dosman.pl/wp-admin/esp/ByibEMEaYxa/
185.253.212.22302 Found 0 B URL HTTP/1.1 dosman.pl/wp-admin/esp/ByibEMEaYxa/
IP 185.253.212.22:0
ASN #48707 Marcin Waligorski Greener
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-admin/esp/ByibEMEaYxa/ HTTP/1.1
Host: dosman.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 21 Jan 2023 10:28:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
Set-Cookie: PHPSESSID=0cdac00c9114489b7a5329d13417f50e; path=/; HttpOnly
locale=en_US; expires=Tue, 18-Jan-2033 10:28:13 GMT; Max-Age=315360000; path=/
Location: https://t2763.am-track.pl/redir.php?panel=Market_Listing¶ms=id%3D3845007&type=listing&id=3845007&medium=direct:direct
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 20d267853e48ef7d476459ed67da5d97
06d1bd08efd69c0e93486d3c423fa2640f372d29
24323cd45ca2ed01c63f908233d9b2ad5bb6f63394884c45bf6abb0221d0edd6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24323CD45CA2ED01C63F908233D9B2AD5BB6F63394884C45BF6ABB0221D0EDD6"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7999
Expires: Sat, 21 Jan 2023 12:41:33 GMT
Date: Sat, 21 Jan 2023 10:28:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4714c95a0c854e38f9be444f9343bf14
07ce5eb635448f2b3bafbe51e4dfeef47cdf4f7b
4d47e08c9afb704096e93a51f6e95c0dc7c7bc31e67ded39998ff37ed56e0965
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D47E08C9AFB704096E93A51F6E95C0DC7C7BC31E67DED39998FF37ED56E0965"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7093
Expires: Sat, 21 Jan 2023 12:26:27 GMT
Date: Sat, 21 Jan 2023 10:28:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 21 Jan 2023 09:49:38 GMT
content-type: application/json
age: 2316
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 17094b856fde02b2c8c2d3845ad325cf
26dc3f2ebf81faf5ab96eb75ffcbead6085528b8
6547376c41dcaa352cc4e747291916902bcddc0032b750bd84c5e3b2fe6f7d16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6547376C41DCAA352CC4E747291916902BCDDC0032B750BD84C5E3B2FE6F7D16"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6991
Expires: Sat, 21 Jan 2023 12:24:45 GMT
Date: Sat, 21 Jan 2023 10:28:14 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aO2AyV/Y2NLHYvyM/yYHnDjDB3+X4RsZy/JLihGY+FK7Lj9HAG4atCnkXRuR/WAIOw8PjvyuIxM=
x-amz-request-id: 7JEF660RG27ZR861
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 21 Jan 2023 09:46:45 GMT
age: 2489
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 10:28:14 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.usertrust.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash ac606e09fb7eff295e51bd44f50321a2
93c79068f6751c18e7925563fe433576dc676367
f210703a1739b01ed99d43e5fc879b568f80db12d43d54a0daec0b88a6245fa0
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 10:28:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 03:11:59 GMT
Expires: Thu, 26 Jan 2023 03:11:58 GMT
Etag: "93c79068f6751c18e7925563fe433576dc676367"
Cache-Control: max-age=594314,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cf5ca53a030b39-OSL
t2763.am-track.pl/redir.php?panel=Market_Listing¶ms=id%3D3845007&type=listing&id=3845007&medium=direct:direct
185.253.212.10301 Moved Permanently 0 B URL HTTP/1.1 t2763.am-track.pl/redir.php?panel=Market_Listing¶ms=id%3D3845007&type=listing&id=3845007&medium=direct:direct
IP 185.253.212.10:0
ASN #48707 Marcin Waligorski Greener
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redir.php?panel=Market_Listing¶ms=id%3D3845007&type=listing&id=3845007&medium=direct:direct HTTP/1.1
Host: t2763.am-track.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=1f565339ec695ad6eee6a7f4575a6647; path=/; secure; HttpOnly
locale=en_US; expires=Tue, 18-Jan-2033 10:28:14 GMT; Max-Age=315360000; path=/
location: https://www.aftermarket.pl/domena/dosman.pl/?_track=43625e765df8266c578001e0be67ec43
content-type: text/html; charset=UTF-8
content-length: 0
date: Sat, 21 Jan 2023 10:28:14 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 21 Jan 2023 10:17:29 GMT
age: 645
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.usertrust.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 857f59adb169ee097c98338cf312510a
11d551200adbbd3ebae8b7c14500b7ef8ff0f375
40d43d51ec3d85e5aa4dee27ded7d92be0eab98970cd29a92cd64aa369c4d8fc
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 10:28:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 07:09:02 GMT
Expires: Thu, 26 Jan 2023 07:09:01 GMT
Etag: "11d551200adbbd3ebae8b7c14500b7ef8ff0f375"
Cache-Control: max-age=585171,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cf5ca74c040b39-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bdb8a13dfce39d6e151a9ef185a772a1
037a680510f9dbce3c7cc3c0f9115fd587dbcd1d
98c8b7f269b9aad73b73fd946788ebfd7a4d7afbdd5347b56c67f73b947f5ff6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6581
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:14 GMT
Last-Modified: Sat, 21 Jan 2023 08:38:33 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
www.aftermarket.pl/domena/dosman.pl/?_track=43625e765df8266c578001e0be67ec43
185.253.212.10200 OK 11 kB URL HTTP/1.1 www.aftermarket.pl/domena/dosman.pl/?_track=43625e765df8266c578001e0be67ec43
IP 185.253.212.10:0
ASN #48707 Marcin Waligorski Greener
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (434)
Hash 63caed99614d883d501246e23dc13b74
73dc746417b2ea58f2a17157cbb92ce7b8abff96
4699316b97488ce69bb6086cd10ab91a2b08467c39a081df542e060e21a3ac70
GET /domena/dosman.pl/?_track=43625e765df8266c578001e0be67ec43 HTTP/1.1
Host: www.aftermarket.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
Connection: keep-alive
HTTP/1.1 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=df5a2ef2b86e51692348f4e88c2f268d; path=/; secure; HttpOnly
locale=en_US; expires=Tue, 18-Jan-2033 10:28:14 GMT; Max-Age=315360000; path=/
mjp_track=20230121d62e366c42e2d3248d20e1652f16738c; expires=Tue, 21-Feb-2023 10:28:14 GMT; Max-Age=2678400; path=/
x-frame-options: sameorigin
referrer-policy: origin-when-cross-origin
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' https://am-assets.pl www.googletagmanager.com www.google-analytics.com www.google.com www.gstatic.com accounts.google.com widget.helpcrunch.com connect.facebook.net stats.pusher.com secure.payu.com script.hotjar.com static.hotjar.com;style-src 'self' 'unsafe-inline' https://am-assets.pl fonts.googleapis.com accounts.google.com;
x-content-type-options: nosniff
strict-transport-security: max-age=63072000; includeSubdomains;
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
