fotypp.republika.pl/4/3.exe
301 Moved Permanently 0 B URL User Request GET HTTP/1.1 fotypp.republika.pl/4/3.exe
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ET MALWARE Single char EXE direct download likely trojan (multiple families)
GET /4/3.exe HTTP/1.1
Host: fotypp.republika.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: Ring Publishing - Accelerator
Date: Wed, 29 Nov 2023 16:39:58 GMT
Content-Length: 0
Connection: keep-alive
Location: https://404.onet.pl/
set-cookie: acc_segment=85; Path=/; Max-Age=604800
404 Not Found 44 kB URL User Request GET HTTP/2 IP
Certificate IssuerDigiCert Inc
Subject*.onet.pl
Fingerprint8A:73:93:00:4A:90:11:A6:4C:80:2B:96:3F:10:40:90:AE:81:6B:9F
ValidityTue, 11 Jul 2023 00:00:00 GMT - Tue, 14 May 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (30232), with CRLF, LF line terminators
Hash b71181a33d6d38e13123bff4a6c762da
589b5081851bd9720b0249aeaf633b3537d79c46
83633065ff5b2cc7f2dad5601f06aca5b57e7e11d5ebf11802846a049a3c5381
GET / HTTP/1.1
Host: 404.onet.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: text/html
content-length: 43508
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:39:17 GMT
last-modified: Fri, 04 Feb 2022 11:55:36 GMT
cache-control: max-age=604800, public
x-amz-meta-cb-modifiedtime: Fri, 04 Feb 2022 11:04:27 GMT
x-amz-meta-md5: 23432bd7d885eca8f460d8ecb91ab364
content-encoding: br
link: <https://events.ocdn.eu>; rel=preconnect
set-cookie: acc_segment=90; Path=/; Max-Age=604800; SameSite=None; Secure
x-cache: Error from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: sAo0ggy5f-gZ_8sOsMkGx5bvfSR6A1FuhNKZuTxSr3eJz2SrTgQHTA==
age: 41
X-Firefox-Spdy: h2
status.geotrust.com/
280 B IP
Hash a31f271c37748dbd9228efbb2d90b562
a958c3f7bc893c5a5f80f39c6e194744f6fa5244
ccb5b2f5c460ee34d04c3375306d29fecf2f173ef9a7d6af7363d9448d50981b
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5016
Cache-Control: max-age=7200
Content-Type: application/ocsp-response
Date: Wed, 29 Nov 2023 16:39:58 GMT
Last-Modified: Wed, 29 Nov 2023 15:16:22 GMT
Server: ECAcc (ska/F790)
X-Cache: HIT
Content-Length: 280
lib.onet.pl/s.csr/init/init.js?v=202310
200 OK 93 kB URL GET HTTP/2 lib.onet.pl/s.csr/init/init.js?v=202310
IP
Certificate IssuerDigiCert Inc
Subject*.onet.pl
Fingerprint8A:73:93:00:4A:90:11:A6:4C:80:2B:96:3F:10:40:90:AE:81:6B:9F
ValidityTue, 11 Jul 2023 00:00:00 GMT - Tue, 14 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash d1429f028287990f3211ac299b528abe
d223ee661c74c6dfd8b3bd56a602d2b56f671836
f523e528533085cf0f8e73e92747ee1914a59d9e21a141c49db7dd0d1a23c472
GET /s.csr/init/init.js?v=202310 HTTP/1.1
Host: lib.onet.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 93047
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:30:52 GMT
cache-control: max-age=86400
timing-allow-origin: *
last-modified: Wed, 29 Nov 2023 08:32:00 GMT
content-encoding: br
set-cookie: acc_segment=39; Path=/; Max-Age=604800; SameSite=None; Secure
accept-ranges: bytes
etag: "7b2beee452a7f9e7f1827a0375da4c21"
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: n2xNwEqpHpTBXJxvOLEkfdVYXLU3Ok-lFO1G_FRuiMDbYt3VvvdbYg==
age: 546
X-Firefox-Spdy: h2
lib.onet.pl/static/pixel/1.6.10/pixel-module.js?b11653fdc7f31eca050104c05bddc247
200 OK 7.1 kB URL GET HTTP/2 lib.onet.pl/static/pixel/1.6.10/pixel-module.js?b11653fdc7f31eca050104c05bddc247
IP
Certificate IssuerDigiCert Inc
Subject*.onet.pl
Fingerprint8A:73:93:00:4A:90:11:A6:4C:80:2B:96:3F:10:40:90:AE:81:6B:9F
ValidityTue, 11 Jul 2023 00:00:00 GMT - Tue, 14 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (26630), with no line terminators
Hash b11653fdc7f31eca050104c05bddc247
40fe652dc205ef565e3fa0411ac0c8a1a4775704
1c56a8536536def7ab72bc1875f4d29019eecddcba9c2c0e80ea20ac7858e7c2
GET /static/pixel/1.6.10/pixel-module.js?b11653fdc7f31eca050104c05bddc247 HTTP/1.1
Host: lib.onet.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Cookie: acc_segment=39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 7148
server: Ring Publishing - Accelerator
last-modified: Mon, 20 Nov 2023 18:16:18 GMT
x-amz-meta-md5: b11653fdc7f31eca050104c05bddc247
content-encoding: br
set-cookie: acc_segment=83; Path=/; Max-Age=604800; SameSite=None; Secure
accept-ranges: bytes
date: Wed, 29 Nov 2023 16:34:16 GMT
cache-control: max-age=31536000
etag: "b11653fdc7f31eca050104c05bddc247"
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: kY7AtrIdhCfNUPphNgMqirE-_PcBdd_B-CRgOil74WUN1OKJi3tR5Q==
age: 342
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-P8QDTBJ
200 OK 54 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-P8QDTBJ
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (6955)
Hash fd78bc5b46d20d0c95a1ae3a212fe910
28796968dcc466ec9ebefdcbaf80a04be7e40178
faabe7c031137586bc576a7f1018b1dd958157ec84fd95ace7aae13880348b93
GET /gtm.js?id=GTM-P8QDTBJ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 29 Nov 2023 16:39:58 GMT
expires: Wed, 29 Nov 2023 16:39:58 GMT
cache-control: private, max-age=900
last-modified: Wed, 29 Nov 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 53978
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sgqcvfjvr.onet.pl/build/dlApi/dl.aureus.min.js?4&077ac16f633bc13fc61ba37e0e5dadf0
200 OK 896 B URL GET HTTP/2 sgqcvfjvr.onet.pl/build/dlApi/dl.aureus.min.js?4&077ac16f633bc13fc61ba37e0e5dadf0
IP
Certificate IssuerDigiCert Inc
Subject*.onet.pl
Fingerprint8A:73:93:00:4A:90:11:A6:4C:80:2B:96:3F:10:40:90:AE:81:6B:9F
ValidityTue, 11 Jul 2023 00:00:00 GMT - Tue, 14 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (2146), with no line terminators
