Overview

URL emailsystem.pl/newsletter/open/mailing/44?url=http%3A%2F%2Fprzejdztu.ml%2F115027
IP46.242.232.19
ASNAS12824 home.pl S.A.
Location Poland
Report completed2019-06-27 14:24:47 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro
Timestamp Severity Source IP Destination IP Alert
2019-06-27 14:24:15 CEST 2 Client IP  Internal IP ET INFO DNS Query for Suspicious .ml Domain


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

No other reports on IP: 46.242.232.19


Last 10 reports on ASN: AS12824 home.pl S.A.

Date UQ / IDS / BL URL IP
2019-06-30 01:20:06 +0200
0 - 0 - 0 serwer1983755.home.pl 46.242.238.97
2019-06-30 01:14:41 +0200
0 - 0 - 0 psmm.pl 79.96.19.104
2019-06-30 01:14:21 +0200
0 - 0 - 0 psmm.pl/pl/oferta/system-effecto 79.96.19.104
2019-06-30 01:10:51 +0200
0 - 0 - 0 https://wings24.pl/ 46.41.159.221
2019-06-30 01:08:24 +0200
0 - 0 - 0 https://wings24.pl 46.41.159.221
2019-06-30 01:08:24 +0200
0 - 0 - 0 https://wings24.pl/ 46.41.159.171
2019-06-27 14:50:06 +0200
0 - 0 - 0 fundacjaglosniej.pl/ 46.242.239.30
2019-06-26 13:22:46 +0200
0 - 0 - 0 46.41.134.103 46.41.134.103
2019-06-26 13:08:58 +0200
0 - 0 - 1 aquacool.com.pl//6mxdown/lq6fsvpl.php 89.161.235.96
2019-06-26 07:18:54 +0200
0 - 0 - 0 kprp.pl 89.161.255.8

Last 2 reports on domain: emailsystem.pl

Date UQ / IDS / BL URL IP
2019-05-15 08:24:48 +0200
0 - 0 - 0 emailsystem.pl 46.242.241.188
2019-04-09 13:58:14 +0200
0 - 0 - 0 emailsystem.pl/newsletter/open/mailing/30?url (...) 46.242.241.188


JavaScript

Executed Scripts (14)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (48)


Request Response
                                        
                                            GET /newsletter/open/mailing/44?url=http%3A%2F%2Fprzejdztu.ml%2F115027 HTTP/1.1 
Host: emailsystem.pl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         46.242.232.19
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 27 Jun 2019 12:24:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Server: Apache
Location: http://przejdztu.ml/115027
Referer: http://emailsystem.pl/newsletter/open/mailing/44


--- Additional Info ---
                                        
                                            GET /115027 HTTP/1.1 
Host: przejdztu.ml
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.28.27.82
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 27 Jun 2019 12:24:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=dab230705e1eb6476771db3ce6f24d3d21561638255; expires=Fri, 26-Jun-20 12:24:15 GMT; path=/; domain=.przejdztu.ml; HttpOnly
X-Robots-Tag: noindex, nofollow
Cache-Control: private,no-store, no-cache
Server: cloudflare
CF-RAY: 4ed765987f4e8689-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   936
Md5:    26570b3007bb22f281e08e2fabd9e2f2
Sha1:   69dfb6f1d0c917f01b43bd5b9334e88ce37a4a92
Sha256: 4144ee00d4b87441519e09e4ef957548624a12e5410a1a3f3c45b3f628bd8091
                                        
                                            GET /img1.png HTTP/1.1 
Host: przejdztu.ml
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://przejdztu.ml/115027
Cookie: __cfduid=dab230705e1eb6476771db3ce6f24d3d21561638255

                                         
                                         104.28.27.82
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Thu, 27 Jun 2019 12:24:15 GMT
Content-Length: 50823
Connection: keep-alive
Last-Modified: Fri, 13 Apr 2018 09:23:58 GMT
Etag: "5ad0772e-c687"
Expires: Fri, 26 Jun 2020 12:24:15 GMT
Cache-Control: public, max-age=31536000
CF-Cache-Status: HIT
Age: 8989889
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4ed7659b98fa8689-ARN


--- Additional Info ---
Magic:  PNG image, 971 x 472, 8-bit/color RGBA, non-interlaced
Size:   50823
Md5:    5a2de360c28ba51e8e4b20fae7d29617
Sha1:   23009bd94556760ca0df281a9e9bfbb3ab54a9b7
Sha256: 838cbc581dc7211ce127eb42952e745c5e0631ff7160f6ae6b0ef145571f0ff4
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 27 Jun 2019 12:24:16 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    9f3746337e3ecf344e0989c5f3bc4776
Sha1:   8befa4ff7da32861a134dd6ecf23bf41d5679324
Sha256: 7a665052c359a8d45dcfba5595a54e9b33f944fdef913d74bc7a430096bf9180
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 27 Jun 2019 12:24:16 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    5be872b3fe0bb6f31385f91f811e9586
Sha1:   1192231bcb9ee73e9f619d433cdb66dddd9ae7f7
Sha256: db0ad6191770bff9043482b68acf62a4e25d4390a03274cfbe413675dd8c9cf5
                                        
