Overview

URL kroha.kh.ua/system/logs/xt.exe
IP5.39.10.93
ASNAS16276 OVH SAS
Location France
Report completed2019-05-25 17:25:26 CEST
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-05-25 2 kroha.kh.ua/system/logs/xt.exe Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 5.39.10.93

Date UQ / IDS / BL URL IP
2019-06-09 07:02:16 +0200
0 - 0 - 1 tmx-learning.ru/wp-includes 5.39.10.93
2019-06-02 19:04:59 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-06-02 13:42:01 +0200
0 - 1 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-06-02 11:44:22 +0200
0 - 1 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-05-24 14:22:16 +0200
0 - 0 - 1 showbiz.ua/tmp-cg/tikita/yahoo/ee27fe710cee5f (...) 5.39.10.93
2019-05-06 15:17:22 +0200
0 - 1 - 0 agent-parfumer.com.ua/ 5.39.10.93
2019-05-06 02:04:36 +0200
0 - 0 - 1 showbiz.ua/tutu01/index.php 5.39.10.93
2019-05-03 20:08:06 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-05-01 22:31:26 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-04-22 18:43:34 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93

Last 10 reports on ASN: AS16276 OVH SAS

Date UQ / IDS / BL URL IP
2019-07-01 07:47:12 +0200
0 - 0 - 0 https://www.munplanet.com/articles/arlo-camer (...) 158.69.39.233
2019-07-01 04:15:44 +0200
0 - 3 - 0 www.asind.ae/wp-content/uploads/2019/seconder (...) 5.39.72.197
2019-07-01 03:56:20 +0200
0 - 0 - 0 webcamsteen.com/16y4[CUSTOM_AFF 192.99.67.89
2019-07-01 02:43:31 +0200
0 - 0 - 0 167.114.144.169/Android/ 167.114.144.169
2019-06-30 21:34:01 +0200
0 - 0 - 0 streams.tvxweb.org 158.69.54.221
2019-06-30 21:30:47 +0200
0 - 0 - 0 source.magikserv.com 37.187.171.206
2019-06-30 20:09:51 +0200
0 - 0 - 0 www.kweeper.com/popcorn2kg/sentence/6382508 91.121.242.21
2019-06-30 18:49:10 +0200
0 - 0 - 0 www.ovh.com 198.27.92.1
2019-06-30 18:18:47 +0200
0 - 0 - 0 liczniki.org/hit.php?l=alltube&o=1 94.23.92.123
2019-06-30 18:11:40 +0200
0 - 0 - 0 hardrock.blogdns.org/ 91.121.69.126

Last 10 reports on domain: kroha.kh.ua

Date UQ / IDS / BL URL IP
2019-06-02 19:04:59 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-06-02 13:42:01 +0200
0 - 1 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-06-02 11:44:22 +0200
0 - 1 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-05-03 20:08:06 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-05-01 22:31:26 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-04-22 18:43:34 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-04-17 15:52:08 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-04-12 18:43:19 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-04-02 19:01:45 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-03-22 19:23:04 +0100
0 - 1 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93


JavaScript

Executed Scripts (14)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (45)


Request Response
                                        
                                            GET /system/logs/xt.exe HTTP/1.1 
Host: kroha.kh.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         5.39.10.93
HTTP/1.1 301 Moved Permanently
                                        
Server: nginx/1.12.2
Date: Sat, 25 May 2019 15:24:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://babykroha.ua/system/logs/xt.exe


