pl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 25 Jan 2023 08:47:12 GMT
x-amz-version-id: iNzmqDcn1iRKaLiTk37THrDgz9osPO8C
server: AmazonS3
content-encoding: br
etag: W/"29e075294399875f6fd4bdaa0f4a20e4"
vary: Accept-Encoding
x-amz-cf-pop: HAM50-P2
x-amz-cf-id: 5u3S8SQ2vBURIIW1wAHlf1ewj7O-VH6XVggEm945QBhoGAgQC4G-PQ==
content-length: 25911
cache-control: max-age=28800
expires: Fri, 27 Jan 2023 02:48:44 GMT
date: Thu, 26 Jan 2023 18:48:44 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0bf8fccb276521254634abcdcb4b3f0d
a5b7ffa58daf7d1ea3e312b68533d4d0271348f4
991b03387ddbe0b07a9aee23ea7a98863fa85035cb26e631e0d22a1b999ee487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 18:48:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-5N9JFZ
200 OK 64 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5N9JFZ
IP
File type Unicode text, UTF-8 text, with very long lines (6908)
Hash b11017e617016e691b61134a3b32041c
5af02dc4f226a4a2a77175bccf7f1171afebbf64
4acf26fc4692172d7f93af8ea2714987c56efa8c899cd3b47b58d0166d7561c4
GET /gtm.js?id=GTM-5N9JFZ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.eurocare.com.pl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 26 Jan 2023 18:48:44 GMT
expires: Thu, 26 Jan 2023 18:48:44 GMT
cache-control: private, max-age=900
last-modified: Thu, 26 Jan 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 63518
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0bf8fccb276521254634abcdcb4b3f0d
a5b7ffa58daf7d1ea3e312b68533d4d0271348f4
991b03387ddbe0b07a9aee23ea7a98863fa85035cb26e631e0d22a1b999ee487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 18:48:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=7911331&url=http%3A%2F%2Fwww.eurocare.com.pl%2Fpraca-opiekunka-niemcy%2F973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy&channel_type=code&jsonp=__3sogafqfcby
200 OK 80 B URL HTTP/2 api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=7911331&url=http%3A%2F%2Fwww.eurocare.com.pl%2Fpraca-opiekunka-niemcy%2F973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy&channel_type=code&jsonp=__3sogafqfcby
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 0cb8a20908d8305fa5cba55990532874
5339abb611f814ab3184a1970283008e402e3ceb
99499bce943b7a100b03f7f80bba465a384fc716de7ce62881d49de543669d9a
GET /v3.3/customer/action/get_dynamic_configuration?license_id=7911331&url=http%3A%2F%2Fwww.eurocare.com.pl%2Fpraca-opiekunka-niemcy%2F973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy&channel_type=code&jsonp=__3sogafqfcby HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
content-length: 80
date: Thu, 26 Jan 2023 18:48:44 GMT
X-Firefox-Spdy: h2
www.eurocare.com.pl/templates/eurocare/favicon.ico
200 OK 1.2 kB URL HTTP/1.1 www.eurocare.com.pl/templates/eurocare/favicon.ico
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 1282c8ed854e34577a589c3d3be4ffa9
c4f474f8282cf397adf980299be3865ca5ad7182
0c53c37220d164a695b901ae971e43ad6f5876341dfacc94edfcfa319801cb70
GET /templates/eurocare/favicon.ico HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:44 GMT
Content-Type: image/x-icon
Content-Length: 1150
Connection: keep-alive
Last-Modified: Wed, 11 Jan 2017 12:03:32 GMT
ETag: "47e-545d063ba2f5d"
Accept-Ranges: bytes
Vary: Accept-Encoding
Cache-Control: max-age=1209600
Age: 283782
X-CDN-nazwa.pl-policyused: cdn=1209600
Server: Apache/2
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 283782
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 26 Jan 2023 17:46:59 GMT
expires: Thu, 26 Jan 2023 19:46:59 GMT
cache-control: public, max-age=7200
age: 3705
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__pl.js
200 OK 166 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__pl.js
IP
File type ASCII text, with very long lines (677)
Size 166 kB (165700 bytes)
Hash c490f2b96a2a056e5ba24a508d2a64ec
d688d5ad6af6f8df73872492c2348e73e1c32d5d
cd1a64134a01620c3d22348639b0b67131535cf9bc15763cd8af95814c6b65ee
