Overview

URL www.ohsni.com/
IP104.18.35.108
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2018-06-13 21:35:39 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 2 reports on IP: 104.18.35.108

Date UQ / IDS / BL URL IP
2017-11-16 18:54:06 +0100
0 - 0 - 6 rockadz.net/ 104.18.35.108
2017-08-15 14:43:18 +0200
0 - 0 - 3 kik-sexting.com/topic/71142-amlodipine-24-hr-sale/ 104.18.35.108

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2018-10-23 10:37:31 +0200
0 - 0 - 1 www.gorillawalker.com/bhima-lone-warrior.pdf 104.18.45.132
2018-10-23 10:37:30 +0200
0 - 0 - 1 www.gorillawalker.com/the-networked-nonprofit (...) 104.18.45.132
2018-10-23 10:34:57 +0200
0 - 1 - 0 tranny.ga/ 104.27.180.150
2018-10-23 10:33:19 +0200
0 - 0 - 1 www.gorillawalker.com/hal-leonard-winds-of-pr (...) 104.18.44.132
2018-10-23 10:32:21 +0200
0 - 0 - 1 www.gorillawalker.com/core-curriculum-for-pro (...) 104.18.45.132
2018-10-23 10:31:45 +0200
0 - 0 - 2 thebay.tv/torrent/22491895/Darling_in_the_Fra (...) 104.31.17.3
2018-10-23 10:30:45 +0200
0 - 0 - 1 www.gorillawalker.com/living-without-free-wil (...) 104.18.44.132
2018-10-23 10:29:54 +0200
0 - 0 - 1 www.gorillawalker.com/james-macleod-the-mount (...) 104.18.45.132
2018-10-23 10:29:36 +0200
0 - 0 - 1 www.pushmail.net/index.php 104.28.17.56
2018-10-23 10:27:28 +0200
0 - 0 - 1 www.gorillawalker.com/morning-pilates-workout (...) 104.18.45.132

No other reports on domain: ohsni.com



JavaScript

Executed Scripts (13)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (93)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Wed, 13 Jun 2018 19:35:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; expires=Thu, 13-Jun-19 19:35:07 GMT; path=/; domain=.ohsni.com; HttpOnly 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3; path=/; HttpOnly
X-Logged-In: False
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Wed, 17 Aug 2005 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Wed, 13 Jun 2018 19:35:09 GMT
X-Powered-By: PleskLin
Server: cloudflare
CF-RAY: 42a6ffa270794273-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5653
Md5:    0f50c344f133473d196698b546ff3cc1
Sha1:   5ac34d83bb87274f4e1f997ecde4977303cdae48
Sha256: 9eafd0a806ddd1dd7ea76c989f583ae95474b1621a67d1b96288ec4d8db7b927
                                        
                                            GET /templates/ja_university_t3/favicon.ico HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Wed, 13 Jun 2018 19:35:09 GMT
Content-Length: 1150
Connection: keep-alive
Last-Modified: Thu, 09 Oct 2014 01:08:00 GMT
Cache-Control: public, max-age=2592000
Expires: Fri, 13 Jul 2018 19:35:09 GMT
Etag: "5435dff0-47e"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 42a6ffabc6034297-OSL


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon
Size:   1150
Md5:    63b982eddd64d44233baa25066db6bc1
Sha1:   697aa5810e7eef7ad7b97951bf05b1dd94fae9af
Sha256: 0e626ccb9a1ad74985a5813c6741d8702ff7a1a864e3f7d9fe99969d2468d1ce
                                        
                                            GET /components/com_k2/js/k2.js?v2.6.8&sitepath=/ HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Wed, 13 Jun 2018 19:35:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 09 Oct 2014 01:06:02 GMT
Cache-Control: public, max-age=14400
Expires: Wed, 13 Jun 2018 23:35:09 GMT
Etag: W/"5435df7a-1f4b"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 42a6ffac62904273-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2222
Md5:    4bc19620003876e6ef0a99b973fbe29f
Sha1:   d9c5eb28ff56b7c7f0d72091dcae1c26caae391c
Sha256: 5e27345a97ea1155b3c2d9a3ad38fa8667f4644e05bbf822fa863fc1adc64400
                                        
                                            GET /t3-assets/css/css-3ab6a.css?t=26 HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 13 Jun 2018 19:35:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 03 Oct 2015 00:10:26 GMT
Cache-Control: public, max-age=604800
Expires: Wed, 20 Jun 2018 19:35:09 GMT
Etag: W/"560f1cf2-90bf"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 42a6ffab95874261-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   5995
Md5:    f7534a654fc2486f8c7ff64f7ea539b7
Sha1:   97e568eedf083cecbf93b897ec0cc0154f0e8249
Sha256: 81b58663312fb320919c5df73a9b52c6ed8a6370c96728abb865279ed05ebd3f
                                        
                                            GET /templates/ja_university_t3/images/logo.png HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 13 Jun 2018 19:35:10 GMT
Content-Length: 4930
Connection: keep-alive
Last-Modified: Thu, 09 Oct 2014 01:08:10 GMT
Cache-Control: public, max-age=2592000
Expires: Fri, 13 Jul 2018 19:35:10 GMT
Etag: "5435dffa-1342"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 42a6ffae73094273-OSL


--- Additional Info ---
Magic:  PNG image, 129 x 105, 8-bit/color RGBA, non-interlaced
Size:   4930
Md5:    b4b962e8ac1f5e1f6440162791be9e47
Sha1:   8e8bd2e321c8d51c8e99bfe75d3f2e0b64f75c62
Sha256: fee060fe31288465819396514b763e22148218b3f66b73dfcc2ab1e4094a4ace
                                        
                                            GET /t3-assets/css/css-de258.css?t=926 HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 13 Jun 2018 19:35:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 03 Oct 2015 00:42:06 GMT
Cache-Control: public, max-age=604800
Expires: Wed, 20 Jun 2018 19:35:09 GMT
Etag: W/"560f245e-20b85"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 42a6ffabc7f54255-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   22602
Md5:    d33ef1749ae536c158762bbbddeeef60
Sha1:   75be9d6d9e09b80cfaf93cb46b1bde57c9e89a0d
Sha256: a83bb881e5f75f7e24eeeb2943c375ae258ca4e59dd30e08fa5830bed2267157
                                        