content-encoding: br
vary: Accept-Encoding
date: Sat, 21 Jan 2023 10:28:14 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bccd1fe14275d3bb56418297e502cd10
cdf19d2a4099ada369589fc7aa7021f9b30302aa
801e8b57b77806d98fe23b8421a8fdba9f1138827cc320cb5dcc986161aa7ca4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-221719-11
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-221719-11
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 4d0b06836d1d2a4b35afa00127c40fdb
fe433d293c09baf3551bf2c8d7015b642ce48ab4
03e5a6dfc76044d347b270e87e52af8c9f3b512815ed6aced65e531225766a7e
GET /gtag/js?id=UA-221719-11 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 21 Jan 2023 10:28:14 GMT
expires: Sat, 21 Jan 2023 10:28:14 GMT
cache-control: private, max-age=900
last-modified: Sat, 21 Jan 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44004
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.usertrust.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 104a1c726df94f89d362c8b3817d505e
ef191e08ff52934857c7bc19e50c81637d421919
59d882f738f475650ff13fc76f321d60da2aefb81a9efcfac640f8a67a3b18ba
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 17:11:06 GMT
Expires: Fri, 27 Jan 2023 17:11:05 GMT
Etag: "ef191e08ff52934857c7bc19e50c81637d421919"
Cache-Control: max-age=566313,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cf5ca98dd60b39-OSL
ocsp.usertrust.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 104a1c726df94f89d362c8b3817d505e
ef191e08ff52934857c7bc19e50c81637d421919
59d882f738f475650ff13fc76f321d60da2aefb81a9efcfac640f8a67a3b18ba
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 17:11:06 GMT
Expires: Fri, 27 Jan 2023 17:11:05 GMT
Etag: "ef191e08ff52934857c7bc19e50c81637d421919"
Cache-Control: max-age=566313,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cf5ca98b8eb511-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bccd1fe14275d3bb56418297e502cd10
cdf19d2a4099ada369589fc7aa7021f9b30302aa
801e8b57b77806d98fe23b8421a8fdba9f1138827cc320cb5dcc986161aa7ca4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.usertrust.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 104a1c726df94f89d362c8b3817d505e
ef191e08ff52934857c7bc19e50c81637d421919
59d882f738f475650ff13fc76f321d60da2aefb81a9efcfac640f8a67a3b18ba
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 17:11:06 GMT
Expires: Fri, 27 Jan 2023 17:11:05 GMT
Etag: "ef191e08ff52934857c7bc19e50c81637d421919"
Cache-Control: max-age=566313,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cf5ca9baca1c02-OSL
ocsp.usertrust.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 104a1c726df94f89d362c8b3817d505e
ef191e08ff52934857c7bc19e50c81637d421919
59d882f738f475650ff13fc76f321d60da2aefb81a9efcfac640f8a67a3b18ba
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 17:11:06 GMT
Expires: Fri, 27 Jan 2023 17:11:05 GMT
Etag: "ef191e08ff52934857c7bc19e50c81637d421919"
Cache-Control: max-age=566313,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cf5ca9bf6cb50c-OSL
am-assets.pl/lib/font-awesome/dist/css/all.min.css?modified=1668421450
185.253.212.21200 OK 3.5 kB URL HTTP/1.1 am-assets.pl/lib/font-awesome/dist/css/all.min.css?modified=1668421450
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type ASCII text, with very long lines (13343)
Hash 2298826193af0287ac474053c8927d3e
f1093bde819cac074003a9a1597546948eeb4435
b3ee6bbadfc4ee6ba1451038dbe24ec1260960625ba03814178ee35f5d054259
GET /lib/font-awesome/dist/css/all.min.css?modified=1668421450 HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: text/css
Last-Modified: Mon, 14 Nov 2022 10:24:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6372174a-3e04"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Content-Encoding: gzip
am-assets.pl/themes/shared/fonts/open-sans-v15-latin-ext_latin-regular.woff2
185.253.212.21200 OK 19 kB URL HTTP/1.1 am-assets.pl/themes/shared/fonts/open-sans-v15-latin-ext_latin-regular.woff2
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type Web Open Font Format (Version 2), TrueType, length 18876, version 1.0\012- data
Hash 81d0487ba73afd292730e6f89e83c2ea
20f0b5b7cac1d9a707d3cce56b7a4c16a5a11d46
557116ee5706daa3b6cb2f52e7490e22db9c30ebfc447a5c85458a5fa0f6f84b
GET /themes/shared/fonts/open-sans-v15-latin-ext_latin-regular.woff2 HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.aftermarket.pl
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: font/woff2
Content-Length: 18876
Last-Modified: Tue, 01 Sep 2020 07:56:57 GMT
Connection: keep-alive
ETag: "5f4dfec9-49bc"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
am-assets.pl/js/locale/en_US.js?modified=1668421450
185.253.212.21200 OK 3.9 kB URL HTTP/1.1 am-assets.pl/js/locale/en_US.js?modified=1668421450
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
Hash e5b510423558df52894021f3a7e28f17
0564bbcf169ff14f30312dbddce8a4730d274b21
fa8d91277bbbd668a34d998bcd9d51808fba18dff4da60a6aecb6f672186d96d
GET /js/locale/en_US.js?modified=1668421450 HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: application/javascript
Last-Modified: Mon, 14 Nov 2022 10:24:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"6372174a-27e6"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Content-Encoding: gzip
push.services.mozilla.com/
52.41.18.18101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.18.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: p8rzadlAtxVGIQjcxT9hng==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Oh1LceTAnTkQMqqjWdeDpk6P6vw=
am-assets.pl/themes/shared/fonts/open-sans-v15-latin-ext_latin-700.woff2
185.253.212.21200 OK 20 kB URL HTTP/1.1 am-assets.pl/themes/shared/fonts/open-sans-v15-latin-ext_latin-700.woff2
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type Web Open Font Format (Version 2), TrueType, length 19504, version 1.0\012- data
Hash 15df1fb3e82321d94a0ca758c62e25d2
9fce105a87ee8b8bef404942cf48c42ba5ea1ac2
b41570405890d4f995da7b265ceb5cfb50246a940f9489525a8f526cfd160356
GET /themes/shared/fonts/open-sans-v15-latin-ext_latin-700.woff2 HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.aftermarket.pl
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: font/woff2
Content-Length: 19504
Last-Modified: Tue, 01 Sep 2020 07:56:57 GMT
Connection: keep-alive
ETag: "5f4dfec9-4c30"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
am-assets.pl/themes/shared/css/desktop/release-offer.css?modified=1674123715