GET /recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__pl.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.eurocare.com.pl
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 165700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 21:39:34 GMT
expires: Tue, 23 Jan 2024 21:39:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Jan 2023 01:02:16 GMT
content-type: text/javascript
age: 248950
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=j99&a=1622976029&t=pageview&_s=1&dl=http%3A%2F%2Fwww.eurocare.com.pl%2Fpraca-opiekunka-niemcy%2F973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy&ul=en-us&de=UTF-8&dt=Opiekunka%20dla%20samotnego%20i%20mobilnego%20Pana%20Dietmara-%2013.03.2020-%20Niemcy&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IGBAgEABAAAAAAAAI~&jid=447998373&gjid=1796696550&cid=2082396291.1674758924&tid=UA-79659268-1&_gid=750452700.1674758924&z=431116008
200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j99&a=1622976029&t=pageview&_s=1&dl=http%3A%2F%2Fwww.eurocare.com.pl%2Fpraca-opiekunka-niemcy%2F973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy&ul=en-us&de=UTF-8&dt=Opiekunka%20dla%20samotnego%20i%20mobilnego%20Pana%20Dietmara-%2013.03.2020-%20Niemcy&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IGBAgEABAAAAAAAAI~&jid=447998373&gjid=1796696550&cid=2082396291.1674758924&tid=UA-79659268-1&_gid=750452700.1674758924&z=431116008
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j99&a=1622976029&t=pageview&_s=1&dl=http%3A%2F%2Fwww.eurocare.com.pl%2Fpraca-opiekunka-niemcy%2F973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy&ul=en-us&de=UTF-8&dt=Opiekunka%20dla%20samotnego%20i%20mobilnego%20Pana%20Dietmara-%2013.03.2020-%20Niemcy&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IGBAgEABAAAAAAAAI~&jid=447998373&gjid=1796696550&cid=2082396291.1674758924&tid=UA-79659268-1&_gid=750452700.1674758924&z=431116008 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Wed, 25 Jan 2023 22:43:30 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 72314
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 810bf2bf9f302d0a65b1e0b447b549ef
d6ddcc1e64a1392f5942c0fc45864a282a93854e
f61096b63e6f62872d6d30aac7671c72403bba82f4f5c555add8e0997675f712
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 18:48:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-79659268-1&cid=2082396291.1674758924&jid=447998373&gjid=1796696550&_gid=750452700.1674758924&_u=IGBAgEABAAAAAEAAI~&z=472573651
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-79659268-1&cid=2082396291.1674758924&jid=447998373&gjid=1796696550&_gid=750452700.1674758924&_u=IGBAgEABAAAAAEAAI~&z=472573651
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-79659268-1&cid=2082396291.1674758924&jid=447998373&gjid=1796696550&_gid=750452700.1674758924&_u=IGBAgEABAAAAAEAAI~&z=472573651 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.eurocare.com.pl
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.eurocare.com.pl
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 26 Jan 2023 18:48:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn-widget.callpage.io/build/js/callpage.js
301 Moved Permanently 0 B URL HTTP/1.1 cdn-widget.callpage.io/build/js/callpage.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /build/js/callpage.js HTTP/1.1
Host: cdn-widget.callpage.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
HTTP/1.1 301 Moved Permanently
Date: Thu, 26 Jan 2023 18:48:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 26 Jan 2023 19:48:44 GMT
Location: https://cdn-widget.callpage.io/build/js/callpage.js
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78fb6cae7bd1b50f-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 810bf2bf9f302d0a65b1e0b447b549ef
d6ddcc1e64a1392f5942c0fc45864a282a93854e
f61096b63e6f62872d6d30aac7671c72403bba82f4f5c555add8e0997675f712
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 18:48:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 278 B IP
Hash afa681e600684a96f54b47732f6e7ee4
aa3bc3e9cd99fe23e75d473623ac96ce48a622c4
