p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
104.16.118.67200 OK 4.3 kB URL HTTP/1.1 p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
IP 104.16.118.67:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1375)
Hash 57eb63aa0b47e76dc7d86342502051c4
f7c42a63a463b416371db0b2155967eef0b7273e
2b3d39464187a94ad67346ba835e75edd908483875a3ce8a0aa8682125614927
GET /wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4 HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 10:57:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 04 May 2022 10:50:17 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kQgtxOL0Pladw5214Ckon0sgr3r7uhKPuMvtl8Z4U%2FT202yVJ0RqhUWph3dCD0NFdWurT9CzOXvrTAJ7899va7WgQe%2BdlQSpLQ99uYfMwF2NhJYbAzmCQsoP7TWvrjEY4lTTvAklexRRaWwJppQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f8ba8eaec41c02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6782
Expires: Thu, 26 Jan 2023 12:50:39 GMT
Date: Thu, 26 Jan 2023 10:57:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5e46725831d8d722872bf68d752f4c5
cf37793a1b73e3f84fe6c37fb27382c83b49dbc0
0582b6180687dd95c7fd728f1b9db4495b807151e309b608ad203d69708f9da6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0582B6180687DD95C7FD728F1B9DB4495B807151E309B608AD203D69708F9DA6"
Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10657
Expires: Thu, 26 Jan 2023 13:55:14 GMT
Date: Thu, 26 Jan 2023 10:57:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 26 Jan 2023 10:35:16 GMT
content-type: application/json
age: 1341
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8218
Expires: Thu, 26 Jan 2023 13:14:35 GMT
Date: Thu, 26 Jan 2023 10:57:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YRMRceThH7l6pHcYlfeN0lRaPEqiWGpVCjPmEjmTkrOwB3QMNPtzQchCSY1c2v2D8cnfwGzICDQ=
x-amz-request-id: 8J1FCMNR9B02T10E
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 26 Jan 2023 10:20:03 GMT
age: 2254
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 10:57:37 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 715f2a2c57230b2e1aedef83c76e0cbc
df5a219b8564a6c8fbe802e574ba625be7f204ca
ca239808557d30d1df2527ae94987866734b640bfd631282414a39eac87b872c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:57:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
142.250.74.138200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (65451)
Hash 0f83cadc148d2ad7e53c91f6c4ee05bb
90035c5fffedf4b0f099465f6b929a030b46c92b
3f59aa77bbbed7760a9968af27d3c19ffddda021c948edf0bf0c0f828dd308ae
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 07:28:22 GMT
expires: Fri, 26 Jan 2024 07:28:22 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 12555
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 715f2a2c57230b2e1aedef83c76e0cbc
df5a219b8564a6c8fbe802e574ba625be7f204ca
ca239808557d30d1df2527ae94987866734b640bfd631282414a39eac87b872c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 10:57:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/style_ab.css
104.16.118.67200 OK 2.0 kB URL HTTP/1.1 p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/style_ab.css
IP 104.16.118.67:0
File type assembler source, ASCII text, with very long lines (437)
Hash 88578483e42ead79b392b5e14189987e
6cd36f96efc8b0ea08fda867098acd569b93d526
7d50cb32eca4e8e9764c09720b7af42288a60d1431043c5f70b73cae50bbd61c
GET /wbclaim/ytvtcl-comp/style_ab.css HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 10:57:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 04 May 2022 10:51:04 GMT
ETag: W/"227b-5de2d66e40f5a"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E1okjJm28oaX7ftUs20jiqPu76%2BBaTlwQP3Kbc%2F3X%2Fmzc7%2FXehlyDOFX20Fbn9ZDWYPjLu0LCDPwk2C63h%2BPk6v0Z%2Fs%2FjU4CFDOoqoQWRfyWzAOaQ40c18iiA79uBh5oc2y583%2B2u6RZZQyswqQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f8ba913a900afe-OSL
