Overview

URLobroslak.paulini.pl
IP212.87.252.49
ASNUnknown
Location Poland
Report completed2017-01-12 11:08:28 CET
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Levelpublic


Intrusion Detection Systems

Snort /w Sourcefire VRT No alerts detected
Suricata /w Emerging Threats Pro No alerts detected


Blacklists

Fortinet's Web Filter / fortiguard.com
Added / Verified Severity Host Comment
2017-01-122obroslak.paulini.pl/Malware
2017-01-122wp.newcairn.com/fkcntv9p.php?id=11906509Malware
2017-01-122wp.newcairn.com/fkcntv9p.php?id=11906512Malware
2017-01-122wp.newcairn.com/fkcntv9p.php?id=11906507Malware
2017-01-122wp.newcairn.com/fkcntv9p.php?id=11906509Malware
2017-01-122wp.newcairn.com/fkcntv9p.php?id=11906512Malware
MDL / malwaredomainlist.com No alerts detected
DNS-BH / malwaredomains.com No alerts detected
mnemonic secure DNS / mnemonic.no
Added / Verified Severity Host Comment
2017-01-122wp.newcairn.comBlacklisted
2017-01-122wp.newcairn.comBlacklisted
2017-01-122wp.newcairn.comBlacklisted
2017-01-122wp.newcairn.comBlacklisted
2017-01-122wp.newcairn.comBlacklisted
OpenPhish / openphish.com No alerts detected
PhishTank / phishtank.com No alerts detected
Spamhaus DBL / spamhaus.org No alerts detected


Files Captured



Recent reports on same IP/ASN/Domain

Last 6 reports on IP: 212.87.252.49

Date UQ / IDS / BL URL IP
2017-01-20 21:23:350 - 0 - 1obroslak.paulini.pl/drzewo/obroslakpozn2015.htm212.87.252.49
2016-12-22 22:53:120 - 0 - 0wroclaw.paulini.pl/212.87.252.49
2016-12-22 22:53:090 - 0 - 1wroclaw.paulini.pl/js/jquery.min.php212.87.252.49
2016-12-09 19:55:110 - 0 - 5obroslak.paulini.pl212.87.252.49
2016-12-09 19:40:540 - 0 - 1obroslak.paulini.pl/js/jquery.min.php212.87.252.49
2016-12-05 17:11:230 - 0 - 1wroclaw.paulini.pl/ovsgbgq.php212.87.252.49

Last 6 reports on ASN: Unknown

Date UQ / IDS / BL URL IP
2017-01-22 23:12:470 - 0 - 25criminallawfirm.mobi/Lesley/estateportfolio/adobes/9f9c3cde4b9494be39e1b622543e4d7f/index2.htm107.154.105.196
2017-01-22 23:11:220 - 0 - 1lamaisondeloiselier.com/adobe/adobe.htm185.140.47.101
2017-01-22 23:09:390 - 0 - 0www.netimpact.orghttps:///sites/default/files/webform/TV-Live-show-Packers-v-s-Falcons-st-r.ea- (...)161.47.5.177
2017-01-22 23:09:170 - 0 - 0www.netimpact.orghttps:///sites/default/files/webform/TV-Live-show-Packers-v-s-Falcons-st-r.ea- (...)161.47.5.177
2017-01-22 23:08:130 - 0 - 4load2.sharebox1.ru/194.58.56.214
2017-01-22 23:07:450 - 0 - 2etsselat-ae-vrfffy-accct-blls-chaeck-up-777-ayez.co.nf/185.176.43.54

Last 3 reports on domain: obroslak.paulini.pl

Date UQ / IDS / BL URL IP
2017-01-20 21:23:350 - 0 - 1obroslak.paulini.pl/drzewo/obroslakpozn2015.htm212.87.252.49
2016-12-09 19:55:110 - 0 - 5obroslak.paulini.pl212.87.252.49
2016-12-09 19:40:540 - 0 - 1obroslak.paulini.pl/js/jquery.min.php212.87.252.49