a2c5b7ad7a12b117a3e9fe0930878bd8cf99e44548340c529a56d601efa544c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5768
Cache-Control: max-age=164545
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 18:48:44 GMT
Etag: "63d29445-116"
Expires: Sat, 28 Jan 2023 16:31:09 GMT
Last-Modified: Thu, 26 Jan 2023 14:55:01 GMT
Server: ECS (amb/6B75)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c8a0d6bc80301700d6fb1d520beb8b49
f33a1a1e491fcd6ca31360b28b092457a2d48f23
ef0535b52ccb717c1200d5974ea8841b92f655234d67ace0e71c1ec7f5fbb3f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 18:48:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-79659268-1&cid=2082396291.1674758924&jid=447998373&_u=IGBAgEABAAAAAEAAI~&z=1178146501
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-79659268-1&cid=2082396291.1674758924&jid=447998373&_u=IGBAgEABAAAAAEAAI~&z=1178146501
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-79659268-1&cid=2082396291.1674758924&jid=447998373&_u=IGBAgEABAAAAAEAAI~&z=1178146501 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 26 Jan 2023 18:48:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 19 Jan 2023 21:48:03 GMT
expires: Fri, 19 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 594041
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 11936, version 1.0\012- data
Hash 15d8ede0a816bc7a9838207747c6620c
f6e2e75f1277c66e282553ae6a22661e51f472b8
dbb8f45730d91bffff8307cfdf7c82e67745d84cb6063a1f3880fadfad59c57d
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11936
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 14:05:20 GMT
expires: Mon, 22 Jan 2024 14:05:20 GMT
cache-control: public, max-age=31536000
age: 362604
last-modified: Mon, 16 Oct 2017 17:33:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c8a0d6bc80301700d6fb1d520beb8b49
f33a1a1e491fcd6ca31360b28b092457a2d48f23
ef0535b52ccb717c1200d5974ea8841b92f655234d67ace0e71c1ec7f5fbb3f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 18:48:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/vue/2.5.13/vue.min.js
200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/vue/2.5.13/vue.min.js
IP
File type ASCII text, with very long lines (65449)
Hash 3904354226eaafc76f73b0dc10381d83
fe45eff3109f80d236414809f89073fb4f0f4c8e
c34070112a5f1b37efb15b1e2159f7e398f41364b73bb4114695f47b4b5d48a8
GET /ajax/libs/vue/2.5.13/vue.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.eurocare.com.pl
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 18:48:44 GMT
content-type: application/javascript; charset=utf-8
content-length: 28129
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb0402c-151ee"
last-modified: Mon, 04 May 2020 16:17:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1212808
expires: Tue, 16 Jan 2024 18:48:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=617T0aq8Ii8LALvLRNw%2BlACzEdohzYScaehsPZq3FdkW0CBK%2B33GsDfYZCU2CrNvdo5g6z4a0ulY%2BRFGZESRyd8E0IuA76O468AOXpq52gsfivStOWgMZwH3tF2IFK%2BtVPKhDSLO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78fb6cb019c50b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/vuex/2.3.1/vuex.min.js
200 OK 3.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/vuex/2.3.1/vuex.min.js
IP
File type ASCII text, with very long lines (10449)
Hash ccf6162a2b5bf311034fabce697e7dcc
30a7845c6e08982d9669189ce73e912f3775c903
edab71b138184c8031ad05e527d4c3e8a5de05b8c3c22068c487cf4eae0ee1d5
GET /ajax/libs/vuex/2.3.1/vuex.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.eurocare.com.pl
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 18:48:44 GMT
content-type: application/javascript; charset=utf-8
content-length: 3106
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb0402f-290d"
last-modified: Mon, 04 May 2020 16:17:51 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 14688958