185.253.212.21200 OK 27 kB URL HTTP/1.1 am-assets.pl/themes/shared/css/desktop/release-offer.css?modified=1674123715
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type ASCII text, with very long lines (65536), with no line terminators
Hash f8cea4b9d92c7254deb358e76ca6037d
cffe6e88db94a8010021a175a09d90a1a85227c5
59ecdb01e56b351be1c9cc8246be2e10ad866432a02b2928d8972eaece12037d
GET /themes/shared/css/desktop/release-offer.css?modified=1674123715 HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: text/css
Last-Modified: Thu, 19 Jan 2023 10:21:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63c919c3-1fe8d"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Content-Encoding: gzip
am-assets.pl/themes/shared/fonts/open-sans-v15-latin-ext_latin-600.woff2
185.253.212.21200 OK 20 kB URL HTTP/1.1 am-assets.pl/themes/shared/fonts/open-sans-v15-latin-ext_latin-600.woff2
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type Web Open Font Format (Version 2), TrueType, length 19644, version 1.0\012- data
Hash 0dd0a359a053b2b5bb856a9580da9780
4f8481415cbf3e5900f926e0f1b2822ce991c36e
784a7423298c587ce89819cd81d6e225877b32605b4b40eb3ccafb3f3f3e5750
GET /themes/shared/fonts/open-sans-v15-latin-ext_latin-600.woff2 HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.aftermarket.pl
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: font/woff2
Content-Length: 19644
Last-Modified: Tue, 01 Sep 2020 07:56:57 GMT
Connection: keep-alive
ETag: "5f4dfec9-4cbc"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
am-assets.pl/js/release-offer.js?modified=1674123732
185.253.212.21200 OK 145 kB URL HTTP/1.1 am-assets.pl/js/release-offer.js?modified=1674123732
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type ASCII text, with very long lines (58867)
Size 145 kB (144957 bytes)
Hash fb455a41ce9da3342ae67223763f696e
fd168be18f5eff5502f8d30b8dbba412d6a5be5d
3238f56f32440618fefe48b2c1e79a1ad69b584307a5276345009499c928c993
GET /js/release-offer.js?modified=1674123732 HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: application/javascript
Last-Modified: Thu, 19 Jan 2023 10:22:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63c919d4-6a095"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Content-Encoding: gzip
am-assets.pl/themes/light/img/layout/loading.svg
185.253.212.21200 OK 1.1 kB URL HTTP/1.1 am-assets.pl/themes/light/img/layout/loading.svg
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (2277), with no line terminators
Hash 9a8925ef6d85f4f22074fac9465c5428
71203ffbaecb978af2f5342246850b2074749863
87f85929853b8044084c85647f47802b4fcf60ac0057cab00ba18c5d423ad857
GET /themes/light/img/layout/loading.svg HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: image/svg+xml
Last-Modified: Tue, 01 Sep 2020 07:56:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f4dfec8-8e5"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Content-Encoding: gzip
am-assets.pl/themes/light/img/layout/spotlight.svg
185.253.212.21200 OK 307 B URL HTTP/1.1 am-assets.pl/themes/light/img/layout/spotlight.svg
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text
Hash 3d8b4de8af4a21984c03363b54facecf
3d96d474b287248f9f8a57ac41f1994bdaf4a2a8
4cf0017791d448b604ca122a3fa6cb45d74f7b065870280ea020d3925051deb9
GET /themes/light/img/layout/spotlight.svg HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: image/svg+xml
Last-Modified: Tue, 01 Sep 2020 07:56:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f4dfec8-208"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Content-Encoding: gzip
am-assets.pl/themes/light/img/layout/logo2.png
185.253.212.21200 OK 6.8 kB URL HTTP/1.1 am-assets.pl/themes/light/img/layout/logo2.png
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type PNG image data, 303 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash e075abc93c2e823aaaa0a6a974e0f677
affe363d833544822c82ea6fd717ca5d5d93ae5d
7339dc65dd15349c3398d33419009e38a4c6d90837b65cbf8baeff9a7b688350
GET /themes/light/img/layout/logo2.png HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: image/png
Content-Length: 6775
Last-Modified: Tue, 01 Sep 2020 07:56:56 GMT
Connection: keep-alive
ETag: "5f4dfec8-1a77"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
am-assets.pl/themes/shared/css/mobile/release-offer.css?modified=1674123717
185.253.212.21200 OK 18 kB URL HTTP/1.1 am-assets.pl/themes/shared/css/mobile/release-offer.css?modified=1674123717
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type ASCII text, with very long lines (65536), with no line terminators
Hash d86262b57a08add0ef5dccc71589117b
d5a21cbdfa4e881ed64c913ef579ad582d4a8df6
d692706aaa3f8a4ab6648670af197907cf2cd369cdb8681ef480f8af60cb25d2
GET /themes/shared/css/mobile/release-offer.css?modified=1674123717 HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: text/css
Last-Modified: Thu, 19 Jan 2023 10:21:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"63c919c5-15b6d"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Content-Encoding: gzip
am-assets.pl/img/favicon144x144.png
185.253.212.21200 OK 3.4 kB URL HTTP/1.1 am-assets.pl/img/favicon144x144.png
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced\012- data
Hash ab844730fade1b6303d79e8d2c792b6a
6ebc384828f26ac01003ec3f3ea3ce77dd0bbe16
4e51c270306be91d891f35faba28dbacc41c4336a870f4c3713d5c67f5b63763
GET /img/favicon144x144.png HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: image/png
Content-Length: 3364
Last-Modified: Tue, 01 Sep 2020 07:56:55 GMT
Connection: keep-alive
ETag: "5f4dfec7-d24"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
am-assets.pl/themes/light/img/flag/en.png
185.253.212.21200 OK 1.8 kB URL HTTP/1.1 am-assets.pl/themes/light/img/flag/en.png
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type PNG image data, 48 x 32, 8-bit colormap, non-interlaced\012- data
Hash 275e2d03ae06a2be655c00465d20b030
2e19dee388989d316d94747c7c668ae3ee142a04
4f8d2ccd283749a91d71a7cfafc83adaba31f0967d38aab4b85482d45b270af6
GET /themes/light/img/flag/en.png HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: image/png
Content-Length: 1789
Last-Modified: Tue, 01 Sep 2020 07:56:56 GMT
Connection: keep-alive
ETag: "5f4dfec8-6fd"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
am-assets.pl/themes/light/img/layout/logo3.png
185.253.212.21200 OK 6.7 kB URL HTTP/1.1 am-assets.pl/themes/light/img/layout/logo3.png
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type PNG image data, 303 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 058beda4a068a21f9bc99c9991e681e3
