otomoto3452.com/konto.html
217.160.0.77200 OK 27 kB URL HTTP/1.1 otomoto3452.com/konto.html
IP 217.160.0.77:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (21032), with CRLF line terminators
Hash 5c0e40058d1a8573e96c1545307931f5
ed8eeb64d1b844051a73623878dd6cee5f3d3df8
36e0eef6aced131b894d0e32f9e529df866fe3696871f2c9edd47a5e07f9efe7
Analyzer Verdict Alert openphish OLX Group
phishtank Other
quad9 Sinkholed
GET /konto.html HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:57:55 GMT
ETag: W/"15828-5b3fa100ac1de"
Content-Encoding: gzip
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11367
Expires: Sun, 11 Sep 2022 00:11:40 GMT
Date: Sat, 10 Sep 2022 21:02:13 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 10 Sep 2022 20:06:52 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nLuTxOJ02cW6ipahcXnu8C8EBmZB6b4nXfDZU5nBcvc7iHTZ1fVEhQ==
Age: 3321
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 10 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BU2dlm89yrMhAaSg8Ptkzv4wouSIoDwfStLT-zTJZNtX5ubJF6VJVg==
age: 49501
X-Firefox-Spdy: h2
otomoto3452.com/noew1_files/nr-1167.js
217.160.0.77200 OK 27 kB URL HTTP/1.1 otomoto3452.com/noew1_files/nr-1167.js
IP 217.160.0.77:0
File type ASCII text, with very long lines (26895), with no line terminators
Hash 8155781ab74e51eee2ead2c1d5902e63
5679a128ce2702f782c9f3f46d16d95c387b52ee
f4ae8a2c83e0a851fd331bbf34d7a6f9184b3e31b6f2e681e8377fb8a8edc10f
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/nr-1167.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 26895
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:02 GMT
ETag: "690f-5b3fa1070de9a"
Accept-Ranges: bytes
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 21:02:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
otomoto3452.com/noew1_files/cbgapi.loaded_1
217.160.0.77200 OK 71 B URL HTTP/1.1 otomoto3452.com/noew1_files/cbgapi.loaded_1
IP 217.160.0.77:0
Hash f3a349d99360409257b2f912ac603548
5aad49f0eb81b99a60f5f46613d6dd252b820b78
586a4abfe9225dbb5521b32799d3b346da9e997452fec205a0812a360dd470ab
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/cbgapi.loaded_1 HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Length: 71
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:57:59 GMT
ETag: "47-5b3fa103a8c4b"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/analytics.js
217.160.0.77200 OK 45 kB URL HTTP/1.1 otomoto3452.com/noew1_files/analytics.js
IP 217.160.0.77:0
File type ASCII text, with very long lines (1325)
Hash af5c617d36e28d19710b882a6824e213
39a22dc66ee4d211631f701d349bd3eb7ee20824
eaf1b128b927ac2868755cb7366d35554255c8af362235afe270f9614f8c806d
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/analytics.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 45229
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:57:58 GMT
ETag: "b0ad-5b3fa1033b649"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/xgemius.js
217.160.0.77200 OK 33 kB URL HTTP/1.1 otomoto3452.com/noew1_files/xgemius.js
IP 217.160.0.77:0
File type ASCII text, with very long lines (417)
Hash 844aa4942299da63bc28284eee265ac1
88f71bae39b1ea9d9b65bafe91ca03524b116280
b1bfa4673dda9238c9f8c2bea0d0fa11ec6a9257193579ab78379d781ba0499b
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/xgemius.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 33314
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:04 GMT
ETag: "8222-5b3fa1089a660"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/gtm_003.js
217.160.0.77200 OK 59 kB URL HTTP/1.1 otomoto3452.com/noew1_files/gtm_003.js
IP 217.160.0.77:0
File type ASCII text, with very long lines (1577)
Hash a75170e39e70aa50a1c76bbd035ee00b
d255b3071a1f837e0fbe9ea7d310f9ae3c99eaf0
459bcca10c06ace78d5bf5792e8ecdef84c97c9fedfd821bd550285abc4fc26d
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/gtm_003.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 58808
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:00 GMT
ETag: "e5b8-5b3fa104a0d0f"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/ld.js
217.160.0.77200 OK 30 kB URL HTTP/1.1 otomoto3452.com/noew1_files/ld.js
IP 217.160.0.77:0
File type C source, ASCII text, with very long lines (30003), with no line terminators
Hash 9f51c9838bbcc941788939f89f527d5f
2e5c071d37b30d50a7e710549a4e04922aa42ed8
6a60018cab3d38d035188490d869d5dc1283a7dd115917226df457ca92887f7f
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/ld.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 30003
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:01 GMT
ETag: "7533-5b3fa105de335"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/0.js
217.160.0.77200 OK 15 kB URL HTTP/1.1 otomoto3452.com/noew1_files/0.js
IP 217.160.0.77:0
File type ASCII text, with very long lines (15066), with no line terminators
Hash 74b9f05059e2deee24cfdb15e742de64
28e42b48868ff5f33003d270dffd8c9cc795ac27
31dea38d3fec6c8fb53033148d29ae72c2f930a4d6b540faa08d08ff1f5c75c8
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/0.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 15066
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:57:57 GMT
ETag: "3ada-5b3fa101fc0e3"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/ninja-verticals.js
217.160.0.77200 OK 78 kB URL HTTP/1.1 otomoto3452.com/noew1_files/ninja-verticals.js
IP 217.160.0.77:0
File type ASCII text, with very long lines (4203)
Hash d020031f748fb912f98b89b116af7c38
da6079e8e165c05add369331151839c508a7bfef
2a165e111a55e4fe5331d6b980d4385827cd29ac98d6fb6dab68b0b24be09d00
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/ninja-verticals.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 77822
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:02 GMT
ETag: "12ffe-5b3fa106af2f8"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/101.js
217.160.0.77200 OK 3.2 kB URL HTTP/1.1 otomoto3452.com/noew1_files/101.js
IP 217.160.0.77:0
File type Unicode text, UTF-8 text, with very long lines (3232), with no line terminators
Hash d21e935d9f5a624e5cf6ff5c36ff814a
d3e6fb976a34880920fea0182324610e7c5f3fef
7f1997e8aa8098327fb69fd12c7db0b227d3912add10899f86b0913bfd152cd5
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/101.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 3238
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:57:57 GMT
ETag: "ca6-5b3fa101fefc4"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/cbgapi.loaded_0
217.160.0.77200 OK 296 kB URL HTTP/1.1 otomoto3452.com/noew1_files/cbgapi.loaded_0
IP 217.160.0.77:0
File type ASCII text, with very long lines (760)
Size 296 kB (296211 bytes)
Hash 89f05fdfea7051894476354ae98bba06
4cd2b68754e53991879d4fca30201b3ed5c41ed7
073ad24ef979ae9c3577f3552c4bd4c16da4c2e26d0345a896568a744f6bf931
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/cbgapi.loaded_0 HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Length: 296211
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:57:59 GMT
ETag: "48513-5b3fa103cedab"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/ls.js
217.160.0.77200 OK 1.5 kB URL HTTP/1.1 otomoto3452.com/noew1_files/ls.js
IP 217.160.0.77:0
File type ASCII text, with very long lines (1440)
Hash e737ab7d29207894c9f577e0192446ba
530a7530115f73dc6f0fd9176cf48722b5cfed3d
3c4f9b79cea8fc2ebce92d79f8cea8927e4dad174aac6b9c4caf0c52f7618ec3
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/ls.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1466
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:01 GMT
ETag: "5ba-5b3fa105f5a35"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/gtm.js
217.160.0.77200 OK 367 kB URL HTTP/1.1 otomoto3452.com/noew1_files/gtm.js
IP 217.160.0.77:0
File type ASCII text, with very long lines (3520)
Size 367 kB (367127 bytes)
Hash fcebf508c1e1b4d54f56d53b55c296cf
ba2b007167dd7faaab782f821ff713e05a89ce74
70ce1d0b3e36a94b2f7410abd69fa9268c659c1ffae2597eef9154ac440990a8
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/gtm.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 367127
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:57:59 GMT
ETag: "59a17-5b3fa1042d94d"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/lazysizes.js
217.160.0.77200 OK 6.7 kB URL HTTP/1.1 otomoto3452.com/noew1_files/lazysizes.js
IP 217.160.0.77:0
File type ASCII text, with very long lines (6649)
Hash c3dbff3d1d3f89c95e23035cc21443c8
02b20f3caed641d992aee96f46ef9d72cf6ee131
abc339d2b76c962291530a8a96f2e9f1ad824e862606b29c3fd54b7663ef0f64
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/lazysizes.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 6675
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:01 GMT
ETag: "1a13-5b3fa1059bcb3"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/sw795893650b29f47c9dd24d398b724a9a.css
217.160.0.77200 OK 754 kB URL HTTP/1.1 otomoto3452.com/noew1_files/sw795893650b29f47c9dd24d398b724a9a.css
IP 217.160.0.77:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 754 kB (754424 bytes)
Hash 795893650b29f47c9dd24d398b724a9a
a9b8fea5dfdd066da0ffbbb2160e641a50f5558c
25381ed370bf3951ee7e6474ecef678e5a383d256fed6c268c4512a37f9457d8
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/sw795893650b29f47c9dd24d398b724a9a.css HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 754424
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:03 GMT
ETag: "b82f8-5b3fa107a44dc"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/icon.css
217.160.0.77200 OK 564 B URL HTTP/1.1 otomoto3452.com/noew1_files/icon.css
IP 217.160.0.77:0
Hash 239a9c4789fc3de02785ec2c6a2b4f8d
54d0097490ca71bcd70be97156e7f1c3dac7aada
8130aacc55a18283a09d04e5bda0d6bc375bfc9e50eadb7f22dfb0c3dde909ae
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/icon.css HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 564
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:00 GMT
ETag: "234-5b3fa104b264f"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/installWidgets.js
