Report - rg.beneficjenci.edu.pl/dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9

Report Overview

Submitted URL
rg.beneficjenci.edu.pl/dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9
IP
172.67.218.16
ASN
#13335 CLOUDFLARENET
Submitted
2023-03-11 22:13:49
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
new.lightfoot.top	unknown	2023-02-06T14:58:18Z	2023-03-25T03:00:04Z	5.5 kB	35 kB	116.202.184.109
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-25T05:09:34Z	343 B	700 B	142.250.74.131
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-24T16:33:49Z	3.2 kB	51 kB	34.120.237.76
js.pushssp.top	unknown	2022-12-22T12:46:51Z	2023-03-25T19:00:14Z	777 B	470 B	5.75.133.219
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-24T18:14:23Z	782 B	2.4 kB	35.241.9.150
ocsp2.globalsign.com	1544	2012-05-23T20:10:04Z	2023-03-25T05:10:23Z	357 B	1.9 kB	104.18.20.226
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-24T18:17:07Z	606 B	127 B	35.163.217.60
vcpkp.cloudpsh.top	unknown	2023-03-09T01:00:15Z	2023-03-25T19:00:14Z	503 B	529 B	5.75.133.219
js.cdnpsh.com	unknown	2023-02-09T09:06:01Z	2023-03-25T12:21:47Z	961 B	16 kB	5.75.133.219
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-25T03:49:06Z	448 B	12 kB	216.58.211.3
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-25T05:09:02Z	3.0 kB	8.0 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-24T18:20:20Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-25T05:09:25Z	333 B	391 B	34.117.237.239
antibotcloud.com	unknown	2022-04-26T14:48:57Z	2023-03-25T15:33:19Z	479 B	799 B	188.114.97.1
rg.beneficjenci.edu.pl	unknown			1.6 kB	2.9 kB	172.67.218.16
counter.yadro.ru	7275	2014-09-09T20:41:17Z	2023-03-25T05:33:08Z	553 B	433 B	88.212.202.52
code.jquery.com	634	2012-05-21T19:28:02Z	2023-03-25T05:10:03Z	415 B	30 kB	69.16.175.10
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-25T03:38:01Z	525 B	16 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-11 22:13:40	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (11)

	URL	Size	First Seen	Last Seen
	new.lightfoot.top/space-robot/assets/main.js	1.8 kB	2023-03-07	2024-01-31
Pretty URL new.lightfoot.top/space-robot/assets/main.js IP 116.202.184.109 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:23 Last Seen2024-01-31 16:28:02 Times Seen559 Hash e007064d63d81a6d97c2f89715028389 2d198eb80febf99c6378586092731c6d1cf72c7a f392f08652d464570cdc9c514ba60a5fa93b8837d6e12fe1b225e700cde8fa72 Loading...

	js.pushssp.top/ps/pl.js	2.6 kB	2023-03-14	2023-03-26
Pretty URL js.pushssp.top/ps/pl.js IP 5.75.133.219 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 08:30:58 Last Seen2023-03-26 04:53:18 Times Seen36 Hash b884613aed11b936fab384faf6803af9 1dd01a52f664e34a0266159887703e3fb7db69bd 0e27e531785bdbfb9de6114fa045febb71d63d20ce984bd775b2648c1b3ae6b9 Loading...

	www.gstatic.com/firebasejs/8.4.1/firebase-app.js	21 kB	2023-03-07	2024-03-01
Pretty URL www.gstatic.com/firebasejs/8.4.1/firebase-app.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-03-01 05:39:21 Times Seen5534 Hash e20da9cfaabf0b23d89c2335c06e2b03 b1af5616825acaba44bd714bd2685327abe896fd d4d5669220045e130b79770e93dc7dca5fdfa00c9d7047639dbb15c4f28eb2e2 Loading...

	www.gstatic.com/firebasejs/8.4.1/firebase-messaging.js	41 kB	2023-03-07	2024-01-25
Pretty URL www.gstatic.com/firebasejs/8.4.1/firebase-messaging.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:55 Last Seen2024-01-25 19:24:22 Times Seen7448 Hash a498cb0f91ef52cc08969e1737b34638 c0e12b338ca7adea31b105546fde021edecbfc3c a8d6389e6811b9fea7ff683cb31a57a6e0b29781407d7f5d45994aae1b5725b7 Loading...

	rg.beneficjenci.edu.pl/dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9	312 B	2023-03-08	2023-04-05
Pretty URL rg.beneficjenci.edu.pl/dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9 IP 172.67.218.16 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 11:54:42 Last Seen2023-04-05 02:09:39 Times Seen148 Hash 7a37ac4484c3dec85bb2c2e986bb2e25 48e17803b2a0a8fbecb7d3c0dda759968fac95eb 785aa71450cc237ee8f9823213d894f48837099ff5bafa577b8356d4ffeafc4c Loading...

	rg.beneficjenci.edu.pl/dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9	3.8 kB	2023-03-26	2023-03-26
Pretty URL rg.beneficjenci.edu.pl/dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9 IP 172.67.218.16 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 03:34:22 Last Seen2023-03-26 03:34:22 Times Seen1 Hash b8b11b0e3ab919501499b9ba5b3d1213 5abdf7af43f18b026f66813975e7ae4dd43aa4c3 e17e9b3640440315df195266bf1b0bc9eb6c1e3d0e307208be83206a0061e06c Loading...

	new.lightfoot.top/space-robot/assets/trls.js	7.8 kB	2023-03-07	2023-03-26
Pretty URL new.lightfoot.top/space-robot/assets/trls.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:23 Last Seen2023-03-26 05:05:40 Times Seen18 Hash 98c8f0de129e281bd03c986a08af80db 5846824e1c989234305698898427ce55321242f9 e2bb1401d6b8d6038ff8411fd0f6280890ecd1f32e3e90f4c7fededf28301339 Loading...