06e110dd4681603ff9c72f3a961b1fd217057845
62295b66a302343cb87a5ba7791f64570159992eb11bff307d64d1ca5b5f8ebf
GET /themes/light/img/layout/logo3.png HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: image/png
Content-Length: 6716
Last-Modified: Mon, 14 Nov 2022 10:24:11 GMT
Connection: keep-alive
ETag: "6372174b-1a3c"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
am-assets.pl/themes/light/img/flag/pl_0.png
185.253.212.21200 OK 131 B URL HTTP/1.1 am-assets.pl/themes/light/img/flag/pl_0.png
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type PNG image data, 48 x 32, 1-bit colormap, non-interlaced\012- data
Hash 31f05192c6b82fa3554e31c88cac8277
81b558ae34ad74f30485e196fb758658fc0bf826
3676731bdfae7fe48eaded4a7ea243a0343f49316a450b3abecb5b53ae306260
GET /themes/light/img/flag/pl_0.png HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: image/png
Content-Length: 131
Last-Modified: Tue, 01 Sep 2020 07:56:56 GMT
Connection: keep-alive
ETag: "5f4dfec8-83"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
am-assets.pl/themes/light/img/layout/znak.png
185.253.212.21200 OK 1.6 kB URL HTTP/1.1 am-assets.pl/themes/light/img/layout/znak.png
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type PNG image data, 48 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash bc88796b646a5965ac8bc7a733729daf
7eeec2c03c04d70ba50183f1a9395137be592a65
51cf091ca45f1fb8d36da15c00ee30c380a9c0a88e2f0ca826b7e22b4ea93d7c
GET /themes/light/img/layout/znak.png HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: image/png
Content-Length: 1553
Last-Modified: Tue, 01 Sep 2020 07:56:56 GMT
Connection: keep-alive
ETag: "5f4dfec8-611"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
am-assets.pl/themes/light/img/jumbotron/bg25.jpg
185.253.212.21200 OK 17 kB URL HTTP/1.1 am-assets.pl/themes/light/img/jumbotron/bg25.jpg
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 1600x600, components 3\012- data
Hash 3bd6d47f204475eb48b23b6bbd628f64
77610f8adc67d9d8a83128ed3e22b2a44a3b11ca
94bd1243bf39b4c6ccc0d1172aca5cbc3ab6d0274cdfc707b17548a4eeec1cd5
GET /themes/light/img/jumbotron/bg25.jpg HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-assets.pl/themes/shared/css/desktop/release-offer.css?modified=1674123715
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: image/jpeg
Content-Length: 17185
Last-Modified: Mon, 14 Nov 2022 10:24:11 GMT
Connection: keep-alive
ETag: "6372174b-4321"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
am-assets.pl/lib/font-awesome/dist/webfonts/fa-solid-900.woff2
185.253.212.21200 OK 12 kB URL HTTP/1.1 am-assets.pl/lib/font-awesome/dist/webfonts/fa-solid-900.woff2
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type Web Open Font Format (Version 2), TrueType, length 12468, version 330.32636\012- data
Hash 4f17c30284d46eb55f3afa12821df6ed
f6dd87c490ca14efbf78989c6341754df78441ba
bc55ea42ef4cbd64d9f4e7ecbfdaa011a9c6b29f48dcaa683b3954c4d98e8b74
GET /lib/font-awesome/dist/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.aftermarket.pl
Connection: keep-alive
Referer: https://am-assets.pl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: font/woff2
Content-Length: 12468
Last-Modified: Mon, 14 Nov 2022 10:24:10 GMT
Connection: keep-alive
ETag: "6372174a-30b4"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
am-assets.pl/themes/light/img/offer/social_bar_16.png
185.253.212.21200 OK 1.5 kB URL HTTP/1.1 am-assets.pl/themes/light/img/offer/social_bar_16.png
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type PNG image data, 76 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 7bbca4962bdb1d282df195e8295ec49a
2815a35d27621670e5431863950b55055db089a4
6ec7da9ec6fe7bd51cfc73469a5d9c75c7c2ff3075bc40b778e82fb53ed593cf
GET /themes/light/img/offer/social_bar_16.png HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-assets.pl/themes/shared/css/desktop/release-offer.css?modified=1674123715
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: image/png
Content-Length: 1474
Last-Modified: Tue, 01 Sep 2020 07:56:56 GMT
Connection: keep-alive
ETag: "5f4dfec8-5c2"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
www.aftermarket.pl/helpers/graph.php?type=listing&id=3845007&period=daily
185.253.212.10200 OK 1.9 kB URL HTTP/1.1 www.aftermarket.pl/helpers/graph.php?type=listing&id=3845007&period=daily
IP 185.253.212.10:0
ASN #48707 Marcin Waligorski Greener
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document, ASCII text
Hash f4800c2d7748968ec1aaf5d54cc30bb0
35755829012a54c47f8aeb886bcf9b43ed684c95
79d64683c0ebcada3fb977730c2985317b9b79300ca20acdaff687f9e5f45711
GET /helpers/graph.php?type=listing&id=3845007&period=daily HTTP/1.1
Host: www.aftermarket.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.aftermarket.pl/domena/dosman.pl/?_track=43625e765df8266c578001e0be67ec43
Connection: keep-alive
Cookie: PHPSESSID=df5a2ef2b86e51692348f4e88c2f268d; locale=en_US; mjp_track=20230121d62e366c42e2d3248d20e1652f16738c; variableSupport=1
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: locale=en_US; expires=Tue, 18-Jan-2033 10:28:15 GMT; Max-Age=315360000; path=/
content-type: image/svg+xml
transfer-encoding: chunked
content-encoding: br
vary: Accept-Encoding
date: Sat, 21 Jan 2023 10:28:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
am-assets.pl/themes/light/img/social/footer-social.png
185.253.212.21200 OK 23 kB URL HTTP/1.1 am-assets.pl/themes/light/img/social/footer-social.png
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type PNG image data, 504 x 252, 8-bit/color RGBA, non-interlaced\012- data
Hash 261cb1ec905aa09682cbb31e7ff8a0b8
74f2261beeacb7893d8c656d9afe611cfc58288c
e3cf8799e58ac213baa587ed4ec594480b92d435bdd51c4e75e3500949dc4a77
GET /themes/light/img/social/footer-social.png HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-assets.pl/themes/shared/css/desktop/release-offer.css?modified=1674123715
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: image/png
Content-Length: 22992
Last-Modified: Tue, 01 Sep 2020 07:56:56 GMT
Connection: keep-alive
ETag: "5f4dfec8-59d0"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
am-assets.pl/lib/font-awesome/dist/webfonts/fa-regular-400.woff2
185.253.212.21200 OK 8.5 kB URL HTTP/1.1 am-assets.pl/lib/font-awesome/dist/webfonts/fa-regular-400.woff2
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type Web Open Font Format (Version 2), TrueType, length 8472, version 330.32636\012- data
Hash b399f3c70efcb1b35a857c169604844b