Hash 077ac16f633bc13fc61ba37e0e5dadf0
68df4d1f382b9d9d62ece1830712872ffd8feb90
aaae4aa9532a0d29d75f501420392cf81e7e0277e6ba096053eadadcb28ba53e
GET /build/dlApi/dl.aureus.min.js?4&077ac16f633bc13fc61ba37e0e5dadf0 HTTP/1.1
Host: sgqcvfjvr.onet.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 896
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:29:18 GMT
cache-control: max-age=2592000
timing-allow-origin: *
last-modified: Wed, 29 Nov 2023 08:31:49 GMT
content-encoding: br
set-cookie: acc_segment=79; Path=/; Max-Age=604800; SameSite=None; Secure
accept-ranges: bytes
etag: "077ac16f633bc13fc61ba37e0e5dadf0"
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: hFgXFv_R6OYnzB3XyVoxQiZFdb5DoyEj3_5DDJyvOjHTQaY2rxPgig==
age: 640
X-Firefox-Spdy: h2
sgqcvfjvr.onet.pl/simetra/artemis/0.6.2/artemis.min.js?1f79b58f7b6dd00e35ae1c6cd88a09c2
200 OK 5.6 kB URL GET HTTP/2 sgqcvfjvr.onet.pl/simetra/artemis/0.6.2/artemis.min.js?1f79b58f7b6dd00e35ae1c6cd88a09c2
IP
Certificate IssuerDigiCert Inc
Subject*.onet.pl
Fingerprint8A:73:93:00:4A:90:11:A6:4C:80:2B:96:3F:10:40:90:AE:81:6B:9F
ValidityTue, 11 Jul 2023 00:00:00 GMT - Tue, 14 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (9476)
Hash 1f79b58f7b6dd00e35ae1c6cd88a09c2
df3b5c07d57dbaf68b3366642ae3cea04e10e47d
4db1d4b1acda5f39723cac7ac0e77cccaabd5821938749d3ac82944a85091d96
GET /simetra/artemis/0.6.2/artemis.min.js?1f79b58f7b6dd00e35ae1c6cd88a09c2 HTTP/1.1
Host: sgqcvfjvr.onet.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 5570
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:31:59 GMT
last-modified: Fri, 17 Nov 2023 12:53:23 GMT
x-amz-server-side-encryption: AES256
cache-control: max-age=2592000
x-amz-version-id: lYQgFFRujgCLTGXyOeiuZMvAqs4OmI6h
content-encoding: br
timing-allow-origin: *
set-cookie: acc_segment=5; Path=/; Max-Age=604800; SameSite=None; Secure
accept-ranges: bytes
etag: "1f79b58f7b6dd00e35ae1c6cd88a09c2"
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Y3mHhpaTo5pJrH53shjBESaHRr8RV0uzxPubhNM3D3DENozmVtIgyA==
age: 479
X-Firefox-Spdy: h2
sgqcvfjvr.onet.pl/build/dlApi/dl.cmp.min.js?4&aa439ad98ae4c298a7e0c4a766769462
200 OK 35 kB URL GET HTTP/2 sgqcvfjvr.onet.pl/build/dlApi/dl.cmp.min.js?4&aa439ad98ae4c298a7e0c4a766769462
IP
Certificate IssuerDigiCert Inc
Subject*.onet.pl
Fingerprint8A:73:93:00:4A:90:11:A6:4C:80:2B:96:3F:10:40:90:AE:81:6B:9F
ValidityTue, 11 Jul 2023 00:00:00 GMT - Tue, 14 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash aa439ad98ae4c298a7e0c4a766769462
837938c6eac731b4f58030af7e4efa68e09947ef
89c9bc28b0e1eea34a8bbe456813aba9cbdde392c7003b545d3626032b98c375
GET /build/dlApi/dl.cmp.min.js?4&aa439ad98ae4c298a7e0c4a766769462 HTTP/1.1
Host: sgqcvfjvr.onet.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 35133
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:27:12 GMT
cache-control: max-age=2592000
timing-allow-origin: *
last-modified: Wed, 29 Nov 2023 08:32:00 GMT
content-encoding: br
set-cookie: acc_segment=42; Path=/; Max-Age=604800; SameSite=None; Secure
accept-ranges: bytes
etag: "61f87a44e0ef3a77c7f815f3648d8651"
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 4mfkCyVaILUavlEiq-yMsmU2ep1_qCc2SvBT1t_sm23xaC59azO4Sw==
age: 766
X-Firefox-Spdy: h2
sgqcvfjvr.onet.pl/simetra/clickmap/5.1.0/clickmap.min.js?d11d55f7ee49bd223b694aa45e565e1b
200 OK 1.1 kB URL GET HTTP/2 sgqcvfjvr.onet.pl/simetra/clickmap/5.1.0/clickmap.min.js?d11d55f7ee49bd223b694aa45e565e1b
IP
Certificate IssuerDigiCert Inc
Subject*.onet.pl
Fingerprint8A:73:93:00:4A:90:11:A6:4C:80:2B:96:3F:10:40:90:AE:81:6B:9F
ValidityTue, 11 Jul 2023 00:00:00 GMT - Tue, 14 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (2123)
Hash d11d55f7ee49bd223b694aa45e565e1b
df25e8baf1ff3a56239cb88f25a710db04bc276f
5624e381bd10235ab37d989a5d19eb7b266c16b3db3c191d9a2990651c1d5e3c
GET /simetra/clickmap/5.1.0/clickmap.min.js?d11d55f7ee49bd223b694aa45e565e1b HTTP/1.1
Host: sgqcvfjvr.onet.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 1058
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:35:49 GMT
cache-control: max-age=2592000
last-modified: Thu, 16 Nov 2023 10:54:17 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: CeiDLTDx9SUhptl7BsYtzZJYkoPWMhXc
content-encoding: br
timing-allow-origin: *
set-cookie: acc_segment=8; Path=/; Max-Age=604800; SameSite=None; Secure
accept-ranges: bytes
etag: "d11d55f7ee49bd223b694aa45e565e1b"
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: dKISs1lhHbPhMq38iPA38VelzY-ShNBbrvJIe974g-Z985eXaR99Nw==
age: 249
X-Firefox-Spdy: h2
status.geotrust.com/
279 B IP
Hash 7be7641d8f4cb72508e15c4ed357b6f3
7275b483a2d9671b163b19559b39eaf903f54831
cb8f59999e5353e87d86785f57c9f85b60dcec2d5d62056aa04956ddd900f1eb
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4505
Cache-Control: max-age=7200
Content-Type: application/ocsp-response
Date: Wed, 29 Nov 2023 16:39:58 GMT
Last-Modified: Wed, 29 Nov 2023 15:24:54 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 279
cmp.dreamlab.pl/vendor-list/v3/1746213/vendor-list.json?v=23
200 OK 60 kB URL GET HTTP/2 cmp.dreamlab.pl/vendor-list/v3/1746213/vendor-list.json?v=23
IP
Certificate IssuerDigiCert Inc
Subject*.dreamlab.pl
FingerprintA2:4E:CE:2E:CD:56:B1:B9:BA:68:2B:94:18:AD:03:E3:3B:32:BC:CC
ValidityWed, 14 Jun 2023 00:00:00 GMT - Thu, 13 Jun 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 7b5759a025df336ca9d197d72acf59ec
73a9671faa7ab3da66484add3db55837d8cf0b52
12094f9bac1a753ee10ba0347152abeeb0d833b58bffbe5029292a47b34a06c3
GET /vendor-list/v3/1746213/vendor-list.json?v=23 HTTP/1.1