                                            GET /ajax/libs/jquery/1.11.0/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://przejdztu.ml/115027

                                         
                                         172.217.21.170
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 33576
Date: Sat, 01 Jun 2019 22:16:36 GMT
Expires: Sun, 31 May 2020 22:16:36 GMT
Last-Modified: Tue, 20 Dec 2016 18:17:03 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 2210860
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   33576
Md5:    55b8e6059da09b4e50cbe105e4a090a3
Sha1:   455328e76daf9a5a8fe0c94bc20c308801fb4883
Sha256: 9ba41d51fbabdb9fcaa7e9e34581d153d8f901a2ce9e364f60162ca278743813
                                        
                                            GET /css?family=Roboto:300,400&subset=latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://przejdztu.ml/115027

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Thu, 27 Jun 2019 12:24:16 GMT
Date: Thu, 27 Jun 2019 12:24:16 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   221
Md5:    2d42e60a512b5610b27110a81287fb77
Sha1:   d95807af1f9c9cecdc044935952bccca8a6c2ddb
Sha256: 7948e2e66e7d8a2b3a1383bbaa057593b4e8773ba7eedafad7b1974bf7e9ac95
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 27 Jun 2019 12:24:16 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    daacf0b1f5577b4268eb279d13716d40
Sha1:   3d717e98301505dcc0ed9ae82cb50c5735420143
Sha256: da0ac68ebaf872184e84ec8d16c03cf2215d32f1524e2c710a70ed926a19634d
                                        
                                            GET /s/roboto/v19/KFOmCnqEu92Fr1Mu7GxM.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto:300,400&subset=latin-ext
Origin: http://przejdztu.ml

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 29040
Date: Sun, 02 Jun 2019 21:50:40 GMT
Expires: Mon, 01 Jun 2020 21:50:40 GMT
Last-Modified: Mon, 25 Mar 2019 20:13:30 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 2126016
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   29040
Md5:    d679a90608a65cc9394f67448ca2094a
Sha1:   c574d647bbf9412b82b0cdcb0e702a3a93ffd022
Sha256: e70a908bb6cfbf27aabb21fb5ca2ea8c5a5ac7ee5aba23a70fbeefe379ae5ada
                                        
                                            GET /s/roboto/v19/KFOlCnqEu92Fr1MmSU5fChc-.woff HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://fonts.googleapis.com/css?family=Roboto:300,400&subset=latin-ext
Origin: http://przejdztu.ml

                                         
                                         172.217.21.131
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 29108
Date: Sat, 01 Jun 2019 22:01:35 GMT
Expires: Sun, 31 May 2020 22:01:35 GMT
Last-Modified: Mon, 25 Mar 2019 20:12:22 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 2211761
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  data
Size:   29108
Md5:    f4b08b5a857ef12352aaf0ebc1316460
Sha1:   c6acb393223ada5b5f4e48d7493ece10379e6925
Sha256: 214febc7384b786913ad658dd1d3ec63036c5c5bbc0bd23993ef2026bb8414ac
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: przejdztu.ml
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=dab230705e1eb6476771db3ce6f24d3d21561638255

                                         
                                         104.28.27.82
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 27 Jun 2019 12:24:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: EXPIRED
Expires: Thu, 27 Jun 2019 16:24:16 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4ed7659f5b198689-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   126
Md5:    716ea1d918594c53bc58f31c3ee1cd72
Sha1:   0ab9eed839e65716163282f70464eab08bcf735c
Sha256: 032b3ed267b9b68d81fba8c53fb1c5423f35914aee0e6190e2ee002e1178a2bd
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 27 Jun 2019 12:24:16 GMT
Accept-Ranges: bytes
Last-Modified: Fri, 21 Jun 2019 07:44:02 GMT
Server: Apache
Etag: FB834A66B28A1F31329AE7945890884DBEC1A4A9
Cache-Control: max-age=603727,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp15
X-HW: 1561638256.cds050.sk1.h2,1561638256.cds063.sk1.c
Connection: keep-alive
Content-Length: 280


--- Additional Info ---
Magic:  data
Size:   280
Md5:    8ee8a005c6f9bfe90c081c20390f6ea4
Sha1:   fb834a66b28a1f31329ae7945890884dbec1a4a9
Sha256: 7fe52df38ca7cd7366bf939c362a5226741ca9baf762a6ebff04dfcd43fb8b3a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 27 Jun 2019 12:24:16 GMT
Accept-Ranges: bytes
Last-Modified: Mon, 24 Jun 2019 00:14:19 GMT
Server: Apache
Etag: F91DE285A39C7186A0305410ABE8A1FDCDE30B6F
Cache-Control: max-age=302399,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp6
X-HW: 1561638256.cds050.sk1.h2,1561638256.cds045.sk1.c
Connection: keep-alive
Content-Length: 313


--- Additional Info ---
Magic:  data
Size:   313
Md5:    7bfc6ceddd7af26a1a982f0a86f668ef
Sha1:   f91de285a39c7186a0305410abe8a1fdcde30b6f
Sha256: 74e222c57a40f5c51fc88b58101e8f0f25339df4d2bc546dce5f315565b48e3b
                                        