217.160.0.77200 OK 250 kB URL HTTP/1.1 otomoto3452.com/noew1_files/installWidgets.js
IP 217.160.0.77:0
File type Unicode text, UTF-8 text, with very long lines (49724), with NEL line terminators
Size 250 kB (249524 bytes)
Hash 1c8542879db584244f99c72321e240b1
1853e7fa6beaa20418febe2d4fb59f626ebecd07
286a5d046074c41fc6c2985cecb31b3ec7f44d6a81f9e87c0ad43aa4af31a20e
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/installWidgets.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 249524
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:00 GMT
ETag: "3ceb4-5b3fa105382f2"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/swa62b2b625dd7a9ea682c73f400bd85ea.js
217.160.0.77200 OK 17 kB URL HTTP/1.1 otomoto3452.com/noew1_files/swa62b2b625dd7a9ea682c73f400bd85ea.js
IP 217.160.0.77:0
File type Unicode text, UTF-8 text, with very long lines (16021)
Hash a62b2b625dd7a9ea682c73f400bd85ea
5defaa605b6543fbb2eed8a388428c0ca09d0cec
cec56d2f4809cdd10af4232f03fafc8ab1514d99c413b7229ed9cca556215f16
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/swa62b2b625dd7a9ea682c73f400bd85ea.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 16971
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:03 GMT
ETag: "424b-5b3fa1078607c"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/apiclient.js
217.160.0.77200 OK 13 kB URL HTTP/1.1 otomoto3452.com/noew1_files/apiclient.js
IP 217.160.0.77:0
File type HTML document text\012- exported SGML document, ASCII text, with very long lines (5746)
Hash 968793add5cc7de2bcf72e05b98f8e5c
b45858fece9e411108d79c7fba0d5bcc8f233647
0ba6e04ebc66bf6c7ba82a4e31d709596579d87edca1be61f14aad495c8d236f
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/apiclient.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 12953
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:57:58 GMT
ETag: "3299-5b3fa103471c9"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/otomoto-footer.png
217.160.0.77200 OK 13 kB URL HTTP/1.1 otomoto3452.com/noew1_files/otomoto-footer.png
IP 217.160.0.77:0
File type PNG image data, 1600 x 148, 2-bit colormap, non-interlaced\012- data
Hash 9a57eeb46ceb1114bdf2450c779637e1
faf475ea148f7ad6bbaa1c61254568aa3363ab96
b80b5cc16774187a06119b2d7a898718e0b00402b9d2ec4ce14b5eb163025768
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/otomoto-footer.png HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 13372
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:02 GMT
ETag: "343c-5b3fa1071e83a"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/a
217.160.0.77200 OK 991 kB URL HTTP/1.1 otomoto3452.com/noew1_files/a
IP 217.160.0.77:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size 991 kB (990588 bytes)
Hash e3e65004e05a29de079a92975f615620
c41fe80bb82829e65f7f73b0543f84cdb808e1a4
e6bffaeab277263ebf995fdc275635ae1fdcab2b8587c8c0eb66d887fcd93f38
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/a HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Length: 990588
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:57:58 GMT
ETag: "f1d7c-5b3fa102d4da7"
Accept-Ranges: bytes
otomoto3452.com/noew1_files/1b78e6526b228c7bc3ea91ff2c80b7
217.160.0.77200 OK 66 kB URL HTTP/1.1 otomoto3452.com/noew1_files/1b78e6526b228c7bc3ea91ff2c80b7
IP 217.160.0.77:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 93e3090f4a1ac38fc394a901ba3136b9
17c8b1d598a83d82c125bf701f5ff79ad0d63ffc
8bd5e5729a3fb989a0bcb99fd966df11e1c44198c447712fa4136996e2b28c0a
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/1b78e6526b228c7bc3ea91ff2c80b7 HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Length: 66005
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:57:57 GMT
ETag: "101d5-5b3fa1026b625"
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 10 Sep 2022 20:56:07 GMT
Expires: Sat, 10 Sep 2022 21:11:38 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4HSxSA2-i07EpNjMdYdwXQ2ngOBRWuc44bn_7rbgndx10aAUJ06cgg==
Age: 366
otomoto3452.com/noew1_files/gtm_002.js
217.160.0.77200 OK 144 B URL HTTP/1.1 otomoto3452.com/noew1_files/gtm_002.js
IP 217.160.0.77:0
File type gzip compressed data, from Unix\012- data
Hash ba081cfd8d0360b37944dca9de39ebbc
6321c62d8d525d0903b19d91208fa975a66dfb45
70af5e92b2ec0e55df6ad38c7323d1721416fbac1ad69b502e00fabec5b9d684
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/gtm_002.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 295982
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:57:59 GMT
ETag: "4842e-5b3fa1044dcee"
Accept-Ranges: bytes
ninja.akamaized.net/ninja-verticals.js
184.31.15.41301 Moved Permanently 0 B URL HTTP/1.1 ninja.akamaized.net/ninja-verticals.js
IP 184.31.15.41:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ninja-verticals.js HTTP/1.1
Host: ninja.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://ninja.akamaized.net/ninja-verticals.js
Cache-Control: max-age=0
Expires: Sat, 10 Sep 2022 21:02:13 GMT
Date: Sat, 10 Sep 2022 21:02:13 GMT
Connection: keep-alive
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: false
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *
creativecdn.com/tags?id=pr_H2B0uP1rY2pmNOj01qlP&id2=pr_H2B0uP1rY2pmNOj01qlP_custom_split_4
185.184.8.90302 Found 0 B URL HTTP/1.1 creativecdn.com/tags?id=pr_H2B0uP1rY2pmNOj01qlP&id2=pr_H2B0uP1rY2pmNOj01qlP_custom_split_4
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tags?id=pr_H2B0uP1rY2pmNOj01qlP&id2=pr_H2B0uP1rY2pmNOj01qlP_custom_split_4 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
date: Sat, 10 Sep 2022 21:02:13 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
location: https://creativecdn.com/tags?id=pr_H2B0uP1rY2pmNOj01qlP&id2=pr_H2B0uP1rY2pmNOj01qlP_custom_split_4
content-length: 0
otomotopl-statics.akamaized.net/packed/img/2f120da7e15fd94dded44729064885f0e4.png
184.31.15.35400 Bad Request 208 B URL HTTP/1.0 otomotopl-statics.akamaized.net/packed/img/2f120da7e15fd94dded44729064885f0e4.png
IP 184.31.15.35:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 1ac66f42df294bb712631f703dc741ee
e9d50222ae9cda0be567f8357e825112281884cf
8826b33ba2168ac06cbc75aa09c9c65001bbf868cd59928925acd4b962e9c12c
GET /packed/img/2f120da7e15fd94dded44729064885f0e4.png HTTP/1.1
Host: otomotopl-statics.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.0 400 Bad Request
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 208
Expires: Sat, 10 Sep 2022 21:02:14 GMT
Date: Sat, 10 Sep 2022 21:02:14 GMT
Connection: close
otomotopl-statics.akamaized.net/naspersclassifieds-regional/verticals-cars-atlas-web-otomotopl/static/fonts/atlas-cars-icons.woff?k8nh67
184.31.15.35400 Bad Request 389 B URL HTTP/1.0 otomotopl-statics.akamaized.net/naspersclassifieds-regional/verticals-cars-atlas-web-otomotopl/static/fonts/atlas-cars-icons.woff?k8nh67
IP 184.31.15.35:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash f5bda1ede8d868773308209caf6a3ed2
4459634dcc9b3022dba6b67d1b9a0845b1a6a91c
e8018ddd5a65fbef29515cc6158bfba59b9517b7733c246026dce3a3d44654b6
GET /naspersclassifieds-regional/verticals-cars-atlas-web-otomotopl/static/fonts/atlas-cars-icons.woff?k8nh67 HTTP/1.1
Host: otomotopl-statics.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://otomoto3452.com
Connection: keep-alive
Referer: http://otomoto3452.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.0 400 Bad Request
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 389
Expires: Sat, 10 Sep 2022 21:02:14 GMT
Date: Sat, 10 Sep 2022 21:02:14 GMT
Connection: close
otomoto3452.com/noew1_files/js
217.160.0.77200 OK 208 B URL HTTP/1.1 otomoto3452.com/noew1_files/js
IP 217.160.0.77:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 97d2fe44d695d330624791edce2d438c
ffb9701744d0026ae188ae1894129e7f2c7e82bd
937037117da82bf75b3a8d3acb377f732452859d6e19ed4c731b6154c184ceb0
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Length: 62069
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:00 GMT
ETag: "f275-5b3fa10578a33"
Accept-Ranges: bytes
otomotopl-statics.akamaized.net/packed/img/2fad9fc0c21143e664c74d08be735123ad.png
184.31.15.35400 Bad Request 208 B URL HTTP/1.0 otomotopl-statics.akamaized.net/packed/img/2fad9fc0c21143e664c74d08be735123ad.png
IP 184.31.15.35:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash a9f129f3f0ff0d4367390aaee33bfcb9
03d6debd7239c7b16509aa0415056746f6ec78d0
5a2ec755343a24f1349b85e3efb6b0bda2c72018fe22f47052bf5fb6a81bdc0f
GET /packed/img/2fad9fc0c21143e664c74d08be735123ad.png HTTP/1.1
Host: otomotopl-statics.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.0 400 Bad Request
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 208
Expires: Sat, 10 Sep 2022 21:02:14 GMT
Date: Sat, 10 Sep 2022 21:02:14 GMT
Connection: close
otomotopl-statics.akamaized.net/packed/font/2f1bb805446b880e7e63cae7ab00433f15.svg
184.31.15.35400 Bad Request 208 B URL HTTP/1.0 otomotopl-statics.akamaized.net/packed/font/2f1bb805446b880e7e63cae7ab00433f15.svg
IP 184.31.15.35:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 7b5e6c235d379a54c547d282e0d68a8f
d69a8fcb59900bba14a3ed16dff9892774796f63
000db8e6d38206e4d9c76bf7d9aee6bf34ebcb84b7296e2b2c1efa8fc7b98f73
GET /packed/font/2f1bb805446b880e7e63cae7ab00433f15.svg HTTP/1.1
Host: otomotopl-statics.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.0 400 Bad Request
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 208
Expires: Sat, 10 Sep 2022 21:02:14 GMT
Date: Sat, 10 Sep 2022 21:02:14 GMT
Connection: close
otomotopl-statics.akamaized.net/packed/img/2f44f0016d6e529ae50a79a63682193c72.png
184.31.15.35400 Bad Request 208 B URL HTTP/1.0 otomotopl-statics.akamaized.net/packed/img/2f44f0016d6e529ae50a79a63682193c72.png
IP 184.31.15.35:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6f84aa814e90bf7032aa651252fb5aac
b4f325cd7cad946c00eebf8d29a8d014ebbfc8ce
774db063180957f91478f1dfd2e7ef169c2bdeebfbf22dbef7f6eb4faaa8ddd4
GET /packed/img/2f44f0016d6e529ae50a79a63682193c72.png HTTP/1.1