Host: cmp.dreamlab.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://404.onet.pl
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 60254
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:28:16 GMT
cache-control: max-age=86400
last-modified: Thu, 23 Nov 2023 09:09:17 GMT
x-amz-meta-md5: 7b5759a025df336ca9d197d72acf59ec
content-encoding: br
access-control-allow-origin: *
timing-allow-origin: *
set-cookie: acc_segment=42; Path=/; Max-Age=604800; SameSite=None; Secure
accept-ranges: bytes
etag: "7b5759a025df336ca9d197d72acf59ec"
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: WmGJK_mcHkJoQ5Iogj5hLjiiOwDbPDRx--NtCf72bFDccBXZXlq7Nw==
age: 703
X-Firefox-Spdy: h2
csr.onet.pl/1746213/tags?domain=404.onet.pl&site=STRONA404&v=1
200 OK 15 kB URL GET HTTP/2 csr.onet.pl/1746213/tags?domain=404.onet.pl&site=STRONA404&v=1
IP
Certificate IssuerDigiCert Inc
Subject*.onet.pl
Fingerprint8A:73:93:00:4A:90:11:A6:4C:80:2B:96:3F:10:40:90:AE:81:6B:9F
ValidityTue, 11 Jul 2023 00:00:00 GMT - Tue, 14 May 2024 23:59:59 GMT
File type JSON data\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash abb25b7aaa41103aa82295656710270a
5eea43426c09eb13e2acccd470ffec2fa5d41f0b
99601ebdb08741a224a2729fafff5da8eed49182de50cde407daa2995423367e
GET /1746213/tags?domain=404.onet.pl&site=STRONA404&v=1 HTTP/1.1
Host: csr.onet.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://404.onet.pl
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
content-length: 14795
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:39:59 GMT
cache-control: public, max-age=1800
etag: "5eea43426c09eb13e2acccd470ffec2fa5d41f0b"
p3p: CP="ALL DSP COR IVD IVA PSD PSA TEL TAI CUS ADM CUR CON SAM OUR IND"
access-control-allow-origin: https://404.onet.pl
access-control-allow-credentials: true
timing-allow-origin: *
content-encoding: br
set-cookie: acc_segment=1; Path=/; Max-Age=604800; SameSite=None; Secure
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: ly8gIYveUizIyj3BqvyKtt8M1oLa-HF8MarXgPgZ0HtcVEez0te_Mw==
X-Firefox-Spdy: h2
csr.onet.pl/1746213/consent
200 OK 2 B URL GET HTTP/2 csr.onet.pl/1746213/consent
IP
Certificate IssuerDigiCert Inc
Subject*.onet.pl
Fingerprint8A:73:93:00:4A:90:11:A6:4C:80:2B:96:3F:10:40:90:AE:81:6B:9F
ValidityTue, 11 Jul 2023 00:00:00 GMT - Tue, 14 May 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /1746213/consent HTTP/1.1
Host: csr.onet.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://404.onet.pl
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
content-length: 2
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:39:59 GMT
access-control-allow-origin: https://404.onet.pl
access-control-allow-credentials: true
cache-control: no-cache
timing-allow-origin: *
etag: "bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f"
set-cookie: acc_segment=11; Path=/; Max-Age=604800; SameSite=None; Secure
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: OduH3-JVOrXpC8vA9sChw8x-b40QJZ3EfWKF1cPvRg3Ifl1u0PpTrw==
X-Firefox-Spdy: h2
csr.onet.pl/1746213/cmp?v=3
200 OK 4.1 kB URL GET HTTP/2 csr.onet.pl/1746213/cmp?v=3
IP
Certificate IssuerDigiCert Inc
Subject*.onet.pl
Fingerprint8A:73:93:00:4A:90:11:A6:4C:80:2B:96:3F:10:40:90:AE:81:6B:9F
ValidityTue, 11 Jul 2023 00:00:00 GMT - Tue, 14 May 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (11961), with CRLF, LF line terminators
Hash dbed92edd53545a2c1feeef1010cd82a
06102dcb83d1d707c93ba49fa0910e60bd19e71d
b90d10afaa3eb9b415b327d40b56552611eac28c4cb397a69b502bed104f6af6
GET /1746213/cmp?v=3 HTTP/1.1
Host: csr.onet.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 4137
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:39:59 GMT
content-encoding: br
cache-control: max-age=157680000, public
link: <https://events.ocdn.eu>; rel=preconnect
etag: "4137-d256235e842e0e5a"
last-modified: Wed, 22 Dec 2021 11:57:03 GMT
x-amz-meta-md5: 1a105fd3f41db49542a9a6c3beb78435
access-control-allow-origin: *
access-control-allow-credentials: true
set-cookie: acc_segment=16; Path=/; Max-Age=604800; SameSite=None; Secure
x-cache: Miss from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: D3MuEgfvYKYu8vg1XbnWZ_oOihNsVRbR0gfse45ly_T49yuetPzM4Q==
X-Firefox-Spdy: h2
events.ocdn.eu/v2/EA-1746213/me?_ac=events&_ca=1&uuid=202311291739580089206118
200 OK 93 B URL GET HTTP/2 events.ocdn.eu/v2/EA-1746213/me?_ac=events&_ca=1&uuid=202311291739580089206118
IP
Certificate IssuerDigiCert Inc
Subject*.ocdn.eu
Fingerprint01:7A:3F:AB:3B:28:19:37:1B:37:90:21:E2:BD:95:F2:EE:EC:89:84
ValidityFri, 16 Jun 2023 00:00:00 GMT - Thu, 04 Jan 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 0ec12903fc3f5e54eca7be1304bcc62a
25a1002b2fc2b45c334c36baf82d2d99c8dd5f46
89c2355832375ac4513ed759940f4cb96d4699a4c6fff789e4b73e7e30e8d573
GET /v2/EA-1746213/me?_ac=events&_ca=1&uuid=202311291739580089206118 HTTP/1.1
Host: events.ocdn.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://404.onet.pl
Referer: https://404.onet.pl/
DNT: 1
Connection: keep-alive
Cookie: ea_uuid=202311291739580089206118; acc_segment=67
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:39:59 GMT
content-type: application/json; charset=utf-8
content-length: 93
access-control-allow-origin: https://404.onet.pl
access-control-allow-credentials: true
cache-control: no-cache
set-cookie: acc_segment=67; Path=/; Max-Age=604800; SameSite=None; Secure
X-Firefox-Spdy: h2
ocdn.eu/onetmobilemainpage/firafonts/p05/FiraSans-Regular.woff
200 OK 52 kB URL GET HTTP/2 ocdn.eu/onetmobilemainpage/firafonts/p05/FiraSans-Regular.woff
IP