alt-svc: h2=":443"; ma=60
p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/bootstrap.js
104.16.118.67200 OK 14 kB URL HTTP/1.1 p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/bootstrap.js
IP 104.16.118.67:0
File type ASCII text, with very long lines (50758)
Hash c54605fe979a6530c6e151fe763e9974
74569b96a27580b92cfd16054e1cdf861d3387f6
34ec1997b79c9e1801086585dc47f3b44cccbca27d6ee08ab2feb6d7aac145ed
Analyzer Verdict Alert fortinet Phishing
GET /wbclaim/ytvtcl-comp/bootstrap.js HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 10:57:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 04 May 2022 10:50:31 GMT
ETag: W/"c75f-5de2d64ef2ef5"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8%2FAzgT9U3KHt4UTxiBnQqdjr%2FAUrj4FqR8vomCTHmdrun2yo44%2BsY651HOj5nzzj4rGlUfSEBneqUo0EAJ54DudoYdB9oDpLhNGuh05AP7uCoQiNlbYdm4KLHujQslDLVP9ThNMar4J%2F6u95E4Y%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f8ba91490eb524-OSL
alt-svc: h2=":443"; ma=60
p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/bootstrap.min.css
104.16.118.67200 OK 21 kB URL HTTP/1.1 p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/bootstrap.min.css
IP 104.16.118.67:0
File type ASCII text, with very long lines (65324)
Hash 2516a71dd93dcab9d41ac3c14a6ceed4
1731c82fb56ba4c8f5c91077c2344e9beef12fc4
119b5f724dbfb19e84c26d45b2c7f7d883b956a23338a5ce188eca8bf98d0ff8
GET /wbclaim/ytvtcl-comp/bootstrap.min.css HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 10:57:37 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 04 May 2022 10:50:32 GMT
ETag: W/"22688-5de2d64f21cf7"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qL5YLM5Yp97P9Lokt4tTIKyle909dwBD363txu%2BfJV4yQcxMYf3n4eed%2FyAmod%2BsZda%2BpJ4XcASTo56Jz1EMWtIWjzvTzZHwYSH7hrPkpFHmwDo%2F9qvyKSLx8XGO4YARDwDpy5Wcmzx2qjMjxts%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f8ba91397c1c02-OSL
alt-svc: h2=":443"; ma=60
p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/3.1.jpg
104.16.118.67200 OK 1.6 kB URL HTTP/1.1 p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/3.1.jpg
IP 104.16.118.67:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 82a01f0d590891249f099e9c00aa3571
349f88998b7fa2e0d2d071f9b059f641896b7e68
92291db2151b5af1a86630095c71654ec4c67f61a9c3bcdc812e36faa39dc9a7
GET /wbclaim/ytvtcl-comp/3.1.jpg HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 10:57:37 GMT
Content-Type: image/jpeg
Content-Length: 1640
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:50:23 GMT
ETag: "668-5de2d646f4853"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UCYG%2BTC8L%2Fh8tfti68B6RTtsopjmK0JwrdQoAietepgSlm9eNZNgXnj%2BoOGSLAI980K%2F2jemEpsqkeQpM6TSD%2FWK2p%2BF1RykygkO10%2BTF%2BlUyKeFIK5Aj0XlaiSRz7gQvTVVLWBKY1yU8DiGvYo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f8ba929bad0afe-OSL
alt-svc: h2=":443"; ma=60
p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/4.1.jpg
104.16.118.67200 OK 1.6 kB URL HTTP/1.1 p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/4.1.jpg
IP 104.16.118.67:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash b682e7a01f8b125180c89ed2ed40eb93
4d1251e9dad8a4147dbdcf283ad7ed7e8a0de0b1
b0cbde75ef0b006a908ce122fd58793213982a142f70836252ef4a9d526b1b9b
GET /wbclaim/ytvtcl-comp/4.1.jpg HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 10:57:37 GMT
Content-Type: image/jpeg
Content-Length: 1570
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:50:23 GMT
ETag: "622-5de2d647120fd"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5mRkqCj7xy63kiorn1R1u9AN3tY7kVUuME7n8zmLFKCYsa5xLpht4K6Ydx0nG5tpYX5oBb%2FCVlxpryxVdemtRbv5c8ljpo2wTMSOWyzVhwpiL%2FKeMc4I6Sk5Uqj1Tsp4LeU0DInI73CiE0egPQc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f8ba929adf1c02-OSL