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "25D4169D64659547FFDDD7DFB4CB2714BB3044CBD361A3CE2505AF04C5A3E32C"
Last-Modified: Sat, 25 May 2019 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43200
Expires: Sun, 26 May 2019 03:24:53 GMT
Date: Sat, 25 May 2019 15:24:53 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    92c96078843bb467985fecc15410c370
Sha1:   e21a7b2b57776a02858ceb4b77d42164ceebdb61
Sha256: 25d4169d64659547ffddd7dfb4cb2714bb3044cbd361a3ce2505af04c5a3e32c
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.26
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Content-Transfer-Encoding: Binary
Last-Modified: Wed, 22 May 2019 11:20:14 GMT
Etag: "71e26463841470cb1609bae71fc83dbc8de33ff1"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=5196
Expires: Sat, 25 May 2019 16:51:29 GMT
Date: Sat, 25 May 2019 15:24:53 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    6e3f3a587aab54dd097f4a0343918b78
Sha1:   71e26463841470cb1609bae71fc83dbc8de33ff1
Sha256: 1a6882e8fdf623b52e8c0cd7763e82546c966bb2fa3d70173d9954d3eeb9f4df
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 25 May 2019 15:24:54 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   122006
Md5:    b19d3d075f0d665ac679c70bdb0f703c
Sha1:   ef5bff70e4cceb0372b941fb1410b01792d0a791
Sha256: a0775b4b7254849f6b49d7a38a96fb7bbbcc80a7d9248c39ddcef175bf7f1f83
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 25 May 2019 15:24:54 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    5be872b3fe0bb6f31385f91f811e9586
Sha1:   1192231bcb9ee73e9f619d433cdb66dddd9ae7f7
Sha256: db0ad6191770bff9043482b68acf62a4e25d4390a03274cfbe413675dd8c9cf5
                                        
                                            GET /gtag/js?id=UA-128206001-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe

                                         
                                         216.58.207.200
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Access-Control-Allow-Origin: http://www.googletagmanager.com
Access-Control-Allow-Headers: Cache-Control
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Sat, 25 May 2019 15:24:54 GMT
Expires: Sat, 25 May 2019 15:24:54 GMT
Cache-Control: private, max-age=900
Last-Modified: Fri, 24 May 2019 18:18:32 GMT
Server: Google Tag Manager (scaffolding)
X-XSS-Protection: 0
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   25997
Md5:    7cadb8bc35693d21fa6c919e045e03a0
Sha1:   0d23f9e829dbad9d1e8a9a1ed6d417e150877dc4
Sha256: 9d2ceda2ce351b9bda639e0f4855b4a8a05dbddc6f7885815c2851509af042b4
                                        
                                            GET /Media/assets/favicons/favicon-16x16.png HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=l6236596uohfthkkhvoe4fuc00; currency=UAH; cart=2926b7717fb8e76a6059a89a84b90046ec0e8ca0%7E0e5372ed84060b9e4807915038abe477719daac8

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 25 May 2019 15:24:54 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 12 Dec 2018 13:02:14 GMT
Etag: "4b6-57cd2ce9b1c5b"
Accept-Ranges: bytes
Content-Length: 1206
Cache-Control: max-age=2592000
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   1206
Md5:    5ef32b417050bead34de1ec3552e69c3
Sha1:   74ffb6fc48190f88011d8e0e7418bbaebe7a188a
Sha256: 82b28825e1aef7c9bd0fa16d2bd56f68d553e3113e28ed739e244967d2c6d469
                                        
                                            GET /Media/assets/css/editor.css HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=l6236596uohfthkkhvoe4fuc00; currency=UAH; cart=2926b7717fb8e76a6059a89a84b90046ec0e8ca0%7E0e5372ed84060b9e4807915038abe477719daac8

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 25 May 2019 15:24:54 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:05:14 GMT
Etag: "c8f-57868f7e3371e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 1017
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1017
Md5:    3d78d96d2b060445ebe1b76f1cd86828
Sha1:   6ead70f82aae74e6b8946ca8e6d6294390d560e5
Sha256: 812808de27037852cda6b078db577e74f1b7af6de27e16f73408fdeece152c50
                                        
                                            GET /Media/assets/css/helpers.css HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=l6236596uohfthkkhvoe4fuc00; currency=UAH; cart=2926b7717fb8e76a6059a89a84b90046ec0e8ca0%7E0e5372ed84060b9e4807915038abe477719daac8

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 25 May 2019 15:24:54 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:05:14 GMT
Etag: "1180d-57868f7e3371e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 8570
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8570
Md5:    fc8885590c0b639807801d857e3b9128
Sha1:   2ec12f9d7119108e57e55d2059e7f380bfcdb17e
Sha256: 6183d5db89a099e2da6b2c35d500802110b105af43bdf63a3619ad80326a3926
                                        
                                            GET /Media/assets/css/vendors.css HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=l6236596uohfthkkhvoe4fuc00; currency=UAH; cart=2926b7717fb8e76a6059a89a84b90046ec0e8ca0%7E0e5372ed84060b9e4807915038abe477719daac8