Host: otomotopl-statics.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.0 400 Bad Request
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 208
Expires: Sat, 10 Sep 2022 21:02:14 GMT
Date: Sat, 10 Sep 2022 21:02:14 GMT
Connection: close
otomotopl-statics.akamaized.net/packed/font/2f6f393e6ae19281e482c3fe4c095b6717.svg
184.31.15.35400 Bad Request 208 B URL HTTP/1.0 otomotopl-statics.akamaized.net/packed/font/2f6f393e6ae19281e482c3fe4c095b6717.svg
IP 184.31.15.35:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash cc08e21c74170b2fac451de5832c7af9
e8d631a50cf27951495be062c53c462b983d7c87
c70c224d9025413b42d6a4a5796b24028d2d81d4eb6cc89c4753a48cf122ffb9
GET /packed/font/2f6f393e6ae19281e482c3fe4c095b6717.svg HTTP/1.1
Host: otomotopl-statics.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.0 400 Bad Request
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 208
Expires: Sat, 10 Sep 2022 21:02:14 GMT
Date: Sat, 10 Sep 2022 21:02:14 GMT
Connection: close
otomotopl-statics.akamaized.net/packed/img/2fbce5be505460dc152d94e96497a18922.png
184.31.15.35400 Bad Request 208 B URL HTTP/1.0 otomotopl-statics.akamaized.net/packed/img/2fbce5be505460dc152d94e96497a18922.png
IP 184.31.15.35:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 1edbda396e43f0ae7837a3d6ed5306c5
efb52efe43dad406af287648041f7d1b85a5f9d9
55cf76fbee511fbc6c86de2c86993b64b3a7c56f76bd6dd6831c5a8ccda6f180
GET /packed/img/2fbce5be505460dc152d94e96497a18922.png HTTP/1.1
Host: otomotopl-statics.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.0 400 Bad Request
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 208
Expires: Sat, 10 Sep 2022 21:02:14 GMT
Date: Sat, 10 Sep 2022 21:02:14 GMT
Connection: close
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cd5be5061b4fa3fcc93a1abed5ec5e84
88927372c605befdaa122fde877ed3e4c0fcfb3f
15dbeb6f1222859d96a276f560e940213ba693ba241ee9687d1e7f82776fac3c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6471
Cache-Control: max-age=107914
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 21:02:14 GMT
Etag: "631be499-1d7"
Expires: Mon, 12 Sep 2022 03:00:48 GMT
Last-Modified: Sat, 10 Sep 2022 01:12:57 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
creativecdn.com/tags?id=pr_H2B0uP1rY2pmNOj01qlP&id2=pr_H2B0uP1rY2pmNOj01qlP_custom_split_4
185.184.8.90302 Found 0 B URL HTTP/2 creativecdn.com/tags?id=pr_H2B0uP1rY2pmNOj01qlP&id2=pr_H2B0uP1rY2pmNOj01qlP_custom_split_4
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tags?id=pr_H2B0uP1rY2pmNOj01qlP&id2=pr_H2B0uP1rY2pmNOj01qlP_custom_split_4 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://otomoto3452.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 10 Sep 2022 21:02:14 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=eDd8y0E6M1iU3fmcpXGe;Path=/;Domain=.creativecdn.com;Expires=Sun, 10-Sep-2023 21:02:14 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1662843734;Path=/;Domain=.creativecdn.com;Expires=Sun, 10-Sep-2023 21:02:14 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://creativecdn.com/tags?id=pr_H2B0uP1rY2pmNOj01qlP&id2=pr_H2B0uP1rY2pmNOj01qlP_custom_split_4&tc=1
content-length: 0
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-K4DX4C6
142.250.74.72302 Found 251 B URL HTTP/1.1 www.googletagmanager.com/gtm.js?id=GTM-K4DX4C6
IP 142.250.74.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 1ed32d713bd1c106edc3c77dfe2e84cc
59b84bbcbf5d9ece8928f5274f8fac2c5c83daee
6fcf3b061cfd93eaf0becf5c71d0e2f9b33676e2c2540599dd67790c22807033
GET /gtm.js?id=GTM-K4DX4C6 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtm.js?id=GTM-K4DX4C6
Cross-Origin-Resource-Policy: cross-origin
Date: Sat, 10 Sep 2022 21:02:14 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 251
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 36fe04277220227ba5ecfe7d2ff1d9d9
2eb9f6560336248cc45c1cd66d87505b5ebdf5d4
94f8f2f8f3b67db18825ea48740ff0ce218d7156fe851d6b023ef43b6bee4f7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6310
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 21:02:14 GMT
Last-Modified: Sat, 10 Sep 2022 19:17:04 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
creativecdn.com/tags?id=pr_H2B0uP1rY2pmNOj01qlP&id2=pr_H2B0uP1rY2pmNOj01qlP_custom_split_4&tc=1
185.184.8.90204 No Content 0 B URL HTTP/2 creativecdn.com/tags?id=pr_H2B0uP1rY2pmNOj01qlP&id2=pr_H2B0uP1rY2pmNOj01qlP_custom_split_4&tc=1
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tags?id=pr_H2B0uP1rY2pmNOj01qlP&id2=pr_H2B0uP1rY2pmNOj01qlP_custom_split_4&tc=1 HTTP/1.1
Host: creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://otomoto3452.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
X-Firefox-Spdy: h2
tracking.olx-st.com/h/v2/v-otomoto-web?sl=1832935a0a6x2bbc3189&s=1832935a0a6x2bbc3189&cl=1&c=1&cC=PL&bR=otomoto&rE=v&eN=login_page&tN=p&language=pl_PL&platform=desktop&event_type=pv&user_status=unlogged&cat_l1_id=29&cat_l1_name=cars&testgroup=4&RTBCookieSplit=4&cP=konto&mv=1.0.100&host=otomoto3452.com&ivd=olx-pl_organic&t=1662843723942&js=1
52.59.167.32200 OK 35 B URL HTTP/1.1 tracking.olx-st.com/h/v2/v-otomoto-web?sl=1832935a0a6x2bbc3189&s=1832935a0a6x2bbc3189&cl=1&c=1&cC=PL&bR=otomoto&rE=v&eN=login_page&tN=p&language=pl_PL&platform=desktop&event_type=pv&user_status=unlogged&cat_l1_id=29&cat_l1_name=cars&testgroup=4&RTBCookieSplit=4&cP=konto&mv=1.0.100&host=otomoto3452.com&ivd=olx-pl_organic&t=1662843723942&js=1
IP 52.59.167.32:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /h/v2/v-otomoto-web?sl=1832935a0a6x2bbc3189&s=1832935a0a6x2bbc3189&cl=1&c=1&cC=PL&bR=otomoto&rE=v&eN=login_page&tN=p&language=pl_PL&platform=desktop&event_type=pv&user_status=unlogged&cat_l1_id=29&cat_l1_name=cars&testgroup=4&RTBCookieSplit=4&cP=konto&mv=1.0.100&host=otomoto3452.com&ivd=olx-pl_organic&t=1662843723942&js=1 HTTP/1.1
Host: tracking.olx-st.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:02:14 GMT
Content-Type: image/gif;charset=ISO-8859-1
Content-Length: 35
Connection: keep-alive
x-olx-hydra-ver: hydra-e5fa7f3
Set-Cookie: onap=1832935a0a6x2bbc3189-1-1832935a0a6x2bbc3189-1-1662845534-1832935c886x6d874e1a-olx-pl_organic_1662843734_1665435734;Path=/h;Expires=Mon, 09-Sep-2024 21:02:14 GMT;SameSite=None;Secure
Access-Control-Allow-Origin: *
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Expires: Wed, 19 Apr 2000 03:14:15 GMT
Pragma: no-cache
otomoto3452.com/noew1_files/iframe.html
217.160.0.77200 OK 314 B URL HTTP/1.1 otomoto3452.com/noew1_files/iframe.html
IP 217.160.0.77:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (475), with CRLF line terminators
Hash 27cfbbde6486252188fe430eac4e7de6
fe909e8a1462f81ed69d0b9d7051f18aefcc0ed8
95bde1ddd9341e7679b26298374d55a6077f84c211ae61bac0e137f1b079d30b
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/iframe.html HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
Cookie: _gcl_au=1.1.2030113063.1662843724
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:14 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:00 GMT
ETag: W/"1ec-5b3fa104fc9d1"
Content-Encoding: gzip
otomoto3452.com/noew1_files/lsget.html
217.160.0.77200 OK 2.7 kB URL HTTP/1.1 otomoto3452.com/noew1_files/lsget.html
IP 217.160.0.77:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1255), with CRLF line terminators
Hash 850ee2ceb11ddd17f452e0c7b831deba
350548fbb1565bf20c97132b8e3283c335fe2ccd
b243f8192e7603f4e0026a060a07827f29b02055a822deb0e2726ef4be79093f
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/lsget.html HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
Cookie: _gcl_au=1.1.2030113063.1662843724
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:14 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:01 GMT
ETag: W/"1671-5b3fa1063ced6"
Content-Encoding: gzip
otomoto3452.com/noew1_files/lsset.html
217.160.0.77200 OK 1.9 kB URL HTTP/1.1 otomoto3452.com/noew1_files/lsset.html
IP 217.160.0.77:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1254), with CRLF line terminators
Hash 2b41d2f2815cc18687fb3acb6174cee3
f75e417e6922100b2f3b14ff60fc7dae8955b309
031536ace1dfda717c91aa1b499b6b68f059f396c51b180239626d078677e312
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/lsset.html HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
Cookie: _gcl_au=1.1.2030113063.1662843724
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:14 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:01 GMT
ETag: W/"be8-5b3fa1065b337"
Content-Encoding: gzip
otomoto3452.com/noew1_files/tags_data/a.txt
217.160.0.77404 Not Found 172 B URL HTTP/1.1 otomoto3452.com/noew1_files/tags_data/a.txt
IP 217.160.0.77:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e796f37d7bd470e2eabc2644b62b73af
2c7fa79ac161e6bfbc0b1b55a21ec2ad27c14fee
a82d2ea26e678d94a5b295b0243f250a9be994357d60633feff72d1e90a2b788
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/tags_data/a.txt HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/noew1_files/tags.html
Cookie: _gcl_au=1.1.2030113063.1662843724
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:14 GMT
Server: Apache
Content-Encoding: gzip
otomoto3452.com/noew1_files/iframe_data/3233175361-idpiframe.js
217.160.0.77200 OK 76 kB URL HTTP/1.1 otomoto3452.com/noew1_files/iframe_data/3233175361-idpiframe.js
IP 217.160.0.77:0
File type ASCII text, with very long lines (1845)
Hash 85eb2c8e174b4d7dcf620819d762a41a
7e772acae7adc4203b7cb5e22633985af7495f98
85dc58c88d3cb99170459e95e30a95d2f3533492b21824c7daec5ae4898d2888
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/iframe_data/3233175361-idpiframe.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/noew1_files/iframe.html
Cookie: _gcl_au=1.1.2030113063.1662843724
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 75531
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:14 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:05 GMT
ETag: "1270b-5b3fa10a0e787"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 57b75ea93de540716c45f1397781431a