                                            GET /t3-assets/js/js-d313e.js?t=908 HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Wed, 13 Jun 2018 19:35:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 22 Jul 2016 19:48:28 GMT
Cache-Control: public, max-age=14400
Expires: Wed, 13 Jun 2018 23:35:09 GMT
Etag: W/"5792788c-302f3"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 42a6ffabc4fd426d-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   65654
Md5:    5c763d22c966e375d9856052e1417847
Sha1:   36da1bf34a2df783480a857694a6a6b9eb4084d9
Sha256: 05b164294e34716f14ca89996b969353cb568614a44e32ca045788a97c51f9f2
                                        
                                            GET /t3-assets/js/js-7a84d.js?t=910 HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Wed, 13 Jun 2018 19:35:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 22 Jul 2016 19:48:30 GMT
Cache-Control: public, max-age=14400
Expires: Wed, 13 Jun 2018 23:35:10 GMT
Etag: W/"5792788e-4972e"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 42a6ffae16694297-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   83541
Md5:    f235500e5cb430ddb79391c2582cd131
Sha1:   680a4f0ab6f6f340d1e5a43ee5e58dbf03e3e639
Sha256: 6bdce4b844b7238a7ae3e680e336bd3fd3dcb06193f7733710725b19e9bd7934
                                        
                                            GET /t3-assets/css/css-acbcc.css?t=908 HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 13 Jun 2018 19:35:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 22 Jul 2016 19:48:28 GMT
Cache-Control: public, max-age=604800
Expires: Wed, 20 Jun 2018 19:35:09 GMT
Etag: W/"5792788c-231ec"
X-Powered-By: PleskLin
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 42a6ffaba6c4428b-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   22977
Md5:    0f8aafd1a760361c3dad8a7131dcbfb2
Sha1:   6c6fe53c66557a57acdabe53f1e45ae9e65a7a60
Sha256: c0ca63c53c04e9eb130557f0815f6a4716ad41d4c3e36a0ad0c1efa4d2dba54a
                                        
                                            GET /media/system/css/system.css HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/t3-assets/css/css-acbcc.css?t=908
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 13 Jun 2018 19:35:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 13 Jul 2016 01:15:46 GMT
Cache-Control: public, max-age=604800
Expires: Wed, 20 Jun 2018 19:35:13 GMT
Etag: W/"57859642-5a6"
X-Powered-By: PleskLin
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 42a6ffc4e2f14261-OSL
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   551
Md5:    635c1fc4c2214e36cf8cc7ecb2a808b2
Sha1:   8dfef371c1bab60ecec5b04da700a4bdcbb77b2d
Sha256: 1fe38c336ddf1ce17b23d700936fafa386d96861e2ebe25bff521f262b9611b7
                                        
                                            GET /images/resized/images/resized/images/sampledata/slideshow/sl-1_960_400_960_400.jpg HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 37765
Connection: keep-alive
Last-Modified: Thu, 09 Oct 2014 01:14:42 GMT
Cache-Control: public, max-age=2592000
Expires: Fri, 13 Jul 2018 19:35:14 GMT
Etag: "5435e182-9385"
X-Powered-By: PleskLin
CF-Cache-Status: HIT
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 42a6ffc900c34273-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   37765
Md5:    b3e956b18805f3f89cca1d624ad6ff47
Sha1:   f30c542315d2fd9ba33fdc98cef638389b83bc66
Sha256: 32ca6cc0ce11b69c7110616dc1364391ce7e703567cda8b7e1d127220cf8dc3f
                                        
                                            GET /images/resized/images/resized/images/sampledata/slideshow/sl-3_960_400_960_400.jpg HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 81553
Connection: keep-alive
Last-Modified: Thu, 09 Oct 2014 01:14:44 GMT
Cache-Control: public, max-age=2592000
Expires: Fri, 13 Jul 2018 19:35:14 GMT
Etag: "5435e184-13e91"
X-Powered-By: PleskLin
CF-Cache-Status: HIT
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 42a6ffc9030f426d-OSL


--- Additional Info ---
Magic:  PNG image, 960 x 400, 8-bit/color RGBA, non-interlaced
Size:   81553
Md5:    ddf0c4e58a905d7ee88e278b3c32ce54
Sha1:   3965c4d799c82fe3ddc01e2f4837803efa5142e9
Sha256: 64fb8647b20852368df8a0774531c083c4603443c199726bca4ca91d2f24ba99
                                        
                                            GET /images/resized/images/resized/images/sampledata/slideshow/sl-4_960_400.jpg HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 40149
Connection: keep-alive
Last-Modified: Thu, 09 Oct 2014 01:14:44 GMT
Cache-Control: public, max-age=2592000
Expires: Fri, 13 Jul 2018 19:35:14 GMT
Etag: "5435e184-9cd5"
X-Powered-By: PleskLin
CF-Cache-Status: HIT
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 42a6ffc904bd4297-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, comment: "CREATOR: gd-jpeg v1.0 (using IJ"
Size:   40149
Md5:    4cff0315cd6e4253ce6d48789660c448
Sha1:   da0f5666bf8a72a74ec7761b86b7e7b9162ef5db
Sha256: f408dfb25beb07add284c008e21f6771ce4f550a747b7c1d1a9372f57a18f131
                                        
                                            GET /images/img_1279.jpeg HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 28885
Connection: keep-alive
Last-Modified: Mon, 27 Oct 2014 19:16:54 GMT
Cache-Control: public, max-age=2592000
Expires: Fri, 13 Jul 2018 19:35:14 GMT
Etag: "544e9a26-70d5"
X-Powered-By: PleskLin
CF-Cache-Status: HIT
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 42a6ffc90492428b-OSL


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   28885
Md5:    29159df3c1dc880c09e872f74f317c71
Sha1:   55aa53b466e911bdf874ca6441f45893e0177b4b
Sha256: 77a4ceb35ad3efb1adbebfb2efc769e11f640da2caa1bd7346e28e4ac6e11e39
                                        
                                            GET /templates/ja_university_t3/images/mask-left.png HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/t3-assets/css/css-de258.css?t=926
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 1825
Connection: keep-alive
Last-Modified: Thu, 09 Oct 2014 01:08:10 GMT
Cache-Control: public, max-age=2592000
Expires: Fri, 13 Jul 2018 19:35:14 GMT
Etag: "5435dffa-721"
X-Powered-By: PleskLin
CF-Cache-Status: HIT
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 42a6ffc963e34261-OSL