expires: Tue, 16 Jan 2024 18:48:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rrR%2B7j1q06pIVX%2BXfwJw5jRQ2ATMsPLPEg3lb7zrl8ReTkDMcuLuawLUYTI7sYeuEGzK%2FK%2Bg5jXrmWGnO4WMOvsJvjvp8ibc8NlV%2BCswNtGNmRJcnIHa5XcXaYehrRfwmo%2F8Z6BE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78fb6cb07a3f0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6857
Expires: Thu, 26 Jan 2023 20:43:02 GMT
Date: Thu, 26 Jan 2023 18:48:45 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6857
Expires: Thu, 26 Jan 2023 20:43:02 GMT
Date: Thu, 26 Jan 2023 18:48:45 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6857
Expires: Thu, 26 Jan 2023 20:43:02 GMT
Date: Thu, 26 Jan 2023 18:48:45 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6857
Expires: Thu, 26 Jan 2023 20:43:02 GMT
Date: Thu, 26 Jan 2023 18:48:45 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3158
Expires: Thu, 26 Jan 2023 19:41:23 GMT
Date: Thu, 26 Jan 2023 18:48:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg
200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13cd008fb3e2739ec7caadadbd427655
c4802b06b87ab97f3ccd80d1c9bbdb4fab9886c1
a300a4fde1863c8b806d0557d9f0adaed19e1c612989d7e3f79a7bb45e6e74dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8822
x-amzn-requestid: e16ae781-25f3-4b7d-b62b-85b35d6571c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYRwF2KIAMFjDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0d7-377f24bd18dea32564b148bd;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:36:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: n2ULSpeRMRZ9CDjmrwd56ti_gPYh9ApC521naXURI2Bh1eiKwjyHZw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:51:26 GMT
age: 75439
etag: "c4802b06b87ab97f3ccd80d1c9bbdb4fab9886c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7458f7a9b2070055df6f1d496794e43e
0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9
373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mjK4GJ3UCEuHk4XqmXdZCWHTVvJeX8Z2HFaem2GYzqfqlPSd_h6DfA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:33:59 GMT
age: 40486
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f62e9b7bdca82d18c945851912d8fea8
a7ca44d337c43bc5c6145b26778661c71cc50484
5da02cc405c1cada55813ffe376844375f1d6ad222cbb63405348b1f5132a0b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9595
x-amzn-requestid: c257bfbe-1bd7-4540-bbfa-e4c49a2624a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXwfGigoAMFvBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a002-226c08656eeefbfa3c2dddb6;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k9njnQmggD7UkVJzZqSzo90HJJjTjGK0QIoPU0HWYKrSstjM6s1rOw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:57:18 GMT
age: 75087
etag: "a7ca44d337c43bc5c6145b26778661c71cc50484"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg
200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 17e1b6f3caa98b0e0972802408dd3f93
07e48bf3565e00d093d72dd4ada606f5d39a4838
7094ef64e04573bea7a81bbcc8ab59d721c5ef433e3fa9203e5861040ced549c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9285
x-amzn-requestid: 526bd945-31d8-490e-af9d-5e6fc6ea3561
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYT2HzvoAMFYYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0e5-6812fe4354bbdac4472e7e81;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:36:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QEH9CmjfV8QZFNxFz_tEk06i_ELUSNC2QjdTF4K3xc3vS651BZ3NlQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:52:28 GMT
age: 75377
etag: "07e48bf3565e00d093d72dd4ada606f5d39a4838"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VATQ0SjZfM_btXwR4M5keLmd-EE6717EHEiXrF2zpHNrli93EhN6Rw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:48:42 GMT
age: 75603
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3e6d9a5-dd7d-4337-a00f-a145350a1a29.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3e6d9a5-dd7d-4337-a00f-a145350a1a29.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 653bf5a34e9f99c9eef73a21d98d792f
c70d46aa2210c4f7c397fa20e1225b7d0734ac35
9f928ec6f194340e5543a4bf757aac31d545def67a56ae804a2039a3effd3fe0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3e6d9a5-dd7d-4337-a00f-a145350a1a29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10379