431cc2c684385c4e46facd7210b5ac49b9dd09cc
4581d7dd422dc110fa7cfe667297cdb75d92a02ce7226db6db89448befa5b780
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 21:02:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 5e89be13a1f49da0fef3408402203b6c
98d8bd2187e7d467ef392d10a5032245b87f03bc
5a083a145e0bacac3d2061828f3c2c96e018554f42e218b252387a7710a1af1d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1282
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 21:02:14 GMT
Last-Modified: Sat, 10 Sep 2022 20:40:52 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 312
www.googletagmanager.com/gtm.js?id=GTM-K4DX4C6
142.250.74.72200 OK 94 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-K4DX4C6
IP 142.250.74.72:0
File type ASCII text, with very long lines (40540)
Hash 67beb5eb12aae3b8ae6423fd839af426
f3a7923234666e438b1a1edce43171c60a67ef1e
ad5be653e73f02189596e5e97facd2aa2c0c82320bbf58654055a40775215ddd
GET /gtm.js?id=GTM-K4DX4C6 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://otomoto3452.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 10 Sep 2022 21:02:14 GMT
expires: Sat, 10 Sep 2022 21:02:14 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94270
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 57b75ea93de540716c45f1397781431a
431cc2c684385c4e46facd7210b5ac49b9dd09cc
4581d7dd422dc110fa7cfe667297cdb75d92a02ce7226db6db89448befa5b780
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 21:02:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 7cee23eb108b60a93dde2122c9ea068f
49ca6abb3fc88060c671a261a177b8c592ba01a9
52d9861c281284dfcdf06aeaca9c50f79a0893108bffd1713b0a644934fd8bfa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1370
Cache-Control: max-age=109636
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 21:02:14 GMT
Etag: "631bff40-138"
Expires: Mon, 12 Sep 2022 03:29:30 GMT
Last-Modified: Sat, 10 Sep 2022 03:06:40 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 312
push.services.mozilla.com/
52.43.61.95101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.61.95:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Eq2T8vrf25lTr/5yHUTdlw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: D47lrOKhCuAEqeqH+VmSaFxMDuc=
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 21:02:14 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=XTauil80M0RITmhlJTJCZkMwOUJGQlhaMUN2czlueTZtRnBDYjJOU05PSEc1aldENW9ONiUyQlVIOGpLRXBJeVFpcFgwMDB4TA; expires=Thu, 05 Oct 2023 21:02:14 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 220011
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 78eed83eb25868d476c16ad2954745ee
ed58ad0750a37e2bb7fb431b308e83b1e3919191
c58d1cfbca8d710af59e06b84d97d6416918a753642d092bcbaa0537c080943c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6047
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 21:02:14 GMT
Last-Modified: Sat, 10 Sep 2022 19:21:27 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 78eed83eb25868d476c16ad2954745ee
ed58ad0750a37e2bb7fb431b308e83b1e3919191
c58d1cfbca8d710af59e06b84d97d6416918a753642d092bcbaa0537c080943c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6047
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 21:02:14 GMT
Last-Modified: Sat, 10 Sep 2022 19:21:27 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 313
ls.hit.gemius.pl/lsget.html
146.59.30.96200 OK 2.7 kB URL HTTP/1.1 ls.hit.gemius.pl/lsget.html
IP 146.59.30.96:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1251)
Hash 2ea2f5e46b31f4fd83578d076950f2f5
1c56e29a4397a00f2e24bc8be38a3ba8ba424d65
9bd61c0098563fd8854f77a41ff4fa7b864b9d7e2aa27ed5ace53b4e6a735daf
GET /lsget.html HTTP/1.1
Host: ls.hit.gemius.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:02:14 GMT
Expires: Mon, 10 Oct 2022 21:02:14 GMT
Server: GHC
Accept-Ranges: none
Cache-Control: private, max-age=2592000
Last-Modified: Mon, 16 Jul 2012 10:03:40 GMT
ETag: PRIVATE7520710249
Vary: Accept-Encoding,Origin,User-Agent
Cross-Origin-Resource-Policy: cross-origin
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
P3P: CP="NOI DSP COR NID PSAo OUR IND"
Connection: keep-alive
Keep-Alive: timeout=10
Content-Type: text/html;charset=utf-8
Content-Length: 2719
Content-Encoding: gzip
otomotopl-statics.akamaized.net/naspersclassifieds-regional/verticals-cars-atlas-web-otomotopl/static/img/favicon.ico?v=4
184.31.15.35400 Bad Request 369 B URL HTTP/1.0 otomotopl-statics.akamaized.net/naspersclassifieds-regional/verticals-cars-atlas-web-otomotopl/static/img/favicon.ico?v=4
IP 184.31.15.35:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 7cd98f4b496a911b570a50efc5018202
6a3bd17c565c20345e3e6786f5853af7929fcebd
addf6fccf62510572563a3ab090fff1547f16e18b2d6168821da15eec70b8abe
GET /naspersclassifieds-regional/verticals-cars-atlas-web-otomotopl/static/img/favicon.ico?v=4 HTTP/1.1
Host: otomotopl-statics.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.0 400 Bad Request
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 369
Expires: Sat, 10 Sep 2022 21:02:14 GMT
Date: Sat, 10 Sep 2022 21:02:14 GMT
Connection: close
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0712a01881facad69129a07308dc8210
e608cf81282913cb0941a2d48b7274b2902ec7d4
0c1254ba63c04fb3f82027c2b1b5d89093bafc795db782cdc85be4f27ae2cb13
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 21:02:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0712a01881facad69129a07308dc8210
e608cf81282913cb0941a2d48b7274b2902ec7d4
0c1254ba63c04fb3f82027c2b1b5d89093bafc795db782cdc85be4f27ae2cb13
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 21:02:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/apps-static/_/js/k=oz.gapi.en_US.JKCQ2Hvuo0E.O/m=client/rt=j/sv=1/d=1/ed=1/am=wQE/rs=AGLTcCOl3FsgYnTqVeIFUJJD2j4-pO09lQ/cb=gapi.loaded_0
142.250.74.174200 OK 101 kB URL HTTP/2 apis.google.com/_/scs/apps-static/_/js/k=oz.gapi.en_US.JKCQ2Hvuo0E.O/m=client/rt=j/sv=1/d=1/ed=1/am=wQE/rs=AGLTcCOl3FsgYnTqVeIFUJJD2j4-pO09lQ/cb=gapi.loaded_0
IP 142.250.74.174:0
File type ASCII text, with very long lines (760)
Size 101 kB (101217 bytes)
Hash ec74ba957017dfff5001e93cf753a223
0cf58ae3c01deebed9abb43e4a94d098d822c80e
c32b8568ff4a07a68bcf0527c82924dca41eea956af7f452db1d8473f77c9055
GET /_/scs/apps-static/_/js/k=oz.gapi.en_US.JKCQ2Hvuo0E.O/m=client/rt=j/sv=1/d=1/ed=1/am=wQE/rs=AGLTcCOl3FsgYnTqVeIFUJJD2j4-pO09lQ/cb=gapi.loaded_0 HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 101217
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 10:19:50 GMT
expires: Fri, 08 Sep 2023 10:19:50 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Wed, 15 Jan 2020 20:40:07 GMT
content-type: text/javascript; charset=UTF-8
age: 211344
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/api:client.js
142.250.74.174200 OK 5.6 kB URL HTTP/2 apis.google.com/js/api:client.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (2046)
Hash 317eaac95e560fcd85884c7a761571da
5b62a9a9fafa8993bb19479ec0fc42eb4b09d387
41df2b017ccddba4ebaf4ab4da7d811ca81fef441c81ee50e7765c8df8710b25
GET /js/api:client.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 5571
date: Sat, 10 Sep 2022 21:02:14 GMT
expires: Sat, 10 Sep 2022 21:02:14 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "9a3fe188bc97198e"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
olx.hit.gemius.pl/fpdata.js?href=otomoto3452.com
185.11.128.204301 Moved Permanently 0 B URL HTTP/1.1 olx.hit.gemius.pl/fpdata.js?href=otomoto3452.com
IP 185.11.128.204:0
ASN #50599 Data Space Sp. z o.o.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fpdata.js?href=otomoto3452.com HTTP/1.1
Host: olx.hit.gemius.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 10 Sep 2022 21:02:14 GMT
Expires: Fri, 09 Sep 2022 21:02:14 GMT
Server: GHC
Accept-Ranges: none
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Cross-Origin-Resource-Policy: cross-origin
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
P3P: CP="NOI DSP COR NID PSAo OUR IND"
Location: https://olx.hit.gemius.pl/_sslredir/fpdata.js?href=otomoto3452.com
Connection: keep-alive
Keep-Alive: timeout=10
Content-Length: 0
ocsp.sectigo.com/
172.64.155.188200 OK 280 B IP 172.64.155.188:0
Hash 72fecabf41af0cb24a5b61df7a2e453b
0bb639d722febafbf0573305d37795002b217968
1bbe07f3b08e10272660c01709e6a62617418639a4c9c3b01feb571a483ee76e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:02:14 GMT
Content-Type: application/ocsp-response
Content-Length: 280
Connection: keep-alive
Last-Modified: Sat, 10 Sep 2022 20:55:33 GMT
Expires: Sat, 17 Sep 2022 20:55:32 GMT
Etag: "0bb639d722febafbf0573305d37795002b217968"
Cache-Control: max-age=603797,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 748b1a7d2d9fb524-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6c2fea93ba89de81c2b01aaca1a87835
0a7f50001f709285bc10f6ef044ef39a60535bff
6cae8a5f9949975a3adedc41088196b8c9dd984e4023e54bbe655800a9478349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 21:02:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ls.hit.gemius.pl/lsget.html
146.59.30.96200 OK 2.7 kB URL HTTP/2 ls.hit.gemius.pl/lsget.html
IP 146.59.30.96:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1255)
Hash 7a049a873229ba91738e4de84b92692a
cb49302cd7579daa35faa07a20df22a82027e237
c759284377c294cf95c3df004cdfc1f17a7fb94eaa9c49532f2c72f289b73d43
GET /lsget.html HTTP/1.1
Host: ls.hit.gemius.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 21:02:14 GMT
expires: Mon, 10 Oct 2022 21:02:14 GMT
server: GHC
accept-ranges: none
cache-control: private, max-age=2592000
last-modified: Mon, 16 Jul 2012 10:03:40 GMT
etag: PRIVATE7520710249
vary: Accept-Encoding,Origin,User-Agent
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: CP="NOI DSP COR NID PSAo OUR IND"
content-type: text/html;charset=utf-8
content-length: 2719
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 280 B IP 172.64.155.188:0
Hash 72fecabf41af0cb24a5b61df7a2e453b
0bb639d722febafbf0573305d37795002b217968