Certificate IssuerDigiCert Inc
Subject*.ocdn.eu
Fingerprint01:7A:3F:AB:3B:28:19:37:1B:37:90:21:E2:BD:95:F2:EE:EC:89:84
ValidityFri, 16 Jun 2023 00:00:00 GMT - Thu, 04 Jan 2024 23:59:59 GMT
File type Web Open Font Format, TrueType, length 52376, version 1.1\012- data
Hash 9e8ba894f1b61171ccc2300e64900ead
e7209c19d8b105012dc55abd1ce6c618f9c197c2
041800a2701072b895e4a2027804d22074125ae5836b0baed180fdb59a8d9b5a
GET /onetmobilemainpage/firafonts/p05/FiraSans-Regular.woff HTTP/1.1
Host: ocdn.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://404.onet.pl
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/font-woff
content-length: 52376
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:39:27 GMT
last-modified: Thu, 12 Dec 2019 13:29:43 GMT
cache-control: max-age=31536000, public
x-amz-meta-cb-modifiedtime: Fri, 30 Jun 2017 12:45:39 GMT
x-amz-meta-md5: 9e8ba894f1b61171ccc2300e64900ead
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT
access-control-allow-headers: *
access-control-max-age: 86400
timing-allow-origin: *
accept-ranges: bytes
etag: "9e8ba894f1b61171ccc2300e64900ead"
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: lfRBBc8A3mPtLGBo33fCTuwbBN9WCCkjlDXScBBKlCsEMKAzuFcD3A==
age: 32
X-Firefox-Spdy: h2
ocdn.eu/onetmobilemainpage/firafonts/p05/FiraSans-Bold.woff
200 OK 56 kB URL GET HTTP/2 ocdn.eu/onetmobilemainpage/firafonts/p05/FiraSans-Bold.woff
IP
Certificate IssuerDigiCert Inc
Subject*.ocdn.eu
Fingerprint01:7A:3F:AB:3B:28:19:37:1B:37:90:21:E2:BD:95:F2:EE:EC:89:84
ValidityFri, 16 Jun 2023 00:00:00 GMT - Thu, 04 Jan 2024 23:59:59 GMT
File type Web Open Font Format, TrueType, length 56372, version 1.1\012- data
Hash 2f581998618bce56102d25e8363d74d7
f32e8f76edee93c7e83b8166e2d0dd6fde145960
17cbc8043117c7ca12a84f58225cd13a0ecda07940f7bcb7b2935cfec0caab94
GET /onetmobilemainpage/firafonts/p05/FiraSans-Bold.woff HTTP/1.1
Host: ocdn.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://404.onet.pl
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/font-woff
content-length: 56372
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:39:28 GMT
last-modified: Thu, 12 Dec 2019 13:29:20 GMT
cache-control: max-age=31536000, public
x-amz-meta-cb-modifiedtime: Fri, 30 Jun 2017 12:46:55 GMT
x-amz-meta-md5: 2f581998618bce56102d25e8363d74d7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT
access-control-allow-headers: *
access-control-max-age: 86400
timing-allow-origin: *
accept-ranges: bytes
etag: "2f581998618bce56102d25e8363d74d7"
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 177YOnJd3ItQQqCJ4UMDApjiQEEUPZ5FAjO9fRA4_z9P0tuLNg9OiA==
age: 31
X-Firefox-Spdy: h2
status.geotrust.com/
471 B IP
Hash 5f7acb301b4b05cbbd87e52785d3435c
1234e220d65f54145810f982ab59c68871194c1f
1e822a1e5f6040debb200d12386d8bdc51c16851990647b0afcd06967d9f648f
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3706
Cache-Control: max-age=7200
Content-Type: application/ocsp-response
Date: Wed, 29 Nov 2023 16:39:59 GMT
Last-Modified: Wed, 29 Nov 2023 15:38:13 GMT
Server: ECAcc (amb/6B17)
X-Cache: HIT
Content-Length: 471
cdp.ems.onet.pl/1746213/me?domain=404.onet.pl&ver=1
200 OK 230 B URL GET HTTP/2 cdp.ems.onet.pl/1746213/me?domain=404.onet.pl&ver=1
IP
Certificate IssuerLet's Encrypt
Subject*.ems.onet.pl
FingerprintC5:81:11:A1:A3:28:9B:7A:4F:B9:FF:4B:0F:F9:07:78:B7:41:E6:14
ValidityFri, 20 Oct 2023 05:16:39 GMT - Thu, 18 Jan 2024 05:16:38 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 09d602d41316d2b988f2f0184a75b6d4
87d19980ad90e514ebbd8a7cdf56e88c60363f42
91de64e847ae41a268f9ebf30bd474409404468de458f66f3b49c84048240536
GET /1746213/me?domain=404.onet.pl&ver=1 HTTP/1.1
Host: cdp.ems.onet.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://404.onet.pl
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:39:59 GMT
content-type: application/json
content-length: 230
p3p: CP="ALL DSP COR IVD IVA PSD PSA TEL TAI CUS ADM CUR CON SAM OUR IND"
access-control-allow-origin: https://404.onet.pl
access-control-allow-methods: GET
access-control-allow-credentials: true
cache-control: private, max-age=1800
timing-allow-origin: *
set-cookie: acc_segment=15; Path=/; Max-Age=604800; SameSite=None; Secure
X-Firefox-Spdy: h2
status.geotrust.com/
279 B IP
Hash 7be7641d8f4cb72508e15c4ed357b6f3
7275b483a2d9671b163b19559b39eaf903f54831
cb8f59999e5353e87d86785f57c9f85b60dcec2d5d62056aa04956ddd900f1eb
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5921
Cache-Control: max-age=7200
Content-Type: application/ocsp-response
Date: Wed, 29 Nov 2023 16:39:59 GMT
Last-Modified: Wed, 29 Nov 2023 15:01:18 GMT
Server: ECAcc (amb/6B04)
X-Cache: HIT
Content-Length: 279
404.onet.pl/favicon.ico
200 OK 2.0 kB IP
Certificate IssuerDigiCert Inc
Subject*.onet.pl
Fingerprint8A:73:93:00:4A:90:11:A6:4C:80:2B:96:3F:10:40:90:AE:81:6B:9F
ValidityTue, 11 Jul 2023 00:00:00 GMT - Tue, 14 May 2024 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 96x96, 32 bits/pixel\012- data
Hash 7dcdc3ae10481e91c1c3815990e2596a
d976e6564978c9e892eaf0026a9ab95ba6e1624d
519110e813055309497ca6438a417debb11946ea9abffd52913963a70b07e4ca
GET /favicon.ico HTTP/1.1
Host: 404.onet.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Cookie: acc_segment=90; ea_uuid=202311291739580089206118
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/x-icon
content-length: 1972
age: 38
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:39:21 GMT
content-encoding: gzip
cache-control: max-age=86400
set-cookie: acc_segment=90; Path=/; Max-Age=604800; SameSite=None; Secure