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 25 May 2019 15:24:54 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:05:14 GMT
Etag: "24287-57868f7e3a47d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 17749
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17749
Md5:    15288777a646fada78b68a7f39cf28f6
Sha1:   1074c8f5a3ceed073daf003948b3a90e4a363dd9
Sha256: f57784fd825af302d206fc978dacdc44805e147b4f2f8d414f6e67239790d766
                                        
                                            GET /Media/assets/css/style.css HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=l6236596uohfthkkhvoe4fuc00; currency=UAH; cart=2926b7717fb8e76a6059a89a84b90046ec0e8ca0%7E0e5372ed84060b9e4807915038abe477719daac8

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 25 May 2019 15:24:54 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Fri, 21 Dec 2018 12:54:20 GMT
Etag: "1ef29-57d87beebf554-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 18806
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   18806
Md5:    2f6c0704012632b62e80ac961a5be8f0
Sha1:   81c84c4bcc8e0cb77dd8ea7db05d4c1fd9c5b79a
Sha256: 8dfe9decf09179067b9a8475c62c0bad044044d5fda14b4f372c3f0e86ae9a07
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Sat, 25 May 2019 13:27:28 GMT
Expires: Sat, 25 May 2019 15:27:28 GMT
Last-Modified: Thu, 02 May 2019 01:33:03 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17779
Cache-Control: public, max-age=7200
Age: 7047
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17779
Md5:    348fbdd6c0fd83acfd390fa9cc127596
Sha1:   252099e50f60c46d3a16264edc93007ef333a660
Sha256: 5874a897424027f25efdc7142d4d8a4341d9a9f6362ac79bead10db6356dae2b
                                        
                                            GET /Media/assets/js/static/wezom-old.min.js HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=l6236596uohfthkkhvoe4fuc00; currency=UAH; cart=2926b7717fb8e76a6059a89a84b90046ec0e8ca0%7E0e5372ed84060b9e4807915038abe477719daac8

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 25 May 2019 15:24:55 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:05:14 GMT
Etag: "270f-57868f7e634bd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 3753
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3753
Md5:    c103288ebb23846348ed303868f61ea8
Sha1:   42708dbd14c0fda14853595c79f2eb1a9f65835a
Sha256: 57c49a6204e979d08d0fb9c5eb0c698a56bb0d629907dbd4189ddf99f8b1a63c
                                        
                                            GET /r/collect?v=1&_v=j75&a=614076618&t=pageview&_s=1&dl=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe&ul=en-us&de=UTF-8&dt=%D0%9E%D1%88%D0%B8%D0%B1%D0%BA%D0%B0%20404!%20%D0%A1%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%20%D0%BD%D0%B5%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD%D0%B0&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=IEBAAUQ~&jid=908608854&gjid=2004833630&cid=1995008362.1558797896&tid=UA-128206001-1&_gid=12051646.1558797896&_r=1&gtm=2ou5f2&z=690716799 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Sat, 25 May 2019 15:24:55 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /Media/assets/css/static/pic/wezom-info-red.gif HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=l6236596uohfthkkhvoe4fuc00; currency=UAH; cart=2926b7717fb8e76a6059a89a84b90046ec0e8ca0%7E0e5372ed84060b9e4807915038abe477719daac8; _ga=GA1.2.1995008362.1558797896; _gid=GA1.2.12051646.1558797896; _gat_gtag_UA_128206001_1=1

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Sat, 25 May 2019 15:24:55 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:05:14 GMT
Etag: "11d-57868f7e394de"
Accept-Ranges: bytes
Content-Length: 285
Cache-Control: max-age=2592000
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 87a, 50 x 18
Size:   285
Md5:    2dfb0e4ee208270ad5521719b18c5f36
Sha1:   794f67a3ecf343b7004ca75baaeccfa721c45f91
Sha256: 9769656f5e3eaca90c1c6958562a639dff2e440fad2ae43449c64afb13c14840
                                        
                                            GET /Media/js/translations/ru.js HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=l6236596uohfthkkhvoe4fuc00; currency=UAH; cart=2926b7717fb8e76a6059a89a84b90046ec0e8ca0%7E0e5372ed84060b9e4807915038abe477719daac8; _ga=GA1.2.1995008362.1558797896; _gid=GA1.2.12051646.1558797896; _gat_gtag_UA_128206001_1=1