                                            GET /p/KpC7/l0z3/T6mD?ml_sub1=&ml_sub2=&ml_sub3=&ml_sub4=&ml_sub5=&dl=&dl_url=&dl_title=&ld=&ref= HTTP/1.1 
Host: leadmy.pl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.27.170.219
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 27 Jun 2019 12:24:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d60c8d15cf4a34674932c777423e530461561638256; expires=Fri, 26-Jun-20 12:24:16 GMT; path=/; domain=.leadmy.pl; HttpOnly 6df7bcad0e43158f5250a5760ca8e8b1=6df7bcad0e43158f5250a5760ca8e8b1; expires=Fri, 26-Jun-2020 12:24:16 GMT; Max-Age=31536000; path=/; httponly
Vary: Accept-Encoding
Cache-Control: no-cache, no-store, private
X-Robots-Tag: noindex, nofollow
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4ed765a0dbe6cb04-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   824
Md5:    06e2868c3fd7afc669eccac39389bc58
Sha1:   3111bc6dc4234c188030957e0461a87be4850ee7
Sha256: 9ac0af83003d4146b15dedac769af81e9377800c884da4c152eb214d8ae5209e
                                        
                                            GET /js/jjj.js HTTP/1.1 
Host: leadmy.pl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://leadmy.pl/p/KpC7/l0z3/T6mD?ml_sub1=&ml_sub2=&ml_sub3=&ml_sub4=&ml_sub5=&dl=&dl_url=&dl_title=&ld=&ref=
Cookie: __cfduid=d60c8d15cf4a34674932c777423e530461561638256; 6df7bcad0e43158f5250a5760ca8e8b1=6df7bcad0e43158f5250a5760ca8e8b1

                                         
                                         104.27.170.219
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 27 Jun 2019 12:24:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 07 Jun 2019 13:43:09 GMT
Vary: Accept-Encoding
Etag: W/"5cfa69ed-e710"
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 185
Expires: Thu, 27 Jun 2019 16:24:17 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4ed765a2690ccb04-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   14186
Md5:    dd8118fc95245a694a4139d95d69798a
Sha1:   50aaca77e2de1c230781530c8307426a9b56698a
Sha256: 4ada9b917e44ae75f052a7678e48b64e0720562ffc496813a5b255b22a1793d8
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 27 Jun 2019 12:24:17 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    6fa93d746bfc1bf71dec6a9f6925d3e8
Sha1:   ec65c71258dec44b0496b31ec3b4331cfd006825
Sha256: e4a9ba45d039d737beddfc3723b2cb32764b36c358bb0dc5b45064efb6855fa0
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 27 Jun 2019 12:24:17 GMT
Accept-Ranges: bytes
Last-Modified: Tue, 25 Jun 2019 10:57:17 GMT
Server: Apache
Etag: 294BE0FAEBD6EF0A45FB3BE1D515694037CA65DB
Cache-Control: max-age=592461,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp6
X-HW: 1561638257.cds050.sk1.h2,1561638257.cds032.sk1.c
Connection: keep-alive
Content-Length: 472


--- Additional Info ---
Magic:  data
Size:   472
Md5:    338d06e15b934dfec42b2307cdd0a3b6
Sha1:   294be0faebd6ef0a45fb3be1d515694037ca65db
Sha256: d06bc1fe56817d1cf6b08ae4a420d83d8a80e07a60294f4f68304b2709ca1441
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 27 Jun 2019 12:24:17 GMT
Accept-Ranges: bytes
Last-Modified: Mon, 24 Jun 2019 00:14:19 GMT
Server: Apache
Etag: 519C60BCC30E753A1131E77E1CA8F268CEA744E8
Cache-Control: max-age=302399,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp15
X-HW: 1561638257.cds050.sk1.h2,1561638257.cds043.sk1.c
Connection: keep-alive
Content-Length: 727


--- Additional Info ---
Magic:  data
Size:   727
Md5:    bf0ecfd5ed8e52b03b65b6f132763cd2
Sha1:   519c60bcc30e753a1131e77e1ca8f268cea744e8
Sha256: d3368c75951eb9823c065206aa9bc0633d2f5e0362466f952f997b51ed1f5649
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 27 Jun 2019 12:24:18 GMT
Accept-Ranges: bytes
Last-Modified: Mon, 24 Jun 2019 00:14:19 GMT
Server: Apache
Etag: 31983060334AF817DAC0260BA1EB7FF3D303AD12
Cache-Control: max-age=302399,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp12
X-HW: 1561638258.cds022.sk1.h2,1561638258.cds047.sk1.c
Connection: keep-alive
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    79a84850b78c4a9933dcd2c96d7ba97d
Sha1:   31983060334af817dac0260ba1eb7ff3d303ad12
Sha256: cb5dfb75b939583b3e11c8ad6035caf2414c927a45dc806977736eebc1cfa085
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=127633
Date: Thu, 27 Jun 2019 12:24:18 GMT
Etag: "5d140503-1d7"
Expires: Fri, 28 Jun 2019 23:51:31 GMT
Last-Modified: Wed, 26 Jun 2019 23:51:31 GMT
Server: nginx
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    151bd0228fc0049e9cc8395477353d34
Sha1:   02cb7f847ecdcc222f08a3cf2b898295fe53a20f
Sha256: a97667225e37f9ff4fa8fb2eb7a90528527c39da509ec5734c0dab41e48807a5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=139210
Date: Thu, 27 Jun 2019 12:24:18 GMT
Etag: "5d140e5d-1d7"
Expires: Sat, 29 Jun 2019 03:04:28 GMT
Last-Modified: Thu, 27 Jun 2019 00:31:25 GMT
Server: ECS (lcy/1D1C)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    19854a82ef7c022daa665b1653dbbe47
Sha1:   ca43c40af3b07c06a59e68b9a662b5bddc3dea35
Sha256: 8eeb30a336e5b5cdb87dcebceb5e17c2cf6de1cbbef9c72b81de925cf0ce3e86
                                        