JavaScript

Executed Scripts (8)


Executed Evals (3)

#1 JavaScript::Eval (size: 413, repeated: 1)

if (typeof ActiveXObject != "undefined") {
    try {
        fo = new ActiveXObject("ShockwaveFlash.ShockwaveFlash.7");
    } catch (e) {
        try {
            fo = new ActiveXObject("ShockwaveFlash.ShockwaveFlash.6");
            fv = "X";
            fo.AllowScriptAccess = "always";
        } catch (e) {
            if (fv == "X") {
                fv = "WIN 6,0,20,0";
            }
        }
        try {
            fo = new ActiveXObject("ShockwaveFlash.ShockwaveFlash");
        } catch (e) {}
    }
    if ((fv == "-" || fv == "X") && fo) {
        fv = fo.GetVariable("$version");
    }
}

#2 JavaScript::Eval (size: 122, repeated: 1)

try {
    f = (d == top.document) ? 1 : 2;
    if (typeof top.document.referrer == "string") {
        ref = top.document.referrer
    }
} catch (e) {
    f = 3;
}

#3 JavaScript::Eval (size: 73, repeated: 1)

try {
    fv = navigator.plugins["Shockwave Flash"].description;
} catch (e) {}

Executed Writes (2)

#1 JavaScript::Write (size: 151, repeated: 1)

<script type="text/javascript" src="http://s4.hit.stat24.com/_1484215666353/script.js?id=zU1KWOOea2uV9F_ruvtuL5ciDmXU_ybklxg8J9W.Gdr.47/l=11"></script>

#2 JavaScript::Write (size: 89, repeated: 1)

<script type="text/javascript" src="http://s4.hit.stat24.com/cachedscriptxy.js"></script>


HTTP Transactions (25)


Request Response
GET / HTTP/1.1

Host: obroslak.paulini.pl

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 212.87.252.49
HTTP/1.1 200 OK
Content-Type: text/html
Date: Thu, 12 Jan 2017 10:07:44 GMT
Server: Apache
X-Powered-By: PHP/5.3.3-7+squeeze28
Vary: Accept-Encoding
Content-Length: 2598
Content-Encoding: gzip
GET /style.css HTTP/1.1

Host: obroslak.paulini.pl

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/
 212.87.252.49
HTTP/1.1 200 OK
Content-Type: text/css
Date: Thu, 12 Jan 2017 10:07:44 GMT
Server: Apache
Last-Modified: Fri, 26 Dec 2014 18:56:45 GMT
Etag: &quot;15c00c-1aa3-50b231608f540&quot;
Vary: Accept-Encoding
Content-Length: 1648
Content-Encoding: gzip
GET /ajax/libs/jquery/1.3.2/jquery.min.js HTTP/1.1

Host: ajax.googleapis.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/
 172.217.22.170
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Date: Wed, 07 Dec 2016 05:37:06 GMT
Expires: Thu, 07 Dec 2017 05:37:06 GMT
Last-Modified: Fri, 16 Oct 2015 18:27:31 GMT
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 19740
X-XSS-Protection: 1; mode=block
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 3126639
GET /images/fav.png HTTP/1.1

Host: obroslak.paulini.pl

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
 212.87.252.49
HTTP/1.1 200 OK
Content-Type: image/png
Date: Thu, 12 Jan 2017 10:07:44 GMT
Server: Apache
Last-Modified: Fri, 26 Dec 2014 18:57:27 GMT
Etag: &quot;15c027-35c-50b231889d3c0&quot;
Content-Length: 860
GET /images/img01.jpg HTTP/1.1

Host: obroslak.paulini.pl

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/style.css
 212.87.252.49
HTTP/1.1 200 OK
Content-Type: image/jpeg
Date: Thu, 12 Jan 2017 10:07:44 GMT
Server: Apache
Last-Modified: Fri, 26 Dec 2014 18:57:31 GMT
Etag: &quot;15c029-2e6-50b2318c6dcc0&quot;
Content-Length: 742
GET /images/img02.jpg HTTP/1.1