etag: "1972-c933340b3a1bc195"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: HJ2esJEXtfZz0a0oSLZ7y4zs8zR9VhoIbxeMDrkgKA3pUAjTD6iQFA==
lib.onet.pl/static/lps/Analytics-Prebid/tpl.min.js?102
200 OK 1.6 kB URL GET HTTP/3 lib.onet.pl/static/lps/Analytics-Prebid/tpl.min.js?102
IP
Certificate IssuerDigiCert Inc
Subject*.onet.pl
Fingerprint8A:73:93:00:4A:90:11:A6:4C:80:2B:96:3F:10:40:90:AE:81:6B:9F
ValidityTue, 11 Jul 2023 00:00:00 GMT - Tue, 14 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (3938)
Hash 775e57f245244ae0b2b9c62acd9b1f47
4d4802eede9f81c69a320813c9fb5057b6d4a267
683428198e84cbf8e412e13d7f989e8e4a514f22c1a1486f461618c1b8841bb0
GET /static/lps/Analytics-Prebid/tpl.min.js?102 HTTP/1.1
Host: lib.onet.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Cookie: acc_segment=83; ea_uuid=202311291739580089206118
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=utf-8
content-length: 1556
age: 272
server: Ring Publishing - Accelerator
last-modified: Tue, 07 Mar 2023 12:15:42 GMT
x-amz-meta-md5: 775e57f245244ae0b2b9c62acd9b1f47
content-encoding: br
set-cookie: acc_segment=55; Path=/; Max-Age=604800; SameSite=None; Secure
accept-ranges: bytes
date: Wed, 29 Nov 2023 16:35:27 GMT
cache-control: max-age=604800
etag: "775e57f245244ae0b2b9c62acd9b1f47"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: kilHnqbRuxH3MJeS3ZHAI1W62zpkgZArUJ1dvEO0nKcpwDB0LJB2Zg==
lib.onet.pl/static/lps/DMP-1plusX-SDK/tpl.min.js?102
200 OK 1.7 kB URL GET HTTP/3 lib.onet.pl/static/lps/DMP-1plusX-SDK/tpl.min.js?102
IP
Certificate IssuerDigiCert Inc
Subject*.onet.pl
Fingerprint8A:73:93:00:4A:90:11:A6:4C:80:2B:96:3F:10:40:90:AE:81:6B:9F
ValidityTue, 11 Jul 2023 00:00:00 GMT - Tue, 14 May 2024 23:59:59 GMT
File type Java source, ASCII text, with very long lines (3426)
Hash 7bd3afe8204248e1fbd04e43bfe80f58
2839d6f238ceb168942797c6ce58b6329f617bf1
b49a22cbf35ad500aef87f0908a2458590cb59b24134052bf454240dd673c504
GET /static/lps/DMP-1plusX-SDK/tpl.min.js?102 HTTP/1.1
Host: lib.onet.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Cookie: acc_segment=55; ea_uuid=202311291739580089206118
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=utf-8
content-length: 1662
age: 272
server: Ring Publishing - Accelerator
last-modified: Tue, 30 Aug 2022 07:37:31 GMT
x-amz-meta-md5: 7bd3afe8204248e1fbd04e43bfe80f58
content-encoding: br
set-cookie: acc_segment=55; Path=/; Max-Age=604800; SameSite=None; Secure
accept-ranges: bytes
date: Wed, 29 Nov 2023 16:35:27 GMT
cache-control: max-age=604800
etag: "7bd3afe8204248e1fbd04e43bfe80f58"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: KJDZN1aa4qLOy5t0TY1qOWlAn0XVlIvscTVJDuKUcxDs4-4e7cJtuA==
cmp.dreamlab.pl/static-v2/cmp.bundle.js?v=213
200 OK 53 kB URL GET HTTP/3 cmp.dreamlab.pl/static-v2/cmp.bundle.js?v=213
IP
Certificate IssuerDigiCert Inc
Subject*.dreamlab.pl
FingerprintA2:4E:CE:2E:CD:56:B1:B9:BA:68:2B:94:18:AD:03:E3:3B:32:BC:CC
ValidityWed, 14 Jun 2023 00:00:00 GMT - Thu, 13 Jun 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65466)
Hash 4bf2f971c523d356f49fbb46d6bf4ab9
b3a6849a6a36938be6480c55813a8a5a90b67396
6aa147dd807600ceeef7b76fe372faf584cad2292c60399aa1fa164d4a6543fb
GET /static-v2/cmp.bundle.js?v=213 HTTP/1.1
Host: cmp.dreamlab.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript
content-length: 52817
age: 340
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:34:19 GMT
last-modified: Fri, 17 Nov 2023 11:08:32 GMT
x-amz-meta-md5: 4bf2f971c523d356f49fbb46d6bf4ab9
content-encoding: br
cache-control: max-age=157680000, public
access-control-allow-origin: *
set-cookie: acc_segment=9; Path=/; Max-Age=604800; SameSite=None; Secure
accept-ranges: bytes
etag: "4bf2f971c523d356f49fbb46d6bf4ab9"
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: -jKndM-NL9SVu0uHjO_0UxTd_SlBXlDl9dE171PfMsNK4u07AkTk0A==
xnfqqnw.onet.pl/eclk/clk,30,7390/hcconn/?IP=202311291640032168937772&IV=202311291640032168937772&_=1701276003649
200 OK 43 B URL GET HTTP/2 xnfqqnw.onet.pl/eclk/clk,30,7390/hcconn/?IP=202311291640032168937772&IV=202311291640032168937772&_=1701276003649
IP
Certificate IssuerDigiCert Inc
Subject*.onet.pl
Fingerprint8A:73:93:00:4A:90:11:A6:4C:80:2B:96:3F:10:40:90:AE:81:6B:9F
ValidityTue, 11 Jul 2023 00:00:00 GMT - Tue, 14 May 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /eclk/clk,30,7390/hcconn/?IP=202311291640032168937772&IV=202311291640032168937772&_=1701276003649 HTTP/1.1
Host: xnfqqnw.onet.pl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Cookie: ea_uuid=202311291739580089206118
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:39:59 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache
p3p: CP="ALL DSP COR IVD IVA PSD PSA TEL TAI CUS ADM CUR CON SAM OUR IND"
timing-allow-origin: *
etag: "317496a096d6c86486a71d4521994bcd171a6bb3"
set-cookie: adp_session=bHU6MjAyMzExMjkxNzM5NTgwMDg5MjA2MTE4; Domain=xnfqqnw.onet.pl; expires=Mon, 27 Nov 2028 16:39:59 GMT; Path=/; SameSite=None; Secure
adp_cpd="eJyrrgUAAXUA+Q=="; Domain=xnfqqnw.onet.pl; expires=Fri, 01 Dec 2023 16:39:59 GMT; Path=/; SameSite=None; Secure
adp_aud=eJyrVsoptTIyMDI2NDSyNDQ3tjS1MDCwsDQyMDM0tFCyUlKqBQCOXQeu; Domain=xnfqqnw.onet.pl; expires=Wed, 29 Nov 2023 16:39:59 GMT; Path=/; SameSite=None; Secure
acc_segment=98; Path=/; Max-Age=604800; SameSite=None; Secure
X-Firefox-Spdy: h2
fe14feb5-99c3-4dd9-b89c-f642b3dec8bb.edge.permutive.app/fe14feb5-99c3-4dd9-b89c-f642b3dec8bb-web.js
200 OK 82 kB URL GET HTTP/2 fe14feb5-99c3-4dd9-b89c-f642b3dec8bb.edge.permutive.app/fe14feb5-99c3-4dd9-b89c-f642b3dec8bb-web.js
IP
Certificate IssuerCloudflare, Inc.