1bbe07f3b08e10272660c01709e6a62617418639a4c9c3b01feb571a483ee76e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:02:14 GMT
Content-Type: application/ocsp-response
Content-Length: 280
Connection: keep-alive
Last-Modified: Sat, 10 Sep 2022 20:55:33 GMT
Expires: Sat, 17 Sep 2022 20:55:32 GMT
Etag: "0bb639d722febafbf0573305d37795002b217968"
Cache-Control: max-age=603797,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 748b1a7d3d310afa-OSL
ls.hit.gemius.pl/lsset.html
146.59.30.96200 OK 1.9 kB URL HTTP/2 ls.hit.gemius.pl/lsset.html
IP 146.59.30.96:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1255)
Hash b5802fe3c09ef4cc87c0c22c1b0b8a60
e94b1463766ada7b13e32b1d639ffc694731a51d
b36704a1e910d136283108c738c7fa35e413586101c9781cef891feb2cc01233
GET /lsset.html HTTP/1.1
Host: ls.hit.gemius.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 21:02:14 GMT
expires: Mon, 10 Oct 2022 21:02:14 GMT
server: GHC
accept-ranges: none
cache-control: private, max-age=2592000
last-modified: Mon, 16 Jul 2012 10:03:40 GMT
etag: PRIVATE7520710249
vary: Accept-Encoding,Origin,User-Agent
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: CP="NOI DSP COR NID PSAo OUR IND"
content-type: text/html;charset=utf-8
content-length: 1865
content-encoding: gzip
X-Firefox-Spdy: h2
ls.hit.gemius.pl/lsget.html?mode=new
146.59.30.96200 OK 2.7 kB URL HTTP/2 ls.hit.gemius.pl/lsget.html?mode=new
IP 146.59.30.96:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1257)
Hash 0ee759411ba111decec6bc8ab5d427ea
72170db66c0dd9a8032058824af8fdd32be0be17
c96b6090bf0505321d18c150f8aa0dc7b865f0189757982599af73c586034f59
GET /lsget.html?mode=new HTTP/1.1
Host: ls.hit.gemius.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 21:02:14 GMT
expires: Mon, 10 Oct 2022 21:02:14 GMT
server: GHC
accept-ranges: none
cache-control: private, max-age=2592000
last-modified: Mon, 16 Jul 2012 10:03:40 GMT
etag: PRIVATE7520710249
vary: Accept-Encoding,Origin,User-Agent
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: CP="NOI DSP COR NID PSAo OUR IND"
content-type: text/html;charset=utf-8
content-length: 2725
content-encoding: gzip
X-Firefox-Spdy: h2
ninja.akamaized.net/ninja-verticals.js
184.31.15.41200 OK 29 kB URL HTTP/2 ninja.akamaized.net/ninja-verticals.js
IP 184.31.15.41:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (577)
Hash f6e9d6f7a345865785f820ff73381620
cb331271284907463f4aa2fdd0077452ac037b0f
01675bfadde2ac452704aab27715d98107bd41927080053b4398db2d8b77ef8d
GET /ninja-verticals.js HTTP/1.1
Host: ninja.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://otomoto3452.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: q8+xlNV7blfEsYhyJ5QnSfAlJ571Qryy9Q+xb3V/MAaX+BgfLo9pZgID0PNm+ugE8yt98nairKE=
x-amz-request-id: 7E2C65Q9RGAVN2K7
last-modified: Wed, 07 Sep 2022 15:05:48 GMT
etag: "4b56d987cb53221d332dc53d51191925"
x-amz-version-id: zRgPXiaNfHZhxiQBOaQdnmXdGIEtpbmS
accept-ranges: bytes
content-type: application/javascript
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=846, s-maxage=1800
expires: Sat, 10 Sep 2022 21:16:20 GMT
date: Sat, 10 Sep 2022 21:02:14 GMT
content-length: 29102
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
olx.hit.gemius.pl/_sslredir/fpdata.js?href=otomoto3452.com
185.11.128.204200 OK 284 B URL HTTP/2 olx.hit.gemius.pl/_sslredir/fpdata.js?href=otomoto3452.com
IP 185.11.128.204:0
ASN #50599 Data Space Sp. z o.o.
Hash 55ad126275f9e7cb3231930edcb30840
6b28d1812131dd9e8c2f3c8268ffc7a6bcefdd05
ef9aec2df610d632cf06b7dec733e4dc058274a389aaf3a9b6cf9e6bc1f5972f
GET /_sslredir/fpdata.js?href=otomoto3452.com HTTP/1.1
Host: olx.hit.gemius.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://otomoto3452.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 21:02:14 GMT
expires: Mon, 10 Oct 2022 21:02:14 GMT
server: GHC
accept-ranges: none
cache-control: private, max-age=2592000
last-modified: Mon, 16 Jul 2012 10:03:40 GMT
etag: PRIVATE7520710249
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
p3p: CP="NOI DSP COR NID PSAo OUR IND"
content-type: application/x-javascript
content-length: 284
X-Firefox-Spdy: h2
olx.hit.gemius.pl/_1662843724828/rexdot.js?l=100&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=view&hsrc=1&initsonar=1&extra=&eventid=0&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
185.11.128.204301 Moved Permanently 0 B URL HTTP/1.1 olx.hit.gemius.pl/_1662843724828/rexdot.js?l=100&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=view&hsrc=1&initsonar=1&extra=&eventid=0&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
IP 185.11.128.204:0
ASN #50599 Data Space Sp. z o.o.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_1662843724828/rexdot.js?l=100&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=view&hsrc=1&initsonar=1&extra=&eventid=0&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1 HTTP/1.1
Host: olx.hit.gemius.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 10 Sep 2022 21:02:15 GMT
Expires: Fri, 09 Sep 2022 21:02:15 GMT
Server: GHC
Accept-Ranges: none
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Cross-Origin-Resource-Policy: cross-origin
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
P3P: CP="NOI DSP COR NID PSAo OUR IND"
Location: https://olx.hit.gemius.pl/_sslredir/_1662843724828/rexdot.js?l=100&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=view&hsrc=1&initsonar=1&extra=&eventid=0&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
Connection: keep-alive
Keep-Alive: timeout=10
Content-Length: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8a3f147ac37bcccd79750e4229a8d99b
f76459233b24f681045ed0476a63d95a0f12623e
6ecda86d440d58447955acca8d5181db4951cd6f92cd7ad595511d3c9c54d82a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 21:02:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
olx.hit.gemius.pl/_sslredir/_1662843724828/rexdot.js?l=100&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=view&hsrc=1&initsonar=1&extra=&eventid=0&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
185.11.128.204301 Moved Permanently 0 B URL HTTP/2 olx.hit.gemius.pl/_sslredir/_1662843724828/rexdot.js?l=100&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=view&hsrc=1&initsonar=1&extra=&eventid=0&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
IP 185.11.128.204:0
ASN #50599 Data Space Sp. z o.o.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_sslredir/_1662843724828/rexdot.js?l=100&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=view&hsrc=1&initsonar=1&extra=&eventid=0&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1 HTTP/1.1
Host: olx.hit.gemius.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://otomoto3452.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 10 Sep 2022 21:02:15 GMT
expires: Fri, 09 Sep 2022 21:02:15 GMT
server: GHC
accept-ranges: none
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
set-cookie: Gtest=KlSNeMXGQMGGr3NZ3k6yY2XissGMXP8cERbG; Domain=hit.gemius.pl; Path=/; SameSite=None; Secure; Expires=Sat, 17 Sep 2022 21:02:15 GMT
p3p: CP="NOI DSP COR NID PSAo OUR IND"
location: /__/_sslredir/_1662843724828/rexdot.js?l=100&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=view&hsrc=1&initsonar=1&extra=&eventid=0&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
content-length: 0
X-Firefox-Spdy: h2
laquesis.akamaized.net/assign?sl=1832935a0a6x2bbc3189&cc=PL&ch=w&br=otomoto
184.31.15.49200 OK 1.5 kB URL HTTP/2 laquesis.akamaized.net/assign?sl=1832935a0a6x2bbc3189&cc=PL&ch=w&br=otomoto
IP 184.31.15.49:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with very long lines (1497), with no line terminators
Hash df544e5281d91a9d65b59a88f42a668a
399fbce1d22146fa58b20803c07bfad5e7a8a506
ad1f33190ec74075d191639059b3f329c39587ff46e51b9c0da7d9a9f928f08f
GET /assign?sl=1832935a0a6x2bbc3189&cc=PL&ch=w&br=otomoto HTTP/1.1
Host: laquesis.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://otomoto3452.com
Connection: keep-alive
Referer: http://otomoto3452.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 1497
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: Sat, 10 Sep 2022 21:02:15 GMT
date: Sat, 10 Sep 2022 21:02:15 GMT
access-control-max-age: 86400
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 21:02:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accounts.google.com/o/oauth2/iframe
216.58.207.237200 OK 35 kB URL HTTP/2 accounts.google.com/o/oauth2/iframe
IP 216.58.207.237:0
File type HTML document, ASCII text, with very long lines (868)
Hash e7e61dd100a08b6f8afec8d0b6179d09
4f96f73ee3929fabe905c0354f40df6be37c7480
4ddbe61c9ad3778efa83146dbe52a57c0db79b3b27b8e6ac467903e7174d9d0b
GET /o/oauth2/iframe HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 10 Sep 2022 21:02:15 GMT
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"IdpIFrameHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/IdpIFrameHttp/external"}]}
content-security-policy: script-src 'nonce--5227IhDVDYX39ts8NilkA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/IdpIFrameHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/IdpIFrameHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/IdpIFrameHttp/cspreport
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-embedder-policy: require-corp
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin; report-to="IdpIFrameHttp"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 21:02:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
olx.hit.gemius.pl/__/_sslredir/_1662843724828/rexdot.js?l=100&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=view&hsrc=1&initsonar=1&extra=&eventid=0&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
185.11.128.204200 OK 167 B URL HTTP/2 olx.hit.gemius.pl/__/_sslredir/_1662843724828/rexdot.js?l=100&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=view&hsrc=1&initsonar=1&extra=&eventid=0&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
IP 185.11.128.204:0
ASN #50599 Data Space Sp. z o.o.