x-amzn-requestid: 419e5a80-cb6d-4904-9545-a0f815149701
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYMREwmIAMFhQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0b4-64c49f7d49687d9e5324ec64;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:35:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rZHSgPIPZyea2griEvL-3semlrUDichGSL8Rin4YeYKN909f9e0lyQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:41:09 GMT
age: 76056
etag: "c70d46aa2210c4f7c397fa20e1225b7d0734ac35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn-widget.callpage.io/build/sounds/open.mp3
206 Partial Content 11 kB URL HTTP/2 cdn-widget.callpage.io/build/sounds/open.mp3
IP
File type Audio file with ID3 version 2.3.0, contains:\012- MPEG ADTS, layer III, v2, 32 kbps, 16 kHz, JntStereo\012- data
Hash 84ce5638fbae0766e9ebac448dea22b1
e70319c8cb419e68e05d83adb745c5dbecdf4fd1
27b9df1fce503233f86b920e03572bbb41f04ebfb24a545c58844ed4d298a07f
GET /build/sounds/open.mp3 HTTP/1.1
Host: cdn-widget.callpage.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
date: Thu, 26 Jan 2023 18:48:45 GMT
content-type: audio/mpeg
content-length: 10632
x-amz-id-2: wg8UX4toesu1F4wm7rDT9LWh0Tgwpbu7lahYMG0VzDNh4rgfNsJn+Mgyb8wF7fSnKKnSctyvuSs6IuoqCRoVRg==
x-amz-request-id: 3T1XWKAHKE7XRYR2
last-modified: Thu, 26 Jan 2023 15:03:02 GMT
etag: "84ce5638fbae0766e9ebac448dea22b1"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 13522
content-range: bytes 0-10631/10632
server: cloudflare
cf-ray: 78fb6cb71866b4f9-OSL
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP
Hash d255f35b51595d5626d5a191ce3db3f2
514a0fc3297126385a9b96dc5b91af63f50ae94c
0aa19ed499a003acc5f15aa216350a7fac2f70fdd4316057142828b1db490e99
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:46 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 19:33:44 GMT
Expires: Wed, 01 Feb 2023 19:33:43 GMT
Etag: "514a0fc3297126385a9b96dc5b91af63f50ae94c"
Cache-Control: max-age=520496,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78fb6cb6fd77b511-OSL
api.callpage.io/v2/widgets/2FtZColtwp4xvozYASsbm-mCbGuLOgNZIX72uBbnbyw/requests
204 No Content 0 B URL HTTP/2 api.callpage.io/v2/widgets/2FtZColtwp4xvozYASsbm-mCbGuLOgNZIX72uBbnbyw/requests
IP
ASN #57367 Atman Sp. z o.o.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v2/widgets/2FtZColtwp4xvozYASsbm-mCbGuLOgNZIX72uBbnbyw/requests HTTP/1.1
Host: api.callpage.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://www.eurocare.com.pl/
Origin: http://www.eurocare.com.pl
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: istio-envoy
date: Thu, 26 Jan 2023 18:48:46 GMT
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, x-xsrf-token, x_csrftoken, X-CP-REQUEST-ID
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, HEAD, OPTIONS
access-control-allow-origin: http://www.eurocare.com.pl
x-handled-by: nginx
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2
cdn-widget.callpage.io/build/css/callpage-callback.default.css?v=20230126
200 OK 96 kB URL HTTP/2 cdn-widget.callpage.io/build/css/callpage-callback.default.css?v=20230126
IP
Hash 00417885839c89957335e72f86d751ad
d46a6a8361cb6cc56187e33fb7b0e71d1354fe04
76fa9dbffff439f16f7c28cb71d6d5efb511a6518d88438143bd655efe16e5e3
GET /build/css/callpage-callback.default.css?v=20230126 HTTP/1.1
Host: cdn-widget.callpage.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 18:48:45 GMT
content-type: text/css
x-amz-id-2: 7CSIHhJl8szvMNasHyn6Tw0UJeEJKsN8DVG63oGWnZuzeMzrs2mW6kWGxmsasJ3EgtNKnlCI4/o=
x-amz-request-id: ZVY7MR39HZ5VP7Z7
last-modified: Thu, 26 Jan 2023 15:03:01 GMT
etag: W/"52f77ea7b789d248cf9b1f8c8dcb1a3a"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 13523
vary: Accept-Encoding
server: cloudflare
cf-ray: 78fb6cb66f5eb4f9-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
geoipapi.callpage.io/api/v1/geo/widget
200 OK 0 B URL HTTP/2 geoipapi.callpage.io/api/v1/geo/widget
IP
ASN #57367 Atman Sp. z o.o.