d68652c1dbdfefb1bd427963cd22206d2295f9e3
dbaf68982599b3a8f99463045d5095d6fde9dbddebe46834dcfb8d2673949fe8
GET /lib/font-awesome/dist/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.aftermarket.pl
Connection: keep-alive
Referer: https://am-assets.pl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: font/woff2
Content-Length: 8472
Last-Modified: Mon, 14 Nov 2022 10:24:10 GMT
Connection: keep-alive
ETag: "6372174a-2118"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
am-assets.pl/themes/light/img/layout/world.png
185.253.212.21200 OK 16 kB URL HTTP/1.1 am-assets.pl/themes/light/img/layout/world.png
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type PNG image data, 1320 x 800, 8-bit/color RGBA, non-interlaced\012- data
Hash 91c8cda9e2f00d27938e506599ef0404
bbcbd60400bb06fa1c4d25907e3cce8780f0aa1f
d6062f481058b32ccea1987b03477461c42eb58e1d9e55ddebd077ba1db0f270
GET /themes/light/img/layout/world.png HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://am-assets.pl/themes/shared/css/desktop/release-offer.css?modified=1674123715
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: image/png
Content-Length: 16085
Last-Modified: Tue, 01 Sep 2020 07:56:56 GMT
Connection: keep-alive
ETag: "5f4dfec8-3ed5"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
am-assets.pl/themes/shared/fonts/merriweather-v20-latin_latin-ext-regular.woff2
185.253.212.21200 OK 29 kB URL HTTP/1.1 am-assets.pl/themes/shared/fonts/merriweather-v20-latin_latin-ext-regular.woff2
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type Web Open Font Format (Version 2), TrueType, length 28724, version 1.0\012- data
Hash d867feb98e0959c26a52b5ebab3a5d05
d0f2eb9b2e5711a9bb0f3da5b5e9acc649b4400a
85f00e651dd3ddca26ff9977471b9e016128d4138f98db5f120ba0e2e7b28dbd
GET /themes/shared/fonts/merriweather-v20-latin_latin-ext-regular.woff2 HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.aftermarket.pl
Connection: keep-alive
Referer: https://am-assets.pl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: font/woff2
Content-Length: 28724
Last-Modified: Tue, 01 Sep 2020 07:56:57 GMT
Connection: keep-alive
ETag: "5f4dfec9-7034"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
am-assets.pl/themes/shared/fonts/merriweather-v20-latin_latin-ext-700.woff2
185.253.212.21200 OK 28 kB URL HTTP/1.1 am-assets.pl/themes/shared/fonts/merriweather-v20-latin_latin-ext-700.woff2
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type Web Open Font Format (Version 2), TrueType, length 28148, version 1.0\012- data
Hash 49e95f6f7e39b32086cbf802ffbe0421
f1ee9426a2f2b9e26534ebb51f10f6628b2c0ccb
efd05e30f8a4c0ebff660cc05841ac0dace4278b2927ea4ebf8e9cb7d4b0540d
GET /themes/shared/fonts/merriweather-v20-latin_latin-ext-700.woff2 HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.aftermarket.pl
Connection: keep-alive
Referer: https://am-assets.pl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: font/woff2
Content-Length: 28148
Last-Modified: Tue, 01 Sep 2020 07:56:57 GMT
Connection: keep-alive
ETag: "5f4dfec9-6df4"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
ocsp.usertrust.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash ac606e09fb7eff295e51bd44f50321a2
93c79068f6751c18e7925563fe433576dc676367
f210703a1739b01ed99d43e5fc879b568f80db12d43d54a0daec0b88a6245fa0
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 19 Jan 2023 03:11:59 GMT
Expires: Thu, 26 Jan 2023 03:11:58 GMT
Etag: "93c79068f6751c18e7925563fe433576dc676367"
Cache-Control: max-age=594314,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cf5caca9070b39-OSL
www.aftermarket.pl/worker.js?assets=https://am-assets.pl
185.253.212.10200 OK 325 B URL HTTP/1.1 www.aftermarket.pl/worker.js?assets=https://am-assets.pl
IP 185.253.212.10:0
ASN #48707 Marcin Waligorski Greener
Hash 642da32cc8a60525bbba6beda2e8cba2
895fcdba2a2524b2b9de97e1d873d8a632bdea11
3ea17503cb2b05ec4cddeba3e8a48a23596c0b437888079ad5f498f9006502c3
GET /worker.js?assets=https://am-assets.pl HTTP/1.1
Host: www.aftermarket.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: PHPSESSID=df5a2ef2b86e51692348f4e88c2f268d; locale=en_US; mjp_track=20230121d62e366c42e2d3248d20e1652f16738c; variableSupport=1
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
cache-control: public, max-age=604800
expires: Sat, 28 Jan 2023 10:28:15 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 20 Jun 2022 10:52:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 325
date: Sat, 21 Jan 2023 10:28:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
t2768.am-track.pl/track.php?track=43625e765df8266c578001e0be67ec43&ref=
185.253.212.10200 OK 0 B URL HTTP/1.1 t2768.am-track.pl/track.php?track=43625e765df8266c578001e0be67ec43&ref=
IP 185.253.212.10:0
ASN #48707 Marcin Waligorski Greener
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track.php?track=43625e765df8266c578001e0be67ec43&ref= HTTP/1.1
Host: t2768.am-track.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=5816c384813841340d27a4fba037543b; path=/; secure; HttpOnly
locale=en_US; expires=Tue, 18-Jan-2033 10:28:15 GMT; Max-Age=315360000; path=/
content-type: text/html; charset=UTF-8
content-length: 0
date: Sat, 21 Jan 2023 10:28:15 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
am-assets.pl/themes/light/img/favicon.ico
185.253.212.21200 OK 1.1 kB URL HTTP/1.1 am-assets.pl/themes/light/img/favicon.ico
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 6db7a1bac282894f3d07b786fdbda33e
6fecb8eced9cd8a23f3795e2c44b0347c28a96c8
0f9026c1a7d5f71fa97197a5158ef94f118c72cbb481cb279f2171315caf02b1
GET /themes/light/img/favicon.ico HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: image/x-icon
Last-Modified: Tue, 01 Sep 2020 07:56:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5f4dfec7-10be"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Content-Encoding: gzip
am-assets.pl/themes/light/img/favicon144x144.png
185.253.212.21200 OK 3.4 kB URL HTTP/1.1 am-assets.pl/themes/light/img/favicon144x144.png
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced\012- data
Hash ab844730fade1b6303d79e8d2c792b6a
6ebc384828f26ac01003ec3f3ea3ce77dd0bbe16
4e51c270306be91d891f35faba28dbacc41c4336a870f4c3713d5c67f5b63763
GET /themes/light/img/favicon144x144.png HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:15 GMT
Content-Type: image/png
Content-Length: 3364
Last-Modified: Tue, 01 Sep 2020 07:56:55 GMT
Connection: keep-alive
ETag: "5f4dfec7-d24"