Hash c0abeaa8d1e05dd69b33f037a9a5ad1e
4cf614ad3e9a084852cdea5ea01e9e20ac0d74ce
0a9fe80176b008afa69984a9dfc1a1002c033859cd93d62fb94387fd3d5cf011
GET /__/_sslredir/_1662843724828/rexdot.js?l=100&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=view&hsrc=1&initsonar=1&extra=&eventid=0&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1 HTTP/1.1
Host: olx.hit.gemius.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://otomoto3452.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Sep 2022 21:02:15 GMT
expires: Fri, 09 Sep 2022 21:02:15 GMT
server: GHC
accept-ranges: none
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
set-cookie: Gtest=KlQueMGGQMGGUIk0dr6yY2XissGMXP8cERbG; Domain=hit.gemius.pl; Path=/; SameSite=None; Secure; Expires=Sat, 17 Sep 2022 21:02:15 GMT
p3p: CP="NOI DSP COR NID PSAo OUR IND"
content-type: application/x-javascript
content-length: 167
X-Firefox-Spdy: h2
tracking.olx-st.com/h/v2/v-otomoto-web?sl=1832935a547x309f0918&s=1832935a547x309f0918&cl=1&c=1&cC=PL&bR=otomoto&rE=v&eN=test_assignment&tN=e&language=pl_PL&platform=desktop&event_type=pv&user_status=unlogged&cat_l1_id=29&cat_l1_name=cars&testgroup=4&RTBCookieSplit=4&test_definition=%5B%22cars-27613%2Cb%22%2C%22cars-31060%2Ca%22%2C%22cars-31762%2Ca%22%2C%22cars-31852%2Ca%22%2C%22cars-32036%2Ca%22%2C%22cars-32037%2Ca%22%2C%22cars-32229%2Ca%22%2C%22cars-32285%2Ca%22%2C%22cars-32937%2Cb%22%2C%22cars-32996%2Ca%22%2C%22cars-33059%2Cb%22%2C%22cars-33070%2Cb%22%2C%22cars-33096%2Ca%22%2C%22cars-33477%2Ca%22%2C%22cars-33478%2Cb%22%2C%22cars-33522%2Ca%22%2C%22cars-33562%2Ca%22%2C%22cars-34160%2Cb%22%2C%22cars-34184%2Cb%22%2C%22cars-34351%2Cb%22%2C%22cars-34761%2Ca%22%2C%22cars-34786%2Ca%22%2C%22cars-35777%2Ca%22%2C%22cars-35778%2Ca%22%2C%22cars-35818%2Cb%22%2C%22cars-35984%2Cc%22%5D&cP=konto&mv=1.0.100&host=otomoto3452.com&ivd=olx-pl_organic&t=1662843725127&js=1
52.59.167.32200 OK 35 B URL HTTP/1.1 tracking.olx-st.com/h/v2/v-otomoto-web?sl=1832935a547x309f0918&s=1832935a547x309f0918&cl=1&c=1&cC=PL&bR=otomoto&rE=v&eN=test_assignment&tN=e&language=pl_PL&platform=desktop&event_type=pv&user_status=unlogged&cat_l1_id=29&cat_l1_name=cars&testgroup=4&RTBCookieSplit=4&test_definition=%5B%22cars-27613%2Cb%22%2C%22cars-31060%2Ca%22%2C%22cars-31762%2Ca%22%2C%22cars-31852%2Ca%22%2C%22cars-32036%2Ca%22%2C%22cars-32037%2Ca%22%2C%22cars-32229%2Ca%22%2C%22cars-32285%2Ca%22%2C%22cars-32937%2Cb%22%2C%22cars-32996%2Ca%22%2C%22cars-33059%2Cb%22%2C%22cars-33070%2Cb%22%2C%22cars-33096%2Ca%22%2C%22cars-33477%2Ca%22%2C%22cars-33478%2Cb%22%2C%22cars-33522%2Ca%22%2C%22cars-33562%2Ca%22%2C%22cars-34160%2Cb%22%2C%22cars-34184%2Cb%22%2C%22cars-34351%2Cb%22%2C%22cars-34761%2Ca%22%2C%22cars-34786%2Ca%22%2C%22cars-35777%2Ca%22%2C%22cars-35778%2Ca%22%2C%22cars-35818%2Cb%22%2C%22cars-35984%2Cc%22%5D&cP=konto&mv=1.0.100&host=otomoto3452.com&ivd=olx-pl_organic&t=1662843725127&js=1
IP 52.59.167.32:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /h/v2/v-otomoto-web?sl=1832935a547x309f0918&s=1832935a547x309f0918&cl=1&c=1&cC=PL&bR=otomoto&rE=v&eN=test_assignment&tN=e&language=pl_PL&platform=desktop&event_type=pv&user_status=unlogged&cat_l1_id=29&cat_l1_name=cars&testgroup=4&RTBCookieSplit=4&test_definition=%5B%22cars-27613%2Cb%22%2C%22cars-31060%2Ca%22%2C%22cars-31762%2Ca%22%2C%22cars-31852%2Ca%22%2C%22cars-32036%2Ca%22%2C%22cars-32037%2Ca%22%2C%22cars-32229%2Ca%22%2C%22cars-32285%2Ca%22%2C%22cars-32937%2Cb%22%2C%22cars-32996%2Ca%22%2C%22cars-33059%2Cb%22%2C%22cars-33070%2Cb%22%2C%22cars-33096%2Ca%22%2C%22cars-33477%2Ca%22%2C%22cars-33478%2Cb%22%2C%22cars-33522%2Ca%22%2C%22cars-33562%2Ca%22%2C%22cars-34160%2Cb%22%2C%22cars-34184%2Cb%22%2C%22cars-34351%2Cb%22%2C%22cars-34761%2Ca%22%2C%22cars-34786%2Ca%22%2C%22cars-35777%2Ca%22%2C%22cars-35778%2Ca%22%2C%22cars-35818%2Cb%22%2C%22cars-35984%2Cc%22%5D&cP=konto&mv=1.0.100&host=otomoto3452.com&ivd=olx-pl_organic&t=1662843725127&js=1 HTTP/1.1
Host: tracking.olx-st.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:02:15 GMT
Content-Type: image/gif;charset=ISO-8859-1
Content-Length: 35
Connection: keep-alive
x-olx-hydra-ver: hydra-e5fa7f3
Set-Cookie: onap=1832935a547x309f0918-1-1832935a547x309f0918-1-1662845535-1832935cce8x16f48ff1-olx-pl_organic_1662843735_1665435735;Path=/h;Expires=Mon, 09-Sep-2024 21:02:15 GMT;SameSite=None;Secure
Access-Control-Allow-Origin: *
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Expires: Wed, 19 Apr 2000 03:14:15 GMT
Pragma: no-cache
tracking.olx-st.com/h/v2/v-otomoto-web?sl=1832935a54ax2fcf1cd1&s=1832935a54ax2fcf1cd1&cl=1&c=1&cC=PL&bR=otomoto&rE=v&eN=flag_assignment&tN=e&language=pl_PL&platform=desktop&event_type=pv&user_status=unlogged&cat_l1_id=29&cat_l1_name=cars&testgroup=4&RTBCookieSplit=4&flag_definition=%5B%5D&cP=konto&mv=1.0.100&host=otomoto3452.com&ivd=olx-pl_organic&t=1662843725130&js=1
52.59.167.32200 OK 35 B URL HTTP/1.1 tracking.olx-st.com/h/v2/v-otomoto-web?sl=1832935a54ax2fcf1cd1&s=1832935a54ax2fcf1cd1&cl=1&c=1&cC=PL&bR=otomoto&rE=v&eN=flag_assignment&tN=e&language=pl_PL&platform=desktop&event_type=pv&user_status=unlogged&cat_l1_id=29&cat_l1_name=cars&testgroup=4&RTBCookieSplit=4&flag_definition=%5B%5D&cP=konto&mv=1.0.100&host=otomoto3452.com&ivd=olx-pl_organic&t=1662843725130&js=1
IP 52.59.167.32:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /h/v2/v-otomoto-web?sl=1832935a54ax2fcf1cd1&s=1832935a54ax2fcf1cd1&cl=1&c=1&cC=PL&bR=otomoto&rE=v&eN=flag_assignment&tN=e&language=pl_PL&platform=desktop&event_type=pv&user_status=unlogged&cat_l1_id=29&cat_l1_name=cars&testgroup=4&RTBCookieSplit=4&flag_definition=%5B%5D&cP=konto&mv=1.0.100&host=otomoto3452.com&ivd=olx-pl_organic&t=1662843725130&js=1 HTTP/1.1
Host: tracking.olx-st.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:02:15 GMT
Content-Type: image/gif;charset=ISO-8859-1
Content-Length: 35
Connection: keep-alive
x-olx-hydra-ver: hydra-e5fa7f3
Set-Cookie: onap=1832935a54ax2fcf1cd1-1-1832935a54ax2fcf1cd1-1-1662845535-1832935cd02x667473fc-olx-pl_organic_1662843735_1665435735;Path=/h;Expires=Mon, 09-Sep-2024 21:02:15 GMT;SameSite=None;Secure
Access-Control-Allow-Origin: *
Cache-Control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
Expires: Wed, 19 Apr 2000 03:14:15 GMT
Pragma: no-cache
js-agent.newrelic.com/nr-1167.min.js
151.101.86.137200 OK 10 kB URL HTTP/2 js-agent.newrelic.com/nr-1167.min.js
IP 151.101.86.137:0
File type ASCII text, with very long lines (26895), with no line terminators
Hash 2475af80a5beb58a3e3a97c4184c9e3f
cbea1268312d005145a84d52c3e377c8ad8cc633
f4b7678a0e6380207322e69fa89295c2d4fcd240554e6d3ebc1d537fee5402a4
GET /nr-1167.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: duwk5/9ckcOP/HF89l6qi5VKNFQtyqLHChgZ9jTu+TWxp1baPzH9sKks+LwJ/+5Kj/IgKbgTLJ4=
x-amz-request-id: S1GA00MHJD9Y1NQA
last-modified: Fri, 07 Feb 2020 23:39:55 GMT
etag: "8155781ab74e51eee2ead2c1d5902e63"
x-amz-version-id: null
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 10 Sep 2022 21:02:15 GMT
via: 1.1 varnish
x-served-by: cache-bma1665-BMA
x-cache: HIT
x-cache-hits: 84
x-timer: S1662843735.376277,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 10178
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10979
Expires: Sun, 11 Sep 2022 00:05:14 GMT
Date: Sat, 10 Sep 2022 21:02:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10979
Expires: Sun, 11 Sep 2022 00:05:14 GMT
Date: Sat, 10 Sep 2022 21:02:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10979
Expires: Sun, 11 Sep 2022 00:05:14 GMT
Date: Sat, 10 Sep 2022 21:02:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10979
Expires: Sun, 11 Sep 2022 00:05:14 GMT
Date: Sat, 10 Sep 2022 21:02:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10979
Expires: Sun, 11 Sep 2022 00:05:14 GMT
Date: Sat, 10 Sep 2022 21:02:15 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F242561c0-8a95-468b-ba61-6859edfe8518.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F242561c0-8a95-468b-ba61-6859edfe8518.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f8aeb20a6543be83f3e422796c4dc70
4e4e127039dd8099c63c3bde198118d2874f7342