GET /api/v1/geo/widget HTTP/1.1
Host: geoipapi.callpage.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.eurocare.com.pl
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: istio-envoy
content-type: application/json
access-control-allow-origin: http://www.eurocare.com.pl
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, HEAD, OPTIONS
access-control-allow-headers: Accept, Content-Type, Authorization, Cache-Control, x-xsrf-token, x_csrftoken, X-CP-REQUEST-ID
cache-control: max-age=3600, private
date: Thu, 26 Jan 2023 18:48:46 GMT
x-cache-status: BYPASS
x-envoy-upstream-service-time: 18
X-Firefox-Spdy: h2
api.callpage.io/v2/widgets/2FtZColtwp4xvozYASsbm-mCbGuLOgNZIX72uBbnbyw/a471d45f5f31699c75e8d58384d9aa978bc3bdf0/potential-lead
200 OK 0 B URL HTTP/2 api.callpage.io/v2/widgets/2FtZColtwp4xvozYASsbm-mCbGuLOgNZIX72uBbnbyw/a471d45f5f31699c75e8d58384d9aa978bc3bdf0/potential-lead
IP
ASN #57367 Atman Sp. z o.o.
GET /v2/widgets/2FtZColtwp4xvozYASsbm-mCbGuLOgNZIX72uBbnbyw/a471d45f5f31699c75e8d58384d9aa978bc3bdf0/potential-lead HTTP/1.1
Host: api.callpage.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.eurocare.com.pl
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: istio-envoy
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache
date: Thu, 26 Jan 2023 18:48:46 GMT
set-cookie: cp_widget_session=eyJpdiI6IkdCUG5ZaWlrSXpyNk1NdGtIXC9nMEMxMzRnUm1EVldNcU1EU3lRQWZ2S0ljPSIsInZhbHVlIjoiYjRjRmlaalVSdFJ0WUpERU9COUFqVkFGSDdmRDNXa1BwOHprRld5aVJnXC96QnVTU2dKcnJib29qNFhDVlBrODI2MGhwZHhZUm9sVXJEWVNwc2JhMktnPT0iLCJtYWMiOiI2MTJkNWRkY2Q0ZDE3MTQ1NTVmMDhiOTg5ZTVhNzVmNGM4YWJiZWNjZTNkZDE4NTcyOWM1MTk5NDI2OGY2M2Q0In0%3D; expires=Sat, 25-Feb-2023 18:48:46 GMT; Max-Age=2592000; path=/; HttpOnly
afad71a04b9d6f45b1c86d732b8b15197302ee82=eyJpdiI6IjBvbG1Jekt6TVRMaFwvc2tXV0ZKVld0QTNudFhIa1RJQnZqV2FhcytsV1RFPSIsInZhbHVlIjoiV1puNldXUlpLS0NYT2ZKUm81d0dOWEc5NUxmRFNXWFJzNzhjYVgycnR1NThNMTE3a3FEc0I1QVZ1NDQ2TGtFWEw4S21JUTE5UTBCd1dhaXVOXC9YTFd5TFh6UDdjTGFCOVZxRDFieTQ4ZkFhMzJjNFwvbEZSZGliMTVzS2VcL0ZPOUVVOVk1U1wvVDJXcUNybkhic29tVGdFZkZIV2Znajd5SjRUWjRFa2dWY2hoZUdzY1dyWVlnTHhHXC9sR0htWWFlRjc1MzJcL3FMaEZaZzQxeU1BcDZrRjUyOFdLUCtQZU1iTW9QeUU2UmZcL3JUMzNPY1p0TnhSRm91V1NjZWpnSzUwcGdyaFY2M3RxZ2JQVitud2JiMndaUDRwNldjWUVTMGRTcnJRS2hnUlpIUklMVFdScTZIU1ZRQVZsRXhCd2phQ2IwcnVIYWJ6MjBqOUVBZHRcLzZGWDYwVXZHNFBRQ1M2clRPSkx4V3hoM2VhUmZQcVlyVHYyOFV1ZkNPM0d2Q25za1puKzZVOUp6QjF0UjJXTGVIVUtmamFcLzV4d2JHN2RYQ05DblNoQnFnMHFpRDJkUjNla1hZbmxmb2lpOVpcL2RPUWR6NlIwRWFjQ0NkT3lwT01XXC9HRVwvdlwvUStsektMZmlnak1vQWRwekIzbEFsbFNmelNXcWxTczJMVCtVMXVWZnR4UnZkeFh0bmFrUFhTd3FjM0xNdU5UdCtydFwvWllqclpycURWWFpRNjZGb2pVVG9xN1RyRXlNblNCckZ2RDJmdGQ0d1FiTmpRK0pxY0pnWnFYQklKd3RBPT0iLCJtYWMiOiJmMGNmNmUyNzEyMjQzNGMxZTFlYWZlNzkwMWQ2MjIxMjIzZmQwMDZmMWFmYzlkM2MxMTkzYWJmM2JkZjQ2NDAxIn0%3D; expires=Sat, 25-Feb-2023 18:48:46 GMT; Max-Age=2592000; path=/; HttpOnly