alt-svc: h2=":443"; ma=60
p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/5.1.jpg
104.16.118.67200 OK 1.5 kB URL HTTP/1.1 p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/5.1.jpg
IP 104.16.118.67:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 774b901840b3884abb3171090a1db792
9cd5aaee76488d26fcdef3e45f9b2b6a64efd1cc
0418ae5191307ef3c58ce59f7f3ab7ff91a127b211d43fb8675a280df8630a6f
GET /wbclaim/ytvtcl-comp/5.1.jpg HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 10:57:37 GMT
Content-Type: image/jpeg
Content-Length: 1508
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:50:24 GMT
ETag: "5e4-5de2d647d3aaf"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PzsAZo82zJdJ9kAOhJYd5ssrkOGSweNqyEMiarDBT%2Bom5wi0dyx%2FDOBniBlMYRkKl1TTVeZODYN0fhFPpyCpyiBymvjKXjRK4nyoID2bT7VPly0%2FkZ3DdTqWVvvw2QiHuFDPOQvIz78DTMEvqHw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f8ba929b0fb524-OSL
alt-svc: h2=":443"; ma=60
p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/walmart1000.png
104.16.118.67200 OK 15 kB URL HTTP/1.1 p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/walmart1000.png
IP 104.16.118.67:0
File type PNG image data, 370 x 220, 8-bit colormap, non-interlaced\012- data
Hash 67a30230c0557db1636d66fce3563346
4a37dad1cbb7b65472f70b7cfc9f9d5d16a03430
0ba353888073f59ec9dc0f5f7577388dd61120810db41c74582221c822cde698
GET /wbclaim/ytvtcl-comp/walmart1000.png HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 10:57:37 GMT
Content-Type: image/png
Content-Length: 15257
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:51:06 GMT
ETag: "3b99-5de2d66fc46a8"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YfMFBcKqQSe4%2Bn%2BbFJ87vyit5QW9bA2AXx4kfpuH0p2T9UkhYyP8IZsjOpqgM7fVspRko1UxnpRNXYP29F9%2FvLyS6mswhe87gcjMfmuunJGoNh63aAoBLPwuZJr3GsnmOJKTkqHdETMPuB3XoJ8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f8ba929bae0afe-OSL
alt-svc: h2=":443"; ma=60
p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/am.png
104.16.118.67200 OK 28 kB URL HTTP/1.1 p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/am.png
IP 104.16.118.67:0
File type PNG image data, 370 x 220, 8-bit colormap, non-interlaced\012- data
Hash cb01c499e8ebf89d9015255cd725df7e
8eddb82cc3f14c5837bb5f6879954a4e6798faf5
333e50abea0b2cbf37077f7b318c30f07fb0deb9183c7a85cac653a300e2aa8b
GET /wbclaim/ytvtcl-comp/am.png HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 10:57:37 GMT
Content-Type: image/png
Content-Length: 27924
Connection: keep-alive
Last-Modified: Wed, 18 May 2022 05:34:54 GMT
ETag: "6d14-5df429df7f268"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eEkb3DzRjXepU4rNiYFmB%2BrQSeS%2FcR3LPXpX%2B1y%2BIeoO5gdqOcSCypDasVWOjfGydmfNT1HeZwZqRu%2FqnN0y6hbozS5dfYyc0OtoCxL4YWJtI814OETG2XpLNZWU%2FuhJJL1gOrOru%2F3qcaboK7s%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f8ba929b440b02-OSL
alt-svc: h2=":443"; ma=60
p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/7.1.jpg
104.16.118.67200 OK 1.7 kB URL HTTP/1.1 p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/7.1.jpg
IP 104.16.118.67:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 46ed939a79b80399202d35bfe34d47b6
e53d3a20f81aa41f158895d21bdc30d5064037dc
63624e3f3959bb74068d6a8e9f3b01bf22b13345baee54c710335aa6db946fb8
GET /wbclaim/ytvtcl-comp/7.1.jpg HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 10:57:37 GMT
Content-Type: image/jpeg
Content-Length: 1675
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:50:25 GMT
ETag: "68b-5de2d64886a01"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tGKaJ8m9BkSWGT2zkrVvfml%2FXlnQmgtWJye5CCCgKXezkIXJM%2BUa6PrMXJSDT3MeM5YseXmKYu8%2B79tpdLOSi5h3qyh3kAOC2gZAegKSI8xfD9K3OCXhSQz%2BZtUz%2BAWLLiea0GOIRPaJO6IoGtw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f8ba929affb529-OSL