--- Additional Info ---
Magic:  PNG image, 112 x 600, 8-bit/color RGBA, non-interlaced
Size:   1825
Md5:    0f4824bcb8a11385737bf0c045ae1766
Sha1:   87cc3a5bdfa4045c286c687a0f9241686d5acf6f
Sha256: 353e3c14df92e012d79c04fd249dfcfba25cd0715e3f999a81b388f8ef13618c
                                        
                                            GET /templates/ja_university_t3/images/sl-btn-direction.png HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/t3-assets/css/css-de258.css?t=926
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 1265
Connection: keep-alive
Last-Modified: Thu, 09 Oct 2014 01:08:08 GMT
Cache-Control: public, max-age=2592000
Expires: Fri, 13 Jul 2018 19:35:14 GMT
Etag: "5435dff8-4f1"
X-Powered-By: PleskLin
CF-Cache-Status: HIT
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 42a6ffc96323426d-OSL


--- Additional Info ---
Magic:  PNG image, 80 x 80, 8-bit/color RGBA, non-interlaced
Size:   1265
Md5:    eedb6585b11a59ca3024c38063155f95
Sha1:   28c6f6594803f50acf61e7f6037e2fcc0e53f759
Sha256: 4f0a4e1ba6a8178b665824e80aebdf501f53d2d26c45815f2466d255c44e3810
                                        
                                            GET /templates/ja_university_t3/images/mask-right.png HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/t3-assets/css/css-de258.css?t=926
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 1824
Connection: keep-alive
Last-Modified: Thu, 09 Oct 2014 01:08:10 GMT
Cache-Control: public, max-age=2592000
Expires: Fri, 13 Jul 2018 19:35:14 GMT
Etag: "5435dffa-720"
X-Powered-By: PleskLin
CF-Cache-Status: HIT
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 42a6ffc960df4273-OSL


--- Additional Info ---
Magic:  PNG image, 112 x 600, 8-bit/color RGBA, non-interlaced
Size:   1824
Md5:    b0a55278e336f17a0d82ac15caf7dcf2
Sha1:   49737fa64d51398d0053b8077850c7be9fc23720
Sha256: f21221c31096ac7eeaec135bfb003a32c5ffb283ae920871d22284c5cef418b1
                                        
                                            GET /templates/ja_university_t3/images/bullet-dark-ltr.gif HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/t3-assets/css/css-de258.css?t=926
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 1099
Connection: keep-alive
Last-Modified: Thu, 09 Oct 2014 01:08:10 GMT
Cache-Control: public, max-age=2592000
Expires: Fri, 13 Jul 2018 19:35:14 GMT
Etag: "5435dffa-44b"
X-Powered-By: PleskLin
CF-Cache-Status: HIT
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 42a6ffc974d74297-OSL


--- Additional Info ---
Magic:  GIF image data, version 89a, 4 x 6
Size:   1099
Md5:    f8b1cebc5dc89d06912a7e69da2cc59f
Sha1:   7ab71211f23625b105c74f47c0e89ed59390aa6e
Sha256: 1412680891eadba58f74050fa7ad539f9a304dfcf7b2336e40dbfb140081095d
                                        
                                            GET /aci.js HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/

                                         
                                         148.251.11.72
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 5815
Last-Modified: Mon, 04 Dec 2017 12:55:20 GMT
Connection: keep-alive
Etag: "5a2545b8-16b7"
Content-Encoding: gzip
Expires: Thu, 14 Jun 2018 07:35:14 GMT
Cache-Control: max-age=43200


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   5815
Md5:    c03764b7dbf6f8c48af2d846ed9788ab
Sha1:   2307ef666a55709a7620b5809736a841da6e6ce7
Sha256: ac785a93d942f4d56d4e88de95cd5476a017540a207d2e9116c0e3743bf92433
                                        
                                            GET /images/resized/images/resized/images/sampledata/slideshow/sl-2_960_400_960_400.jpg HTTP/1.1 
Host: www.ohsni.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/
Cookie: __cfduid=debb8b0e301b473a813095d7aef7c2d521528918507; 548b1b59c7da8ed491172a4851261062=96oi97au8oimuq5f8jamohumq3

                                         
                                         104.18.34.108
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 108756
Connection: keep-alive
Last-Modified: Thu, 09 Oct 2014 01:14:42 GMT
Cache-Control: public, max-age=2592000
Expires: Fri, 13 Jul 2018 19:35:14 GMT
Etag: "5435e182-1a8d4"
X-Powered-By: PleskLin
CF-Cache-Status: HIT
Vary: Accept-Encoding
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 42a6ffc905e44255-OSL


--- Additional Info ---
Magic:  PNG image, 960 x 400, 8-bit/color RGBA, non-interlaced
Size:   108756
Md5:    b6cbb2501604f1e5ab9ae00a879baa76
Sha1:   f0a9f892fddd272ce24f9ee181c41b37cd820f3e
Sha256: cf9616677d2dc58281700d3a01e07ef5f2bd4c98cef0d69662b4fecdd9f4b919
                                        
                                            GET /hit/?v=0.1.1&uid=b35e230d-e27d-4d2d-b5c9-a13e59b394fc&dp=10&tz=%2B02%3A00&nc=57527729&u=http%3A%2F%2Fwww.ohsni.com%2F&r=&rs=1176x885&t=Ottawa%20Health%20Services%20Network%20Inc.&oE=1&oP=1&dT=2018-06-13T21%3A35%3A14.626 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/

                                         
                                         148.251.11.72
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: keep-alive
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: aid=lPsLSFshcfJsUV9kQ7I0Ash2mo+BDMxsiqw4xKcRe5xdsrvH; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /mc/?dp=10 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/

                                         
                                         148.251.11.72
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cSyncDp7v2=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp14=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp17=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp23=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp24=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp32=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp35=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp37=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp45=1528918514; expires=Sun, 17-Jun-18 13:35:14 GMT; path=/; domain=.acint.net cSyncDp54v2=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp62=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp67v2=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp68=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp71=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp74=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp75=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp77=1528918514; expires=Sun, 01-Jul-18 07:35:14 GMT; path=/; domain=.acint.net cSyncDp79=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp84=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp88=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp92=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp96=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp98=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net cSyncDp101=1528918514; expires=Fri, 13-Jul-18 19:35:14 GMT; path=/; domain=.acint.net aid=lPsLSFshcfJsg19lQ9aEAkPWwvY+mFspA3jr/piV7xtqPO39; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1162
Md5:    67289b7cab6ff9cf47481cdbf6a4bdd1
Sha1:   c80e9114176ef7d689a5f6a892e3444e62fb2c9f
Sha256: 27f6e249ff61f9706d760529d6cd28a5956349a9ac4affbd18d205d346dd0b24
                                        