	new.lightfoot.top/shared-js/assets/fnr.js	5.7 kB	2023-03-07	2023-03-26
Pretty URL new.lightfoot.top/shared-js/assets/fnr.js IP 116.202.184.109 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:55 Last Seen2023-03-26 05:05:40 Times Seen38 Hash 22ef8ba3eec577f8af9b4c4d1e9e4614 d2705ecb00404029c746fd5032d6c6edaf4158a1 71e79f46be6883cb94673cb02041031b186ef525e8d4a15ae86dc4f11cdfb206 Loading...

	code.jquery.com/jquery-2.1.4.min.js	84 kB	2023-03-07	2024-04-16
Pretty URL code.jquery.com/jquery-2.1.4.min.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:48 Last Seen2024-04-16 01:21:14 Times Seen7073 Hash f9c7afd05729f10f55b689f36bb20172 43dc554608df885a59ddeece1598c6ace434d747 f16ab224bb962910558715c82f58c10c3ed20f153ddfaa199029f141b5b0255c Loading...

	js.cdnpsh.com/ps/ps.js?pl=true&id=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&click_id=&sub_id=	22 kB	2023-03-26	2023-03-26
Pretty URL js.cdnpsh.com/ps/ps.js?pl=true&id=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&click_id=&sub_id= IP 5.75.133.219 ASN #24940 Hetzner Online GmbH Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 01:52:53 Last Seen2023-03-26 03:34:22 Times Seen4 Hash 29d0410fe21af25ca3de2a541ef26803 bf6246582cdb9ec48925b30645970460db922352 72ba955bfbe8b44c41ace72c7115922f5e10ada983566eff328412f28f1be2bc Loading...

	feed.cdnpsh.com/ps/config.js?id=Rb6RftRizUO8EtK7b3ElNQ	356 B	2023-03-14	2023-04-02
Pretty URL feed.cdnpsh.com/ps/config.js?id=Rb6RftRizUO8EtK7b3ElNQ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 13:31:58 Last Seen2023-04-02 21:29:47 Times Seen181 Hash d93bb318859bc34b78cad18336900ef0 41850f660c85ad8e1cbbe9e986db73a949dc761c ad20bac1315dfdb49471c8429821a302cc944fbfa9f7952575e9d6c1884a8af1 Loading...

HTTP Transactions (45)

	URL	IP	Response	Size
	rg.beneficjenci.edu.pl/dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9	172.67.218.16	301 Moved Permanently	0 B
URL HTTP/1.1 rg.beneficjenci.edu.pl/dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9 IP 172.67.218.16:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9 HTTP/1.1 Host: rg.beneficjenci.edu.pl User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Sat, 11 Mar 2023 22:13:38 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Sat, 11 Mar 2023 23:13:38 GMT Location: https://rg.beneficjenci.edu.pl/dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9 Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=85UcVeKHP5nwjdmgm5v4m6Rkd5Pl3vU6rhDh6jfvkIjFnS4ke5%2Bl%2BMo85%2FJ11anTD2WvKGnlpOh%2FIiP0WdGUJ7eQMtDsKT2SSXfSftx0DtyuZVZL%2BNACfxuHbTJn%2BJfEPSu1eeha%2B4qz"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7a6725556dc1b529-OSL alt-svc: h2=":443"; ma=60

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 99824e6e553dd5649b1d199589a6dab2 00b2c24f6ef22620045c3b2ef7a63ea9ac8cc0a2 3a4695284040436fd256023da7d39bab8b16f8a2d4f7105c0f995f610dcab2d2 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "3A4695284040436FD256023DA7D39BAB8B16F8A2D4F7105C0F995F610DCAB2D2" Last-Modified: Thu, 09 Mar 2023 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9323 Expires: Sun, 12 Mar 2023 00:49:01 GMT Date: Sat, 11 Mar 2023 22:13:38 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9ce33c47154f4826255fe9bbe54d72be e10a363c007a6d15ed43eb35b4e5c246d85c5eed cf423db1a8ad1dce1b5c25f6025d14411b4a46e95a6001288949f046e244bc24 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "CF423DB1A8AD1DCE1B5C25F6025D14411B4A46E95A6001288949F046E244BC24" Last-Modified: Fri, 10 Mar 2023 02:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8328 Expires: Sun, 12 Mar 2023 00:32:26 GMT Date: Sat, 11 Mar 2023 22:13:38 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 7f03faaba3392caae6dae54467bfdf6d 57ea1f14e8bfbcca8190c706d708c9fda12442c1 02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Alert, Backoff, Retry-After, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sat, 11 Mar 2023 21:13:53 GMT content-type: application/json age: 3585 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1a564ae484daef6a82bb08116ad794eb f75350abf28a42c16324901035889a1f3af700a1 225214187df3f50835a8aafcc4555fe47cf0b78938b71d34fb422942292b153b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "225214187DF3F50835A8AAFCC4555FE47CF0B78938B71D34FB422942292B153B" Last-Modified: Fri, 10 Mar 2023 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11837 Expires: Sun, 12 Mar 2023 01:30:55 GMT Date: Sat, 11 Mar 2023 22:13:38 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash b5ba6334e73496995e3e3a9ecd0eb323 ad80d3b7718c28364e8c2004fb38a13a1747e462 aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: R53kTV3gYL62ItlU68DFPzWb9y9JWUs6QgRlSFT9e7pjhc9RM+pmvsqCTgcRQvsYemxiB375lAE= x-amz-request-id: 8HF68EW2WXRDH028 x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sat, 11 Mar 2023 21:45:42 GMT age: 1677 last-modified: Sat, 18 Feb 2023 20:28:27 GMT etag: "b5ba6334e73496995e3e3a9ecd0eb323" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Sat, 11 Mar 2023 22:13:39 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp2.globalsign.com/gsalphasha2g2	104.18.20.226	200 OK	1.4 kB
URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2 IP 104.18.20.226:0 ASN #13335 CLOUDFLARENET File type data Size 1.4 kB (1423 bytes) Hash c7d29d4d90c495d7bfbfa25d0351031d 2b60af607d621d20e533085b082d16ab8cdc324a 0750f7995ae5586154ad5c27cdf6bb1e68290b9d11e9cf2181607ed7ea81d4f2 HTTP Headers `POST /gsalphasha2g2 HTTP/1.1 Host: ocsp2.globalsign.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Sat, 11 Mar 2023 22:13:39 GMT Content-Type: application/ocsp-response Content-Length: 1423 Connection: keep-alive Expires: Wed, 15 Mar 2023 19:21:13 GMT ETag: "2b60af607d621d20e533085b082d16ab8cdc324a" Last-Modified: Sat, 11 Mar 2023 19:21:14 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 2746 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 7a67255a4fc8b50b-OSL`