Subjectpermutive.app
FingerprintE5:A5:DA:51:E9:EB:EE:DE:D4:AD:D3:ED:B6:D6:6F:64:84:E7:EC:C4
ValidityMon, 06 Nov 2023 00:00:00 GMT - Sun, 04 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash ead0edfd12952337e7623e4ca2475fb5
bbb3789296a3f540d62476956ad9f72cdb667c77
f4424c3dca7c3a256d262a297cf2ae1932c6643520b0c101aca2c24774b9844e
GET /fe14feb5-99c3-4dd9-b89c-f642b3dec8bb-web.js HTTP/1.1
Host: fe14feb5-99c3-4dd9-b89c-f642b3dec8bb.edge.permutive.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 29 Nov 2023 16:39:59 GMT
content-type: application/javascript
content-length: 82068
x-guploader-uploadid: ABPtcPrKQSm-8vFCUELWeFeMT4_CXQ6oB0SgwrqCg2QKOizc2xD2ghKZ5K5N1xrmDPwkJnd8qTTFgZqoZDLMSKVrEWU0xg
cache-control: public, max-age=900
expires: Wed, 29 Nov 2023 16:54:59 GMT
last-modified: Wed, 29 Nov 2023 13:50:44 GMT
etag: "c1424c4a035f71d17a7c955a8f19e17c"
x-goog-generation: 1701265844021728
x-goog-metageneration: 1
x-goog-stored-content-encoding: br
x-goog-stored-content-length: 82068
x-goog-meta-oid: fe14feb5-99c3-4dd9-b89c-f642b3dec8bb
content-encoding: br
x-goog-hash: crc32c=/RUHjQ==, md5=wUJMSgNfcdF6fJVajxnhfA==
x-goog-storage-class: REGIONAL
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
timing-allow-origin: *
age: 0
server: cloudflare
cf-ray: 82dc4a352bd456a9-OSL
X-Firefox-Spdy: h2
status.geotrust.com/
279 B IP
Hash ae7ac3d10ee8b9e9625127af76f94f78
2d0f48728c6d56cee265321e4ff69df9720e6768
5d1a7c620de298304e38423470ae9f98462a091b34d2b3b8db531cddff151b79
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 365
Cache-Control: max-age=7200
Content-Type: application/ocsp-response
Date: Wed, 29 Nov 2023 16:39:59 GMT
Last-Modified: Wed, 29 Nov 2023 16:33:54 GMT
Server: ECAcc (amb/6AC3)
X-Cache: HIT
Content-Length: 279
cmp.ringpublishing.com/1746213/get-config?domain=404.onet.pl&site=strona404
200 OK 129 B URL GET HTTP/2 cmp.ringpublishing.com/1746213/get-config?domain=404.onet.pl&site=strona404
IP
Certificate IssuerDigiCert Inc
Subject*.ringpublishing.com
FingerprintF0:7B:B6:E9:9F:45:FC:AF:3F:EA:AA:97:26:78:9D:89:28:97:10:7D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash da5561572f4708c1d5b7d72ed55f671d
0a97c55f91f39e2121f153708e10ea896390f1a1
8dcc3232966ee16320d59d998e00cba377101c1397f4cdeae465fabc396abc56
GET /1746213/get-config?domain=404.onet.pl&site=strona404 HTTP/1.1
Host: cmp.ringpublishing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://404.onet.pl/
Origin: https://404.onet.pl
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:39:59 GMT
content-type: application/json
content-length: 129
cache-control: max-age=1800
etag: "0a97c55f91f39e2121f153708e10ea896390f1a1"
access-control-allow-origin: https://404.onet.pl
access-control-allow-credentials: true
access-control-allow-methods: GET
timing-allow-origin: *
set-cookie: acc_segment=41; Path=/; Max-Age=604800; SameSite=None; Secure
X-Firefox-Spdy: h2
ocdn.eu/cmp/translations/1746213/pl/508/translation.json?ver=1063
200 OK 11 kB URL GET HTTP/2 ocdn.eu/cmp/translations/1746213/pl/508/translation.json?ver=1063
IP
Certificate IssuerDigiCert Inc
Subject*.ocdn.eu
Fingerprint01:7A:3F:AB:3B:28:19:37:1B:37:90:21:E2:BD:95:F2:EE:EC:89:84
ValidityFri, 16 Jun 2023 00:00:00 GMT - Thu, 04 Jan 2024 23:59:59 GMT
File type JSON data\012- HTML document, ASCII text, with very long lines (41093), with no line terminators
Hash 2a0c133edad2c441eedd7dce059a02cb
b56f710d191544a0aed6be521410fe5faef34c3f
9aaad103a56c8e69a36e30bdf6f28d6eb437930d403e88508b9dd3d25f73adfe
GET /cmp/translations/1746213/pl/508/translation.json?ver=1063 HTTP/1.1
Host: ocdn.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://404.onet.pl
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 10815
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:28:17 GMT
last-modified: Thu, 16 Nov 2023 13:56:51 GMT
x-amz-meta-md5: 2a0c133edad2c441eedd7dce059a02cb
content-encoding: br
cache-control: max-age=604800, public
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT
access-control-allow-headers: *
access-control-max-age: 86400
timing-allow-origin: *
accept-ranges: bytes
etag: "2a0c133edad2c441eedd7dce059a02cb"
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: gpHaJGWAxloe5I3ZbDOvmh5QtI2W2do9XVi4ED5gh8P9gmVlUNWGkQ==
age: 702
X-Firefox-Spdy: h2
ocdn.eu/cmp/styles/1746213/18/cmp.min.css?v=1700058448408
200 OK 5.5 kB URL GET HTTP/3 ocdn.eu/cmp/styles/1746213/18/cmp.min.css?v=1700058448408
IP
Certificate IssuerDigiCert Inc
Subject*.ocdn.eu
Fingerprint01:7A:3F:AB:3B:28:19:37:1B:37:90:21:E2:BD:95:F2:EE:EC:89:84
ValidityFri, 16 Jun 2023 00:00:00 GMT - Thu, 04 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (16773), with no line terminators
Hash 8c39af0923d7b42d19a123adafe5ab14
ac70c39884a8dd28f064b419ca7aaf02c3400dd4
ed661d78634e4304ef220a94b9a7934b8eca8325cf21feb18ed7ce45cd4fb05d
GET /cmp/styles/1746213/18/cmp.min.css?v=1700058448408 HTTP/1.1