0f9fdd1b577e4719f88620bb451131bfb120790479b4feccb4222647fb3ea453
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F242561c0-8a95-468b-ba61-6859edfe8518.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7218
x-amzn-requestid: 4e9672b6-5415-4808-9508-22e8c42de448
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YE_QzHffIAMFYTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6318459e-743b975a2770e2a90c616d87;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 07:17:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: dR6KtfbMJzFz0j8zIFUNtdkJHUaerjxWbUyYKBD-jR_uAAvCCty01Q==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 03:23:21 GMT
age: 63534
etag: "4e4e127039dd8099c63c3bde198118d2874f7342"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4e8861b-4d5e-4f2e-8b1c-e85d23f02c52.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4e8861b-4d5e-4f2e-8b1c-e85d23f02c52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b83fa95ed30533299bc754adaced672
27eda8377e1c00c53fb66b4e2fa4f0dd6c7020af
bc59e5ba6abafd8e7b10d6f8ae2269cbf739a4b28f9cbbf3adfc29a9195e6985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4e8861b-4d5e-4f2e-8b1c-e85d23f02c52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8626
x-amzn-requestid: af5e61ab-4f7b-4b03-8413-5d750b17e0df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLj9TH7vIAMFVMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ae6bb-309144fb6e02564c4fcdb966;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 07:09:47 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 3gzR4efCGz9QsLoxAMuTUgBAwEc5WdyHBhw_wRPGmfnS9SWm-0vE7w==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 a8e5d5aeee6eacca5c379e5059b1f68c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 07:23:29 GMT
age: 49126
etag: "27eda8377e1c00c53fb66b4e2fa4f0dd6c7020af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ade70e6dbcfb3ca1765f95112671e69
3768753be084c0e0fc268be5b192d02d769114b6
9670a3bf2476ba193cfeb3153c1254bdcfc980a28503dda0d9b398a3a59f53f4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9766
x-amzn-requestid: 720a4111-91de-4672-88c8-f40db517c07d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YHsjRE13oAMFbCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63195ae1-288f1f5456bf4d146dcf774c;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 03:00:49 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: CjZw9xgHd4_7KvhiiZEIBivRgoQeh1BYxEc_bOBbTvWoqHgTPq0sSA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 d2575afea3774df33dcf5e5ff475025e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 05:37:01 GMT
age: 55514
etag: "3768753be084c0e0fc268be5b192d02d769114b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2402aa1c-c5d5-475b-abd9-db6b8ca99270.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2402aa1c-c5d5-475b-abd9-db6b8ca99270.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 572d8ed935df86fde22138e8bfddfd9f
3b25ffe66a762ea032c05b149a29fe0d6faa3687
866c2b16919ab311f906c4e8a074fd93b46f74408c9e2c9a4c30310afa08f047
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2402aa1c-c5d5-475b-abd9-db6b8ca99270.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9981
x-amzn-requestid: 1a34423c-b2d9-4ae3-a437-eb5717334372
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNkiSGjloAMFYuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb474-00c79a927f7f7d5d70791b68;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:47:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: jwkD86lz1SUQE__IGBv9RINc-LON017wkTpW7g0ePcMtssqd_POtpQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:57:12 GMT
age: 83103
etag: "3b25ffe66a762ea032c05b149a29fe0d6faa3687"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e72c2e9-6d47-42ac-9514-316cd8f8f6c5.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e72c2e9-6d47-42ac-9514-316cd8f8f6c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e8f11aeba65478b039cfb4100aa23435
88db17a82ea0207ccb4826c2961875c5106b427a
6f6ec5922ec54d824e7f933de87608c5a763da119ae9461d99c6525649b1a9af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e72c2e9-6d47-42ac-9514-316cd8f8f6c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8676
x-amzn-requestid: 64a58aa8-8321-4c91-98fe-dbf97996c513
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNiuZEjnIAMFRFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb18f-77b635593b202d7d3cd0ac84;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:35:11 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: VWwNSpFvcDq3nrn91QvYjrJX5hLjp96vrKgZzR-pOdrdHx7MlcagGQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:56:34 GMT
age: 83141
etag: "88db17a82ea0207ccb4826c2961875c5106b427a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb150ddb5-18a6-405d-8041-cdea0c0e6a85.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb150ddb5-18a6-405d-8041-cdea0c0e6a85.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d21a3e07583d9fad4104b6457f7915e7
fdc9453562f993e2545ca99731a7741e748b6082
8ea38264c82c6b544447079cc92eae70d0968a070ba39022af0e18c498916338
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb150ddb5-18a6-405d-8041-cdea0c0e6a85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8266
x-amzn-requestid: 3411ec4b-ac18-4b4e-8876-c99b94d3a4a3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNitWEjhIAMFWpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb188-4d9e496e7ff141b46748d850;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:35:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: vyV1_onImxuLNGp4UI1W5grcuVW3LHJFJjvmO0VXU-OYorF6RVcoDw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:51:58 GMT
age: 83417
etag: "fdc9453562f993e2545ca99731a7741e748b6082"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bam.nr-data.net/1/03c2d95870?a=27030240&v=1167.2a4546b&to=NgBUMhdWVhdWUBIPDQ9KdRMWQ1cJGFcDFQkVCkZJBFRbC0JdEkkLDwFTHg%3D%3D&rst=2380&ref=http://otomoto3452.com/konto.html&ap=46&be=443&fe=2299&dc=1172&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1662843722884,%22n%22:0,%22f%22:-5,%22dn%22:-5,%22dne%22:-2,%22c%22:-2,%22ce%22:33,%22rq%22:64,%22rp%22:106,%22rpe%22:152,%22dl%22:294,%22di%22:1158,%22ds%22:1172,%22de%22:1193,%22dc%22:2298,%22l%22:2298,%22le%22:2300%7D,%22navigation%22:%7B%7D%7D&fcp=974&at=GkdXRF9MRRk%3D&jsonp=NREUM.setToken
162.247.241.14200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/03c2d95870?a=27030240&v=1167.2a4546b&to=NgBUMhdWVhdWUBIPDQ9KdRMWQ1cJGFcDFQkVCkZJBFRbC0JdEkkLDwFTHg%3D%3D&rst=2380&ref=http://otomoto3452.com/konto.html&ap=46&be=443&fe=2299&dc=1172&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1662843722884,%22n%22:0,%22f%22:-5,%22dn%22:-5,%22dne%22:-2,%22c%22:-2,%22ce%22:33,%22rq%22:64,%22rp%22:106,%22rpe%22:152,%22dl%22:294,%22di%22:1158,%22ds%22:1172,%22de%22:1193,%22dc%22:2298,%22l%22:2298,%22le%22:2300%7D,%22navigation%22:%7B%7D%7D&fcp=974&at=GkdXRF9MRRk%3D&jsonp=NREUM.setToken
IP 162.247.241.14:0
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/03c2d95870?a=27030240&v=1167.2a4546b&to=NgBUMhdWVhdWUBIPDQ9KdRMWQ1cJGFcDFQkVCkZJBFRbC0JdEkkLDwFTHg%3D%3D&rst=2380&ref=http://otomoto3452.com/konto.html&ap=46&be=443&fe=2299&dc=1172&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1662843722884,%22n%22:0,%22f%22:-5,%22dn%22:-5,%22dne%22:-2,%22c%22:-2,%22ce%22:33,%22rq%22:64,%22rp%22:106,%22rpe%22:152,%22dl%22:294,%22di%22:1158,%22ds%22:1172,%22de%22:1193,%22dc%22:2298,%22l%22:2298,%22le%22:2300%7D,%22navigation%22:%7B%7D%7D&fcp=974&at=GkdXRF9MRRk%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 21:02:15 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 748b1a825d2f0b3d-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=a81226cb5b64dd14; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
olx.hit.gemius.pl/_1662843728158/redot.js?l=109&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=smpsonar&hsrc=0&extra=_ASF%3D40&eventid=1662843735&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