                                            POST /finger HTTP/1.1 
Host: leadmy.pl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Type: application/json; charset=UTF-8
Referer: https://leadmy.pl/p/KpC7/l0z3/T6mD?ml_sub1=&ml_sub2=&ml_sub3=&ml_sub4=&ml_sub5=&dl=&dl_url=&dl_title=&ld=&ref=
Content-Length: 535
Cookie: __cfduid=d60c8d15cf4a34674932c777423e530461561638256; 6df7bcad0e43158f5250a5760ca8e8b1=6df7bcad0e43158f5250a5760ca8e8b1
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.27.170.219
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Date: Thu, 27 Jun 2019 12:24:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-cache, private
Content-Encoding: gzip
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4ed765a96e95cb04-ARN


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   40
Md5:    a09c379ed306619d633a42bd1dfc16ec
Sha1:   14b47d1c94cfd8399ebf1442a44724c26a3c22f6
Sha256: ffeb3b5ad5359f5130410904e1f3d8599f56ea167fb9ec75cf718e8b720c6032
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://leadmy.pl/p/KpC7/l0z3/T6mD?ml_sub1=&ml_sub2=&ml_sub3=&ml_sub4=&ml_sub5=&dl=&dl_url=&dl_title=&ld=&ref=

                                         
                                         172.217.22.174
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Date: Thu, 27 Jun 2019 10:27:31 GMT
Expires: Thu, 27 Jun 2019 12:27:31 GMT
Last-Modified: Thu, 20 Jun 2019 21:35:04 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17707
Cache-Control: public, max-age=7200
Age: 7007
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17707
Md5:    02736782f3a24c080c78565198dbc789
Sha1:   518a5db4249459d3c7ba8eee95cad5667b6ecd39
Sha256: 8a6a86f539a0cd84e0e9a40f8a6c3eeb7ddfb60e3ec14b73a6c9e7ed413fd57d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "E707DA1B586EC5C1AC96D7C065483B2BC879781EBFDFF788BC33DB84A4F7D797"
Last-Modified: Thu, 27 Jun 2019 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43170
Expires: Fri, 28 Jun 2019 00:23:48 GMT
Date: Thu, 27 Jun 2019 12:24:18 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   714
Md5:    86d87c280bd0acbf1cea103d12875dbc
Sha1:   1e080ea19226de5c34e0a6c62cb11c390333a628
Sha256: 77fcd077e6b293f0644812422c80598cac2559219c038f01768444458ba5a99a
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.26
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Content-Transfer-Encoding: Binary
Last-Modified: Tue, 25 Jun 2019 08:19:43 GMT
Etag: "2d077765a9ad8056e9afc6310dcfe9effe9cfb3e"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=6858
Expires: Thu, 27 Jun 2019 14:18:36 GMT
Date: Thu, 27 Jun 2019 12:24:18 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    3d38893885662862e6546385db241110
Sha1:   2d077765a9ad8056e9afc6310dcfe9effe9cfb3e
Sha256: 407505b4e9ac1040cea35afc733e0b3278da2a78be24576b683abe3038f61d0a
                                        
                                            GET /?gpb=003500610732/rossman&set=1&click_id=mlClick-mCPgnArb&ref=rossman&val=23350 HTTP/1.1 
Host: goto.wyspaofert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://leadmy.pl/p/KpC7/l0z3/T6mD?ml_sub1=&ml_sub2=&ml_sub3=&ml_sub4=&ml_sub5=&dl=&dl_url=&dl_title=&ld=&ref=

                                         
                                         88.208.52.165
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.10.3
Date: Thu, 27 Jun 2019 12:24:18 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: __gpb=UXiQfZZ5mmq5QDW9YR7mwKHfece8XpEQCfQtMqaXF%2BRqDU5vvZwCkTgsAISVntQq7MRjeaiQCYmrwJd0FRTcPw%3D%3D; expires=Thu, 27-Jun-2019 12:39:18 GMT; Max-Age=900; path=/; domain=wyspaofert.com; secure; HttpOnly
Location: /003500610732/rossman
Strict-Transport-Security: max-age=15768000


--- Additional Info ---
                                        
                                            GET /003500610732/rossman HTTP/1.1 
Host: goto.wyspaofert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://leadmy.pl/p/KpC7/l0z3/T6mD?ml_sub1=&ml_sub2=&ml_sub3=&ml_sub4=&ml_sub5=&dl=&dl_url=&dl_title=&ld=&ref=
Cookie: __gpb=UXiQfZZ5mmq5QDW9YR7mwKHfece8XpEQCfQtMqaXF%2BRqDU5vvZwCkTgsAISVntQq7MRjeaiQCYmrwJd0FRTcPw%3D%3D