	counter.yadro.ru/hit;Korea?t39.8;r;s1280102424;uhttps%3A//rg.beneficjenci.edu.pl/dz/yuzu-%25EB%25AC%25B4%25ED%2595%259C%25EB%25A1%259C%25EB%2594%25A9;hJust%20a%20moment...;0.83204315967828	88.212.202.52	200 OK	130 B
URL HTTP/1.1 counter.yadro.ru/hit;Korea?t39.8;r;s1280102424;uhttps%3A//rg.beneficjenci.edu.pl/dz/yuzu-%25EB%25AC%25B4%25ED%2595%259C%25EB%25A1%259C%25EB%2594%25A9;hJust%20a%20moment...;0.83204315967828 IP 88.212.202.52:0 ASN #39134 United Network LLC File type GIF image data, version 87a, 31 x 31\012- data Size 130 B (130 bytes) Hash 37d40582c43ce723e6cfd676d1bfe391 9368ef39958e9152cbfe97c3763a08447b0d0cdc 97da286ce2ce72d0c8d611c00bd886aecd19459aca337ea1e62435cb4ff5da55 HTTP Headers GET /hit;Korea?t39.8;r;s1280102424;uhttps%3A//rg.beneficjenci.edu.pl/dz/yuzu-%25EB%25AC%25B4%25ED%2595%259C%25EB%25A1%259C%25EB%2594%25A9;hJust%20a%20moment...;0.83204315967828 HTTP/1.1 Host: counter.yadro.ru User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://rg.beneficjenci.edu.pl/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Server: nginx/1.17.9 Date: Sat, 11 Mar 2023 22:13:39 GMT Content-Type: image/gif Content-Length: 130 Connection: keep-alive Expires: Fri, 11 Mar 2022 21:00:00 GMT Pragma: no-cache Cache-control: no-cache Access-Control-Allow-Origin: * Strict-Transport-Security: max-age=86400`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Last-Modified, Retry-After, ETag, Backoff, Expires, Alert, Pragma, Cache-Control, Content-Length, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sat, 11 Mar 2023 22:06:46 GMT age: 413 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d960a8d21b339ab0d7987e3b1eb16fdc 08d4430c549151295ee4e1dc8f24dbd3d9456b0b 522b75aa714f87a716a9a693a7c3ed1cab6e5b1725f20a67df46dec2967b5960 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "522B75AA714F87A716A9A693A7C3ED1CAB6E5B1725F20A67DF46DEC2967B5960" Last-Modified: Thu, 09 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18703 Expires: Sun, 12 Mar 2023 03:25:22 GMT Date: Sat, 11 Mar 2023 22:13:39 GMT Connection: keep-alive`

	push.services.mozilla.com/	35.163.217.60	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 35.163.217.60:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: D7LHOgQpH9Yn27oil2Iqig== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: Omi1zDVFIsPnSFR/MlTVLki2Az4=`

	vcpkp.cloudpsh.top/?pl=Rb6RftRizUO8EtK7b3ElNQ	5.75.133.219	302 Found	0 B
URL HTTP/2 vcpkp.cloudpsh.top/?pl=Rb6RftRizUO8EtK7b3ElNQ IP 5.75.133.219:0 ASN #24940 Hetzner Online GmbH File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /?pl=Rb6RftRizUO8EtK7b3ElNQ HTTP/1.1 Host: vcpkp.cloudpsh.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 302 Found server: nginx date: Sat, 11 Mar 2023 22:13:40 GMT content-length: 0 location: https://new.lightfoot.top/space-robot/?pl=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&hash=iBQ7Yq39f4-tPubYFSL70Q&exp=1678573120 set-cookie: Rb6RftRizUO8EtK7b3ElNQ=1; max-age=345600; path=/; samesite=lax __pl=35cfa6dc-4e37-4c44-9b2c-932ab3acfa5b; expires=Tue, 11 Mar 2025 22:13:40 GMT; path=/; samesite=lax __cap=1; max-age=3600; path=/; samesite=lax cache-control: max-age=0, no-cache, no-store, must-revalidate X-Firefox-Spdy: h2

	new.lightfoot.top/space-robot/assets/corner.png	116.202.184.109	200 OK	300 B
URL HTTP/2 new.lightfoot.top/space-robot/assets/corner.png IP 116.202.184.109:0 ASN #24940 Hetzner Online GmbH File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced\012- data Size 300 B (300 bytes) Hash f66c38fa2cd7c50bd1989d41da28fb80 e1de333eca72647f3c1831083fe678cfa8fe9eab 3059be4046e0315ad1c0d1cb163d9daaf759bdf16e906e908842fac07e5608a2 HTTP Headers GET /space-robot/assets/corner.png HTTP/1.1 Host: new.lightfoot.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://new.lightfoot.top/space-robot/?pl=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&hash=iBQ7Yq39f4-tPubYFSL70Q&exp=1678573120 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Sat, 11 Mar 2023 22:13:40 GMT content-type: image/png content-length: 300 last-modified: Fri, 15 Jul 2022 07:41:17 GMT etag: "62d11a1d-12c" strict-transport-security: max-age=63072000 accept-ranges: bytes X-Firefox-Spdy: h2`

