ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226 1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 28191287fbb60d40b24bff8894e5420c
1a65a95aacf3a77fa32c408055dcb83e1883383c
f030a955599759ef3481e86d5f8dc087008b4c7f1b2e105232f0e1c7a55049b8
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 31 May 2023 15:01:16 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 04 Jun 2023 11:52:33 GMT
ETag: "1a65a95aacf3a77fa32c408055dcb83e1883383c"
Last-Modified: Wed, 31 May 2023 11:52:34 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2396
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d001758d9d6b4f4-OSL
cj.dotomi.com/32100lnwvD/nuz/CGGECIJC/FBEEJFG/B/B/B?f=evlg=8.64.56Vror%3C%3Ckwwsv://zzz.gseroyz.qhw/folfn-7366B78-48864AB4%3C%3CJ%3Ckwws://hso.sd1sdo-frppxqlfdwlrq.frp%3C%3C4%3C4%3C3%3C3%3C
89.207.16.75200 OK 98 kB URL User Request GET HTTP/1.1 cj.dotomi.com/32100lnwvD/nuz/CGGECIJC/FBEEJFG/B/B/B?f=evlg=8.64.56Vror%3C%3Ckwwsv://zzz.gseroyz.qhw/folfn-7366B78-48864AB4%3C%3CJ%3Ckwws://hso.sd1sdo-frppxqlfdwlrq.frp%3C%3C4%3C4%3C3%3C3%3C
IP 89.207.16.75:443
Certificate IssuerGlobalSign nv-sa
Subjectwww.qksrv.net
Fingerprint82:C1:7F:DC:0E:0D:FE:1C:11:82:E4:2F:25:21:EA:14:BE:10:5E:39
ValidityWed, 08 Feb 2023 16:06:02 GMT - Sun, 24 Sep 2023 16:31:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5277)
Hash 52fb9ebdf50890cc4c18cda3f12e7d9b
4d1ac445a08bad97e8501df171510ff605c8a54b
a8fca7bed553924f9060c238e6f93830303610facd119bedd4ce5fa08a76b95e
GET /32100lnwvD/nuz/CGGECIJC/FBEEJFG/B/B/B?f=evlg=8.64.56Vror%3C%3Ckwwsv://zzz.gseroyz.qhw/folfn-7366B78-48864AB4%3C%3CJ%3Ckwws://hso.sd1sdo-frppxqlfdwlrq.frp%3C%3C4%3C4%3C3%3C3%3C HTTP/1.1
Host: cj.dotomi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Resin/4.0.66
Set-Cookie: cjae=hk86J0WhD6nT; Max-Age=34041593; Domain=.dotomi.com; Path=/; Secure; SameSite=None
DotomiUser=400105206954937477$0$1; Max-Age=34041593; Domain=.dotomi.com; Path=/; Secure; SameSite=None
LCLK=cjo!wefh-ad4tg31; Max-Age=34041593; Domain=.dotomi.com; Path=/; Secure; SameSite=None
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Date: Wed, 31 May 2023 15:01:16 GMT
X-VC-HTTPS: On
cj.dotomi.com/favicon.ico
89.207.16.75200 OK 198 B URL GET HTTP/1.1 cj.dotomi.com/favicon.ico
IP 89.207.16.75:443
Requested by https://cj.dotomi.com/32100lnwvD/nuz/CGGECIJC/FBEEJFG/B/B/B?f=evlg=8.64.56Vror%3C%3Ckwwsv://zzz.gseroyz.qhw/folfn-7366B78-48864AB4%3C%3CJ%3Ckwws://hso.sd1sdo-frppxqlfdwlrq.frp%3C%3C4%3C4%3C3%3C3%3C
Certificate IssuerGlobalSign nv-sa
Subjectwww.qksrv.net
Fingerprint82:C1:7F:DC:0E:0D:FE:1C:11:82:E4:2F:25:21:EA:14:BE:10:5E:39
ValidityWed, 08 Feb 2023 16:06:02 GMT - Sun, 24 Sep 2023 16:31:05 GMT
File type MS Windows icon resource - 1 icon, 16x16, 2 colors\012- data
Hash ca2bb9889f5870b0b31006f9f09a23df
5932e6a0e4fcf1b7ecc28452494f73d4ae82acd3
17bf068c76eb2d552b4eea51a7f9c02d251c4a9c3b30c6a9aa322cc8eea70529
GET /favicon.ico HTTP/1.1
Host: cj.dotomi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cj.dotomi.com/32100lnwvD/nuz/CGGECIJC/FBEEJFG/B/B/B?f=evlg=8.64.56Vror%3C%3Ckwwsv://zzz.gseroyz.qhw/folfn-7366B78-48864AB4%3C%3CJ%3Ckwws://hso.sd1sdo-frppxqlfdwlrq.frp%3C%3C4%3C4%3C3%3C3%3C
Cookie: cjae=hk86J0WhD6nT; DotomiUser=400105206954937477$0$1; LCLK=cjo!wefh-ad4tg31
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Resin/4.0.66
ETag: "6/suO6GLbcU"
Last-Modified: Thu, 25 May 2023 21:02:37 GMT
Content-Type: image/x-icon
Content-Length: 198
Date: Wed, 31 May 2023 15:01:16 GMT
X-VC-HTTPS: On
cj.dotomi.com/gdpr-event-log?enc=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
89.207.16.75200 OK 50 B URL GET HTTP/1.1 cj.dotomi.com/gdpr-event-log?enc=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
IP 89.207.16.75:443
Requested by https://cj.dotomi.com/32100lnwvD/nuz/CGGECIJC/FBEEJFG/B/B/B?f=evlg=8.64.56Vror%3C%3Ckwwsv://zzz.gseroyz.qhw/folfn-7366B78-48864AB4%3C%3CJ%3Ckwws://hso.sd1sdo-frppxqlfdwlrq.frp%3C%3C4%3C4%3C3%3C3%3C
Certificate IssuerGlobalSign nv-sa
Subjectwww.qksrv.net
Fingerprint82:C1:7F:DC:0E:0D:FE:1C:11:82:E4:2F:25:21:EA:14:BE:10:5E:39
ValidityWed, 08 Feb 2023 16:06:02 GMT - Sun, 24 Sep 2023 16:31:05 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 7db7a843f18dadb40f7947564560596c
4b966c390f5784fad88c2c8359a4715d14b8e815
ec34cd386427fe6deacf99f4fdbeea4b1d1ed25f505411650d7ceaa843a7fc63
GET /gdpr-event-log?enc=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 HTTP/1.1
Host: cj.dotomi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cj.dotomi.com/32100lnwvD/nuz/CGGECIJC/FBEEJFG/B/B/B?f=evlg=8.64.56Vror%3C%3Ckwwsv://zzz.gseroyz.qhw/folfn-7366B78-48864AB4%3C%3CJ%3Ckwws://hso.sd1sdo-frppxqlfdwlrq.frp%3C%3C4%3C4%3C3%3C3%3C
Cookie: cjae=hk86J0WhD6nT; DotomiUser=400105206954937477$0$1; LCLK=cjo!wefh-ad4tg31
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Resin/4.0.66
Content-Type: image/gif
Content-Length: 50
Date: Wed, 31 May 2023 15:01:16 GMT
X-VC-HTTPS: On