Host: ocdn.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css
content-length: 5509
age: 174
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:37:05 GMT
last-modified: Wed, 15 Nov 2023 14:27:30 GMT
x-amz-meta-md5: 8c39af0923d7b42d19a123adafe5ab14
content-encoding: br
cache-control: max-age=2592000, public
accept-ranges: bytes
etag: "8c39af0923d7b42d19a123adafe5ab14"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: TY0kg9o7ugXooPwCQrfsf3JG9dpr5B1k_SXE9C2jZiOp0ruEPu-34A==
events.ocdn.eu/v2/?_et=PageView&_ac=kropka-stats&_rt=now&_gu=202311291739580089206118&_fv=404.onet.pl%3A%3AStaticOCDNVersion2-2&_lu=202311291739580089206118&_it=584&RDLU=eyJpZCI6eyJhcnRlbWlzIjoiIiwiZXh0ZXJuYWwiOnsibW9kZWwiOiIiLCJtb2RlbHMiOnsiYXRzX3JpIjpudWxsfX19fQ==&CL=init-20231129_0931&RI=5e99d656769630ed&C1=1701276003237&IP=202311291640032168937772&CS=1280x1024x24&CW=1280x1024&DU=https%3A%2F%2F404.onet.pl%2F&DV=strona404%2Fstrona404&IV=202311291640032168937772&RDLCN=eyJwdWJsaWNhdGlvbiI6e30sInNvdXJjZSI6e30sIm9iamVjdCI6e319&DA=STRONA404%2Fexclusive%3ASTRONA404&SC=1&DP=0&CD=visible&DG=id%3DnADgvUR0vx_N3QigUrlvd5YTrmcRF8OmGIVmihvPhlP.M7&RDLC=eyJ2YXJpYW50Ijp7ImFjY2VsZXJhdG9yIjoiTkRBMExtOXVaWFF1Y0d3Nk9sTjBZWFJwWTA5RFJFNVdaWEp6YVc5dU1pMHkifSwidmVyc2lvbiI6eyJsaWJyYXJ5Ijp7InRyYWNraW5nIjoiMy4wLjEwMyIsImRsYXBpIjoiMjAyMzExMjlfMDkzMSJ9fSwidHJhY2tpbmciOnsiYXV0b3N0YXJ0Ijp0cnVlfX0%3D&RT=PageView&IZ=0&IL=0
204 No Content 0 B URL GET HTTP/2 events.ocdn.eu/v2/?_et=PageView&_ac=kropka-stats&_rt=now&_gu=202311291739580089206118&_fv=404.onet.pl%3A%3AStaticOCDNVersion2-2&_lu=202311291739580089206118&_it=584&RDLU=eyJpZCI6eyJhcnRlbWlzIjoiIiwiZXh0ZXJuYWwiOnsibW9kZWwiOiIiLCJtb2RlbHMiOnsiYXRzX3JpIjpudWxsfX19fQ==&CL=init-20231129_0931&RI=5e99d656769630ed&C1=1701276003237&IP=202311291640032168937772&CS=1280x1024x24&CW=1280x1024&DU=https%3A%2F%2F404.onet.pl%2F&DV=strona404%2Fstrona404&IV=202311291640032168937772&RDLCN=eyJwdWJsaWNhdGlvbiI6e30sInNvdXJjZSI6e30sIm9iamVjdCI6e319&DA=STRONA404%2Fexclusive%3ASTRONA404&SC=1&DP=0&CD=visible&DG=id%3DnADgvUR0vx_N3QigUrlvd5YTrmcRF8OmGIVmihvPhlP.M7&RDLC=eyJ2YXJpYW50Ijp7ImFjY2VsZXJhdG9yIjoiTkRBMExtOXVaWFF1Y0d3Nk9sTjBZWFJwWTA5RFJFNVdaWEp6YVc5dU1pMHkifSwidmVyc2lvbiI6eyJsaWJyYXJ5Ijp7InRyYWNraW5nIjoiMy4wLjEwMyIsImRsYXBpIjoiMjAyMzExMjlfMDkzMSJ9fSwidHJhY2tpbmciOnsiYXV0b3N0YXJ0Ijp0cnVlfX0%3D&RT=PageView&IZ=0&IL=0
IP
Certificate IssuerDigiCert Inc
Subject*.ocdn.eu
Fingerprint01:7A:3F:AB:3B:28:19:37:1B:37:90:21:E2:BD:95:F2:EE:EC:89:84
ValidityFri, 16 Jun 2023 00:00:00 GMT - Thu, 04 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/?_et=PageView&_ac=kropka-stats&_rt=now&_gu=202311291739580089206118&_fv=404.onet.pl%3A%3AStaticOCDNVersion2-2&_lu=202311291739580089206118&_it=584&RDLU=eyJpZCI6eyJhcnRlbWlzIjoiIiwiZXh0ZXJuYWwiOnsibW9kZWwiOiIiLCJtb2RlbHMiOnsiYXRzX3JpIjpudWxsfX19fQ==&CL=init-20231129_0931&RI=5e99d656769630ed&C1=1701276003237&IP=202311291640032168937772&CS=1280x1024x24&CW=1280x1024&DU=https%3A%2F%2F404.onet.pl%2F&DV=strona404%2Fstrona404&IV=202311291640032168937772&RDLCN=eyJwdWJsaWNhdGlvbiI6e30sInNvdXJjZSI6e30sIm9iamVjdCI6e319&DA=STRONA404%2Fexclusive%3ASTRONA404&SC=1&DP=0&CD=visible&DG=id%3DnADgvUR0vx_N3QigUrlvd5YTrmcRF8OmGIVmihvPhlP.M7&RDLC=eyJ2YXJpYW50Ijp7ImFjY2VsZXJhdG9yIjoiTkRBMExtOXVaWFF1Y0d3Nk9sTjBZWFJwWTA5RFJFNVdaWEp6YVc5dU1pMHkifSwidmVyc2lvbiI6eyJsaWJyYXJ5Ijp7InRyYWNraW5nIjoiMy4wLjEwMyIsImRsYXBpIjoiMjAyMzExMjlfMDkzMSJ9fSwidHJhY2tpbmciOnsiYXV0b3N0YXJ0Ijp0cnVlfX0%3D&RT=PageView&IZ=0&IL=0 HTTP/1.1
Host: events.ocdn.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://404.onet.pl
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Cookie: ea_uuid=202311291739580089206118; acc_segment=67
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:40:00 GMT
access-control-allow-origin: https://404.onet.pl
access-control-allow-credentials: true
cache-control: no-cache
set-cookie: acc_segment=67; Path=/; Max-Age=604800; SameSite=None; Secure
X-Firefox-Spdy: h2
events.ocdn.eu/v2/?_et=PerfEvent&_ac=kropka-monitoring&_rt=empty&_gu=202311291739580089206118&_fv=404.onet.pl%3A%3AStaticOCDNVersion2-2&_lu=202311291739580089206118&_it=584&RDLU=eyJpZCI6eyJhcnRlbWlzIjoiIiwiZXh0ZXJuYWwiOnsibW9kZWwiOiIiLCJtb2RlbHMiOnsiYXRzX3JpIjpudWxsfX19fQ==&RT=PerfEvent&CD=visible&TR=177&TTTFB=171&TH=395&TI=1024&TC=1414&TE=1429&TN=0&TD=18&TADP=1&TE1=64&TPRIV=1&TX=0&DA=STRONA404%2FSTRONA404&TVER=20231129_0931&TIFR=0&NID=1746213&TFLASH=2&TFINI=lib.onet.pl&TCPU=-1&TCVCLS=0&TCVFID=null&TCVFCP=1075&TCVLCP=null&RI=11a066567697211a&IP=202311291640032168937772&CS=1280x1024x24&CW=1280x1024&DU=https%3A%2F%2F404.onet.pl%2F&DV=strona404%2Fstrona404&IV=202311291640032168937772&IZ=0&IL=0&_ts=1701276018283