                                         
                                         88.208.52.165
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.10.3
Date: Thu, 27 Jun 2019 12:24:18 GMT
Content-Length: 0
Connection: keep-alive
Location: https://wyspaofert.com/wingames/PL-pl/rossman/2858/welcome
Strict-Transport-Security: max-age=15768000


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "257EE0EFCFE4F7DA2C1CD78558E8A0CA367E29FD9A69147476760D93DCA2E91E"
Last-Modified: Thu, 27 Jun 2019 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43145
Expires: Fri, 28 Jun 2019 00:23:24 GMT
Date: Thu, 27 Jun 2019 12:24:19 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    55130eb96961558c88d9a041770c7a78
Sha1:   01e564c44c4beee33797a12fef7e939705531b7a
Sha256: 257ee0efcfe4f7da2c1cd78558e8a0ca367e29fd9a69147476760d93dca2e91e
                                        
                                            GET /wingames/PL-pl/rossman/2858/welcome HTTP/1.1 
Host: wyspaofert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://leadmy.pl/p/KpC7/l0z3/T6mD?ml_sub1=&ml_sub2=&ml_sub3=&ml_sub4=&ml_sub5=&dl=&dl_url=&dl_title=&ld=&ref=
Cookie: __gpb=UXiQfZZ5mmq5QDW9YR7mwKHfece8XpEQCfQtMqaXF%2BRqDU5vvZwCkTgsAISVntQq7MRjeaiQCYmrwJd0FRTcPw%3D%3D

                                         
                                         88.208.52.165
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx/1.10.3
Date: Thu, 27 Jun 2019 12:24:18 GMT
Content-Length: 267
Connection: keep-alive
Location: https://wyspaofert.com/wingames/PL-pl/rossman/2858/welcome/
Strict-Transport-Security: max-age=15768000


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   267
Md5:    2a64901bbcf95924e270aee6f8bca8b6
Sha1:   c52be95fecbe2084a6a6047d2f44ba29572ada4b
Sha256: cc078fb3f5e411afb224a209ab4f85fe41e2238328e29b2c30990422113e7501
                                        
                                            GET /wingames/PL-pl/rossman/2858/welcome/ HTTP/1.1 
Host: wyspaofert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://leadmy.pl/p/KpC7/l0z3/T6mD?ml_sub1=&ml_sub2=&ml_sub3=&ml_sub4=&ml_sub5=&dl=&dl_url=&dl_title=&ld=&ref=
Cookie: __gpb=UXiQfZZ5mmq5QDW9YR7mwKHfece8XpEQCfQtMqaXF%2BRqDU5vvZwCkTgsAISVntQq7MRjeaiQCYmrwJd0FRTcPw%3D%3D

                                         
                                         88.208.52.165
HTTP/1.1 303 See Other
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx/1.10.3
Date: Thu, 27 Jun 2019 12:24:18 GMT
Content-Length: 0
Connection: keep-alive
Location: https://56j35.trueharborcarrier.com/
Cache-Control: no-cache, private
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=15768000


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: przejdztu.ml
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=dab230705e1eb6476771db3ce6f24d3d21561638255

                                         
                                         104.28.27.82
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Date: Thu, 27 Jun 2019 12:24:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: HIT
Age: 3
Expires: Thu, 27 Jun 2019 16:24:19 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 4ed765b21f488689-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   126
Md5:    716ea1d918594c53bc58f31c3ee1cd72
Sha1:   0ab9eed839e65716163282f70464eab08bcf735c
Sha256: 032b3ed267b9b68d81fba8c53fb1c5423f35914aee0e6190e2ee002e1178a2bd
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: leadmy.pl
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=d60c8d15cf4a34674932c777423e530461561638256; 6df7bcad0e43158f5250a5760ca8e8b1=6df7bcad0e43158f5250a5760ca8e8b1

                                         
                                         104.27.170.219
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Date: Thu, 27 Jun 2019 12:24:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 175
Expires: Thu, 27 Jun 2019 16:24:19 GMT
Cache-Control: public, max-age=14400
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4ed765b24911760a-ARN
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   187
Md5:    750b128e5bb41ca54bba8a8425956098
Sha1:   a35dd572b277ed94ad454ce8baa3432eabd7558f
Sha256: 1939dee19a65a6a6fc131a87a22db0219812ec9149316c88a26299ef3f13e901
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "D266C4F7A6DAC3BDB302A97B59EBFB32682565FD00AD0AF38EC1B939ED24C142"
Last-Modified: Tue, 25 Jun 2019 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43200
Expires: Fri, 28 Jun 2019 00:24:19 GMT
Date: Thu, 27 Jun 2019 12:24:19 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    e24d7aa5c4d0850732ecf0f78ac96309
Sha1:   f03ebd6bea39e298f21b4e6cce753bfa1ce2bb1f
Sha256: d266c4f7a6dac3bdb302a97b59ebfb32682565fd00ad0af38ec1b939ed24c142
                                        