	code.jquery.com/jquery-2.1.4.min.js	69.16.175.10	200 OK	30 kB
URL HTTP/2 code.jquery.com/jquery-2.1.4.min.js IP 69.16.175.10:0 ASN #20446 STACKPATH-CDN File type ASCII text, with very long lines (32025) Size 30 kB (29519 bytes) Hash a7f7dc66f5ba563bdbd4077fa667016e c98fd169e356a997daf790dac6ead0c49e8c1eda 5315acee8e8c38e3fe62cff3b7a50cfb46a1130b0abb61bf119340e6b73934ac HTTP Headers `GET /jquery-2.1.4.min.js HTTP/1.1 Host: code.jquery.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://new.lightfoot.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Sat, 11 Mar 2023 22:13:40 GMT content-encoding: gzip content-length: 29519 content-type: application/javascript; charset=utf-8 last-modified: Fri, 18 Oct 1991 12:00:00 GMT accept-ranges: bytes server: nginx etag: W/"28feccc0-14979" cache-control: max-age=315360000, public access-control-allow-origin: * vary: Accept-Encoding x-hw: 1678572820.dop232.sk1.t,1678572820.cds003.sk1.hn,1678572820.cds017.sk1.c X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c11248ad196c57fdf878000b4591a416 f86236c890bcceaf313e5021bf8ef6669688ea77 550e8187d0a76ef1d3127e200c20ab609ee72a44bc05c040bf178f4c8ec5eebc HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 11 Mar 2023 22:13:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2	216.58.207.227	200 OK	16 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data Size 16 kB (15552 bytes) Hash 285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7 HTTP Headers GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://new.lightfoot.top Connection: keep-alive Referer: https://new.lightfoot.top/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15552 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 09 Mar 2023 17:56:42 GMT expires: Fri, 08 Mar 2024 17:56:42 GMT cache-control: public, max-age=31536000 age: 188218 last-modified: Mon, 16 Oct 2017 17:33:02 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	new.lightfoot.top/space-robot/?pl=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&hash=iBQ7Yq39f4-tPubYFSL70Q&exp=1678573120	116.202.184.109	200 OK	8.0 kB
URL HTTP/2 new.lightfoot.top/space-robot/?pl=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&hash=iBQ7Yq39f4-tPubYFSL70Q&exp=1678573120 IP 116.202.184.109:0 ASN #24940 Hetzner Online GmbH File type data Size 8.0 kB (7980 bytes) Hash dfd76d146fe0f3dbf779d0352c0ff195 343cad140f3c062f944d21feb1b84b6c49d96890 7e6db0319845f35f5de9b8dfb0d6a46d71ed82388124ce91898f1e77990773e9 HTTP Headers GET /space-robot/?pl=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&hash=iBQ7Yq39f4-tPubYFSL70Q&exp=1678573120 HTTP/1.1 Host: new.lightfoot.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx date: Sat, 11 Mar 2023 22:13:40 GMT content-type: text/html last-modified: Thu, 22 Dec 2022 09:48:27 GMT vary: Accept-Encoding etag: W/"63a427eb-3486" strict-transport-security: max-age=63072000 content-encoding: gzip X-Firefox-Spdy: h2`

	new.lightfoot.top/space-robot/assets/apple-touch-icon.png	116.202.184.109	200 OK	23 kB
URL HTTP/2 new.lightfoot.top/space-robot/assets/apple-touch-icon.png IP 116.202.184.109:0 ASN #24940 Hetzner Online GmbH File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size 23 kB (23177 bytes) Hash f500ba7eee0ae7d1ceb44236ac253165 0614de220ecadb48038ed894d91120ba102c8367 ba5a3083c38d71a2191ee7e614a96812d1f9d88bbfb360d3b61dbb1ffcd51de5 HTTP Headers GET /space-robot/assets/apple-touch-icon.png HTTP/1.1 Host: new.lightfoot.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://new.lightfoot.top/space-robot/?pl=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&hash=iBQ7Yq39f4-tPubYFSL70Q&exp=1678573120 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Sat, 11 Mar 2023 22:13:40 GMT content-type: image/png content-length: 23177 last-modified: Fri, 15 Jul 2022 07:41:17 GMT etag: "62d11a1d-5a89" strict-transport-security: max-age=63072000 accept-ranges: bytes X-Firefox-Spdy: h2`

	new.lightfoot.top/space-robot/assets/favicon-16x16.png	116.202.184.109	200 OK	1.2 kB
URL HTTP/2 new.lightfoot.top/space-robot/assets/favicon-16x16.png IP 116.202.184.109:0 ASN #24940 Hetzner Online GmbH File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data Size 1.2 kB (1163 bytes) Hash 9d35b617fd258f648c37812252297dd3 7e32fd007f1c6fe1466d15439173082c0fbe82da e8a768f8122da75777dc64b6d35e756a1848c4f330f293920c18480df085000a HTTP Headers GET /space-robot/assets/favicon-16x16.png HTTP/1.1 Host: new.lightfoot.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://new.lightfoot.top/space-robot/?pl=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&hash=iBQ7Yq39f4-tPubYFSL70Q&exp=1678573120 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Sat, 11 Mar 2023 22:13:40 GMT content-type: image/png content-length: 1163 last-modified: Fri, 15 Jul 2022 07:41:17 GMT etag: "62d11a1d-48b" strict-transport-security: max-age=63072000 accept-ranges: bytes X-Firefox-Spdy: h2`