0 B URL events.ocdn.eu/v2/?_et=PerfEvent&_ac=kropka-monitoring&_rt=empty&_gu=202311291739580089206118&_fv=404.onet.pl%3A%3AStaticOCDNVersion2-2&_lu=202311291739580089206118&_it=584&RDLU=eyJpZCI6eyJhcnRlbWlzIjoiIiwiZXh0ZXJuYWwiOnsibW9kZWwiOiIiLCJtb2RlbHMiOnsiYXRzX3JpIjpudWxsfX19fQ==&RT=PerfEvent&CD=visible&TR=177&TTTFB=171&TH=395&TI=1024&TC=1414&TE=1429&TN=0&TD=18&TADP=1&TE1=64&TPRIV=1&TX=0&DA=STRONA404%2FSTRONA404&TVER=20231129_0931&TIFR=0&NID=1746213&TFLASH=2&TFINI=lib.onet.pl&TCPU=-1&TCVCLS=0&TCVFID=null&TCVFCP=1075&TCVLCP=null&RI=11a066567697211a&IP=202311291640032168937772&CS=1280x1024x24&CW=1280x1024&DU=https%3A%2F%2F404.onet.pl%2F&DV=strona404%2Fstrona404&IV=202311291640032168937772&IZ=0&IL=0&_ts=1701276018283
IP
Certificate IssuerDigiCert Inc
Subject*.ocdn.eu
Fingerprint01:7A:3F:AB:3B:28:19:37:1B:37:90:21:E2:BD:95:F2:EE:EC:89:84
ValidityFri, 16 Jun 2023 00:00:00 GMT - Thu, 04 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/?_et=PerfEvent&_ac=kropka-monitoring&_rt=empty&_gu=202311291739580089206118&_fv=404.onet.pl%3A%3AStaticOCDNVersion2-2&_lu=202311291739580089206118&_it=584&RDLU=eyJpZCI6eyJhcnRlbWlzIjoiIiwiZXh0ZXJuYWwiOnsibW9kZWwiOiIiLCJtb2RlbHMiOnsiYXRzX3JpIjpudWxsfX19fQ==&RT=PerfEvent&CD=visible&TR=177&TTTFB=171&TH=395&TI=1024&TC=1414&TE=1429&TN=0&TD=18&TADP=1&TE1=64&TPRIV=1&TX=0&DA=STRONA404%2FSTRONA404&TVER=20231129_0931&TIFR=0&NID=1746213&TFLASH=2&TFINI=lib.onet.pl&TCPU=-1&TCVCLS=0&TCVFID=null&TCVFCP=1075&TCVLCP=null&RI=11a066567697211a&IP=202311291640032168937772&CS=1280x1024x24&CW=1280x1024&DU=https%3A%2F%2F404.onet.pl%2F&DV=strona404%2Fstrona404&IV=202311291640032168937772&IZ=0&IL=0&_ts=1701276018283 HTTP/1.1
Host: events.ocdn.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Cookie: ea_uuid=202311291739580089206118; acc_segment=67
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:40:14 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-cache
set-cookie: acc_segment=67; Path=/; Max-Age=604800; SameSite=None; Secure
X-Firefox-Spdy: h2
events.ocdn.eu/v2/EA-1746213/user/eyJ1c2VyIjp7ImlkIjp7ImxvY2FsIjoiMjAyMzExMjkxNzM5NTgwMDg5MjA2MTE4IiwiZ2xvYmFsIjoiMjAyMzExMjkxNzM5NTgwMDg5MjA2MTE4In0sInNzbyI6e30sImV4dGVybmFsIjp7ImlkcyI6e319fSwiY29udGV4dCI6eyJ1cmwiOiJodHRwcyUzQS8vNDA0Lm9uZXQucGwvIn0sInZlcnNpb24iOiIwLjYuMiIsImZsYWdzIjp7Imlnbm9yZUlkIjp0cnVlfX0=
200 OK 146 B URL GET HTTP/2 events.ocdn.eu/v2/EA-1746213/user/eyJ1c2VyIjp7ImlkIjp7ImxvY2FsIjoiMjAyMzExMjkxNzM5NTgwMDg5MjA2MTE4IiwiZ2xvYmFsIjoiMjAyMzExMjkxNzM5NTgwMDg5MjA2MTE4In0sInNzbyI6e30sImV4dGVybmFsIjp7ImlkcyI6e319fSwiY29udGV4dCI6eyJ1cmwiOiJodHRwcyUzQS8vNDA0Lm9uZXQucGwvIn0sInZlcnNpb24iOiIwLjYuMiIsImZsYWdzIjp7Imlnbm9yZUlkIjp0cnVlfX0=
IP
Certificate IssuerDigiCert Inc
Subject*.ocdn.eu
Fingerprint01:7A:3F:AB:3B:28:19:37:1B:37:90:21:E2:BD:95:F2:EE:EC:89:84
ValidityFri, 16 Jun 2023 00:00:00 GMT - Thu, 04 Jan 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash c4a97232899c93905f693f4d42a2891e
cbc5028b11ab1ec05a26d6dddf3f8d2bce9750e3
7ea7e3e49257bf7b27e95b8423bcd3477d746ebc72926a6bdb24d6bf88e54f47
GET /v2/EA-1746213/user/eyJ1c2VyIjp7ImlkIjp7ImxvY2FsIjoiMjAyMzExMjkxNzM5NTgwMDg5MjA2MTE4IiwiZ2xvYmFsIjoiMjAyMzExMjkxNzM5NTgwMDg5MjA2MTE4In0sInNzbyI6e30sImV4dGVybmFsIjp7ImlkcyI6e319fSwiY29udGV4dCI6eyJ1cmwiOiJodHRwcyUzQS8vNDA0Lm9uZXQucGwvIn0sInZlcnNpb24iOiIwLjYuMiIsImZsYWdzIjp7Imlnbm9yZUlkIjp0cnVlfX0= HTTP/1.1
Host: events.ocdn.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://404.onet.pl/
Origin: https://404.onet.pl
DNT: 1
Connection: keep-alive
Cookie: ea_uuid=202311291739580089206118; acc_segment=67
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:39:59 GMT
content-type: application/json
vary: Accept-Encoding
x-ats-elapsed: 0
cache-control: no-cache
access-control-allow-origin: https://404.onet.pl
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept,Accept-Encoding,Accept-Language,Cache-Control,Connection,Content-Type,DNT,Host,If-Modified-Since,Origin,Range,User-Agent,X-Requested-With
content-encoding: gzip
set-cookie: acc_segment=67; Path=/; Max-Age=604800; SameSite=None; Secure
X-Firefox-Spdy: h2
events.ocdn.eu/v2/EA-1746213/me?_ac=events
302 Found 93 B URL GET HTTP/2 events.ocdn.eu/v2/EA-1746213/me?_ac=events
IP
Certificate IssuerDigiCert Inc
Subject*.ocdn.eu
Fingerprint01:7A:3F:AB:3B:28:19:37:1B:37:90:21:E2:BD:95:F2:EE:EC:89:84
ValidityFri, 16 Jun 2023 00:00:00 GMT - Thu, 04 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/EA-1746213/me?_ac=events HTTP/1.1
Host: events.ocdn.eu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://404.onet.pl
DNT: 1
Connection: keep-alive
Referer: https://404.onet.pl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: Ring Publishing - Accelerator
date: Wed, 29 Nov 2023 16:39:58 GMT
access-control-allow-origin: https://404.onet.pl
access-control-allow-credentials: true
location: /v2/EA-1746213/me?_ac=events&_ca=1&uuid=202311291739580089206118
cache-control: no-cache
set-cookie: ea_uuid=202311291739580089206118; Domain=events.ocdn.eu; expires=Mon, 27 Nov 2028 16:39:58 GMT; path=/; SameSite=None; Secure
acc_segment=67; Path=/; Max-Age=604800; SameSite=None; Secure
X-Firefox-Spdy: h2
76.223.32.228
104.18.41.170
0.0.0.0