                                            GET / HTTP/1.1 
Host: 56j35.trueharborcarrier.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://leadmy.pl/p/KpC7/l0z3/T6mD?ml_sub1=&ml_sub2=&ml_sub3=&ml_sub4=&ml_sub5=&dl=&dl_url=&dl_title=&ld=&ref=

                                         
                                         154.16.134.38
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 27 Jun 2019 12:24:20 GMT
Transfer-Encoding: chunked
X-ImpID: 7d2f675a-98d6-11e9-a7a5-cae258990218
Location: https://google.com?&%3F%3Fgroup_id=483&group_id=483&cntrl=00000&pid=21505&redid=80938&gsid=483&campaign_id=20&p_id=21505&id=XNSX.-r80938-t483&impid=7d2f675a-98d6-11e9-a7a5-cae258990218
Set-Cookie: redir-backend=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/


--- Additional Info ---
                                        
                                            GET /?&%3F%3Fgroup_id=483&group_id=483&cntrl=00000&pid=21505&redid=80938&gsid=483&campaign_id=20&p_id=21505&id=XNSX.-r80938-t483&impid=7d2f675a-98d6-11e9-a7a5-cae258990218 HTTP/1.1 
Host: google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://leadmy.pl/p/KpC7/l0z3/T6mD?ml_sub1=&ml_sub2=&ml_sub3=&ml_sub4=&ml_sub5=&dl=&dl_url=&dl_title=&ld=&ref=

                                         
                                         172.217.21.142
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Location: https://www.google.com/?%3F%3Fgroup_id=483&group_id=483&cntrl=00000&pid=21505&redid=80938&gsid=483&campaign_id=20&p_id=21505&id=XNSX.-r80938-t483&impid=7d2f675a-98d6-11e9-a7a5-cae258990218
Date: Thu, 27 Jun 2019 12:24:20 GMT
Expires: Sat, 27 Jul 2019 12:24:20 GMT
Cache-Control: public, max-age=2592000
Server: gws
Content-Length: 421
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  HTML document text
Size:   421
Md5:    caaf3a7ae958abcffc12249ff34d0497
Sha1:   367cefd1421c832471317fa562961fe4045d4c6e
Sha256: 01608de489766891d8d8cb0adb76d2c1953627ca76e84102022d928ab948e89b
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 27 Jun 2019 12:24:20 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    1a1e8dbb62629fc11bfc46f31f5ea66f
Sha1:   5aa72b3ccf8199ac8ec93def4b08d03ffaf9ddfc
Sha256: 2639b2ca8441590beb9d776709d5e240f6ca9ca2f8c3b99682ea369f9d0214d5
                                        
                                            GET /?%3F%3Fgroup_id=483&group_id=483&cntrl=00000&pid=21505&redid=80938&gsid=483&campaign_id=20&p_id=21505&id=XNSX.-r80938-t483&impid=7d2f675a-98d6-11e9-a7a5-cae258990218 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://leadmy.pl/p/KpC7/l0z3/T6mD?ml_sub1=&ml_sub2=&ml_sub3=&ml_sub4=&ml_sub5=&dl=&dl_url=&dl_title=&ld=&ref=

                                         
                                         216.58.207.228
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 27 Jun 2019 12:24:20 GMT
Expires: -1
Cache-Control: private, max-age=0
P3P: CP="This is not a P3P policy! See g.co/p3phelp for more info."
Content-Encoding: gzip
Server: gws
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Set-Cookie: 1P_JAR=2019-06-27-12; expires=Sat, 27-Jul-2019 12:24:20 GMT; path=/; domain=.google.com NID=186=UB98wihUHcrdhRRqziOVl9Ji164OBiKQstcIPKQg-5FoLyxwcDue7JirH5og55jbfj28lKvwSdP6BJfdVQd8BrWCFEzYpNQtlVBQ7PW_s6qRGA8mIKj26qyf-3GeOByBwFO9spCsY52LqiDD_Phn7zbjLpn5saBPGwRFDHazwCo; expires=Fri, 27-Dec-2019 12:24:20 GMT; path=/; domain=.google.com; HttpOnly
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   16123
Md5:    9ef5cd6fd6edf3318f378102a74d1a4f
Sha1:   c8d1f5d4b348e26f86a2c5b37b0f4bc01e789800
Sha256: 6dc8c51353511c96631d48fd1821b9246590855542c02029abf14d5b1519b013
                                        
                                            GET /textinputassistant/tia.png HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.com/?%3F%3Fgroup_id=483&group_id=483&cntrl=00000&pid=21505&redid=80938&gsid=483&campaign_id=20&p_id=21505&id=XNSX.-r80938-t483&impid=7d2f675a-98d6-11e9-a7a5-cae258990218
Cookie: 1P_JAR=2019-06-27-12; NID=186=UB98wihUHcrdhRRqziOVl9Ji164OBiKQstcIPKQg-5FoLyxwcDue7JirH5og55jbfj28lKvwSdP6BJfdVQd8BrWCFEzYpNQtlVBQ7PW_s6qRGA8mIKj26qyf-3GeOByBwFO9spCsY52LqiDD_Phn7zbjLpn5saBPGwRFDHazwCo