Host: obroslak.paulini.pl

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/style.css
 212.87.252.49
HTTP/1.1 200 OK
Content-Type: image/jpeg
Date: Thu, 12 Jan 2017 10:07:44 GMT
Server: Apache
Last-Modified: Fri, 26 Dec 2014 18:57:32 GMT
Etag: &quot;15c02a-f91-50b2318d61f00&quot;
Content-Length: 3985
GET /images/min.jpg HTTP/1.1

Host: obroslak.paulini.pl

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/
 212.87.252.49
HTTP/1.1 200 OK
Content-Type: image/jpeg
Date: Thu, 12 Jan 2017 10:07:44 GMT
Server: Apache
Last-Modified: Fri, 26 Dec 2014 18:58:00 GMT
Etag: &quot;15c044-2d72-50b231a815e00&quot;
Content-Length: 11634
GET /images/img04.jpg HTTP/1.1

Host: obroslak.paulini.pl

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/style.css
 212.87.252.49
HTTP/1.1 200 OK
Content-Type: image/jpeg
Date: Thu, 12 Jan 2017 10:07:44 GMT
Server: Apache
Last-Modified: Fri, 26 Dec 2014 18:57:37 GMT
Etag: &quot;15c02c-99f1-50b2319226a40&quot;
Content-Length: 39409
GET /images/img07.jpg HTTP/1.1

Host: obroslak.paulini.pl

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/
 212.87.252.49
HTTP/1.1 200 OK
Content-Type: image/jpeg
Date: Thu, 12 Jan 2017 10:07:44 GMT
Server: Apache
Last-Modified: Fri, 26 Dec 2014 18:57:42 GMT
Etag: &quot;15c02f-f83a-50b23196eb580&quot;
Content-Length: 63546
GET /images/img16.jpg HTTP/1.1

Host: obroslak.paulini.pl

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/
 212.87.252.49
HTTP/1.1 200 OK
Content-Type: image/jpeg
Date: Thu, 12 Jan 2017 10:07:44 GMT
Server: Apache
Last-Modified: Fri, 26 Dec 2014 18:57:49 GMT
Etag: &quot;15c03b-10c2a-50b2319d98540&quot;
Content-Length: 68650
GET /fkcntv9p.php?id=11906509 HTTP/1.1

Host: wp.newcairn.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/
 63.250.48.131
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Thu, 12 Jan 2017 10:07:44 GMT
Server: Apache
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
GET /fkcntv9p.php?id=11906512 HTTP/1.1

Host: wp.newcairn.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/
 63.250.48.131
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Thu, 12 Jan 2017 10:07:44 GMT
Server: Apache
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
GET /fkcntv9p.php?id=11906507 HTTP/1.1

Host: wp.newcairn.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/
 63.250.48.131
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Thu, 12 Jan 2017 10:07:44 GMT
Server: Apache
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
GET /images/img03.jpg HTTP/1.1

Host: obroslak.paulini.pl

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/style.css
 212.87.252.49
HTTP/1.1 200 OK
Content-Type: image/jpeg
Date: Thu, 12 Jan 2017 10:07:44 GMT
Server: Apache
Last-Modified: Fri, 26 Dec 2014 18:57:36 GMT
Etag: &quot;15c02b-278e8-50b2319132800&quot;
Content-Length: 162024
GET /images/img06.jpg HTTP/1.1

Host: obroslak.paulini.pl

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/style.css
 212.87.252.49
HTTP/1.1 200 OK
Content-Type: image/jpeg
Date: Thu, 12 Jan 2017 10:07:45 GMT
Server: Apache
Last-Modified: Fri, 26 Dec 2014 18:57:40 GMT
Etag: &quot;15c02e-1f59-50b2319503100&quot;
Content-Length: 8025
GET /images/img05.jpg HTTP/1.1