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, x-xsrf-token, x_csrftoken, X-CP-REQUEST-ID
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, HEAD, OPTIONS
access-control-allow-origin: http://www.eurocare.com.pl
content-encoding: gzip
x-envoy-upstream-service-time: 90
X-Firefox-Spdy: h2
www.eurocare.com.pl/templates/eurocare/css/A.project-specific1.css,qv.1.893.pagespeed.cf.HfNRijciT4.css
200 OK 0 B URL HTTP/1.1 www.eurocare.com.pl/templates/eurocare/css/A.project-specific1.css,qv.1.893.pagespeed.cf.HfNRijciT4.css
IP
ASN #15967 Nazwa.pl Sp.z.o.o.
GET /templates/eurocare/css/A.project-specific1.css,qv.1.893.pagespeed.cf.HfNRijciT4.css HTTP/1.1
Host: www.eurocare.com.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.eurocare.com.pl/praca-opiekunka-niemcy/973-opiekunka-dla-samotnego-i-mobilnego-pana-dietmara-13-03-2020-niemcy
Cookie: 2c5962fd4d44a4861d230763b274ad9c=15e63e4895a1678c61f21e79f3097f6e
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 18:48:43 GMT
Content-Type: text/css
Content-Length: 10073
Connection: keep-alive
X-CDN-nazwa.pl-policyused: cdn=1209600
X-CDN-nazwa.pl-location: AMS
X-CDN-nazwa.pl-age: 90159
X-Original-Content-Length: 48839
Accept-Ranges: bytes
Cache-Control: max-age=1209600
Last-Modified: Fri, 20 Jan 2023 06:11:59 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 90159
Expires: Fri, 03 Feb 2023 06:11:59 GMT
Server: Apache/2
cdn-widget.callpage.io/build/js/callpage.js
200 OK 0 B URL HTTP/2 cdn-widget.callpage.io/build/js/callpage.js
IP
GET /build/js/callpage.js HTTP/1.1
Host: cdn-widget.callpage.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.eurocare.com.pl/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 18:48:44 GMT
content-type: application/javascript
x-amz-id-2: dtD/cmlcesFpa1S/lP4+v8A2wKztt38D01hsXlprbKVbihYFEKxrcTrkqGSJCFaCo7PQRwUDDKtBtjOeb5JqTw==
x-amz-request-id: JF73766CH4YPB4D1
last-modified: Thu, 26 Jan 2023 15:03:02 GMT
etag: W/"cd4cb331f65b81d04ec2c4d0f232a327"
cache-control: max-age=3600
cf-cache-status: HIT
age: 13537
vary: Accept-Encoding
server: cloudflare
cf-ray: 78fb6caeec06b4f9-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