alt-svc: h2=":443"; ma=60
gauvaiho.net/pfe/current/micro.tag.min.js?z=4984707&sw=/sw-check-permissions-4eee0.js
139.45.197.251200 OK 14 kB URL HTTP/1.1 gauvaiho.net/pfe/current/micro.tag.min.js?z=4984707&sw=/sw-check-permissions-4eee0.js
IP 139.45.197.251:0
File type C source, ASCII text, with very long lines (40992), with no line terminators
Hash 8caba2fc5255f0ee194c5186b4461a34
6efec850a39b07bbb9044b23f37ae6f7499c4371
d466f8364a2a16ec2fa60b73c837212e2280e04c43e2735bf494ffd877961627
GET /pfe/current/micro.tag.min.js?z=4984707&sw=/sw-check-permissions-4eee0.js HTTP/1.1
Host: gauvaiho.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 10:57:37 GMT
Content-Type: application/javascript
Last-Modified: Tue, 24 Jan 2023 14:31:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63cfebc5-a020"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip
p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1.1.jpg
104.16.118.67200 OK 1.3 kB URL HTTP/1.1 p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1.1.jpg
IP 104.16.118.67:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 55013fba293aa0d853c82dea90f88d6b
51f13f24e7a25b66bf48b724a5d5627163ea6e60
1083088ad6fc267537143fe374788ada4a442e67528a39b3002b234add26830d
GET /wbclaim/ytvtcl-comp/1.1.jpg HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 10:57:37 GMT
Content-Type: image/jpeg
Content-Length: 1291
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:50:16 GMT
ETag: "50b-5de2d64005598"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SMnuXT54ypSRWShpY7%2FqM1uTC1uaQPknsXUNh7WBEVSvloD69PklBVhKudTQeQ2Xxa4zaP0hwwxoFEdYZH2ymuqhZ4JwHsYdMswlVlJvm8poRzDHYA8Id6otc4%2F03axKYLwrVLVq80r740ZFnI0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f8ba939bc51c02-OSL
alt-svc: h2=":443"; ma=60
p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/alert6.mp3
104.16.118.67206 Partial Content 6.7 kB URL HTTP/1.1 p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/alert6.mp3
IP 104.16.118.67:0
File type Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural\012- data
Hash 6422f23e1751d74410347e02c0210a60
0e3e65be6b5fbb76f6a52191e973bd37368be204
4fdb5a03ae3f26e801517144609db3589bd0835a686fe11dfe7afddcdb750ef8
Analyzer Verdict Alert fortinet Phishing
GET /wbclaim/ytvtcl-comp/alert6.mp3 HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
HTTP/1.1 206 Partial Content
Date: Thu, 26 Jan 2023 10:57:37 GMT
Content-Type: audio/mpeg
Content-Length: 6712
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:50:28 GMT
ETag: "1a38-5de2d64c35c0e"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Content-Range: bytes 0-6711/6712
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YuBhRjvTRGXTo0r9MmNE%2FyViIbJudfdC6XLStcpPhcuNjhogNPCtUWVXYKsiNwoUzCMP3U0DgdXF8BDpNfnux%2FPHqNAM2jFbiCzd2Ui66AMVBxHZxKmIKz0fQa0lCOChP4EMBliuSz0BBrRzi5Y%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78f8ba93ac8a0b02-OSL
alt-svc: h2=":443"; ma=60
p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/gicon.png
104.16.118.67200 OK 393 B URL HTTP/1.1 p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/gicon.png
IP 104.16.118.67:0
File type PNG image data, 56 x 56, 8-bit colormap, non-interlaced\012- data
Hash e10479c06f79133efde1904cb65c4387
1ca61fb7764be6c8c3e5d5296464f3496c7560c8
c9025d2a9df8a92a831d271d1f2eac9cdee050f16b181644d8ef49022f3a0d47
GET /wbclaim/ytvtcl-comp/gicon.png HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 10:57:38 GMT
Content-Type: image/png
Content-Length: 393
Connection: keep-alive
Last-Modified: Thu, 19 May 2022 08:23:16 GMT