	js.cdnpsh.com/ps/ps.js?pl=true&id=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&click_id=&sub_id=	5.75.133.219	200 OK	15 kB
URL HTTP/2 js.cdnpsh.com/ps/ps.js?pl=true&id=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&click_id=&sub_id= IP 5.75.133.219:0 ASN #24940 Hetzner Online GmbH File type Unicode text, UTF-8 text, with very long lines (21466), with CRLF, LF line terminators Size 15 kB (15074 bytes) Hash b5f2c1adb73deff1a6af726bb57d4bd1 944ed8fd6753fd71f96babb43f5e8948f3f7e442 f534ca6334930df4a0833e16610a872d9eb0f433d6909f553b807104045cd4a2 HTTP Headers `GET /ps/ps.js?pl=true&id=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&click_id=&sub_id= HTTP/1.1 Host: js.cdnpsh.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://new.lightfoot.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 11 Mar 2023 22:13:41 GMT content-type: application/javascript vary: Accept-Encoding set-cookie: __psu=9475a352-4df8-40a4-a509-36f0f5f09df8; expires=Tue, 11 Mar 2025 22:13:41 GMT; path=/; secure; samesite=none cache-control: max-age=0, no-cache, no-store, must-revalidate content-encoding: gzip X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f1cb274086a7fc07be41dfeb65ec1dbf c6339993814eda4b9629ef179222b060d1f5143b b3fbd505775ab4d16c1a8b22e367b9d3b2698bd920d0c4578659b6c63e3d3f6f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B3FBD505775AB4D16C1A8B22E367B9D3B2698BD920D0C4578659B6C63E3D3F6F" Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6633 Expires: Sun, 12 Mar 2023 00:04:14 GMT Date: Sat, 11 Mar 2023 22:13:41 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f1cb274086a7fc07be41dfeb65ec1dbf c6339993814eda4b9629ef179222b060d1f5143b b3fbd505775ab4d16c1a8b22e367b9d3b2698bd920d0c4578659b6c63e3d3f6f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B3FBD505775AB4D16C1A8B22E367B9D3B2698BD920D0C4578659B6C63E3D3F6F" Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6633 Expires: Sun, 12 Mar 2023 00:04:14 GMT Date: Sat, 11 Mar 2023 22:13:41 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f1cb274086a7fc07be41dfeb65ec1dbf c6339993814eda4b9629ef179222b060d1f5143b b3fbd505775ab4d16c1a8b22e367b9d3b2698bd920d0c4578659b6c63e3d3f6f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B3FBD505775AB4D16C1A8B22E367B9D3B2698BD920D0C4578659B6C63E3D3F6F" Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6633 Expires: Sun, 12 Mar 2023 00:04:14 GMT Date: Sat, 11 Mar 2023 22:13:41 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f1cb274086a7fc07be41dfeb65ec1dbf c6339993814eda4b9629ef179222b060d1f5143b b3fbd505775ab4d16c1a8b22e367b9d3b2698bd920d0c4578659b6c63e3d3f6f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B3FBD505775AB4D16C1A8B22E367B9D3B2698BD920D0C4578659B6C63E3D3F6F" Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6633 Expires: Sun, 12 Mar 2023 00:04:14 GMT Date: Sat, 11 Mar 2023 22:13:41 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f1cb274086a7fc07be41dfeb65ec1dbf c6339993814eda4b9629ef179222b060d1f5143b b3fbd505775ab4d16c1a8b22e367b9d3b2698bd920d0c4578659b6c63e3d3f6f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B3FBD505775AB4D16C1A8B22E367B9D3B2698BD920D0C4578659B6C63E3D3F6F" Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6633 Expires: Sun, 12 Mar 2023 00:04:14 GMT Date: Sat, 11 Mar 2023 22:13:41 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8980abd4-3861-4dc6-92e7-2c13517ad40e.jpeg	34.120.237.76	200 OK	7.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8980abd4-3861-4dc6-92e7-2c13517ad40e.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.1 kB (7117 bytes) Hash 60c95e46b874e5404fe3d3cc03e60512 2a5c926ca9264e71c52e7a714389ffba9caa7a71 65bfa154efbb8a169f32c8b8cffd31faaacc6daf7b7e4fb2ac655b68e1a8c4e5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8980abd4-3861-4dc6-92e7-2c13517ad40e.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7117 x-amzn-requestid: 42df44a6-6963-4db2-9ab5-534c9883a559 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Bosv8ErJIAMFtfg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640cf4cc-20f83d8f7715fff50d8977a3;Sampled=0 x-amzn-remapped-date: Sat, 11 Mar 2023 21:38:20 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: UkM0v5LR5xQj0uH3b7UE6XuOq_6xo2ah3kNnFZnQEjFJF4oUXjdS8A== via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 50faaaa196a6b0875217ef7827f97d7c.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 21:42:45 GMT etag: "2a5c926ca9264e71c52e7a714389ffba9caa7a71" content-type: image/jpeg age: 1856 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.gstatic.com/firebasejs/8.4.1/firebase-messaging.js	216.58.211.3	200 OK	11 kB
URL HTTP/2 www.gstatic.com/firebasejs/8.4.1/firebase-messaging.js IP 216.58.211.3:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (40976) Size 11 kB (10908 bytes) Hash 65fc850cb32508517dcbc63b09aa7909 b6a0811a047ac43a061b326c424e57e3b125eaee cb0497203016e7af18b3989110eaca26fed09c7c2e1ae0fda9a159b6784f69d5 HTTP Headers `GET /firebasejs/8.4.1/firebase-messaging.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://new.lightfoot.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js" report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]} content-length: 10908 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 10 Mar 2023 18:19:24 GMT expires: Sat, 09 Mar 2024 18:19:24 GMT cache-control: public, max-age=31536000 age: 100457 last-modified: Tue, 13 Apr 2021 06:56:17 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfe3b026-408f-4d8a-8fbd-5c6ae59ab237.jpeg	34.120.237.76	200 OK	5.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfe3b026-408f-4d8a-8fbd-5c6ae59ab237.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.4 kB (5381 bytes) Hash ebf97627ec9fd083bf5c22de39a524b5 35866e5d26ee25485d090011a1d50ec603d6761b 0b518329364fb793881cb0ff5ef464ecc4cd90c3694dcb7cfef40d0958446a14 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfe3b026-408f-4d8a-8fbd-5c6ae59ab237.