Expires: Sat, 28 Jan 2023 10:28:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 46b8df17eeb01460decb64410267e15e
f6693bd6607ce79c0a4899763da30d886dcd6ad3
f9948fc9e977fc5b4fc6d74f6bb661fcbfeb4ef3b1e3a1573a6ca6f3cc5319c1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5494
Cache-Control: max-age=144983
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:15 GMT
Etag: "63cb3c20-1d7"
Expires: Mon, 23 Jan 2023 02:44:38 GMT
Last-Modified: Sat, 21 Jan 2023 01:13:04 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 46b8df17eeb01460decb64410267e15e
f6693bd6607ce79c0a4899763da30d886dcd6ad3
f9948fc9e977fc5b4fc6d74f6bb661fcbfeb4ef3b1e3a1573a6ca6f3cc5319c1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5494
Cache-Control: max-age=144983
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:15 GMT
Etag: "63cb3c20-1d7"
Expires: Mon, 23 Jan 2023 02:44:38 GMT
Last-Modified: Sat, 21 Jan 2023 01:13:04 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2fb17a96d35e7f2e8a97d1f1d08b3476
a7c51af395a14e3338647d8b897d92e31f3f0d78
93e4595449f73cb968ad18e64180fce3b553b25eb59d943cae8f0546f75e7177
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
216.239.36.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.36.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 21 Jan 2023 08:41:07 GMT
expires: Sat, 21 Jan 2023 10:41:07 GMT
cache-control: public, max-age=7200
age: 6428
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash a4734d0c96f70ddd80751ea27a8db891
58d6f364d7a9152539f95e5f8d27c1c2b7cf4d7a
cab4e5f2d54956d22db419b41fd9e91942e81b275e2b5dc729f7cd14f3a7cd70
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.aftermarket.pl
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: da028902fae6f117a387e6f4ff5fb5e3
etag: "b4c433252977763c361f6548ea54cf06"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 21 Jan 2023 10:29:12 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: pHNNDJb3Dd2AdR6ieo24kQ==
x-fb-debug: 7Pwjz5PePD53OSs3Zl1rSLMTMCbIDBsb1GNKY8p8b8FvlCX/cb0oOmQcg9sn1G8oRZAvZN70n6gt2aHLHoz24g==
content-length: 1688
x-fb-trip-id: 1904183273
date: Sat, 21 Jan 2023 10:28:15 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 9ba458c0d3060a442f3094daf58ec05d
fc35d487d0dd81e6855f1b02367b755609d9608d
17087257ea25c2232c025f338b9f3153d35c3d953cb382b7b6e01728a643bc0b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: lof2dEjzqp5IXhXRrNOvP0gLQnC072EG3/TmKODbM+BEBIj7FYj+IZSzhFjFvaR/bokAr/lKU0Mu0Rt7hfKrhg==
priority: u=3,i
content-length: 27859
x-fb-trip-id: 1904183273
date: Sat, 21 Jan 2023 10:28:15 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 46b8df17eeb01460decb64410267e15e
f6693bd6607ce79c0a4899763da30d886dcd6ad3
f9948fc9e977fc5b4fc6d74f6bb661fcbfeb4ef3b1e3a1573a6ca6f3cc5319c1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5494
Cache-Control: max-age=144983
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:15 GMT
Etag: "63cb3c20-1d7"
Expires: Mon, 23 Jan 2023 02:44:38 GMT
Last-Modified: Sat, 21 Jan 2023 01:13:04 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk.js?hash=40961ba016b22d6f93551f4da9656051
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=40961ba016b22d6f93551f4da9656051
IP 31.13.72.12:0
File type ASCII text, with very long lines (17777)
Hash 292204c6028db3b6dce18be945901953
90cb18d342e3fd3bcdbf1a17c3a8dd897ba90e6f
93278ce93957e2ceeeefdb91978bcb39afa8e5dc284eda34192d45ed88c9944f
GET /en_US/sdk.js?hash=40961ba016b22d6f93551f4da9656051 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.aftermarket.pl
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ac84bf78217a9df1e982d5fe062a5dbd
etag: "e8f1b0b0d19c6fd3af0631cb97966ee4"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 21 Jan 2024 08:05:39 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: KSIExgKNs7bc4YvpRZAZUw==
x-fb-debug: y+8AB3PE0xUkbAjtCmuuRQgnhTNnlbXq3oOTCzrwZVzkRN8TRBg6chE1H64Pijdoythw0+GBnNmDxwP2WIpnyg==
priority: u=3,i
content-length: 88390
x-fb-trip-id: 1904183273
date: Sat, 21 Jan 2023 10:28:15 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9046bdd3634f2cfb8ace7c326c4af05f
d92d1610bbcc211f0648ec87b5aee6a562f606db
eea88fe2aaabd085058e3cf139e8780e1ddeff62e4fb94d6eeabe512a309d8ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
script.hotjar.com/modules.ea0a6d6a741d5de8308e.js
143.204.55.40200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.ea0a6d6a741d5de8308e.js
IP 143.204.55.40:0
File type Unicode text, UTF-8 text, with very long lines (48015)
Hash e45ceb77c1a47254136f1ef733de65df
7cc640ca25ac5232038a02fbaf6d2677871ebaf0
25e950716f031b1000c0fc674457836b68ad60912f265f7efc190f6a93a71a2d
GET /modules.ea0a6d6a741d5de8308e.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68675
date: Fri, 20 Jan 2023 11:10:05 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e45ceb77c1a47254136f1ef733de65df"
last-modified: Fri, 20 Jan 2023 11:09:55 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NAgawef3oT0ZplD3MWNDHr0TLFvQz-MeYWEAhOm9koFb6H0M7ve48Q==
age: 83890
X-Firefox-Spdy: h2
accounts.google.com/gsi/client
216.58.207.237200 OK 77 kB URL HTTP/2 accounts.google.com/gsi/client
IP 216.58.207.237:0
File type ASCII text, with very long lines (3033)
Hash fd32fa83e9220c90f80b72fd529ea205
2ea59985f5eb2114543afe74f0507cb7301d50fc
b346b7e13b5f5522c3e7c2105ed0c7bc4220d0c4d4881f60e2c47169b6288bd7
GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Sat, 21 Jan 2023 10:28:15 GMT
date: Sat, 21 Jan 2023 10:28:15 GMT
cache-control: private, max-age=1800
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-security-policy: script-src 'nonce-PK1JSdVmRq9zbMsU8dEcsA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
vars.hotjar.com/box-ff00c703c3bbdf54ae44ee858d64f69e.html
143.204.55.101200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-ff00c703c3bbdf54ae44ee858d64f69e.html
IP 143.204.55.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 730971b89ffa8b99e4157f49a4275594
7041ce872cc30e32c6b04a958b0cf810e5fc5651
da09da5b55ce65cdb58f29842d654aa637580d8c4d5d3cddfa08de6d866dcf65
GET /box-ff00c703c3bbdf54ae44ee858d64f69e.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 18 Jan 2023 10:13:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "730971b89ffa8b99e4157f49a4275594"
last-modified: Wed, 18 Jan 2023 10:12:30 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AgJZXD5hoMikjNG-0bHNNHjoEFNs64zNsx3Fk9qMYW2Aaf48dI2fcA==
age: 260109
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1452317691874950&ev=fb_page_view&dl=https%3A%2F%2Fwww.aftermarket.pl%2Fdomena%2Fdosman.pl%2F%3F_track%3D43625e765df8266c578001e0be67ec43&rl=&if=false&ts=1674296895020&sw=1280&sh=1024&at=