                                            GET /rmatch/?r=%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1 
Host: ssp-rtb.sape.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         95.181.171.232
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 154
Connection: keep-alive
Location: //acint.net/match?dp=14&euid=E8ABB55FF271215B0021A8C202857307
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=X7Wr6FshcfLCqCEAB3OFAlH04QsAXVSdcvMeOlOJYQ+zHr9F; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/


--- Additional Info ---
Magic:  HTML document text
Size:   154
Md5:    cfbeaf604823f038b8b46f0ac862b98c
Sha1:   7b9eb1dac48e74fa5f418bc456cb410f88b81d98
Sha256: 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
                                        
                                            GET /match?bidder_id=73&external_user_id=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: ads.betweendigital.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         188.42.196.115
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Set-Cookie: tuuid=1236ed70-0225-4d9e-8ab5-f6abb901e0bf; Max-Age=315360000; Expires=Sat, 10 Jun 2028 19:35:14 GMT; Domain=.ads.betweendigital.com
Content-Length: 68


--- Additional Info ---
Magic:  PNG image, 1 x 1, 8-bit/color RGBA, non-interlaced
Size:   68
Md5:    c4a2b870062c2bb98c500bc1526c0498
Sha1:   528666ccdb12997358077bc8fcdbfb6b825c7788
Sha256: 2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
                                        
                                            GET /match?dsp=sape HTTP/1.1 
Host: sync.republer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         194.190.117.33
HTTP/1.1 307 Temporary Redirect
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 0
Connection: close
P3P: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Host: pew2
Set-Cookie: ruid=0083c0ba-3464-4568-9ce4-9dea97d32a40; Max-Age=31536000; Expires=Thu, 13 Jun 2019 19:35:14 GMT; Path=/; Domain=.republer.com; HTTPOnly
Location: /match?dsp=sape&qset=1


--- Additional Info ---
                                        
                                            GET /cgi-bin/sync.cgi?ssp_id=43&external_id=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: ssp.adriver.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         195.209.111.17
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /match?sysid=sa&uid=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: cs.cryptoadsmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         188.42.52.36
HTTP/1.1 301 Moved Permanently
                                        
Server: nginx/1.13.12
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true, true
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS, GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Origin: *
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: http://www.acint.net/match?dp=35&euid=9b52f253-cb7b-406e-bc99-bb4dc67421db
Set-Cookie: uuid=9b52f253-cb7b-406e-bc99-bb4dc67421db; expires=Tue, 04 Jun 2019 19:35:14 GMT; domain=.cryptoadsmanager.com; path=/


--- Additional Info ---
                                        
                                            GET /sync2.204?pid=152&anket_id=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: profile.ssp.rambler.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         91.192.148.14
HTTP/1.1 204 Http No Content
Content-Type: application/x-javascript; charset=Windows-1251
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: ruid=; domain=.rambler.ru; path=/; expires=Wed, 13 Jun 2018 18:35:14 GMT embryo=4vrJyCexwfG2Lv5aZE5xJfsHXPDrQ9mrt-ofYVYM7khNYLeKAKi0Drki4VNqbfR4y8*bKoJGU8jAwLXrC9t-MTgJYfq2uqL5n1jK7jjr8MCu*wZE9*zLkWVRXPTOgTFg8yt9cu7OjIvcx1*P*TGLr8u4B1tBns*cBSpJDJRZfnq7uPaT7mRAosm5yx5jMoXtuDgRS4rA-84f2jBQaaPNBpGfQHbdCvhsgxhd*NOF1hK2hTco6XIEAHrq3kTYFYYqvPsTuuZk9qYic-15imPOnYLQC7v1mlXz; domain=.rambler.ru; path=/; expires=Mon, 10 Dec 2018 19:35:14 GMT uuts=4vrJyHQNl4XYd8trP*rnSTEvokB*aU*x; domain=.rambler.ru; path=/; expires=Mon, 10 Dec 2018 19:35:14 GMT
X-Passed: 2bal1
Strict-Transport-Security: max-age=0
P3P: policyref="/w3c/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"


--- Additional Info ---
                                        
                                            GET /images/1px-matching-rtbsape.gif?id=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: t.trafmag.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         193.200.65.5
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 35
Connection: keep-alive
P3P: CP="NON DSP COR CURa TIA"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    c2196de8ba412c60c22ab491af7b1409
Sha1:   5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
Sha256: 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
                                        
                                            GET /cm.gif?p=48&id=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: ad.mail.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         94.100.180.76
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 43
Connection: keep-alive
Set-Cookie: VID=1WORUA0UL0ni0000080G541i:::0-0-0; path=/; expires=Tue, 15-Jun-21 19:35:14 GMT; domain=.mail.ru; HttpOnly
Expires: Thu, 14 Jun 2018 01:35:14 GMT
Cache-Control: max-age=21600
Last-Modified: Wed, 13 Jun 2018 19:35:14 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /match?id=106&vid=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: st.hybrid.ai
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         37.18.16.16
HTTP/1.1 302 Found
                                        
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store
Pragma: no-cache
Expires: -1
Location: https://st.hybrid.ai/yandex-match
Set-Cookie: vid=66664467380db5d52041; expires=Mon, 13 Jun 2078 19:35:14 GMT; domain=.hybrid.ai; path=/
P3P: CP='NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC'
X-Mode: 123
X-XSS-Protection: 1; mode=block
Access-Control-Allow-Origin: *
Server: Hybrid Web Server


--- Additional Info ---
                                        
                                            GET /pixel?google_nid=agentstvo_sape_limited&google_hm=SAv7lPJxIVtlX4NsAoTWQw HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         216.58.207.226
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: http://cm.g.doubleclick.net/pixel?google_nid=agentstvo_sape_limited&google_hm=SAv7lPJxIVtlX4NsAoTWQw&google_tc=
Date: Wed, 13 Jun 2018 19:35:14 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 316
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Wed, 13-Jun-2018 19:50:14 GMT; path=/; domain=.doubleclick.net


--- Additional Info ---
Magic:  HTML document text
Size:   316
Md5:    7096b0c70345c89ddad23ec300266276
Sha1:   cb9248796ef6055d3ed6a5b918d27b821d93fcf5
Sha256: 51e28e423b85d1f6a85071a3c4c421f47c3d511e7fa7f36df0d7a8f8f212104d
                                        