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5381 x-amzn-requestid: 6507e3ee-6ce1-46d3-89d7-409b6d7000f2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BosvnHK_IAMFdkQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640cf4ca-3d2fb61641f8b1212fc60c8c;Sampled=0 x-amzn-remapped-date: Sat, 11 Mar 2023 21:38:18 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: BOGljcKXBmUlBQDfklSuTJqcybZt876or6lsCUU34hQmw7U4quARFA== via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 1d000d0dfe9d69b4983f619fdc5499d6.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 21:42:45 GMT age: 1856 etag: "35866e5d26ee25485d090011a1d50ec603d6761b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg	34.120.237.76	200 OK	8.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.5 kB (8487 bytes) Hash be71491cee9b47dc3ffb23b4fdff25b3 79c7d22c8df6d305f46c5779ccb9f25169d4d111 e785896e5840fb901ddd0118bef3ccad6b59a96d8eef0e8ccd9c95a3c261ba45 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8487 x-amzn-requestid: 92381f1a-0140-47e9-a971-594a7de36c3c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BkEcBGizoAMFgOA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640b1ab3-1a54b65a5d7083e62dcb85ab;Sampled=0 x-amzn-remapped-date: Fri, 10 Mar 2023 11:55:31 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: Nn4eV-UeuWZ02ANOxzTUSgE4UODtaZxeIjp8UJfU8PgUny2shFaDjQ== via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 74ab105148338444981d1b2277ffd9c4.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 21:42:55 GMT age: 1846 etag: "79c7d22c8df6d305f46c5779ccb9f25169d4d111" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff438e0cd-7bba-4040-bcf1-46fa52d38284.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff438e0cd-7bba-4040-bcf1-46fa52d38284.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (12537 bytes) Hash 21dc200ee9339a761bb1be0a0ce6d530 22444439921bbfe56e95a3811cfaf7ada22d87c6 ea97677a729de68493dfd5c4a557da00529b2a034bce4a883a84d8e9c47ecb81 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff438e0cd-7bba-4040-bcf1-46fa52d38284.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12537 x-amzn-requestid: 55e6d730-dbab-4974-b45b-5ae75d0d13f4 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Bosb_F-XoAMFt3g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640cf44c-378d12fa67bc624b66caf85e;Sampled=0 x-amzn-remapped-date: Sat, 11 Mar 2023 21:36:12 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: AAzR6L5Vybw9EI91jm6KdDaHsUtwLy3uEY_zeL970jh8IPGHCD8xww== via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 219e8f088c8c2a564bdacafe44be620a.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 21:42:45 GMT etag: "22444439921bbfe56e95a3811cfaf7ada22d87c6" content-type: image/jpeg age: 1856 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c260ad4-885a-4ad8-a245-3ded21665f3f.jpeg	34.120.237.76	200 OK	6.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c260ad4-885a-4ad8-a245-3ded21665f3f.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.2 kB (6207 bytes) Hash 833fb535ad19fbd95e1537dcdca7612f 62be242982208db65057d62485650e31cc0a7cad 32c115c98dfa0679479abe6bf8cc895fc5d40136436fc7d712be913be192a95b HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c260ad4-885a-4ad8-a245-3ded21665f3f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6207 x-amzn-requestid: 92e0c283-b9de-4cae-a43e-f9d628ecf17f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Bosb-G5LIAMF_Ug= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640cf44c-4930abfe5b1a4b5d6f346c78;Sampled=0 x-amzn-remapped-date: Sat, 11 Mar 2023 21:36:12 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: 2upC-78TSSjVWzW6E5J12CiYyMe2r2yrZMgIgWYEUUI-NnmpP0mpig== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 74ab105148338444981d1b2277ffd9c4.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 21:42:45 GMT etag: "62be242982208db65057d62485650e31cc0a7cad" content-type: image/jpeg age: 1856 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0217c8c-9f5f-43b3-9d27-0f8eaac36f26.webp	34.120.237.76	200 OK	4.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0217c8c-9f5f-43b3-9d27-0f8eaac36f26.webp IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.5 kB (4512 bytes) Hash 26033b42139d27c847cf9881a17e0332 b196fbef36c2a5242abfc5d7115f1efd39499453 028dd1c86eaab6b991ad3dcb7fda21cdcfe8f9b22155c6bcb9363fbe379096ec HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa0217c8c-9f5f-43b3-9d27-0f8eaac36f26.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4512 x-amzn-requestid: e9ba0dc3-3e1a-4ff5-8d0d-57386ced2fb1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BotIeGZ-IAMFmBQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640cf569-1a45fa73148fb01f3822ee29;Sampled=0 x-amzn-remapped-date: Sat, 11 Mar 2023 21:40:57 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: 5dasHBaMZCENF6r8miupz4Jzeqy_tuotsvkcSRgs6AtsrWexauN6SQ== via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 21:42:45 GMT age: 1856 etag: "b196fbef36c2a5242abfc5d7115f1efd39499453" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	new.lightfoot.top/space-robot/?pl=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&hash=iBQ7Yq39f4-tPubYFSL70Q&exp=1678573120	116.202.184.109	304 Not Modified	0 B
URL HTTP/2 new.lightfoot.top/space-robot/?pl=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&hash=iBQ7Yq39f4-tPubYFSL70Q&exp=1678573120 IP 116.202.184.109:0 ASN #24940 Hetzner Online GmbH File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /space-robot/?pl=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&hash=iBQ7Yq39f4-tPubYFSL70Q&exp=1678573120 HTTP/1.1 Host: new.lightfoot.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site If-Modified-Since: Thu, 22 Dec 2022 09:48:27 GMT If-None-Match: W/"63a427eb-3486" TE: trailers `HTTP/2 304 Not Modified server: nginx date: Sat, 11 Mar 2023 22:13:41 GMT last-modified: Thu, 22 Dec 2022 09:48:27 GMT etag: "63a427eb-3486" strict-transport-security: max-age=63072000 X-Firefox-Spdy: h2`