                                         
                                         216.58.207.228
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Content-Length: 258
Date: Sat, 01 Jun 2019 08:21:56 GMT
Expires: Sun, 31 May 2020 08:21:56 GMT
Last-Modified: Thu, 08 Dec 2016 15:30:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 2260944
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  PNG image, 27 x 23, 8-bit/color RGB, non-interlaced
Size:   258
Md5:    201e50d8dd7a30c0a918213686ca43b7
Sha1:   6678592120e899f0d2245c8afeaf9d4a3043c41b
Sha256: c532312eea8020a0370685b222a02b11becd58cd394b509029dff5956127dd81
                                        
                                            GET /logos/doodles/2019/2019-womens-world-cup-day-19-5946139665235968-law.gif HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.com/?%3F%3Fgroup_id=483&group_id=483&cntrl=00000&pid=21505&redid=80938&gsid=483&campaign_id=20&p_id=21505&id=XNSX.-r80938-t483&impid=7d2f675a-98d6-11e9-a7a5-cae258990218
Cookie: 1P_JAR=2019-06-27-12; NID=186=UB98wihUHcrdhRRqziOVl9Ji164OBiKQstcIPKQg-5FoLyxwcDue7JirH5og55jbfj28lKvwSdP6BJfdVQd8BrWCFEzYpNQtlVBQ7PW_s6qRGA8mIKj26qyf-3GeOByBwFO9spCsY52LqiDD_Phn7zbjLpn5saBPGwRFDHazwCo

                                         
                                         216.58.207.228
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Content-Length: 80349
Date: Wed, 26 Jun 2019 21:44:56 GMT
Expires: Thu, 25 Jun 2020 21:44:56 GMT
Last-Modified: Mon, 24 Jun 2019 23:59:19 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 52764
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 524 x 220
Size:   80349
Md5:    361c000c5bf4f20bdd903e8d07d21e36
Sha1:   70549d32ab68d17631dfade9a9c3870017963762
Sha256: 0fec1e636338291d99bc18042887a73de9555de8b0d3c8e649ab8372da49d5dc
                                        
                                            GET /xjs/_/js/k=xjs.hp.en.WXKSdWzjzV8.O/m=sb_he,d/am=ABbUBA/d=1/rs=ACT90oEPZyw-cCSMH2gKA5WdPTQYQVWyJg HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.com/?%3F%3Fgroup_id=483&group_id=483&cntrl=00000&pid=21505&redid=80938&gsid=483&campaign_id=20&p_id=21505&id=XNSX.-r80938-t483&impid=7d2f675a-98d6-11e9-a7a5-cae258990218
Cookie: 1P_JAR=2019-06-27-12; NID=186=UB98wihUHcrdhRRqziOVl9Ji164OBiKQstcIPKQg-5FoLyxwcDue7JirH5og55jbfj28lKvwSdP6BJfdVQd8BrWCFEzYpNQtlVBQ7PW_s6qRGA8mIKj26qyf-3GeOByBwFO9spCsY52LqiDD_Phn7zbjLpn5saBPGwRFDHazwCo

                                         
                                         216.58.207.228
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 65804
Date: Wed, 26 Jun 2019 21:36:18 GMT
Expires: Thu, 25 Jun 2020 21:36:18 GMT
Last-Modified: Thu, 20 Jun 2019 08:11:04 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 53282
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)
Size:   65804
Md5:    a4f7b4d2896efcc849270402a933a0be
Sha1:   5e42477806ee925cf34f96e0bf879a1f8af880ef
Sha256: 3c819f8a624aa27bada6fcdac0c784764314320f1c8f53ac21fe887248761815
                                        
                                            GET /client_204?&atyp=i&biw=1176&bih=754&ei=dLUUXdv-I4bNrgSxwLX4CQ HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.com/?%3F%3Fgroup_id=483&group_id=483&cntrl=00000&pid=21505&redid=80938&gsid=483&campaign_id=20&p_id=21505&id=XNSX.-r80938-t483&impid=7d2f675a-98d6-11e9-a7a5-cae258990218
Cookie: 1P_JAR=2019-06-27-12; NID=186=UB98wihUHcrdhRRqziOVl9Ji164OBiKQstcIPKQg-5FoLyxwcDue7JirH5og55jbfj28lKvwSdP6BJfdVQd8BrWCFEzYpNQtlVBQ7PW_s6qRGA8mIKj26qyf-3GeOByBwFO9spCsY52LqiDD_Phn7zbjLpn5saBPGwRFDHazwCo

                                         
                                         216.58.207.228
HTTP/1.1 204 No Content
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 27 Jun 2019 12:24:20 GMT
Server: gws
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Set-Cookie: 1P_JAR=2019-06-27-12; expires=Sat, 27-Jul-2019 12:24:20 GMT; path=/; domain=.google.com
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
                                        
                                            GET /gb/images/b_8d5afc09.png HTTP/1.1 
Host: ssl.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.com/?%3F%3Fgroup_id=483&group_id=483&cntrl=00000&pid=21505&redid=80938&gsid=483&campaign_id=20&p_id=21505&id=XNSX.-r80938-t483&impid=7d2f675a-98d6-11e9-a7a5-cae258990218