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1452317691874950&ev=fb_page_view&dl=https%3A%2F%2Fwww.aftermarket.pl%2Fdomena%2Fdosman.pl%2F%3F_track%3D43625e765df8266c578001e0be67ec43&rl=&if=false&ts=1674296895020&sw=1280&sh=1024&at=
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1452317691874950&ev=fb_page_view&dl=https%3A%2F%2Fwww.aftermarket.pl%2Fdomena%2Fdosman.pl%2F%3F_track%3D43625e765df8266c578001e0be67ec43&rl=&if=false&ts=1674296895020&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 21 Jan 2023 10:28:15 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 875fc1415608498b67d609fd3b7335ae
463aca613dcdfc3446e7c7f4663d9577ef92f94e
fcb4c1657bc5afb8c1adfbec67198211be206ff61b5cc7c13565d5ce492de66e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 875fc1415608498b67d609fd3b7335ae
463aca613dcdfc3446e7c7f4663d9577ef92f94e
fcb4c1657bc5afb8c1adfbec67198211be206ff61b5cc7c13565d5ce492de66e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=1871292100&gjid=597862163&_gid=730718986.1674296895&_u=IEBAAEAAAAAAACAAI~&z=186323434
64.233.161.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=1871292100&gjid=597862163&_gid=730718986.1674296895&_u=IEBAAEAAAAAAACAAI~&z=186323434
IP 64.233.161.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=1871292100&gjid=597862163&_gid=730718986.1674296895&_u=IEBAAEAAAAAAACAAI~&z=186323434 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.aftermarket.pl
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.aftermarket.pl
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 21 Jan 2023 10:28:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=927784508&gjid=340299796&_gid=730718986.1674296895&_u=YEDAAUABAAAAACAAI~&z=1059739143
64.233.161.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=927784508&gjid=340299796&_gid=730718986.1674296895&_u=YEDAAUABAAAAACAAI~&z=1059739143
IP 64.233.161.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=927784508&gjid=340299796&_gid=730718986.1674296895&_u=YEDAAUABAAAAACAAI~&z=1059739143 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.aftermarket.pl
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.aftermarket.pl
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 21 Jan 2023 10:28:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 875fc1415608498b67d609fd3b7335ae
463aca613dcdfc3446e7c7f4663d9577ef92f94e
fcb4c1657bc5afb8c1adfbec67198211be206ff61b5cc7c13565d5ce492de66e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11173
Expires: Sat, 21 Jan 2023 13:34:29 GMT
Date: Sat, 21 Jan 2023 10:28:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11173
Expires: Sat, 21 Jan 2023 13:34:29 GMT
Date: Sat, 21 Jan 2023 10:28:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a618971ebc90b5698ddbabc4637e3345
f920b73a7c9b57d77194ba8ba406664d8469b6b6
f7c66c647552a10c53d758e1eedd450226c969b0001a25a616773d57f10e16bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7C66C647552A10C53D758E1EEDD450226C969B0001A25A616773D57F10E16BF"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11173
Expires: Sat, 21 Jan 2023 13:34:29 GMT
Date: Sat, 21 Jan 2023 10:28:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b5b95d-798c-4d73-bd79-8e3c092be9b0.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b5b95d-798c-4d73-bd79-8e3c092be9b0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4b8e05930ca3ed03e20300b36819b1a
90645bb11f3788a9a03ad1756de541fea594fb15
0530c3fd68291836e997842e3e4b5bbef6086e89686f786dbda059143a5a8b5d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b5b95d-798c-4d73-bd79-8e3c092be9b0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5081
x-amzn-requestid: 56788104-29ed-4ff9-b9c5-58b83e53d169
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: etktlF50oAMFwNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c21b23-1dafe7e12dbeee0e3318ccdc;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 03:01:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 886cYViC-eBqAPpavmVYF0Jxqhsk8VQc8O1KPpTGM1yFpjrs-IxFVw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 11:59:42 GMT
age: 80914
etag: "90645bb11f3788a9a03ad1756de541fea594fb15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b68e9e4-1990-4061-af46-b82abe4506ac.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b68e9e4-1990-4061-af46-b82abe4506ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94079233f2d67e98580bfd64b2894ae4
89961b28d9aee3e387e4aaa57275c5dca1dca8f2
8161291ac6d3bd7f025a6d7528130576ddd4fac33c41a7b914a6b5b0ad139c28
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b68e9e4-1990-4061-af46-b82abe4506ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9774
x-amzn-requestid: 8a16e99c-052a-4f25-8832-f7e04606e581
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAogLHHvIAMFr-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9bacd-10b727ae4904494371326a16;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:49:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xvgnwnHWo3YW8tYseOKI_Af1GZnLEuwIiapYgscmXKcjYiqkpbN6zQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 22:05:11 GMT
age: 44585
etag: "89961b28d9aee3e387e4aaa57275c5dca1dca8f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a7ab95a69ddfa5014258076e66a6e19
1a54cca86788536002d6d18c5180ccf265ba1169
09348afd6055b26b5dba6f8f6ef763d52e6e040c039c6f763d64f71b8ca08d51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10988
x-amzn-requestid: 67c03c6c-3896-4890-a75b-ecd7c1c1a4e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foHG8tIAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61300-2de17e5b0225f9427c197bc5;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cxuHpm9vR0_DvHdEtR5p5eRRNAFgCrOTnak0RsH3OeCccehhurKhJA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 21 Jan 2023 01:38:03 GMT
age: 31813
etag: "1a54cca86788536002d6d18c5180ccf265ba1169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcaf32145-89e4-4f11-b8c1-0f5b832b325a.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcaf32145-89e4-4f11-b8c1-0f5b832b325a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a43120101d55af4d7d2cb93aa3f81560
2c1443887c1e4a85ad794f463fc947a97486e091
055cd52ec7c883a67e521fba820e80cbbf8ecb59343f6d48ba5e5d9b22bfddcc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcaf32145-89e4-4f11-b8c1-0f5b832b325a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7895