                                            GET /match?dp=35&euid=9b52f253-cb7b-406e-bc99-bb4dc67421db HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: aid=lPsLSFshcfJsg19lQ9aEAkPWwvY+mFspA3jr/piV7xtqPO39; cSyncDp7v2=1528918514; cSyncDp14=1528918514; cSyncDp17=1528918514; cSyncDp23=1528918514; cSyncDp24=1528918514; cSyncDp32=1528918514; cSyncDp35=1528918514; cSyncDp37=1528918514; cSyncDp45=1528918514; cSyncDp54v2=1528918514; cSyncDp62=1528918514; cSyncDp67v2=1528918514; cSyncDp68=1528918514; cSyncDp71=1528918514; cSyncDp74=1528918514; cSyncDp75=1528918514; cSyncDp77=1528918514; cSyncDp79=1528918514; cSyncDp84=1528918514; cSyncDp88=1528918514; cSyncDp92=1528918514; cSyncDp96=1528918514; cSyncDp98=1528918514; cSyncDp101=1528918514

                                         
                                         148.251.11.72
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: close
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /match/sapein?uid=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: sync.audtd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         78.155.222.213
HTTP/1.1 302 Found
Content-Type: text/plain; charset=utf-8
                                        
Set-Cookie: chk=OK; Max-Age=6; Domain=.audtd.com; Path=/; Expires=Wed, 13 Jun 2018 19:35:20 GMT
Location: http://sync.audtd.com/match/sapein?uid=480BFB94F271215B655F836C0284D643&checked=true&rst=1528918514871&rf=http%3A%2F%2Fwww.acint.net%2Fmc%2F%3Fdp%3D10&type=gif
Vary: Accept
Content-Length: 181
Date: Wed, 13 Jun 2018 19:35:14 GMT
Connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   181
Md5:    56234a02b7c91a762940ddd5ccf2e431
Sha1:   596156ebf43a45e079efa11abba34d2ff0c3932f
Sha256: ac9c639d5e9b23c85e7b2d045b5c212e08f9fea236cd8b2c1f96812596353a96
                                        
                                            GET /sync?dspId=1116&uid=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: matching.adtags.pro
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         138.68.71.194
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Server: nginx/1.10.3 (Ubuntu)
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: at_dsp_uid_1116=480BFB94F271215B655F836C0284D643;Domain=.adtags.pro;Path=/;Max-Age=86400


--- Additional Info ---
                                        
                                            GET /pixel?google_nid=agentstvo_sape_limited&google_hm=SAv7lPJxIVtlX4NsAoTWQw&google_tc= HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: test_cookie=CheckForPermission

                                         
                                         216.58.207.226
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: http://www.acint.net/match?dp=77&euid=
Date: Wed, 13 Jun 2018 19:35:14 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 239
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=; domain=.doubleclick.net; path=/; expires=Mon, 21 Jul 2008 23:59:00 GMT IDE=AHWqTUmlqlBR0X0xzAWe2Wfgm1Lzt3g-xY_YHnF6NE7o8CXbDAqP3etQJA; expires=Fri, 12-Jun-2020 19:35:14 GMT; path=/; domain=.doubleclick.net; HttpOnly


--- Additional Info ---
Magic:  HTML document text
Size:   239
Md5:    c5d2543d3421b4a36de8334db977b7a8
Sha1:   02785aa1de17eff07b1cb0a1a00dc197c0cea015
Sha256: e70e3fb03ff79a2bfa1dd9f32a4bc435dede861c5999fc384839df1e6c3e8bee
                                        
                                            GET /partners/sprcs?uid=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: relap.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         185.99.9.117
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 178
Connection: keep-alive
Location: https://relap.io/partners/sprcs?uid=480BFB94F271215B655F836C0284D643


--- Additional Info ---
Magic:  HTML document text
Size:   178
Md5:    cd2e0e43980a00fb6a2742d3afd803b8
Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1
Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
                                        
                                            GET /merge_gpsid/?sid=50&id=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: stat.adlabs.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         109.248.237.36
HTTP/1.1 302
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 0
Connection: keep-alive
Location: //adlmerge.com/merge_gpsid/?sid=50&id=480BFB94F271215B655F836C0284D643


--- Additional Info ---
                                        
                                            GET /match?dsp=sape&qset=1 HTTP/1.1 
Host: sync.republer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: ruid=0083c0ba-3464-4568-9ce4-9dea97d32a40

                                         
                                         194.190.117.33
HTTP/1.1 307 Temporary Redirect
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 0
Connection: close
P3P: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Host: pew1
Location: http://acint.net/match?dp=54&euid=0083c0ba-3464-4568-9ce4-9dea97d32a40
Set-Cookie: ruid=0083c0ba-3464-4568-9ce4-9dea97d32a40; Max-Age=31536000; Expires=Thu, 13 Jun 2019 19:35:14 GMT; Path=/; Domain=.republer.com; HTTPOnly


--- Additional Info ---
                                        
                                            GET /match/sape?id=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: sync.dmp.otm-r.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         88.99.62.232
HTTP/1.1 204 No Content
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Connection: keep-alive


--- Additional Info ---
                                        
                                            GET /cookie/accepter?source=sape&id=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: sync.datamind.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         94.130.35.164
HTTP/1.1 302
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 0
Connection: close
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Location: http://sync.datamind.ru/cookie/accepter?source=sape&id=480BFB94F271215B655F836C0284D643&dmp.ctest=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cDovL3d3dy5hY2ludC5uZXQvbWMvP2RwXHUwMDNkMTAiXX19
Set-Cookie: dmp.ctest_id=1528918514905;Version=1;Comment=;Domain=.datamind.ru;Path=/;Max-Age=10800;Expires=Wed, 13 Jun 2018 22:35:14 GMT


--- Additional Info ---
                                        
                                            GET /sync/pixel?source=sape&uid=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: eu.track.digitaladsystems.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         94.130.38.41
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 35
Connection: keep-alive
Keep-Alive: timeout=20
Set-Cookie: uid=fbe7246c-6591-41ee-b36e-d0085587b67f; Max-Age=315360000; Expires=Sat, 10 Jun 2028 19:35:14 GMT; Path=/; Domain=.digitaladsystems.com