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Vary: Origin
Content-Length: 9760
Date: Tue, 25 Jun 2019 16:00:32 GMT
Expires: Wed, 24 Jun 2020 16:00:32 GMT
Last-Modified: Thu, 21 Apr 2016 03:17:22 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 159829
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  PNG image, 161 x 273, 8-bit/color RGBA, non-interlaced
Size:   9760
Md5:    5ad0cc06381cd23bbf32d659120ee90b
Sha1:   7f78973dac6ca1280f46e232016d20156c26e913
Sha256: 1a69b7eaec79f08a9d565b7c785f02e212ededc1f641901ee78cecfba1cef60f
                                        
                                            GET /images/nav_logo229.png HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.com/?%3F%3Fgroup_id=483&group_id=483&cntrl=00000&pid=21505&redid=80938&gsid=483&campaign_id=20&p_id=21505&id=XNSX.-r80938-t483&impid=7d2f675a-98d6-11e9-a7a5-cae258990218
Cookie: 1P_JAR=2019-06-27-12; NID=186=UB98wihUHcrdhRRqziOVl9Ji164OBiKQstcIPKQg-5FoLyxwcDue7JirH5og55jbfj28lKvwSdP6BJfdVQd8BrWCFEzYpNQtlVBQ7PW_s6qRGA8mIKj26qyf-3GeOByBwFO9spCsY52LqiDD_Phn7zbjLpn5saBPGwRFDHazwCo

                                         
                                         216.58.207.228
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Content-Length: 12263
Date: Thu, 27 Jun 2019 12:24:21 GMT
Expires: Thu, 27 Jun 2019 12:24:21 GMT
Cache-Control: private, max-age=31536000
Last-Modified: Fri, 16 Dec 2016 12:30:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  PNG image, 167 x 305, 8-bit/color RGBA, non-interlaced
Size:   12263
Md5:    1b12cab0347f8728af450fe2457e79c3
Sha1:   af13a78470385e8e483c58ddc1a9c21386ea8a03
Sha256: ca858453ce21cabdf9911c6fa3291aa630df344244bc183a4d5ae9972e59f675
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: 1P_JAR=2019-06-27-12; NID=186=UB98wihUHcrdhRRqziOVl9Ji164OBiKQstcIPKQg-5FoLyxwcDue7JirH5og55jbfj28lKvwSdP6BJfdVQd8BrWCFEzYpNQtlVBQ7PW_s6qRGA8mIKj26qyf-3GeOByBwFO9spCsY52LqiDD_Phn7zbjLpn5saBPGwRFDHazwCo

                                         
                                         216.58.207.228
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1494
Date: Mon, 24 Jun 2019 07:38:42 GMT
Expires: Tue, 02 Jul 2019 07:38:42 GMT
Last-Modified: Thu, 08 Dec 2016 01:00:57 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=691200
Age: 276339
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   1494
Md5:    18383378c91b40b088b91b7dd19e1d47
Sha1:   811561a24e52b8e08950771dd1a7414e66967c00
Sha256: 2624719399b42e74b0b1d4eb0ca4a2756bb7080e74cdb6eb53f446c9a78b405c
                                        
                                            GET /gb/js/sem_5ff7b7cf0f12a975a9d6eaeeaa256e2d.js HTTP/1.1 
Host: ssl.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://www.google.com/?%3F%3Fgroup_id=483&group_id=483&cntrl=00000&pid=21505&redid=80938&gsid=483&campaign_id=20&p_id=21505&id=XNSX.-r80938-t483&impid=7d2f675a-98d6-11e9-a7a5-cae258990218

                                         
                                         216.58.207.195
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding, Origin
Content-Encoding: gzip
Content-Length: 20710
Date: Wed, 19 Jun 2019 06:12:32 GMT
Expires: Thu, 18 Jun 2020 06:12:32 GMT
Last-Modified: Wed, 05 Jun 2019 02:45:00 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000
Age: 713509
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   20710
Md5:    97f8714fa61cd2d21fbde87cdf160e80
Sha1:   68a22f260fb620b20567fcf575327387b3fce380
Sha256: c518232dd05b69de7b540165ef3e1bc0eb291b9a47e7e992f88c449b01e20caa
                                        
                                            GET /r/user-5b2d088386a83 HTTP/1.1 
Host: www.g2a.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://leadmy.pl/p/KpC7/l0z3/T6mD?ml_sub1=&ml_sub2=&ml_sub3=&ml_sub4=&ml_sub5=&dl=&dl_url=&dl_title=&ld=&ref=

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /ref/PjUbTG HTTP/1.1 
Host: auth.bitbay.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://leadmy.pl/p/KpC7/l0z3/T6mD?ml_sub1=&ml_sub2=&ml_sub3=&ml_sub4=&ml_sub5=&dl=&dl_url=&dl_title=&ld=&ref=

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /user/register/230147760107644845 HTTP/1.1 
Host: web.bitpanda.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://leadmy.pl/p/KpC7/l0z3/T6mD?ml_sub1=&ml_sub2=&ml_sub3=&ml_sub4=&ml_sub5=&dl=&dl_url=&dl_title=&ld=&ref=

                                         
                                         0.0.0.0
                                        


--- Additional Info ---