185.11.128.204301 Moved Permanently 0 B URL HTTP/1.1 olx.hit.gemius.pl/_1662843728158/redot.js?l=109&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=smpsonar&hsrc=0&extra=_ASF%3D40&eventid=1662843735&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
IP 185.11.128.204:0
ASN #50599 Data Space Sp. z o.o.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_1662843728158/redot.js?l=109&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=smpsonar&hsrc=0&extra=_ASF%3D40&eventid=1662843735&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1 HTTP/1.1
Host: olx.hit.gemius.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 10 Sep 2022 21:02:18 GMT
Expires: Fri, 09 Sep 2022 21:02:18 GMT
Server: GHC
Accept-Ranges: none
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Cross-Origin-Resource-Policy: cross-origin
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
P3P: CP="NOI DSP COR NID PSAo OUR IND"
Location: https://olx.hit.gemius.pl/_sslredir/_1662843728158/redot.js?l=109&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=smpsonar&hsrc=0&extra=_ASF%3D40&eventid=1662843735&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
Connection: keep-alive
Keep-Alive: timeout=10
Content-Length: 0
olx.hit.gemius.pl/_sslredir/_1662843728158/redot.js?l=109&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=smpsonar&hsrc=0&extra=_ASF%3D40&eventid=1662843735&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
185.11.128.204301 Moved Permanently 0 B URL HTTP/2 olx.hit.gemius.pl/_sslredir/_1662843728158/redot.js?l=109&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=smpsonar&hsrc=0&extra=_ASF%3D40&eventid=1662843735&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
IP 185.11.128.204:0
ASN #50599 Data Space Sp. z o.o.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_sslredir/_1662843728158/redot.js?l=109&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=smpsonar&hsrc=0&extra=_ASF%3D40&eventid=1662843735&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1 HTTP/1.1
Host: olx.hit.gemius.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://otomoto3452.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 10 Sep 2022 21:02:18 GMT
expires: Fri, 09 Sep 2022 21:02:18 GMT
server: GHC
accept-ranges: none
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
set-cookie: Gtest=KlxVKMMGQMGGMsFQBq1yY2XissGMXP8cERbG; Domain=hit.gemius.pl; Path=/; SameSite=None; Secure; Expires=Sat, 17 Sep 2022 21:02:18 GMT
p3p: CP="NOI DSP COR NID PSAo OUR IND"
location: /__/_sslredir/_1662843728158/redot.js?l=109&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=smpsonar&hsrc=0&extra=_ASF%3D40&eventid=1662843735&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
content-length: 0
X-Firefox-Spdy: h2
olx.hit.gemius.pl/__/_sslredir/_1662843728158/redot.js?l=109&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=smpsonar&hsrc=0&extra=_ASF%3D40&eventid=1662843735&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
185.11.128.204200 OK 2 B URL HTTP/2 olx.hit.gemius.pl/__/_sslredir/_1662843728158/redot.js?l=109&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=smpsonar&hsrc=0&extra=_ASF%3D40&eventid=1662843735&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1
IP 185.11.128.204:0
ASN #50599 Data Space Sp. z o.o.
Hash e1c06d85ae7b8b032bef47e42e4c08f9
71853c6197a6a7f222db0f1978c7cb232b87c5ee
75a11da44c802486bc6f65640aa48a730f0f684c5c07a42ba3cd1735eb3fb070
GET /__/_sslredir/_1662843728158/redot.js?l=109&id=1wA64edYL8OQRSzbOqfRLrbu7OkY4sSgxVmVCOuHpYn.S7&et=smpsonar&hsrc=0&extra=_ASF%3D40&eventid=1662843735&fr=1&tz=0&fv=-&href=http%3A%2F%2Fotomoto3452.com%2Fkonto.html&ref=&screen=1280x1024r1000&col=24&window=1280x939<ime=167&lsdata=-GETERR&fpdata=EwSwEMO3yb4OVg51wFxSyBO9RnEIBGAj.R5lJ6cAaEj.R7|1662843734&vis=1 HTTP/1.1
Host: olx.hit.gemius.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://otomoto3452.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Sep 2022 21:02:18 GMT
expires: Fri, 09 Sep 2022 21:02:18 GMT
server: GHC
accept-ranges: none
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
set-cookie: Gtest=KlQ7TRaGQMQGKRmEtqQyY2XissGMXP8cERbG; Domain=hit.gemius.pl; Path=/; SameSite=None; Secure; Expires=Sat, 17 Sep 2022 21:02:18 GMT
p3p: CP="NOI DSP COR NID PSAo OUR IND"
content-type: application/x-javascript
content-length: 2
X-Firefox-Spdy: h2
otomoto3452.com/noew1_files/swd954431da7c77598e479bd469c5b9f8c.js
217.160.0.77200 OK 0 B URL HTTP/1.1 otomoto3452.com/noew1_files/swd954431da7c77598e479bd469c5b9f8c.js
IP 217.160.0.77:0
Analyzer Verdict Alert quad9 Sinkholed
GET /noew1_files/swd954431da7c77598e479bd469c5b9f8c.js HTTP/1.1
Host: otomoto3452.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://otomoto3452.com/konto.html
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 751069
Connection: keep-alive
Keep-Alive: timeout=15
Date: Sat, 10 Sep 2022 21:02:13 GMT
Server: Apache
Last-Modified: Fri, 13 Nov 2020 09:58:03 GMT
ETag: "b75dd-5b3fa1084b4bf"
Accept-Ranges: bytes
gum.criteo.com/sid/json?origin=onetag&domain=otomoto3452.com&sn=FirefoxSyncframe&so=0&topUrl=otomoto3452.com&info=J9CZSF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czlueTZtRnBDYjJOU05PSEc1aldENXJzRjhGRkhpTWhQRmFudXBzYmVaVlI&idsd=164531787,-1697680754&cw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=otomoto3452.com&sn=FirefoxSyncframe&so=0&topUrl=otomoto3452.com&info=J9CZSF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czlueTZtRnBDYjJOU05PSEc1aldENXJzRjhGRkhpTWhQRmFudXBzYmVaVlI&idsd=164531787,-1697680754&cw=1
IP 178.250.0.157:0
GET /sid/json?origin=onetag&domain=otomoto3452.com&sn=FirefoxSyncframe&so=0&topUrl=otomoto3452.com&info=J9CZSF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czlueTZtRnBDYjJOU05PSEc1aldENXJzRjhGRkhpTWhQRmFudXBzYmVaVlI&idsd=164531787,-1697680754&cw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=otomoto3452.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Sep 2022 21:02:14 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 718080
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=XTauil80M0RITmhlJTJCZkMwOUJGQlhaMUN2czlueTZtRnBDYjJOU05PSEc1aldENW9ONiUyQlVIOGpLRXBJeVFpcFgwMDB4TA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Sep 2022 21:02:14 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=J9CZSF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czlueTZtRnBDYjJOU05PSEc1aldENXJzRjhGRkhpTWhQRmFudXBzYmVaVlI; expires=Thu, 05 Oct 2023 21:02:14 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 185943
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
sslwidget.criteo.com/event?a=10828&v=5.5.0&p0=e%3Dexd%26ci%3D%26site_type%3Dd&p1=e%3Ddis&adce=1&tld=otomoto3452.com&dtycbr=54502
178.250.2.151200 OK 0 B URL HTTP/2 sslwidget.criteo.com/event?a=10828&v=5.5.0&p0=e%3Dexd%26ci%3D%26site_type%3Dd&p1=e%3Ddis&adce=1&tld=otomoto3452.com&dtycbr=54502
IP 178.250.2.151:0
GET /event?a=10828&v=5.5.0&p0=e%3Dexd%26ci%3D%26site_type%3Dd&p1=e%3Ddis&adce=1&tld=otomoto3452.com&dtycbr=54502 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 21:02:13 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 6001140
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=otomoto3452.com
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?topUrl=otomoto3452.com
IP 178.250.0.157:0
GET /syncframe?topUrl=otomoto3452.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://otomoto3452.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 21:02:13 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=97bf2055-3077-4e16-938a-8909933dbf2d; expires=Thu, 05 Oct 2023 21:02:13 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 718495
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.114200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.114:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 21:02:13 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 92150
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.225200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.225:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 21:02:13 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 105165
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2