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.91
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "5CEB95C227F7BA8E4840131B03A2100C3C26CB671AF2129E6510420C16A2ED42"
Last-Modified: Tue, 12 Jun 2018 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=23387
Expires: Thu, 14 Jun 2018 02:05:01 GMT
Date: Wed, 13 Jun 2018 19:35:14 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    f5757ad9d593dbf9a8939dce65ea9ad3
Sha1:   a0e6ba7fdc4c8178e71e2e2c2d57e8691bd705b3
Sha256: 5ceb95c227f7ba8e4840131b03a2100c3c26cb671af2129e6510420c16a2ed42
                                        
                                            GET /sape-sync?uid=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: adx.com.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         94.130.217.253
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
Location: /sync?sspKey=7&sspUserID=480BFB94F271215B655F836C0284D643
P3P: CP="adx.com.ru does not have a P3P policy"
Set-Cookie: yabbi-user=5b2171f298fbcb000b8bceed; Path=/; Max-Age=31536000; HttpOnly
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 84


--- Additional Info ---
Magic:  ASCII text
Size:   84
Md5:    2da451c0cea5c4d3ef46c2eeb2fa2a08
Sha1:   27ef70eba90046fd8915b8847817c2008c57fac5
Sha256: 3d5c41ab94a446435fc2d2e94c5240274cb1638cd6b82cc748ee403c2d011701
                                        
                                            GET /image?source=sape&id=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: sync.upravel.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         78.46.16.13
HTTP/1.1 302 Found
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 0
Connection: close
Location: http://sync.upravel.com/image?source=sape&id=480BFB94F271215B655F836C0284D643&session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cDovL3d3dy5hY2ludC5uZXQvbWMvP2RwXHUwMDNkMTAiXX19
Set-Cookie: session_tptc=1528918514908;Version=1;Comment=;Domain=.upravel.com;Path=/;Max-Age=180
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"


--- Additional Info ---
                                        
                                            GET /match/sapein?uid=480BFB94F271215B655F836C0284D643&checked=true&rst=1528918514871&rf=http%3A%2F%2Fwww.acint.net%2Fmc%2F%3Fdp%3D10&type=gif HTTP/1.1 
Host: sync.audtd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: chk=OK

                                         
                                         78.155.222.213
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Set-Cookie: pid=AU00BD4DAAA76; Max-Age=62899200; Domain=.audtd.com; Path=/; Expires=Wed, 10 Jun 2020 19:35:14 GMT
Location: https://www.acint.net/match/?dp=96&euid=AU00BD4DAAA76
Vary: Accept
Content-Length: 158
Date: Wed, 13 Jun 2018 19:35:14 GMT
Connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   158
Md5:    3bca3e429710d681dd6900b4d3797f0b
Sha1:   f21a468c7125af95001704b7e3ce3c1b70b1e4a8
Sha256: ba35d8e759713ee72e1cb995f3789ca942780d1c539cbbd4856f4787204b7209
                                        
                                            GET /p/cm/sape?u=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: px.adhigh.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         136.243.75.29
HTTP/1.1 302 Found
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 0
Connection: keep-alive
X-Backend-id: f36-de
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Set-Cookie: gi_u=gWbofOfoCUc;Path=/;Domain=.adhigh.net;Expires=Thu, 13-Jun-2019 19:35:14 GMT;Max-Age=31536000
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Pragma: no-cache
Cache-Control: no-cache, no-store
Location: http://px.adhigh.net/p/cm/sape?u=480BFB94F271215B655F836C0284D643&bounced=1


--- Additional Info ---
                                        
                                            GET /match?dp=77&euid= HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: aid=lPsLSFshcfJsg19lQ9aEAkPWwvY+mFspA3jr/piV7xtqPO39; cSyncDp7v2=1528918514; cSyncDp14=1528918514; cSyncDp17=1528918514; cSyncDp23=1528918514; cSyncDp24=1528918514; cSyncDp32=1528918514; cSyncDp35=1528918514; cSyncDp37=1528918514; cSyncDp45=1528918514; cSyncDp54v2=1528918514; cSyncDp62=1528918514; cSyncDp67v2=1528918514; cSyncDp68=1528918514; cSyncDp71=1528918514; cSyncDp74=1528918514; cSyncDp75=1528918514; cSyncDp77=1528918514; cSyncDp79=1528918514; cSyncDp84=1528918514; cSyncDp88=1528918514; cSyncDp92=1528918514; cSyncDp96=1528918514; cSyncDp98=1528918514; cSyncDp101=1528918514

                                         
                                         148.251.11.72
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: close
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /match?dp=14&euid=E8ABB55FF271215B0021A8C202857307 HTTP/1.1 
Host: acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: aid=lPsLSFshcfJsg19lQ9aEAkPWwvY+mFspA3jr/piV7xtqPO39; cSyncDp7v2=1528918514; cSyncDp14=1528918514; cSyncDp17=1528918514; cSyncDp23=1528918514; cSyncDp24=1528918514; cSyncDp32=1528918514; cSyncDp35=1528918514; cSyncDp37=1528918514; cSyncDp45=1528918514; cSyncDp54v2=1528918514; cSyncDp62=1528918514; cSyncDp67v2=1528918514; cSyncDp68=1528918514; cSyncDp71=1528918514; cSyncDp74=1528918514; cSyncDp75=1528918514; cSyncDp77=1528918514; cSyncDp79=1528918514; cSyncDp84=1528918514; cSyncDp88=1528918514; cSyncDp92=1528918514; cSyncDp96=1528918514; cSyncDp98=1528918514; cSyncDp101=1528918514

                                         
                                         148.251.11.72
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: close
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.122
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Tue, 12 Jun 2018 21:55:27 GMT
Etag: "5c0fa8fe2c2388d12567fc906826d3158d49ef2f"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=28537
Expires: Thu, 14 Jun 2018 03:30:51 GMT
Date: Wed, 13 Jun 2018 19:35:14 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    3f658acc2b661e60e43e2eb59b16cab2
Sha1:   5c0fa8fe2c2388d12567fc906826d3158d49ef2f
Sha256: b47ac096be54ec686db7f3d8d2eccf917dfb1812dcd380d235591d9183644c3e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         91.135.34.91
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "589120084A93D42E7478EDFE0AE72A345EA495E0EBA38871ECF59027955DD73B"
Last-Modified: Wed, 13 Jun 2018 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=34479
Expires: Thu, 14 Jun 2018 05:09:53 GMT
Date: Wed, 13 Jun 2018 19:35:14 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    9c2bae8f1809c9457044faf31b8b4f4c
Sha1:   f253fa5a18f73c68542cb58eb190a76e0b143647
Sha256: 589120084a93d42e7478edfe0ae72a345ea495e0eba38871ecf59027955dd73b
                                        