x-amzn-requestid: 3ae300df-5e6c-4c70-a8ed-1475b7580b9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: etlxaEz2IAMFwDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c21cd5-1b0ce13023f3ada1112870db;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 03:09:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ffjveHMubnwvTvS4AC0uHyf1hCYDHluCS3oxM25bE5U1sbjD65Gjcw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 21:49:35 GMT
age: 45521
etag: "2c1443887c1e4a85ad794f463fc947a97486e091"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 893ea518ea7c11ec06ffea60b2ee7921
34675a13bbac6abd1b087e546425e141215cf072
675ec12ed5803fad5036cedc1a3b66229316836bb321b4ad3a34aab56a100ca7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02d903ef-00fc-4f25-8b4f-138ec32359bf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8698
x-amzn-requestid: 97c3bd04-2d8a-447e-85cb-376ea44b283c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0K85GOQIAMFbPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4beb8-5b6517906d2f8bad6488e6f8;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:04:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: reROJ7ha0LKGWpSMN0ioNVaIrIEhJUn_cfprHVZlfyY7jBoFyKh0rw==
via: 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 13:48:55 GMT
age: 74361
etag: "34675a13bbac6abd1b087e546425e141215cf072"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19e2681-f167-4577-b7db-9afc7bd1ccf2.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19e2681-f167-4577-b7db-9afc7bd1ccf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3af2d51fb89ef0261ba025d76169261
9b3f4e3f63b64030624e02ad6ab8ef43a676dd66
c3d5a6f829dc59db8ed27a92fcfc6d387633bb43388e2c19d68b89356a13b1cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa19e2681-f167-4577-b7db-9afc7bd1ccf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13812
x-amzn-requestid: 7e3de1bc-a850-4a6e-891c-094996ee4a76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fAmw2HldoAMF-Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c9b805-5443ffce123461b44b9815b2;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 21:37:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: EUm5z7VSHRCILWZmLR5u_EuVtfVDerCwgAO7R19fDJZqYmsPa6Vz3Q==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 22:05:54 GMT
age: 44542
etag: "9b3f4e3f63b64030624e02ad6ab8ef43a676dd66"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
am-assets.pl/lib/font-awesome/dist/webfonts/fa-light-300.woff2
185.253.212.21200 OK 860 B URL HTTP/1.1 am-assets.pl/lib/font-awesome/dist/webfonts/fa-light-300.woff2
IP 185.253.212.21:0
ASN #48707 Marcin Waligorski Greener
File type Web Open Font Format (Version 2), TrueType, length 860, version 330.32636\012- data
Hash 072dc3ee72d59e253b9046f982ea8dd2
56b4e83d97dea1cf1d7140489a4025e14eba80f8
dbb5acbc5e1700b712e1246b7919f1bf2e09b01a3f8de99920c36e0c74f9d381
GET /lib/font-awesome/dist/webfonts/fa-light-300.woff2 HTTP/1.1
Host: am-assets.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.aftermarket.pl
Connection: keep-alive
Referer: https://am-assets.pl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 21 Jan 2023 10:28:16 GMT
Content-Type: font/woff2
Content-Length: 860
Last-Modified: Mon, 13 Jul 2020 08:26:53 GMT
Connection: keep-alive
ETag: "5f0c1acd-35c"
Expires: Sat, 28 Jan 2023 10:28:16 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Pragma: public
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 34a6ffa8918b00f3f6d21bd90db799f4
6573697e6488b07ba3551ca7fea9b89220494b3a
dff7862c0cfa5ae27f6e8daef94bf0cd05000b667dbabd62a673ec0354e4873b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 34a6ffa8918b00f3f6d21bd90db799f4
6573697e6488b07ba3551ca7fea9b89220494b3a
dff7862c0cfa5ae27f6e8daef94bf0cd05000b667dbabd62a673ec0354e4873b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3c232c19f3fc429b50b4b21d042ea2d1
232ff9e14ff2bd70e2c058c139e3694cc8c45f25
dfdf4248506d908ca817562e74c64bdb1a192c61c6d1f2f2f66db045bc1e3575
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3c232c19f3fc429b50b4b21d042ea2d1
232ff9e14ff2bd70e2c058c139e3694cc8c45f25
dfdf4248506d908ca817562e74c64bdb1a192c61c6d1f2f2f66db045bc1e3575
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=927784508&_u=YEDAAUABAAAAACAAI~&z=888381576
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=927784508&_u=YEDAAUABAAAAACAAI~&z=888381576
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=927784508&_u=YEDAAUABAAAAACAAI~&z=888381576 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 21 Jan 2023 10:28:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=1871292100&_u=IEBAAEAAAAAAACAAI~&z=1318789323
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=1871292100&_u=IEBAAEAAAAAAACAAI~&z=1318789323
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=1871292100&_u=IEBAAEAAAAAAACAAI~&z=1318789323 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 21 Jan 2023 10:28:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=1871292100&_u=IEBAAEAAAAAAACAAI~&z=1318789323
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=1871292100&_u=IEBAAEAAAAAAACAAI~&z=1318789323
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=1871292100&_u=IEBAAEAAAAAAACAAI~&z=1318789323 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 21 Jan 2023 10:28:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=927784508&_u=YEDAAUABAAAAACAAI~&z=888381576
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=927784508&_u=YEDAAUABAAAAACAAI~&z=888381576
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-221719-11&cid=887269886.1674296895&jid=927784508&_u=YEDAAUABAAAAACAAI~&z=888381576 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 21 Jan 2023 10:28:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3c232c19f3fc429b50b4b21d042ea2d1
232ff9e14ff2bd70e2c058c139e3694cc8c45f25
dfdf4248506d908ca817562e74c64bdb1a192c61c6d1f2f2f66db045bc1e3575
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 10:28:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.hotjar.com/c/hotjar-2750870.js?sv=6
143.204.55.84200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2750870.js?sv=6
IP 143.204.55.84:0
GET /c/hotjar-2750870.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.aftermarket.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sat, 21 Jan 2023 10:28:12 GMT
cache-control: max-age=60
etag: W/65eef5417ca027322b7b0e9acf5e22d9
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zWHZJcX4vrAZwAkCWSGHr6PTECW5GR3Kv7zHQhKmAou7erw28bDVJg==
age: 3
X-Firefox-Spdy: h2