	new.lightfoot.top/sw-b635d0be89d60f9619e6078e596e1d6f.js	116.202.184.109	304 Not Modified	0 B
URL HTTP/2 new.lightfoot.top/sw-b635d0be89d60f9619e6078e596e1d6f.js IP 116.202.184.109:0 ASN #24940 Hetzner Online GmbH File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /sw-b635d0be89d60f9619e6078e596e1d6f.js HTTP/1.1 Host: new.lightfoot.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Service-Worker: script Connection: keep-alive Sec-Fetch-Dest: serviceworker Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin If-Modified-Since: Thu, 17 Feb 2022 13:24:13 GMT If-None-Match: W/"620e4c7d-954" Cache-Control: max-age=0 TE: trailers` `HTTP/2 304 Not Modified server: nginx date: Sat, 11 Mar 2023 22:13:42 GMT last-modified: Thu, 17 Feb 2022 13:24:13 GMT etag: "620e4c7d-954" strict-transport-security: max-age=63072000 X-Firefox-Spdy: h2`

	rg.beneficjenci.edu.pl/dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9	172.67.218.16	200 OK	0 B
URL HTTP/2 rg.beneficjenci.edu.pl/dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9 IP 172.67.218.16:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9 HTTP/1.1 Host: rg.beneficjenci.edu.pl User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Sat, 11 Mar 2023 22:13:39 GMT content-type: text/html; charset=UTF-8 set-cookie: antibot_uid=a59f007fbf3384ccc33cc586d5d348f0; expires=Sun, 10-Mar-2024 22:13:39 GMT; Max-Age=31536000; path=/ antibot_country=NO; expires=Tue, 21-Mar-2023 22:13:39 GMT; Max-Age=864000; path=/ antibot_lang=en; expires=Tue, 21-Mar-2023 22:13:39 GMT; Max-Age=864000; path=/ antibot_ptr=s919042154.blix.com; expires=Tue, 21-Mar-2023 22:13:39 GMT; Max-Age=864000; path=/ x-robots-tag: noindex expires: Mon, 26 Jul 1997 05:00:00 GMT cache-control: no-store, no-cache, must-revalidate link: <https://antibotcloud.com/antibot7.php>; rel=dns-prefetch vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r1B2IUTFMN4uNTzZEudqpIDEFxGWG51nHN1J5w3xZmXF7FoXyESdXZzDHfXitiqmsquB8VXj6RkYG0QAGImMgpR4javqwTfRshspE76ZgZtVqbB68NDyHLvx7ISZXOw33ZDVPO%2BbV8pU"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7a6725568fb20b41-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	rg.beneficjenci.edu.pl/dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9	172.67.218.16	301 Moved Permanently	0 B
URL HTTP/2 rg.beneficjenci.edu.pl/dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9 IP 172.67.218.16:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /dz/yuzu-%EB%AC%B4%ED%95%9C%EB%A1%9C%EB%94%A9 HTTP/1.1 Host: rg.beneficjenci.edu.pl User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: antibot_uid=a59f007fbf3384ccc33cc586d5d348f0; antibot_country=NO; antibot_lang=en; antibot_ptr=s919042154.blix.com; antibot_56e699f2c1b12ac4cd40f47108c4df94=181eb0634f1c24d47a3fb093372d6d43; lastcid=1678572819.0518 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 301 Moved Permanently date: Sat, 11 Mar 2023 22:13:39 GMT content-type: text/html; charset=UTF-8 location: https://vcpkp.cloudpsh.top/?pl=Rb6RftRizUO8EtK7b3ElNQ set-cookie: antibot_hits=2; expires=Sun, 12-Mar-2023 22:13:39 GMT; Max-Age=86400; path=/ antibot_unique_20230312=1; expires=Sun, 12-Mar-2023 22:13:39 GMT; Max-Age=86400; path=/ lastcid=0; expires=Sat, 11-Mar-2023 22:11:59 GMT; Max-Age=0; path=/ expires: Tue, 21 Mar 2023 22:13:39 GMT last-modified: Sat, 11 Mar 2023 22:13:39 GMT cache-control: public, max-age=864000 vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0T%2BaUT64hRGDD01yo8dOlEA2tAwmyGxIug9MNCzP9IU4FCe7mE5UnLhFYFM4j9Dbn2TcBJwYUntN%2Bmbx%2FWEFueSgItoccS6sUR38s0PYH8PgDk6ubxAVj%2F0parIQb39xZJIkkTIq20Cv"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7a67255b5f661c06-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	js.pushssp.top/ps/pl.js	5.75.133.219	200 OK	0 B
URL HTTP/2 js.pushssp.top/ps/pl.js IP 5.75.133.219:0 ASN #24940 Hetzner Online GmbH File type Size 0 B (0 bytes) Hash HTTP Headers `GET /ps/pl.js HTTP/1.1 Host: js.pushssp.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://new.lightfoot.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx date: Sat, 11 Mar 2023 22:13:40 GMT content-type: application/javascript vary: Accept-Encoding cache-control: max-age=0, no-cache, no-store, must-revalidate content-encoding: gzip X-Firefox-Spdy: h2`