                                            GET /sync?sspKey=7&sspUserID=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: adx.com.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: yabbi-user=5b2171f298fbcb000b8bceed

                                         
                                         94.130.217.253
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
Location: //cm.g.doubleclick.net/pixel?google_cm&google_nid=yabbi_llc&r=%2F%2Fdmg.digitaltarget.ru%2F1%2F6370%2Fi%2Fi%3Fa%3D647%26e%3D5b2171f298fbcb000b8bceed%26i%3D5543927088858064585%26r%3D%252F%252Fx01.aidata.io%252F0.gif%253Fpid%253DYABBI%2526id%253D5b2171f298fbcb000b8bceed
P3P: CP="adx.com.ru does not have a P3P policy"
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 299


--- Additional Info ---
Magic:  ASCII text
Size:   299
Md5:    73806b33a02fde134f2c6c22197c2db6
Sha1:   8148850c0b5a616959caf58c0e30bee9d9e0e51c
Sha256: 864cb67541c42b52a4da787a6315cf4bc0ec7d1d4e92619b1ec8e7b07e57f7a9
                                        
                                            GET /merge_gpsid/?sid=50&id=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: adlmerge.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         85.17.189.108
HTTP/1.1 200
Content-Type: image/gif
                                        
Server: nginx/1.12.0
Date: Wed, 13 Jun 2018 19:35:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            GET /p/cm/sape?u=480BFB94F271215B655F836C0284D643&bounced=1 HTTP/1.1 
Host: px.adhigh.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: gi_u=gWbofOfoCUc

                                         
                                         136.243.75.29
HTTP/1.1 302 Found
                                        
Server: nginx/1.12.2
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 0
Connection: keep-alive
X-Backend-id: f36-de
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache, no-store
Set-Cookie: sape_sync=ECO;Path=/;Domain=.adhigh.net;Expires=Thu, 13-Jun-2019 19:35:14 GMT;Max-Age=31536000
Location: http://acint.net/match?dp=17&euid=gWbofOfoCUc


--- Additional Info ---
                                        
                                            GET /pixel?google_cm&google_nid=yabbi_llc&r=%2F%2Fdmg.digitaltarget.ru%2F1%2F6370%2Fi%2Fi%3Fa%3D647%26e%3D5b2171f298fbcb000b8bceed%26i%3D5543927088858064585%26r%3D%252F%252Fx01.aidata.io%252F0.gif%253Fpid%253DYABBI%2526id%253D5b2171f298fbcb000b8bceed HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: IDE=AHWqTUmlqlBR0X0xzAWe2Wfgm1Lzt3g-xY_YHnF6NE7o8CXbDAqP3etQJA

                                         
                                         216.58.207.226
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: http://adx.com.ru/adx-sync?r=%2F%2Fdmg.digitaltarget.ru%2F1%2F6370%2Fi%2Fi%3Fa%3D647%26e%3D5b2171f298fbcb000b8bceed%26i%3D5543927088858064585%26r%3D%252F%252Fx01.aidata.io%252F0.gif%253Fpid%253DYABBI%2526id%253D5b2171f298fbcb000b8bceed&google_gid=CAESENTOzwFVgK3JE_kkZ7DJfHQ&google_cver=1
Date: Wed, 13 Jun 2018 19:35:14 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 493
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  HTML document text
Size:   493
Md5:    f7b69dfa702ef3f80a30ce3e84ebabb7
Sha1:   6492154ec7efe26dde3936cf7f8ac1ba241b6942
Sha256: 682b874b58c71f40dced71498ba51638fe02d8ede7cfe4ce7c5434639509117e
                                        
                                            GET /match?dp=54&euid=0083c0ba-3464-4568-9ce4-9dea97d32a40 HTTP/1.1 
Host: acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: aid=lPsLSFshcfJsg19lQ9aEAkPWwvY+mFspA3jr/piV7xtqPO39; cSyncDp7v2=1528918514; cSyncDp14=1528918514; cSyncDp17=1528918514; cSyncDp23=1528918514; cSyncDp24=1528918514; cSyncDp32=1528918514; cSyncDp35=1528918514; cSyncDp37=1528918514; cSyncDp45=1528918514; cSyncDp54v2=1528918514; cSyncDp62=1528918514; cSyncDp67v2=1528918514; cSyncDp68=1528918514; cSyncDp71=1528918514; cSyncDp74=1528918514; cSyncDp75=1528918514; cSyncDp77=1528918514; cSyncDp79=1528918514; cSyncDp84=1528918514; cSyncDp88=1528918514; cSyncDp92=1528918514; cSyncDp96=1528918514; cSyncDp98=1528918514; cSyncDp101=1528918514

                                         
                                         148.251.11.72
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: close
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /cookie/accepter?source=sape&id=480BFB94F271215B655F836C0284D643&dmp.ctest=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cDovL3d3dy5hY2ludC5uZXQvbWMvP2RwXHUwMDNkMTAiXX19 HTTP/1.1 
Host: sync.datamind.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: dmp.ctest_id=1528918514905

                                         
                                         94.130.35.164
HTTP/1.1 302
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 0
Connection: close
Location: http://sync.datamind.ru/cookie/emitter?source=google&nolog=true
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Set-Cookie: dmp.id=81c91556-bfab-4f4a-89e4-7c8cc7a31f8e;Version=1;Domain=.datamind.ru;Path=/;Max-Age=315360000;Expires=Sat, 10 Jun 2028 19:35:14 GMT


--- Additional Info ---
                                        
                                            POST /gsextendvalsha2g3r3 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 1562
Connection: keep-alive
Set-Cookie: __cfduid=d3512de11de54b7a5107230b85aa6185f1528918515; expires=Thu, 13-Jun-19 19:35:15 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Wed, 13 Jun 2018 19:10:33 GMT
Expires: Sun, 17 Jun 2018 19:10:33 GMT
Etag: "8cccb579bcd95d27ae36a1967d9e8b2adac4736d"
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 42a6ffcee22a4273-OSL


--- Additional Info ---
Magic:  data
Size:   1562
Md5:    1a2e3bdb1c9531becf35c3f8ca0d6bb5
Sha1:   8cccb579bcd95d27ae36a1967d9e8b2adac4736d
Sha256: 045aaa5fe6ca2fa8fb6aa37e5dcba79f7d3ba86fd86235973a5e4c359a919be3
                                        