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 25 May 2019 15:24:55 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:06:41 GMT
Etag: "14a9-57868fd0de695-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 1564
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1564
Md5:    74b6492bc45e1e5ac860334f389f9555
Sha1:   4570d859349762bcffbb7dbc48ad2a627226c60c
Sha256: 8c9e1f6851a68333dc94cfba6a293d2771bdeee6fea2d72d565742b82c02ae52
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 25 May 2019 15:24:56 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    b84ed5fc932f0874640126f388da4a65
Sha1:   b38c87123f9b179b83a54815626658ab33de7317
Sha256: c33a10e3034914ce824a34c6d66a3e770c9db26b9faac0a5f51e6c367fcdcef0
                                        
                                            GET /Media/assets/js/modernizr.js HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=l6236596uohfthkkhvoe4fuc00; currency=UAH; cart=2926b7717fb8e76a6059a89a84b90046ec0e8ca0%7E0e5372ed84060b9e4807915038abe477719daac8; _ga=GA1.2.1995008362.1558797896; _gid=GA1.2.12051646.1558797896; _gat_gtag_UA_128206001_1=1

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 25 May 2019 15:24:56 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:05:14 GMT
Etag: "1798-57868f7e6251d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 2600
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2600
Md5:    8da2167b3cbc4bc748d5290857f89c54
Sha1:   080d2576c9d431dc6c096a2e7fa87016abb6f604
Sha256: 10377a56a197f4dea29022339657d1ad0ae588b19930192d664f113bdb26c092
                                        
                                            GET /Media/assets/css/static/fonts/b64-woff.css?v=1523945764591 HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=l6236596uohfthkkhvoe4fuc00; currency=UAH; cart=2926b7717fb8e76a6059a89a84b90046ec0e8ca0%7E0e5372ed84060b9e4807915038abe477719daac8

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Sat, 25 May 2019 15:24:54 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:05:14 GMT
Etag: "eb88d-57868f7e365fe-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   727398
Md5:    51ce94d8d0b4695014032fe4990555a6
Sha1:   f9951448a6edf388275e4a498b27dfa3ef17d3b6
Sha256: c6b163f46f68d83a24e286272c26df273e6a590ab2881125db300060cf0146db
                                        
                                            GET /maps/api/js?key=AIzaSyDL6xIhFeOJeE9nXsObhPKfD1wRV4xFknE HTTP/1.1 
Host: maps.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe

                                         
                                         172.217.21.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Date: Sat, 25 May 2019 15:24:56 GMT
Expires: Sat, 25 May 2019 15:54:56 GMT
Cache-Control: public, max-age=1800
Vary: Accept-Language
Content-Encoding: gzip
Server: mafe
Content-Length: 33174
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Server-Timing: gfet4t7; dur=21
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   33174
Md5:    1774a60ea9118f169ed4560ff013f437
Sha1:   4f66e8655c48382770dc8e1dcea96fa16299a792
Sha256: 93d5929e78791335e084f89accc4aef181eb797c190d4efecd2309ebc59a27ca
                                        
                                            GET /Media/assets/js/vendors.js HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=l6236596uohfthkkhvoe4fuc00; currency=UAH; cart=2926b7717fb8e76a6059a89a84b90046ec0e8ca0%7E0e5372ed84060b9e4807915038abe477719daac8; _ga=GA1.2.1995008362.1558797896; _gid=GA1.2.12051646.1558797896; _gat_gtag_UA_128206001_1=1

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 25 May 2019 15:24:56 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Mon, 03 Dec 2018 11:24:22 GMT
Etag: "606d3-57c1c64074b82-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   114633
Md5:    9d350763c168a7874d25147ed3d295e4
Sha1:   f7ec6c0d386d1b21b49118153b5325f1c1fff74a
Sha256: 50d6c93310a7045c6f926903f0ad3350b5fde89f5c1437833cc04a80a95ae8e8
                                        
                                            GET /Media/js/programmer/ulogin.js HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=l6236596uohfthkkhvoe4fuc00; currency=UAH; cart=2926b7717fb8e76a6059a89a84b90046ec0e8ca0%7E0e5372ed84060b9e4807915038abe477719daac8; _ga=GA1.2.1995008362.1558797896; _gid=GA1.2.12051646.1558797896; _gat_gtag_UA_128206001_1=1

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 25 May 2019 15:24:56 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:06:41 GMT
Etag: "ab19-57868fd0de695-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 13845
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   13845
Md5:    851a71202755f04b83b5f8dd1bed6fb4
Sha1:   62bb56397826a3e8aa60f179f7e319742074f774
Sha256: 351b444524542e90ff65e17af5a1d9964964f6e1d3a918f8b198c774f0535107
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "B630D672D47208310D5CD2AA0BDF916D59A04379503B66CEFD0F702BDBFDAEDA"
Last-Modified: Thu, 23 May 2019 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17841
Expires: Sat, 25 May 2019 20:22:18 GMT
Date: Sat, 25 May 2019 15:24:57 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    33835810d7b4f093d19e616aa89ad8b0
Sha1:   54030f9b0bdef4e920125b3a7632e94bb8224c2a
Sha256: b630d672d47208310d5cd2aa0bdf916d59a04379503b66cefd0f702bdbfdaeda
                                        
                                            GET /Media/assets/js/initialize.js HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=l6236596uohfthkkhvoe4fuc00; currency=UAH; cart=2926b7717fb8e76a6059a89a84b90046ec0e8ca0%7E0e5372ed84060b9e4807915038abe477719daac8; _ga=GA1.2.1995008362.1558797896; _gid=GA1.2.12051646.1558797896; _gat_gtag_UA_128206001_1=1

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Sat, 25 May 2019 15:24:56 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Fri, 21 Dec 2018 11:55:11 GMT
Etag: "e61c-57d86eb576263-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 15845
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   15845
Md5:    e4016f7385b6c86dc07fdf11c7e8a668
Sha1:   9e2635c901ba89688ff84f58e9caa51161477ac0
Sha256: 30ea09c1da2cb52e11146ae90a4cf37d19c20e0e02ca8900da41fa819ad2063d
                                        
                                            GET /match?rand=65421&u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe&r= HTTP/1.1 
Host: ulogin.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe

                                         
                                         95.163.118.168
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: nginx
Date: Sat, 25 May 2019 15:24:58 GMT
Content-Length: 161
Connection: keep-alive
Location: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe


--- Additional Info ---
Magic:  HTML document text
Size:   161
Md5:    3161da3959fb6c146a46cd60054ef55e
Sha1:   341f6879a767b3e5453f2d060d75e11b918838f4
Sha256: 47b641956fcdb7e3361feca67da6511e3d5a7ac0d0f4ac2afec43e650de15b84
                                        
                                            GET /uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe HTTP/1.1 
Host: ulogin.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe

                                         
                                         95.163.118.168
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Sat, 25 May 2019 15:24:58 GMT
Content-Length: 199
Connection: keep-alive
Expires: Sat, 25 May 2019 15:24:57 GMT
Cache-Control: no-cache
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Last-Modified: Sat, 25 May 2019 15:24:57 GMT


--- Additional Info ---
Magic:  HTML document text
Size:   199
Md5:    57d20d8b8f3f11660cd95a83aeb8f483
Sha1:   9878a41ecfb55138f893eb9501af045d77316151
Sha256: 88c0bb39fe16adfe147431b6d6d2915696571afe588f5250c6800df58b41a73c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 25 May 2019 15:24:57 GMT
Accept-Ranges: bytes
Last-Modified: Fri, 24 May 2019 02:32:05 GMT
Server: Apache
Etag: 5129142E0728CDE530902DAE0D1AA4972DBB2381
Cache-Control: max-age=300356,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp8
X-HW: 1558797897.cds021.sk1.h2,1558797897.cds047.sk1.c
Connection: keep-alive
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    191511322197aa0fdf8cd896148f26b0
Sha1:   5129142e0728cde530902dae0d1aa4972dbb2381
Sha256: db20a0a5bc84b2cfc0ee6fbc66b7f6d60ea581ae8e3adc0a7cb1630e63d557ba
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 25 May 2019 15:24:57 GMT
Accept-Ranges: bytes
Last-Modified: Thu, 23 May 2019 12:14:19 GMT
Server: Apache
Etag: 524BA32F690793B8C7AEF47EF7C81644C6531024
Cache-Control: max-age=508093,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp8
X-HW: 1558797897.cds023.sk1.h2,1558797897.cds047.sk1.c
Connection: keep-alive
Content-Length: 727


--- Additional Info ---
Magic:  data
Size:   727
Md5:    ca57a4430e63db0bbd0e1ea466888ce3
Sha1:   524ba32f690793b8c7aef47ef7c81644c6531024
Sha256: 11779b548f002dff73d5691262faf24b2b395f7819e2168078c8396b4b30d70b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 25 May 2019 15:24:57 GMT
Accept-Ranges: bytes
Last-Modified: Mon, 20 May 2019 00:14:19 GMT
Server: Apache
Etag: 2D8965F4555F5CDCCE52A51D8910F5B60811B9E0
Cache-Control: max-age=377613,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp5
X-HW: 1558797897.cds023.sk1.h2,1558797897.cds046.sk1.c
Connection: keep-alive
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    e7b8281cba4d76e95ee16b3bb4a58ecb
Sha1:   2d8965f4555f5cdcce52a51d8910f5b60811b9e0
Sha256: 232195f77ccf4fca4c2dbe83335fbe3f3818db38e9c219c63bdde0332a449457
                                        
                                            POST / HTTP/1.1 
Host: status.rapidssl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=166221
Date: Sat, 25 May 2019 15:24:57 GMT
Etag: "5ce92e5c-1d7"
Expires: Mon, 27 May 2019 13:35:18 GMT
Last-Modified: Sat, 25 May 2019 12:00:28 GMT
Server: ECS (ams/49BC)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    5da3e71bdae1255fc63313b4a114b228
Sha1:   e94f600da176030c3ab575c42d16cd1a439ad69f
Sha256: 4d7cbf846579d1f9dd69c2f10556bcc7031bb33fcb6de1fc62e5d46f1c2f1dc3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=107913
Date: Sat, 25 May 2019 15:24:57 GMT
Etag: "5ce835ea-1d7"
Expires: Sun, 26 May 2019 21:23:30 GMT
Last-Modified: Fri, 24 May 2019 18:20:26 GMT
Server: ECS (lcy/1D1C)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d74de6f94bff9da5dfffcae42c3cd03b
Sha1:   fe9109fcdb8b227931bc272998362edbb1864d4f
Sha256: ac74d2e19f598b732df3959ebe9c29cc1e55fcc52537f187714cb315831857a0
                                        
                                            GET /0.gif?pid=5667740 HTTP/1.1 
Host: x01.aidata.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe

                                         
                                         144.76.85.254
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Sat, 25 May 2019 15:24:57 GMT
Content-Length: 0
Connection: keep-alive
Location: https://x01.aidata.io/0.gif?pid=5667740&bounce=1
Expires: Sat, 25 May 2019 15:24:56 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Sat, 25 May 2019 15:24:56 GMT
Set-Cookie: __upin=RBY3oMZEeIk8yemSTsXd+g;domain=.aidata.io;path=/;max-age=63072000 __upints=1558797897;domain=.aidata.io;path=/;max-age=63072000
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'


--- Additional Info ---
                                        
                                            GET /0.gif?pid=5667740&bounce=1 HTTP/1.1 
Host: x01.aidata.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe
Cookie: __upin=RBY3oMZEeIk8yemSTsXd+g; __upints=1558797897

                                         
                                         144.76.85.254
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Sat, 25 May 2019 15:24:57 GMT
Content-Length: 0
Connection: keep-alive
Location: https://cm.g.doubleclick.net/pixel?google_nid=aidata_ddp&back=SYNC&google_cm
Set-Cookie: gl=1;path=/;expires=Sat, 1 Jun 2019 15:24:57 GMT;max-age=604800 __upin=RBY3oMZEeIk8yemSTsXd+g;domain=.aidata.io;path=/;max-age=63072000 __upints=1558797897;domain=.aidata.io;path=/;max-age=63072000
Expires: Sat, 25 May 2019 15:24:56 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Sat, 25 May 2019 15:24:56 GMT
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'


--- Additional Info ---
                                        
                                            GET /widgets/v1/zp-sync?pid=1254153&uid=&url=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe HTTP/1.1 
Host: w.uptolike.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe

                                         
                                         95.163.114.204
HTTP/1.1 204 No Content
                                        
Server: nginx
Date: Sat, 25 May 2019 15:24:57 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: utl_id2=10450924802; Expires=Mon, 24 May 2021 15:24:57 GMT; Path=/; Domain=.w.uptolike.com utl_dat="CPae4fyuLRAAIPbvq4WvLSj276uFry0wAJZHgGLJrbFMsAyMONmjo7E="; Expires=Mon, 24 May 2021 15:24:57 GMT; Path=/; Domain=.w.uptolike.com
P3P: CP='IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT'
Access-Control-Allow-Origin: *


--- Additional Info ---
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         216.58.211.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 25 May 2019 15:24:57 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    fa55b2ffa9be0c59d90712f24d4e69cc
Sha1:   34fc36738bf26abf9b9f58de88168083db704a40
Sha256: 8545534c936385e3203fc5973943b5d10b7dbe25f9be76cba50ce61179fe8138
                                        
                                            GET /Media/assets/favicons/favicon-32x32.png HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=l6236596uohfthkkhvoe4fuc00; currency=UAH; cart=2926b7717fb8e76a6059a89a84b90046ec0e8ca0%7E0e5372ed84060b9e4807915038abe477719daac8; _ga=GA1.2.1995008362.1558797896; _gid=GA1.2.12051646.1558797896; _gat_gtag_UA_128206001_1=1

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Sat, 25 May 2019 15:24:57 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 12 Dec 2018 13:02:14 GMT
Etag: "963-57cd2ce9b1c5b"
Accept-Ranges: bytes
Content-Length: 2403
Cache-Control: max-age=2592000
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 32 x 32, 8-bit/color RGBA, non-interlaced
Size:   2403
Md5:    ecdc0ffcb4388c6d1ca2bc1b9194ed28
Sha1:   6a9bec53e7a52c37a8893cee8d4493c6f5fcd536
Sha256: d9a5354006717ff41c3fb3476bf5b07408060aecae192e329e458a599a51c9b2
                                        
                                            GET /pixel?google_nid=aidata_ddp&back=SYNC&google_cm HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe

                                         
                                         216.58.207.194
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://cm.g.doubleclick.net/pixel?google_nid=aidata_ddp&back=SYNC&google_cm=&google_tc=
Date: Sat, 25 May 2019 15:24:57 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 297
X-XSS-Protection: 0
Set-Cookie: test_cookie=CheckForPermission; expires=Sat, 25-May-2019 15:39:57 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  HTML document text
Size:   297
Md5:    baa6755b2a67e6d215dad8d3709d3453
Sha1:   19017d41841dfaaf8b2cc1916a831979ce03a902
Sha256: 23cc31c9da26db4771b467ff266e7b24becf25ffbbfebf8f21849291ee0b0e2e
                                        
                                            GET /pixel?google_nid=aidata_ddp&back=SYNC&google_cm=&google_tc= HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe
Cookie: test_cookie=CheckForPermission

                                         
                                         216.58.207.194
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://x01.aidata.io/0.gif?pid=GOOGLE&back=SYNC&google_gid=CAESEHLjrbbhHyfwxuEYj8UntzQ&google_cver=1
Date: Sat, 25 May 2019 15:24:57 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 310
X-XSS-Protection: 0
Set-Cookie: test_cookie=; domain=.doubleclick.net; path=/; expires=Mon, 21 Jul 2008 23:59:00 GMT IDE=AHWqTUlHNg0ln3D7fdVNGWT8o6OIBCu86KIyCFg3xO01g30XLo1xgoEyakAemtKO; expires=Mon, 24-May-2021 15:24:57 GMT; path=/; domain=.doubleclick.net; HttpOnly
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  HTML document text
Size:   310
Md5:    9725c006b6404fb6464fcc6f8d160b19
Sha1:   9b03b2e94f76773036a0a2662641a637f331a83e
Sha256: 35a2084d856c05b7b4488045c272319c5c164fd496ba949437cc83bc7a31d7d9
                                        
                                            GET /0.gif?pid=GOOGLE&back=SYNC&google_gid=CAESEHLjrbbhHyfwxuEYj8UntzQ&google_cver=1 HTTP/1.1 
Host: x01.aidata.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe
Cookie: __upin=RBY3oMZEeIk8yemSTsXd+g; __upints=1558797897; gl=1

                                         
                                         144.76.85.254
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Sat, 25 May 2019 15:24:57 GMT
Content-Length: 0
Connection: keep-alive
Location: https://tags.bluekai.com/site/29099?limit=0&id=RBY3oMZEeIk8yemSTsXd+g&redir=https://x01.aidata.io/0.gif?pid=ORACLE%26id=$_BK_UUID%26back=SYNC
Set-Cookie: oracle=1;path=/;expires=Sat, 1 Jun 2019 15:24:57 GMT;max-age=604800 __upin=RBY3oMZEeIk8yemSTsXd+g;domain=.aidata.io;path=/;max-age=63072000 __upints=1558797897;domain=.aidata.io;path=/;max-age=63072000
Expires: Sat, 25 May 2019 15:24:56 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Sat, 25 May 2019 15:24:56 GMT
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=104807
Date: Sat, 25 May 2019 15:24:57 GMT
Etag: "5ce83f31-1d7"
Expires: Sun, 26 May 2019 20:31:44 GMT
Last-Modified: Fri, 24 May 2019 19:00:01 GMT
Server: ECS (lcy/1D6F)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    a5e3ab43cef83afb13458b7f1b65efef
Sha1:   c46a4ba7b67f63ba25f0cb1351a05ae136ef8e69
Sha256: f8e23240a9f3c3321410b885b91356ad4f4eeb7a3ed4e0d9c096edea9ad924a8
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=152339
Date: Sat, 25 May 2019 15:24:58 GMT
Etag: "5ce8f168-1d7"
Expires: Mon, 27 May 2019 09:43:57 GMT
Last-Modified: Sat, 25 May 2019 07:40:24 GMT
Server: ECS (lcy/1D1F)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    ce0f06c506e5aa60d64bd38a5182b16f
Sha1:   66ddd234ade995079e6ecb4cc58b0c238b205120
Sha256: 62fa90e6bcb01b07d116127c3b3d043a8531a4584298a90d0e9e1030205f3a9f
                                        
                                            GET /site/29099?limit=0&id=RBY3oMZEeIk8yemSTsXd+g&redir=https://x01.aidata.io/0.gif?pid=ORACLE%26id=$_BK_UUID%26back=SYNC HTTP/1.1 
Host: tags.bluekai.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe

                                         
                                         104.123.128.52
HTTP/1.1 302 Moved Temporarily
                                        
Content-Length: 0
P3P: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
Location: https://x01.aidata.io/0.gif?pid=ORACLE&id=$_BK_UUID&back=SYNC
BK-Server: 4373
Date: Sat, 25 May 2019 15:24:58 GMT
Connection: keep-alive


--- Additional Info ---
                                        
                                            GET /0.gif?pid=ORACLE&id=$_BK_UUID&back=SYNC HTTP/1.1 
Host: x01.aidata.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe
Cookie: __upin=RBY3oMZEeIk8yemSTsXd+g; __upints=1558797897; gl=1; oracle=1

                                         
                                         144.76.85.254
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Sat, 25 May 2019 15:24:58 GMT
Content-Length: 0
Connection: keep-alive
Location: https://ib.adnxs.com/getuid?//x01.aidata.io/0.gif%3Fpid%3DAPPNEXUS%26id%3D%24UID%26back=SYNC
Set-Cookie: anx=1;path=/;expires=Tue, 28 May 2019 15:24:58 GMT;max-age=259200 __upin=RBY3oMZEeIk8yemSTsXd+g;domain=.aidata.io;path=/;max-age=63072000 __upints=1558797897;domain=.aidata.io;path=/;max-age=63072000
Expires: Sat, 25 May 2019 15:24:57 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Sat, 25 May 2019 15:24:57 GMT
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'


--- Additional Info ---
                                        
                                            GET /Media/assets/favicons/favicon-32x32.png HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=l6236596uohfthkkhvoe4fuc00; currency=UAH; cart=2926b7717fb8e76a6059a89a84b90046ec0e8ca0%7E0e5372ed84060b9e4807915038abe477719daac8

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /getuid?//x01.aidata.io/0.gif%3Fpid%3DAPPNEXUS%26id%3D%24UID%26back=SYNC HTTP/1.1 
Host: ib.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe

                                         
                                         0.0.0.0
                                        


--- Additional Info ---