ETag: "189-5df5915f43cfc"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0ytkmuNCd6CnbEHGa8Uo%2F9qSrl8htQidqNc9D6bi09kqAKwSxwkKqxBIWDmB7yrCup5k4acVVbVIvGyp6hmsJEuD%2BdIlmfcVPDrWoANNj3bjmIRtLmhuGSX4Zsn8fRWqz96%2F7Uy6DJMTYW%2FV0Ak%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f8ba939ca90afe-OSL
alt-svc: h2=":443"; ma=60
p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/2.1.jpg
104.16.118.67200 OK 1.8 kB URL HTTP/1.1 p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/2.1.jpg
IP 104.16.118.67:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 3bcd0080a061919d4c5d9d0339852ed9
ef13c99dc1c8125aa6f9b38133c82ee28f2eaf7e
bd29771d8a22d8fc059a3ed4e35fb8f25bb0b6e044ad4cdd1ef25f38883b6545
GET /wbclaim/ytvtcl-comp/2.1.jpg HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 10:57:38 GMT
Content-Type: image/jpeg
Content-Length: 1772
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:50:22 GMT
ETag: "6ec-5de2d6461426f"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yurOjgFF%2FVst663Wt7BtPdb%2BjqUTmhuVq1pUG%2BWQ0uHY4L%2FyVnHobWltRr9A6LworzYZv27vX4EC0qQxJxhuFX0crnvu%2BwvGO50sCoXWEqktHXbyb%2BrGa5EHUNFAoLwlGq7umnwaLOM0INMHYbo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f8ba939c7db524-OSL
alt-svc: h2=":443"; ma=60
p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/6.1.jpg
104.16.118.67200 OK 2.2 kB URL HTTP/1.1 p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/6.1.jpg
IP 104.16.118.67:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash bf32f441f24ad2182bfe7adbdb3d1daf
27a25a239e3abfc03f8d89d12c4cc42bd5154f26
e8451d4a2859a615184721a87957739a3a949eb3b87fed3fcca7a59d63977097
GET /wbclaim/ytvtcl-comp/6.1.jpg HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 10:57:38 GMT
Content-Type: image/jpeg
Content-Length: 2226
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:50:24 GMT
ETag: "8b2-5de2d6480440a"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VWFyYYlwjVZjI5n35xVzuIb8jFoVCGZMi3ZuWPsJEcvh%2F28iNqERI6AurSfMl7fqpccETbukv5QPgzVSE2UP%2BCA6EZQuSYIGfvGKN%2BtYKp%2FVTViXzyP7LH7ufusLZYP5ztd1R%2Fw0AGSzMdxgHKU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f8ba939cad0afe-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 26 Jan 2023 10:49:01 GMT
age: 517
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ccba67d1ad784a967f5859ca7714bcc5
35e07cc69be1b4318ee23262f374e081a6286285
caf5e5782c54bbaf8f0d80cea5073e01cd98cc6769d4b6c7ea83d3cf87d3ef43
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CAF5E5782C54BBAF8F0D80CEA5073E01CD98CC6769D4B6C7EA83D3CF87D3EF43"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11436
Expires: Thu, 26 Jan 2023 14:08:14 GMT
Date: Thu, 26 Jan 2023 10:57:38 GMT
Connection: keep-alive
gauvaiho.net/zone?&pub=0&zone_id=4984707&is_mobile=false&domain=p.diligentawesomevisit.shop&var=&ymid=&var_3=&dsig=&action=prerequest
139.45.197.251200 OK 0 B URL HTTP/2 gauvaiho.net/zone?&pub=0&zone_id=4984707&is_mobile=false&domain=p.diligentawesomevisit.shop&var=&ymid=&var_3=&dsig=&action=prerequest
IP 139.45.197.251:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=4984707&is_mobile=false&domain=p.diligentawesomevisit.shop&var=&ymid=&var_3=&dsig=&action=prerequest HTTP/1.1
Host: gauvaiho.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://p.diligentawesomevisit.shop
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 10:57:38 GMT
content-length: 0
x-trace-id: 956233f49db91c87414e621c235c112a
access-control-allow-origin: http://p.diligentawesomevisit.shop
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19963
Expires: Thu, 26 Jan 2023 16:30:21 GMT
Date: Thu, 26 Jan 2023 10:57:38 GMT
Connection: keep-alive
p.diligentawesomevisit.shop/favicon.ico
104.16.118.67200 OK 62 B URL HTTP/1.1 p.diligentawesomevisit.shop/favicon.ico
IP 104.16.118.67:0