	new.lightfoot.top/space-robot/assets/style.css	116.202.184.109	200 OK	0 B
URL HTTP/2 new.lightfoot.top/space-robot/assets/style.css IP 116.202.184.109:0 ASN #24940 Hetzner Online GmbH File type Size 0 B (0 bytes) Hash HTTP Headers GET /space-robot/assets/style.css HTTP/1.1 Host: new.lightfoot.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://new.lightfoot.top/space-robot/?pl=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&hash=iBQ7Yq39f4-tPubYFSL70Q&exp=1678573120 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Sat, 11 Mar 2023 22:13:40 GMT content-type: text/css last-modified: Fri, 15 Jul 2022 07:41:17 GMT vary: Accept-Encoding etag: W/"62d11a1d-251e" strict-transport-security: max-age=63072000 content-encoding: gzip X-Firefox-Spdy: h2`

	new.lightfoot.top/sw-b635d0be89d60f9619e6078e596e1d6f.js	116.202.184.109	200 OK	0 B
URL HTTP/2 new.lightfoot.top/sw-b635d0be89d60f9619e6078e596e1d6f.js IP 116.202.184.109:0 ASN #24940 Hetzner Online GmbH File type Size 0 B (0 bytes) Hash HTTP Headers `GET /sw-b635d0be89d60f9619e6078e596e1d6f.js HTTP/1.1 Host: new.lightfoot.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Service-Worker: script Connection: keep-alive Sec-Fetch-Dest: serviceworker Sec-Fetch-Mode: same-origin Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx date: Sat, 11 Mar 2023 22:13:41 GMT content-type: application/javascript last-modified: Thu, 17 Feb 2022 13:24:13 GMT vary: Accept-Encoding etag: W/"620e4c7d-954" strict-transport-security: max-age=63072000 content-encoding: gzip X-Firefox-Spdy: h2`

	js.pushssp.top/ps/pl.js	5.75.133.219	200 OK	0 B
URL HTTP/2 js.pushssp.top/ps/pl.js IP 5.75.133.219:0 ASN #24940 Hetzner Online GmbH File type Size 0 B (0 bytes) Hash HTTP Headers `GET /ps/pl.js HTTP/1.1 Host: js.pushssp.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://new.lightfoot.top/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Sat, 11 Mar 2023 22:13:41 GMT content-type: application/javascript vary: Accept-Encoding cache-control: max-age=0, no-cache, no-store, must-revalidate content-encoding: gzip X-Firefox-Spdy: h2`

	antibotcloud.com/antibot7.php	188.114.97.1	200 OK	0 B
URL HTTP/2 antibotcloud.com/antibot7.php IP 188.114.97.1:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `POST /antibot7.php HTTP/1.1 Host: antibotcloud.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded; Content-Length: 306 Origin: https://rg.beneficjenci.edu.pl Connection: keep-alive Referer: https://rg.beneficjenci.edu.pl/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sat, 11 Mar 2023 22:13:39 GMT content-type: text/html; charset=UTF-8 expires: Mon, 26 Jul 1997 05:00:00 GMT cache-control: no-store, no-cache, must-revalidate vary: Accept-Encoding access-control-allow-methods: POST access-control-allow-origin: * access-control-allow-headers: * cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ji2cAq7GtQODdGuFDByJkwwL5a4ph5AXlgd1c0dV90PRP9Z5hCVR1T0LfZBQl5jxcjZbUWcCQ0mkIvJpVQtlEki5XF96sfyI4RauTa9b4DP2BkI%2FMDEqBl2FDNfhFsYxN6G2"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7a6725598e081c12-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	new.lightfoot.top/shared-js/assets/fnr.js	116.202.184.109	200 OK	0 B
URL HTTP/2 new.lightfoot.top/shared-js/assets/fnr.js IP 116.202.184.109:0 ASN #24940 Hetzner Online GmbH File type Size 0 B (0 bytes) Hash HTTP Headers GET /shared-js/assets/fnr.js HTTP/1.1 Host: new.lightfoot.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://new.lightfoot.top/space-robot/?pl=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&hash=iBQ7Yq39f4-tPubYFSL70Q&exp=1678573120 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Sat, 11 Mar 2023 22:13:40 GMT content-type: application/javascript last-modified: Fri, 15 Jul 2022 07:41:17 GMT vary: Accept-Encoding etag: W/"62d11a1d-165c" strict-transport-security: max-age=63072000 content-encoding: gzip X-Firefox-Spdy: h2`

	new.lightfoot.top/space-robot/assets/main.js	116.202.184.109	200 OK	0 B
URL HTTP/2 new.lightfoot.top/space-robot/assets/main.js IP 116.202.184.109:0 ASN #24940 Hetzner Online GmbH File type Size 0 B (0 bytes) Hash HTTP Headers GET /space-robot/assets/main.js HTTP/1.1 Host: new.lightfoot.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://new.lightfoot.top/space-robot/?pl=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&hash=iBQ7Yq39f4-tPubYFSL70Q&exp=1678573120 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx date: Sat, 11 Mar 2023 22:13:40 GMT content-type: application/javascript last-modified: Fri, 15 Jul 2022 07:41:17 GMT vary: Accept-Encoding etag: W/"62d11a1d-702" strict-transport-security: max-age=63072000 content-encoding: gzip X-Firefox-Spdy: h2`

	js.cdnpsh.com/ps/ps.js?pl=true&id=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&click_id=&sub_id=	5.75.133.219	200 OK	0 B
URL HTTP/2 js.cdnpsh.com/ps/ps.js?pl=true&id=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&click_id=&sub_id= IP 5.75.133.219:0 ASN #24940 Hetzner Online GmbH File type Size 0 B (0 bytes) Hash HTTP Headers `GET /ps/ps.js?pl=true&id=Rb6RftRizUO8EtK7b3ElNQ&sm=space-robot&click_id=&sub_id= HTTP/1.1 Host: js.cdnpsh.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://new.lightfoot.top/ Cookie: __psu=9475a352-4df8-40a4-a509-36f0f5f09df8 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK server: nginx date: Sat, 11 Mar 2023 22:13:41 GMT content-type: application/javascript vary: Accept-Encoding cache-control: max-age=0, no-cache, no-store, must-revalidate content-encoding: gzip X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML