rguga.ro/
81.181.253.254301 Moved Permanently 707 B IP 81.181.253.254:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 02 Dec 2022 09:01:41 GMT
server: LiteSpeed
location: http://www.rguga.ro/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17416
Expires: Fri, 02 Dec 2022 13:51:58 GMT
Date: Fri, 02 Dec 2022 09:01:42 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4779
Cache-Control: max-age=96549
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 09:01:42 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 11:50:51 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3193
Expires: Fri, 02 Dec 2022 09:54:55 GMT
Date: Fri, 02 Dec 2022 09:01:42 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 08:19:54 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2508
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +vfdhDeiwrdz9OsSjtejUoWQZM4Or2bxUhT8iV/vpXUOeVPdUgdXH8wAQ7YZX1fgrOGRRZUVA8H2jMyYSwtDGA==
x-amz-request-id: G9TPNSYFXFVRH5J8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 08:46:38 GMT
age: 904
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 09:01:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 08:08:57 GMT
cache-control: public,max-age=3600
age: 3165
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4777
Cache-Control: max-age=91484
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 09:01:42 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:26:26 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
www.rguga.ro/
81.181.253.254200 OK 7.1 kB IP 81.181.253.254:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1327), with CRLF, LF line terminators
Hash a25a8d1e6e9a9609bae71d19de948f8e
eab56280bf2cd230e87b737a70b69b2582b76f30
254eb91a993cb3cc65687de660247bf2699a7bde74756bb965ac670ba3d8e2ac
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/5.3.29
set-cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html
content-length: 7097
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 02 Dec 2022 09:01:42 GMT
server: LiteSpeed
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700
142.250.74.106200 OK 726 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:300,400,600,700
IP 142.250.74.106:0
Hash f695a50aad9a7f635d32fb725051cdf9
0528fac2131b6367b6ffde48dd421a0ea945c504
8deb5e5efaca71e5ef829c4fa214913332aba71be8d68fa2c291789f92c9ea18
GET /css?family=Open+Sans:300,400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 02 Dec 2022 09:01:43 GMT
Date: Fri, 02 Dec 2022 09:01:43 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
push.services.mozilla.com/
54.70.68.230101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.70.68.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MikHRki8VYauGTE/tjvQxA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mk6gSLU5pSX9gFXAXPFXaAR9BVk=
www.rguga.ro/assets/plugins/bootstrap/css/bootstrap.min.css
81.181.253.254200 OK 20 kB URL HTTP/1.1 www.rguga.ro/assets/plugins/bootstrap/css/bootstrap.min.css
IP 81.181.253.254:0
File type ASCII text, with very long lines (65371)
Hash 572faaf4a4e3d7cdb0812939c3dcd68b
251156396b9886492b1a57d47fb2ae26652ab79e
65cfe7aa5c2a749e4a0c6d8a6dbc950a78f6cf73ff55a980c608e63c5bd726fe
GET /assets/plugins/bootstrap/css/bootstrap.min.css HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: text/css
last-modified: Tue, 07 Feb 2017 12:43:26 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 19714
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/plugins/flexslider/flexslider.css
81.181.253.254200 OK 1.4 kB URL HTTP/1.1 www.rguga.ro/assets/plugins/flexslider/flexslider.css
IP 81.181.253.254:0
File type ASCII text, with very long lines (366)
Hash 3b4e9f695009885a13f824f45edc22c4
4cf2d1fd4bd49ec40c698d3d369b6842cf88ad93
97268f806833ad8864589627c088013d9dfcb0d09126c3f4397f253ea9a257cd
GET /assets/plugins/flexslider/flexslider.css HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: text/css
last-modified: Tue, 07 Feb 2017 12:43:41 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1380
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/plugins/font-awesome/css/font-awesome.css
81.181.253.254200 OK 7.0 kB URL HTTP/1.1 www.rguga.ro/assets/plugins/font-awesome/css/font-awesome.css
IP 81.181.253.254:0
File type troff or preprocessor input, ASCII text, with very long lines (372)
Hash 7bfb935528edd387fda0e073eb4e6df7
352d61d10b8269d6ee82b0038961869ba665ad80
a8d9ce30db7eb80438b5a8096fbc5ce1aef1138f0d9deacab6638782449711f2
GET /assets/plugins/font-awesome/css/font-awesome.css HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: text/css
last-modified: Tue, 07 Feb 2017 12:43:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6980
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/plugins/pretty-photo/css/prettyPhoto.css
81.181.253.254404 Not Found 1.2 kB URL HTTP/1.1 www.rguga.ro/assets/plugins/pretty-photo/css/prettyPhoto.css
IP 81.181.253.254:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /assets/plugins/pretty-photo/css/prettyPhoto.css HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/css/styles.css
81.181.253.254200 OK 6.7 kB URL HTTP/1.1 www.rguga.ro/assets/css/styles.css
IP 81.181.253.254:0
File type assembler source, ASCII text
Hash 0bce2139a452dfefddbc5e5e84be7128
487d576c5dfb25bc68d2dcae35747637efe42071
ebc48997b690cd3e36c9de7c88d51b6165b10d0df70a0e7aa007cabbe7f1dd13
GET /assets/css/styles.css HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: text/css
last-modified: Fri, 03 Mar 2017 07:19:22 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 6737
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/plugins/bootstrap/js/bootstrap.min.js
81.181.253.254200 OK 9.9 kB URL HTTP/1.1 www.rguga.ro/assets/plugins/bootstrap/js/bootstrap.min.js
IP 81.181.253.254:0
File type ASCII text, with very long lines (32033)
Hash e66d1cadef9709b7e1177fa2bad57689
803a0026f5687b488fd80e99268a8ec6aebbd487
7ee290583814a684905461e9338a94be5b0ef39de9cf4cddd995e5d3b3805fc9
Analyzer Verdict Alert fortinet Phishing
GET /assets/plugins/bootstrap/js/bootstrap.min.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:43:40 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 9860
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/plugins/back-to-top.js
81.181.253.254200 OK 1.6 kB URL HTTP/1.1 www.rguga.ro/assets/plugins/back-to-top.js
IP 81.181.253.254:0
File type ASCII text, with CRLF line terminators
Hash 2a7614d16dc483bf6b3ba64e1ce43cbf
dce9599862ae69e3cacc3e95bb833264e0ac433a
6ffeb4be19e76180dce70333919d0c8f17ed88c830fa98886bf498aab1117ef8
Analyzer Verdict Alert fortinet Phishing
GET /assets/plugins/back-to-top.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:43:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1619
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/plugins/bootstrap-hover-dropdown.min.js
81.181.253.254200 OK 729 B URL HTTP/1.1 www.rguga.ro/assets/plugins/bootstrap-hover-dropdown.min.js
IP 81.181.253.254:0
File type ASCII text, with very long lines (1101)
Hash 111e2484ac73c6328952edef7217fa9a
32676e6524c1e068ef448bbf67cede7cdad92c8e
648f7690f7a7f99b4c136bbc209bf8f280a01a9dbdb0248eca38893263a22719
Analyzer Verdict Alert fortinet Phishing
GET /assets/plugins/bootstrap-hover-dropdown.min.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:43:11 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 729
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/plugins/jquery-placeholder/jquery.placeholder.js
81.181.253.254200 OK 1.6 kB URL HTTP/1.1 www.rguga.ro/assets/plugins/jquery-placeholder/jquery.placeholder.js
IP 81.181.253.254:0
Hash 58d39f7e8e082a7b1b4e508cd9719d31
c555f036ad1137d14d0c5013d46a5582681122a2
25484d193e628c45bfc50323de7f20253414d9f5e7306a125ffca29a13590133
Analyzer Verdict Alert fortinet Phishing
GET /assets/plugins/jquery-placeholder/jquery.placeholder.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:44:17 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1597
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/plugins/jquery-1.12.3.min.js
81.181.253.254200 OK 34 kB URL HTTP/1.1 www.rguga.ro/assets/plugins/jquery-1.12.3.min.js
IP 81.181.253.254:0
File type ASCII text, with very long lines (32029)
Hash 8240ec820384f15e0edc57eb59992e40
af79b9bac5562cd44f05e75490d1d950b142444e
7dc48c879e82028c8698f4d00a529fb62a1f455e735ab593d73c3ab258d6c171
Analyzer Verdict Alert fortinet Phishing
GET /assets/plugins/jquery-1.12.3.min.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:43:12 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 33877
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/plugins/pretty-photo/js/jquery.prettyPhoto.js
81.181.253.254404 Not Found 1.2 kB URL HTTP/1.1 www.rguga.ro/assets/plugins/pretty-photo/js/jquery.prettyPhoto.js
IP 81.181.253.254:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer Verdict Alert fortinet Phishing
GET /assets/plugins/pretty-photo/js/jquery.prettyPhoto.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
142.250.74.35200 OK 31 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 31320, version 1.0\012- data
Hash 3fe71527811fbfedd2c07962e1bc49e7
f63e158a0480c5d711b5e268db0e75e57d87a8a5
24c0e724005344165ee0a0ff4c96a914e174bb4caa20c8a533fb194d92853e95
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.rguga.ro
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 31320
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 16:50:22 GMT
Expires: Fri, 01 Dec 2023 16:50:22 GMT
Cache-Control: public, max-age=31536000
Age: 58281
Last-Modified: Mon, 15 Aug 2022 18:11:37 GMT
Content-Type: font/woff2
www.rguga.ro/assets/plugins/flexslider/jquery.flexslider-min.js
81.181.253.254200 OK 5.2 kB URL HTTP/1.1 www.rguga.ro/assets/plugins/flexslider/jquery.flexslider-min.js
IP 81.181.253.254:0
File type ASCII text, with very long lines (528)
Hash 0c55b14441e5ca9afe3620587eec6c2a
be2909d02af6087637ccc5dc6e1e6d25694ff89b
49f1fc11f4e07df9cefd1e0164d6079e362c26e5efa004d40ef8b65794c17aca
Analyzer Verdict Alert fortinet Phishing
GET /assets/plugins/flexslider/jquery.flexslider-min.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:43:42 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5191
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/js/main.js
81.181.253.254200 OK 1.0 kB URL HTTP/1.1 www.rguga.ro/assets/js/main.js
IP 81.181.253.254:0
Hash 71a2a7f2430d781df1132add1700fc2e
e3395868dcfda7bc7d95ab2cd940511248def787
8a40925bb95fc77469121a4c0e5222ddcd0fc7dc4b5943e22b9beb2b01347380
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/main.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:43:10 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1014
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/plugins/jflickrfeed/jflickrfeed.min.js
81.181.253.254200 OK 822 B URL HTTP/1.1 www.rguga.ro/assets/plugins/jflickrfeed/jflickrfeed.min.js
IP 81.181.253.254:0
File type ASCII text, with very long lines (425), with CRLF line terminators
Hash 044b754fed189433316ae5be3fcc9a75
66b5110820d01426b9d45cbe65fa67487ceefb3c
04b0be3cdb66f5d3a7b8fe844611cc26961103a4b5696f8c226b4ef5cff7e510
Analyzer Verdict Alert fortinet Phishing
GET /assets/plugins/jflickrfeed/jflickrfeed.min.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: application/javascript
last-modified: Tue, 07 Feb 2017 12:44:12 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 822
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/images/logo.png
81.181.253.254200 OK 4.7 kB URL HTTP/1.1 www.rguga.ro/assets/images/logo.png
IP 81.181.253.254:0
File type PNG image data, 223 x 62, 8-bit/color RGBA, non-interlaced\012- data
Hash e2bbd3c0ab86f7f545aaca16d230287d
d996080417f7d218bcff71db875fad3560acd847
555d664c88d8a09fe7d4389ce9fedf2f363cd0e10646583c132d637485e0bca6
GET /assets/images/logo.png HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/png
last-modified: Fri, 24 Feb 2017 08:17:19 GMT
accept-ranges: bytes
content-length: 4654
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/pictures/small/stiri0.84216000%201655979205.jpg
81.181.253.254200 OK 7.4 kB URL HTTP/1.1 www.rguga.ro/pictures/small/stiri0.84216000%201655979205.jpg
IP 81.181.253.254:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 100x50, components 3\012- data
Hash 3cf8b536f71c0ff314136632067db824
430d90f5d96fa64f7e30164518a14033f3f44e07
4a3dd40a0f6371b34a2fd3ba533abb7ed2a4bf125308e317b929f46d050348ac
GET /pictures/small/stiri0.84216000%201655979205.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Thu, 23 Jun 2022 10:13:25 GMT
accept-ranges: bytes
content-length: 7400
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/pictures/small/stiri0.71860800%201654579014.jfif
81.181.253.254200 OK 15 kB URL HTTP/1.1 www.rguga.ro/pictures/small/stiri0.71860800%201654579014.jfif
IP 81.181.253.254:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 100x133, components 3\012- data
Hash 9a388e398d64f09d48212b17a62a02d8
953049def639c6de54331b4c07488f85ea81ddd7
c0b744bae341dadb24cc7fd67e46e866f3e11a37bb9601887b76e0457984f2e8
Analyzer Verdict Alert fortinet Phishing
GET /pictures/small/stiri0.71860800%201654579014.jfif HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: application/octet-stream
last-modified: Tue, 07 Jun 2022 05:16:55 GMT
accept-ranges: bytes
content-length: 15024
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/pictures/small/stiri0.15287900%201635861326.jpg
81.181.253.254200 OK 5.9 kB URL HTTP/1.1 www.rguga.ro/pictures/small/stiri0.15287900%201635861326.jpg
IP 81.181.253.254:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 100x79, components 3\012- data
Hash 47bb501c685c215cd9f6ff7f4892e407
574275bd5e65d935499d77515962e7a5e4c5107a
0dc59bf3d83033c25b543c3f04c2c6cc096fab68df8a09a533cce0985370b059
GET /pictures/small/stiri0.15287900%201635861326.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Tue, 02 Nov 2021 13:55:26 GMT
accept-ranges: bytes
content-length: 5932
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/images/awards/award1.jpg
81.181.253.254200 OK 14 kB URL HTTP/1.1 www.rguga.ro/assets/images/awards/award1.jpg
IP 81.181.253.254:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 548d0673d8ed89e2b1b9d86bfe45ab3b
0dc4baf138d780c0858f304a94fe49bd4e89bf64
b4fae9947217e6bbf6866a0d02adeb561825ee05efd85eec5ce46e7617154210
GET /assets/images/awards/award1.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Fri, 24 Feb 2017 08:39:31 GMT
accept-ranges: bytes
content-length: 13782
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/images/awards/award2.jpg
81.181.253.254200 OK 8.0 kB URL HTTP/1.1 www.rguga.ro/assets/images/awards/award2.jpg
IP 81.181.253.254:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 7febeaa63cb9c350b2fa338fdb6f5932
8c1a7152b394ae0321d4b2d5f5dc62c002f3ebf9
b36af7a15493c643893c5c1eefc2672cd1cd3e299b2eede6124a07814a4c602d
GET /assets/images/awards/award2.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Fri, 24 Feb 2017 08:42:39 GMT
accept-ranges: bytes
content-length: 7967
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3
81.181.253.254200 OK 72 kB URL HTTP/1.1 www.rguga.ro/assets/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3
IP 81.181.253.254:0
File type Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data
Hash e6cf7c6ec7c2d6f670ae9d762604cb0b
97e438cc545714309882fbceadbf344fcaddcec5
7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
Analyzer Verdict Alert fortinet Phishing
GET /assets/plugins/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.rguga.ro/assets/plugins/font-awesome/css/font-awesome.css
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: font/woff2
last-modified: Tue, 07 Feb 2017 12:43:59 GMT
accept-ranges: bytes
content-length: 71896
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/plugins/pretty-photo/js/jquery.prettyPhoto.js
81.181.253.254404 Not Found 1.2 kB URL HTTP/1.1 www.rguga.ro/assets/plugins/pretty-photo/js/jquery.prettyPhoto.js
IP 81.181.253.254:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
Analyzer Verdict Alert fortinet Phishing
GET /assets/plugins/pretty-photo/js/jquery.prettyPhoto.js HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/prof_logo.png
81.181.253.254200 OK 29 kB URL HTTP/1.1 www.rguga.ro/assets/prof_logo.png
IP 81.181.253.254:0
File type PNG image data, 250 x 210, 8-bit/color RGBA, non-interlaced\012- data
Hash f0b1894f7e7a0c5fb126ee1e13b5ffba
beac70084bee5efd8d04c4199c2ef3bf4c528bad
e33d09cd00b183051e059770ac24414e9e701b05d540f5f88a4456807215573b
GET /assets/prof_logo.png HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/png
last-modified: Thu, 17 Feb 2022 07:04:09 GMT
accept-ranges: bytes
content-length: 29291
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/images/awards/award3.jpg
81.181.253.254200 OK 6.5 kB URL HTTP/1.1 www.rguga.ro/assets/images/awards/award3.jpg
IP 81.181.253.254:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 8768e027f45605b88934085d5c06834d
a0b113ff9de46fd7f76bc15a07e8b27441393886
c50695dc1a3f3d9b27fb4de7647b94dcf498d89da2d217d45030ba57aad46369
GET /assets/images/awards/award3.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Fri, 24 Feb 2017 08:52:24 GMT
accept-ranges: bytes
content-length: 6506
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/images/awards/award4.jpg
81.181.253.254200 OK 5.1 kB URL HTTP/1.1 www.rguga.ro/assets/images/awards/award4.jpg
IP 81.181.253.254:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash fe9188a0d5915e4dbde155ef658d5407
60a39b7380c44b6fa3d28360ba76cd2480448115
f9ba2f83c078969f70547a2e123c6974223171560718c880c3859ce707ed1e19
GET /assets/images/awards/award4.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Fri, 24 Feb 2017 08:53:35 GMT
accept-ranges: bytes
content-length: 5067
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/images/awards/award5.jpg
81.181.253.254200 OK 10 kB URL HTTP/1.1 www.rguga.ro/assets/images/awards/award5.jpg
IP 81.181.253.254:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash 1245c2deb528711e310b04356981be08
40f3548e5a87e3d33a69f0bff749443b487957bd
a79b0eac9f98ff3dc9b49e027cfc288551230d5747c7c03b650079e41f1b46ac
GET /assets/images/awards/award5.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Fri, 24 Feb 2017 08:57:35 GMT
accept-ranges: bytes
content-length: 10438
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/images/awards/award6.jpg
81.181.253.254200 OK 9.8 kB URL HTTP/1.1 www.rguga.ro/assets/images/awards/award6.jpg
IP 81.181.253.254:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 100x100, components 3\012- data
Hash c43050f0e2e4b78acb236ad6de47da06
a5a2084b94ae85f9c3e6db446fa73c28398a89d0
c5d68fc82f48333199903f67a9139f0331f3bcf3257f48c9d3a64e125052895e
GET /assets/images/awards/award6.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Fri, 24 Feb 2017 09:05:10 GMT
accept-ranges: bytes
content-length: 9848
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/plugins/flexslider/images/bg_direction_nav.png
81.181.253.254200 OK 2.0 kB URL HTTP/1.1 www.rguga.ro/assets/plugins/flexslider/images/bg_direction_nav.png
IP 81.181.253.254:0
File type PNG image data, 55 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 51e3dc355952c2c002937c1ce8415f74
087462436918fbac870c96bd96b91a3b1886eed6
cb90c6888a5fa58b1ba6e28edabec91b7a299e9817bbdda5e5ac89874b8ad1b9
GET /assets/plugins/flexslider/images/bg_direction_nav.png HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/assets/plugins/flexslider/flexslider.css
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/png
last-modified: Tue, 07 Feb 2017 12:43:44 GMT
accept-ranges: bytes
content-length: 1995
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/images/slides/slide-2.jpg
81.181.253.254200 OK 383 kB URL HTTP/1.1 www.rguga.ro/assets/images/slides/slide-2.jpg
IP 81.181.253.254:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1140x350, components 3\012- data
Size 383 kB (382577 bytes)
Hash 3e6f0956289d040891a0092251c95b0c
51098e5413ddaed66e16bc99c82699f8d5db5243
08860ed2dbe6ed0b0aabbfb83559e7c184d3215ccefabc1c1be5c6c21c41acc0
GET /assets/images/slides/slide-2.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Mon, 20 Feb 2017 11:07:49 GMT
accept-ranges: bytes
content-length: 382577
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/images/slides/slide-1.jpg
81.181.253.254200 OK 338 kB URL HTTP/1.1 www.rguga.ro/assets/images/slides/slide-1.jpg
IP 81.181.253.254:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1140x350, components 3\012- data
Size 338 kB (337829 bytes)
Hash 03c58a1c1771a2f6c6977f378c478dd9
147e3625c8506f3b5dc82c7305931a9df47c4105
c19b649f47465ce5120b00889d7f3fa4a8ba85530ebf38cd797dccc27f11e158
GET /assets/images/slides/slide-1.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Mon, 20 Feb 2017 12:07:12 GMT
accept-ranges: bytes
content-length: 337829
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/images/slides/slide-4.jpg
81.181.253.254200 OK 436 kB URL HTTP/1.1 www.rguga.ro/assets/images/slides/slide-4.jpg
IP 81.181.253.254:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1140x350, components 3\012- data
Size 436 kB (436213 bytes)
Hash b7a1620e69288ddb19524d5a83eff3d1
d9ced4af7cff6f5979424770ec57c4cf0bb3690e
9207891be7b3f400440a33f9f7d70139754a7dfd0c7c00769d475964c974c0f5
GET /assets/images/slides/slide-4.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Wed, 01 Mar 2017 16:10:36 GMT
accept-ranges: bytes
content-length: 436213
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/assets/images/slides/slide-3.jpg
81.181.253.254200 OK 434 kB URL HTTP/1.1 www.rguga.ro/assets/images/slides/slide-3.jpg
IP 81.181.253.254:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1140x350, components 3\012- data
Size 434 kB (434396 bytes)
Hash 835edf44f268ab4f96b73418130f4802
fababdab1c52eef03580ee82df06886d4cf83981
d10aa0ce80e0246c76ce9a8d93d96a24b00c2394b31c9f2bf88942daecfd599d
GET /assets/images/slides/slide-3.jpg HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Fri, 09 Dec 2022 09:01:43 GMT
content-type: image/jpeg
last-modified: Mon, 20 Feb 2017 11:14:55 GMT
accept-ranges: bytes
content-length: 434396
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
www.rguga.ro/favicon.ico
81.181.253.254404 Not Found 1.2 kB IP 81.181.253.254:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 0bde7d4b3da67537eaf9188e6f8049cf
64300fc482d01d38b40ab20e15960b6509665e5a
5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /favicon.ico HTTP/1.1
Host: www.rguga.ro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.rguga.ro/
Cookie: catalog=o3k8l24a81q0sdmcpib9t5ijt4
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Fri, 02 Dec 2022 09:01:43 GMT