Host: obroslak.paulini.pl

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/style.css
 212.87.252.49
HTTP/1.1 200 OK
Content-Type: image/jpeg
Date: Thu, 12 Jan 2017 10:07:45 GMT
Server: Apache
Last-Modified: Fri, 26 Dec 2014 18:57:38 GMT
Etag: &quot;15c02d-1d79-50b231931ac80&quot;
Content-Length: 7545
GET /fkcntv9p.php?id=11906509 HTTP/1.1

Host: wp.newcairn.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/
 63.250.48.131
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Thu, 12 Jan 2017 10:07:45 GMT
Server: Apache
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
GET /images/img08.jpg HTTP/1.1

Host: obroslak.paulini.pl

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/style.css
 212.87.252.49
HTTP/1.1 200 OK
Content-Type: image/jpeg
Date: Thu, 12 Jan 2017 10:07:45 GMT
Server: Apache
Last-Modified: Fri, 26 Dec 2014 18:57:42 GMT
Etag: &quot;15c030-2c5-50b23196eb580&quot;
Content-Length: 709
GET /images/img09.jpg HTTP/1.1

Host: obroslak.paulini.pl

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/style.css
 212.87.252.49
HTTP/1.1 200 OK
Content-Type: image/jpeg
Date: Thu, 12 Jan 2017 10:07:45 GMT
Server: Apache
Last-Modified: Fri, 26 Dec 2014 18:57:43 GMT
Etag: &quot;15c031-1f5-50b23197df7c0&quot;
Content-Length: 501
GET /images/loading.gif HTTP/1.1

Host: obroslak.paulini.pl

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/style.css
 212.87.252.49
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Thu, 12 Jan 2017 10:07:45 GMT
Server: Apache
Last-Modified: Fri, 26 Dec 2014 18:57:56 GMT
Etag: &quot;15c042-100a-50b231a445500&quot;
Content-Length: 4106
GET /fkcntv9p.php?id=11906512 HTTP/1.1

Host: wp.newcairn.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/
 63.250.48.131
HTTP/1.1 404 Not Found
Content-Type: text/html
Date: Thu, 12 Jan 2017 10:07:45 GMT
Server: Apache
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
GET /_1484215666353/script.js?id=zU1KWOOea2uV9F_ruvtuL5ciDmXU_ybklxg8J9W.Gdr.47/l=11 HTTP/1.1

Host: s4.hit.stat24.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/
 193.203.99.254
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Server: GAD
Date: Thu, 12 Jan 2017 10:07:46 GMT
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Wed, 11 Jan 2017 10:07:46 GMT
Accept-Ranges: none
Set-Cookie: GAD=KlxUPRaGQMGGqEyQQHHtT8c5ssGMXP8cMRJSssX6Sssa; Domain=hit.stat24.com; Path=/; Expires=Sat, 13 Nov 2021 00:00:00 GMT
P3P: CP=&quot;NOI DSP COR NID PSAo OUR IND&quot;
Connection: keep-alive
Keep-Alive: timeout=10
Content-Length: 541
GET /cachedscriptxy.js HTTP/1.1

Host: s4.hit.stat24.com

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/
Cookie: GAD=KlxUPRaGQMGGqEyQQHHtT8c5ssGMXP8cMRJSssX6Sssa
 193.203.99.254
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Server: GAD
Date: Thu, 12 Jan 2017 10:07:46 GMT
Cache-Control: public, must-revalidate, max-age=432000
Last-Modified: Tue, 03 Jan 2017 15:11:02 GMT
Etag: &quot;0000172A98427113&quot;
Expires: Tue, 17 Jan 2017 10:07:46 GMT
Accept-Ranges: bytes
P3P: CP=&quot;NOI DSP COR NID PSAo OUR IND&quot;
Connection: keep-alive
Keep-Alive: timeout=10
Content-Length: 5930
GET /_1484215666504/rexdot.gif?l=11&id=TdWGHy5wcXSrsFWGlWQN3P9jYsDFyy1k0jUIARlPtar.i7&from=s4.hit.stat24.com&&fr=1&fv=Shockwave%20Flash%2010.0%20r45&tz=-60&href=http%3A%2F%2Fobroslak.paulini.pl%2F&ref=&screen=1176x885&col=24&window=1176x775 HTTP/1.1