api-cdn6.callpage.io/v2/widgets/2FtZColtwp4xvozYASsbm-mCbGuLOgNZIX72uBbnbyw
200 OK 0 B URL HTTP/2 api-cdn6.callpage.io/v2/widgets/2FtZColtwp4xvozYASsbm-mCbGuLOgNZIX72uBbnbyw
IP
GET /v2/widgets/2FtZColtwp4xvozYASsbm-mCbGuLOgNZIX72uBbnbyw HTTP/1.1
Host: api-cdn6.callpage.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.eurocare.com.pl
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 18:48:45 GMT
content-type: application/json
cf-ray: 78fb6cb17ba3b4fd-OSL
access-control-allow-origin: http://www.eurocare.com.pl
cache-control: no-cache
content-encoding: gzip
last-modified: Thu, 26 Jan 2023 18:48:45 GMT
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, x-xsrf-token, x_csrftoken, X-CP-REQUEST-ID
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, HEAD, OPTIONS
x-envoy-upstream-service-time: 611
server: cloudflare
X-Firefox-Spdy: h2
api.callpage.io/v2/widgets/2FtZColtwp4xvozYASsbm-mCbGuLOgNZIX72uBbnbyw/requests
200 OK 0 B URL HTTP/2 api.callpage.io/v2/widgets/2FtZColtwp4xvozYASsbm-mCbGuLOgNZIX72uBbnbyw/requests
IP
ASN #57367 Atman Sp. z o.o.
POST /v2/widgets/2FtZColtwp4xvozYASsbm-mCbGuLOgNZIX72uBbnbyw/requests HTTP/1.1
Host: api.callpage.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 298
Origin: http://www.eurocare.com.pl
Connection: keep-alive
Referer: http://www.eurocare.com.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: istio-envoy
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache
date: Thu, 26 Jan 2023 18:48:46 GMT
set-cookie: cp_widget_session=eyJpdiI6IjRqck5zbXlcL0MzaXhGNnB4Y1lBS2c0OTB2Vlo5R0lMa2JPakdhZ2FDUm44PSIsInZhbHVlIjoidHd5TzUxS0tDamZGXC9sRGIxc1I5YVwvdFFuZExxVHpnRHZEUWxGMThEUFNyXC9YNnV0Q1REWFlqaE1WYlwvSjRqMk1VRm1GdmJCZURrdWprNElYdzlKZ3lBPT0iLCJtYWMiOiJkNDJmMzE0ZTFhYzgwMGZmNGZkZGU1YTU3ZGI4NTg3MWY5M2IzOTgxOGNhY2FlODk4NmFhODdjYzBmZTQwOWEwIn0%3D; expires=Sat, 25-Feb-2023 18:48:46 GMT; Max-Age=2592000; path=/; HttpOnly
a471d45f5f31699c75e8d58384d9aa978bc3bdf0=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%3D%3D; expires=Sat, 25-Feb-2023 18:48:46 GMT; Max-Age=2592000; path=/; HttpOnly
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, x-xsrf-token, x_csrftoken, X-CP-REQUEST-ID
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, HEAD, OPTIONS
access-control-allow-origin: http://www.eurocare.com.pl
content-encoding: gzip
x-envoy-upstream-service-time: 119
X-Firefox-Spdy: h2
85.128.229.226
142.250.74.164
93.184.220.29
104.17.24.14
95.101.10.171