server: LiteSpeed
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15880
Expires: Fri, 02 Dec 2022 13:26:24 GMT
Date: Fri, 02 Dec 2022 09:01:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15880
Expires: Fri, 02 Dec 2022 13:26:24 GMT
Date: Fri, 02 Dec 2022 09:01:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15880
Expires: Fri, 02 Dec 2022 13:26:24 GMT
Date: Fri, 02 Dec 2022 09:01:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15880
Expires: Fri, 02 Dec 2022 13:26:24 GMT
Date: Fri, 02 Dec 2022 09:01:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:49:56 GMT
age: 40308
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 82ea44d6cb116fb1f5752ce9bb87e345
f799dfd89a4f5a452dc837b8616549f578fb4184
e9087e7fce332289d67d4d5646d0233c2f2d871cc88dc1c51d5ea1e9f2fb5abd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15495
x-amzn-requestid: 977cdbce-3a9c-4006-a5a1-5c4c82bd4a94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfHDIFxzIAMFzEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891ee0-4b2cb3a16ca745537a8caf8c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KnOx0PJ8BR9OoAzXfuWk_Je_yawqzY4isC0hYTZRvJ74YiVs8jqyIQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:25:42 GMT
age: 38162
etag: "f799dfd89a4f5a452dc837b8616549f578fb4184"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 06:00:48 GMT
age: 10856
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c7113338bc3310b13d23ca415c177e2
2cb4edc6b161c6d2d5b47aa498ae54e677966466
3a83adce869dd7eb064c583bf7ff93c57fabd7ea2da872f7d1f7d868b8a492e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10270
x-amzn-requestid: ac2d2825-2ec4-435e-9921-3ea6524df1dc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfG1nEvYoAMFliA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e8a-4419423112b5723e3dba46ea;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2ihxuuXiECC4oX11t_vswhnLF0UpqDuboPLkrhpWwp-vfCR5pxGGxw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:53:50 GMT
age: 40074
etag: "2cb4edc6b161c6d2d5b47aa498ae54e677966466"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 498ab4412ed5cf977bc23e4e870894b0
23753fe8af09ec8ffa10eed4d201a71833885c99
036042656f15e42b4d1537c45f5b8e7190c70305fa9a69c1287c6739ad0b7122
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7334
x-amzn-requestid: a6b8b420-8394-496b-8be8-26dee52e3887
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoHJOoAMF75g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0b38d07f518c8b3134457df2;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tuKmV_nb4HVbqkhtCnZY3b33VB-bB6UxaBl6HsY_JgWesbUB8SPt-g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:09:38 GMT
age: 39126
etag: "23753fe8af09ec8ffa10eed4d201a71833885c99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d147ccb10bda82b153a596c3c967cd6a
ffd0763f997e71a8c1458523fc17cafe8849dfdf
1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 40373
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f0fc684e61682c4078a82ee3d901ae52
ea65ad98933ec58afa3fa5c7642491d77db7e6c2
5e953012dba2b85cfda5befe2448ab87fbc2432a071e11a33b44be4f5148a4a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1250c1e7-37f4-4697-8233-d05f398cb066.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6752
x-amzn-requestid: f398ce98-353e-4783-aa42-dbf1ad036ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepE6roAMF4zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0753d209291e197e7c6422a6;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yQ2Oc2viJ7EoRW4QSMG30tsGK73zxYQsXKKcWP3vleI0CTBVRfB1Fg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:31:16 GMT
age: 37835
etag: "ea65ad98933ec58afa3fa5c7642491d77db7e6c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2