Host: st.hit.gemius.pl
GET /_1484215666504/rexdot.gif?l=11&amp;id=TdWGHy5wcXSrsFWGlWQN3P9jYsDFyy1k0jUIARlPtar.i7&amp;from=s4.hit.stat24.com&amp;&amp;fr=1&amp;fv=Shockwave%20Flash%2010.0%20r45&amp;tz=-60&amp;href=http%3A%2F%2Fobroslak.paulini.pl%2F&amp;ref=&amp;screen=1176x885&amp;col=24&amp;window=1176x775 HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/
 193.203.99.251
HTTP/1.1 301 Moved Permanently
HTTP/1.1 301 Moved Permanently
Date: Thu, 12 Jan 2017 10:07:47 GMT
Expires: Wed, 11 Jan 2017 10:07:47 GMT
Server: GHC
Accept-Ranges: none
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Set-Cookie: Gtest=KlxD2RMGQMGGBMniCUgtT8c5ssGMXP8cMR4G; Domain=hit.gemius.pl; Path=/; Expires=Sat, 13 Nov 2021 00:00:00 GMT
P3P: CP=&quot;NOI DSP COR NID PSAo OUR IND&quot;
Location: /__/_1484215666504/rexdot.gif?l=11&amp;id=TdWGHy5wcXSrsFWGlWQN3P9jYsDFyy1k0jUIARlPtar.i7&amp;from=s4.hit.stat24.com&amp;&amp;fr=1&amp;fv=Shockwave%20Flash%2010.0%20r45&amp;tz=-60&amp;href=http%3A%2F%2Fobroslak.paulini.pl%2F&amp;ref=&amp;screen=1176x885&amp;col=24&amp;window=1176x775
Connection: keep-alive
Keep-Alive: timeout=10
Content-Length: 0
GET /__/_1484215666504/rexdot.gif?l=11&id=TdWGHy5wcXSrsFWGlWQN3P9jYsDFyy1k0jUIARlPtar.i7&from=s4.hit.stat24.com&&fr=1&fv=Shockwave%20Flash%2010.0%20r45&tz=-60&href=http%3A%2F%2Fobroslak.paulini.pl%2F&ref=&screen=1176x885&col=24&window=1176x775 HTTP/1.1

Host: st.hit.gemius.pl
GET /__/_1484215666504/rexdot.gif?l=11&amp;id=TdWGHy5wcXSrsFWGlWQN3P9jYsDFyy1k0jUIARlPtar.i7&amp;from=s4.hit.stat24.com&amp;&amp;fr=1&amp;fv=Shockwave%20Flash%2010.0%20r45&amp;tz=-60&amp;href=http%3A%2F%2Fobroslak.paulini.pl%2F&amp;ref=&amp;screen=1176x885&amp;col=24&amp;window=1176x775 HTTP/1.1

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://obroslak.paulini.pl/
Cookie: Gtest=KlxD2RMGQMGGBMniCUgtT8c5ssGMXP8cMR4G
 193.203.99.251
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Thu, 12 Jan 2017 10:07:47 GMT
Expires: Wed, 11 Jan 2017 10:07:47 GMT
Server: GHC
Accept-Ranges: none
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Set-Cookie: Gdyn=KlGbZMXGQMGGBMniCUgtT8c5ssGMXP8cM8JSssX6nsGfGHZ1a72xQjGowOx1G0F6Sssa; Domain=hit.gemius.pl; Path=/; Expires=Sat, 13 Nov 2021 00:00:00 GMT
P3P: CP=&quot;NOI DSP COR NID PSAo OUR IND&quot;
Connection: keep-alive
Keep-Alive: timeout=10
Content-Length: 43