File type MS Windows icon resource - 1 icon, 1x1, 24 bits/pixel\012- data
Hash 74f60f0216cc1cb10b33dbeff395f192
de23674230843f409d5a7f840d6a30343675ae66
3a5f2a1419874bc1fac0fed7484c13a962f706e8ba99f7c6dca7a979c71d77c4
GET /favicon.ico HTTP/1.1
Host: p.diligentawesomevisit.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://p.diligentawesomevisit.shop/wbclaim/ytvtcl-comp/1911-bnd-ab-gogl-az-wm-cmp.html?region=Bratislavsk%C3%BD%20kraj&td=sogecablemedia.com&brand=Apple&model=iPhone&cep=n42Lrp0z_0pZk5NrKgn366DQxDCuVW5lwtM1XRpnPcBnsbdeP6TvQoYZZaVfYgFWbuOL9qc14c06Hp6-Cfiwqw7QUEZRIcrvRDrym_0n8imbC86tPviJX_hWrP0b2OrxhOhGIdIqkBwhBF54ATSXaQWpu06n-VZmtuGjNj6cXaKutIcGjy6Dojn3AMu4RALhicbHe5vJbWlrta-Yh_FOfTeokXqxj7zNNJRKombJxpei-MBET5fQrqIJTk0JkavXL_bUDlBv1i4aS8bFhBD-0ZSzBFAZjdHmiVTC6YgJ8wrKrgA9TPKKBEJpV_hJACedOLG9yFMJubAgvZD1o2qW9zt3TuWZ6raZDzex1z_ICGu15yQpgcEnHGfehrOoExi1YwWoG0_0iTa0Wo-Pzkw6QBB-Mj8LIZ15dW70cT0CGFe7FXuzcJtPzZU2FbHfH2x37kE_4a4uRUsZaCk3k8ruZ9XOJV0eGQZTd8n5VC_GGddRh-nHX0268vbBIBoWLFLTee2JjpuhmRnxi8oWpcpqNrCjm7g6voHUYgwLQLQnLc2PJ2TaNA0BysIlSrTOR19HwywrEZ7ANX-GhWXxFURSblCSFmh_qukF-eO37XUUAPGFPdSJx7B_wDLRywvF4s9KD9XoB_ZeIs4XqsyPomYTlQ&lptoken=16af7464338656cc5462&1=329517.2a25597c-38d6-55d5-9bdf-044a5ebe86b4&2=ca&3=&4=329517&5=2a25597c-38d6-55d5-9bdf-044a5ebe86b4&6=991374&7=2455023&8=*&9=ron&10=Cogeco+Cable&cid=JUQX-T0Xhc4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 10:57:38 GMT
Content-Type: image/vnd.microsoft.icon
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:33:34 GMT
ETag: W/"46-5de2d28462a14"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kdtlKNYzCrDxZDig6atEh%2F%2FYMe79oRyzmuzJlXLTiSKQN2F4oMLw9WqcBW2TB6U%2FfKxf7yAaJEXTqmeuk1%2FuMkpDGAGQbOybPhXqbivuRmOR5rn8TTOPM5Y9jC6918pHSBFXVQD2m%2FFQaxYnBDU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78f8ba950e280b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
52.42.182.211101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.182.211:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HHX1aAIpHKOttKmGxZnnLw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3PvnybWQexK5TfocpTYj124myc0=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9417
Expires: Thu, 26 Jan 2023 13:34:36 GMT
Date: Thu, 26 Jan 2023 10:57:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9417
Expires: Thu, 26 Jan 2023 13:34:36 GMT
Date: Thu, 26 Jan 2023 10:57:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9417
Expires: Thu, 26 Jan 2023 13:34:36 GMT
Date: Thu, 26 Jan 2023 10:57:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9417
Expires: Thu, 26 Jan 2023 13:34:36 GMT
Date: Thu, 26 Jan 2023 10:57:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9417
Expires: Thu, 26 Jan 2023 13:34:36 GMT
Date: Thu, 26 Jan 2023 10:57:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3e6d9a5-dd7d-4337-a00f-a145350a1a29.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3e6d9a5-dd7d-4337-a00f-a145350a1a29.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 653bf5a34e9f99c9eef73a21d98d792f
c70d46aa2210c4f7c397fa20e1225b7d0734ac35
9f928ec6f194340e5543a4bf757aac31d545def67a56ae804a2039a3effd3fe0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3e6d9a5-dd7d-4337-a00f-a145350a1a29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10379
x-amzn-requestid: 77d12b56-c121-4d0a-9831-9de4151b65de
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUY8_GVUIAMFmgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a1ec-523a2d8b1028a4496a211030;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:41:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i_OHKx9OPaP8_2ydfgZwY4Dvbq208pXR2hwFTdUySwjsIwEIcv-M4g==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:49:18 GMT
age: 47301
etag: "c70d46aa2210c4f7c397fa20e1225b7d0734ac35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4cb7be12333fa7ea3353901b4b3215af
4b758cc432874384f330568177eef5a328d7e69a
d6f86c0ddbabd5c4fd7cee72ce4da62ccddd9d29139c9ab033bb1ab8425bae22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11918
x-amzn-requestid: ff47dd24-004f-4cc7-acfb-283b2e751f23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqxwEyWoAMF3gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb580b-1e95f74b0846080f75a757f6;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:12:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ntW_cYMwX6UWInGOxxPlwnV1AJh46X-hiLvwggRz9oa1Yno6jyE51g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 04:37:14 GMT
age: 22825
etag: "4b758cc432874384f330568177eef5a328d7e69a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13cd008fb3e2739ec7caadadbd427655
c4802b06b87ab97f3ccd80d1c9bbdb4fab9886c1
a300a4fde1863c8b806d0557d9f0adaed19e1c612989d7e3f79a7bb45e6e74dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ffb1709-216c-4bf0-9b98-e3a355f000bb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8822
x-amzn-requestid: e16ae781-25f3-4b7d-b62b-85b35d6571c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYRwF2KIAMFjDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0d7-377f24bd18dea32564b148bd;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:36:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3Q-kz6GkBHp82E__crWSeqbfxme8c9y1BAAq3TW8NlwJy4eSy7gy7Q==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:49:07 GMT
age: 47312
etag: "c4802b06b87ab97f3ccd80d1c9bbdb4fab9886c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KY05WKpINERD5g9o2QLYdsNMSuuy_YKn2Tl7Qkn7YaAOaPTDfLteeA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:49:40 GMT
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
age: 47279
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b242645f0cc22e3b12c132e6d03722ac
dec70f83182de58e03bfcb95fc240b7c33f20674
59a2d8c972d27598dfe38637197f90053186c4f68b80a5a90283cb11ddaf8a31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46a5d7d6-d259-4246-b28c-8e4355fbc747.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6609
x-amzn-requestid: 129067f4-c79b-493d-8863-2eb6c1565ee6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSZABF4IIAMFsig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d533-4908ab6e5c751213084de3c6;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:07:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CaxCPk4-9yhypamZa96f4IyujB3AMeGmpcYP1UmJtjp275dwFjVOcw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:21:33 GMT
age: 12966
etag: "dec70f83182de58e03bfcb95fc240b7c33f20674"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c7f25e5-06eb-4d3f-99e2-edacd0739efb.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c7f25e5-06eb-4d3f-99e2-edacd0739efb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cfe699b31f96add9f1439af1ff1191eb
f77a833a69b69eef4a39e404c102f624e96b52c0
44312979ac13221e5c3328ad590f0f3dc7da00380c07c433382cd81c47b717f8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c7f25e5-06eb-4d3f-99e2-edacd0739efb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14856
x-amzn-requestid: 2f52d4d7-4158-485e-bbae-1f906c40d1f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSYg5HvwoAMFxjg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d46b-73d5d7862497852334d9cde2;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:04:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4szanZUhJULoG1K5oNXzvcaoImIduF8NnkTrwCPSpOFpJMaw7rQqEg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:22:01 GMT
age: 12938
etag: "f77a833a69b69eef4a39e404c102f624e96b52c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2