                                            GET /adx-sync?r=%2F%2Fdmg.digitaltarget.ru%2F1%2F6370%2Fi%2Fi%3Fa%3D647%26e%3D5b2171f298fbcb000b8bceed%26i%3D5543927088858064585%26r%3D%252F%252Fx01.aidata.io%252F0.gif%253Fpid%253DYABBI%2526id%253D5b2171f298fbcb000b8bceed&google_gid=CAESENTOzwFVgK3JE_kkZ7DJfHQ&google_cver=1 HTTP/1.1 
Host: adx.com.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: yabbi-user=5b2171f298fbcb000b8bceed

                                         
                                         94.130.217.253
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
Location: //dmg.digitaltarget.ru/1/6370/i/i?a=647&e=5b2171f298fbcb000b8bceed&i=5543927088858064585&r=%2F%2Fx01.aidata.io%2F0.gif%3Fpid%3DYABBI%26id%3D5b2171f298fbcb000b8bceed
P3P: CP="adx.com.ru does not have a P3P policy"
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 199


--- Additional Info ---
Magic:  ASCII text
Size:   199
Md5:    1bdd71bcfdafb440b39e44114ed41512
Sha1:   09fcf662d0be5bcd1037ec294bb40c89bd3e288e
Sha256: c66b785723bcf7b9dafe4edb3584e197ec8d4ddf6248d3897a5900e75953ec2f
                                        
                                            GET /csync/?t=p&ep=281184&extuid=480BFB94F271215B655F836C0284D643&redir=http%3A%2F%2Facint.net%2Fmatch%3Fdp%3D24%26euid%3D%7Buid%7D HTTP/1.1 
Host: sync.vertamedia.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         88.208.52.65
HTTP/1.1 302 Found
                                        
Server: VertaMedia 1.0
Date: Wed, 13 Jun 2018 19:35:14 GMT
Content-Length: 0
Location: http://acint.net/match?dp=24&euid=a7095d9d8cfa7ef4
Set-Cookie: vmuid=a7095d9d8cfa7ef4; expires=Tue, 14 Aug 2018 19:35:14 GMT; domain=.vertamedia.com; path=/ p281184=480BFB94F271215B655F836C0284D643; expires=Tue, 14 Aug 2018 19:35:14 GMT; domain=.vertamedia.com; path=/


--- Additional Info ---
                                        
                                            GET /image?source=sape&id=480BFB94F271215B655F836C0284D643&session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cDovL3d3dy5hY2ludC5uZXQvbWMvP2RwXHUwMDNkMTAiXX19 HTTP/1.1 
Host: sync.upravel.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: session_tptc=1528918514908

                                         
                                         78.46.16.13
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 0
Connection: close
Location: http://sync.upravel.com/google/sync
Set-Cookie: user_id=dd54c259-4b75-4c33-9a49-9ffcab8bcb2c;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"


--- Additional Info ---
                                        
                                            GET /adcm.js HTTP/1.1 
Host: tag.digitaltarget.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         185.15.175.135
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.2.7
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 2823
Last-Modified: Fri, 08 Jun 2018 11:16:48 GMT
Connection: keep-alive
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   2823
Md5:    99c68983abec874537f28f3df61175ad
Sha1:   aff3823a4877e084c73908a38a7ceb17717f858c
Sha256: d1fb5e6d293ac467085b8b9ef1e85fab8f3b17bddd5c4a1f837f1a36f34079c4
                                        
                                            GET /match?dp=17&euid=gWbofOfoCUc HTTP/1.1 
Host: acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: aid=lPsLSFshcfJsg19lQ9aEAkPWwvY+mFspA3jr/piV7xtqPO39; cSyncDp7v2=1528918514; cSyncDp14=1528918514; cSyncDp17=1528918514; cSyncDp23=1528918514; cSyncDp24=1528918514; cSyncDp32=1528918514; cSyncDp35=1528918514; cSyncDp37=1528918514; cSyncDp45=1528918514; cSyncDp54v2=1528918514; cSyncDp62=1528918514; cSyncDp67v2=1528918514; cSyncDp68=1528918514; cSyncDp71=1528918514; cSyncDp74=1528918514; cSyncDp75=1528918514; cSyncDp77=1528918514; cSyncDp79=1528918514; cSyncDp84=1528918514; cSyncDp88=1528918514; cSyncDp92=1528918514; cSyncDp96=1528918514; cSyncDp98=1528918514; cSyncDp101=1528918514

                                         
                                         148.251.11.72
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: close
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            POST / HTTP/1.1 
Host: tn.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.52.27.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.12.2
Content-Length: 1451
Content-Transfer-Encoding: binary
Cache-Control: max-age=475383, public, no-transform, must-revalidate
Last-Modified: Tue, 12 Jun 2018 07:37:47 GMT
Expires: Tue, 19 Jun 2018 07:37:47 GMT
Date: Wed, 13 Jun 2018 19:35:15 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1451
Md5:    ffa3c721f117169f99319ff39ffccb65
Sha1:   009fd4a0b73a0096894367a58d84963a2d257622
Sha256: d369278a94072c8f7fc26493b3763278f2b6551cc1e3319584ec0cc5e2c76e14
                                        
                                            GET /cookie/emitter?source=google&nolog=true HTTP/1.1 
Host: sync.datamind.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: dmp.ctest_id=1528918514905; dmp.id=81c91556-bfab-4f4a-89e4-7c8cc7a31f8e

                                         
                                         94.130.35.164
HTTP/1.1 302
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 0
Connection: close
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Location: https://cm.g.doubleclick.net/pixel?google_nid=tinkoff_bank_wdatamind&google_cm&google_hm=gckVVr-rT0qJ5HyMx6Mfjg
Set-Cookie: dmp.id=81c91556-bfab-4f4a-89e4-7c8cc7a31f8e;Version=1;Domain=.datamind.ru;Path=/;Max-Age=315360000;Expires=Sat, 10 Jun 2028 19:35:15 GMT


--- Additional Info ---
                                        
                                            GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: sync.1dmp.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         136.243.6.169
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 0
Connection: keep-alive
Expires: 0
Cache-Control: private, no-cache, no-store, no-cache=Set-Cookie, proxy-revalidate
Set-Cookie: uid=e54cdd11-6f40-11e8-b3c6-448a5bd88743; Version=1; Path=/; Domain=.1dmp.io; Expires=Sat, 10 Jun 2028 19:35:15 GMT
Location: /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=480BFB94F271215B655F836C0284D643&cs=1


--- Additional Info ---
                                        
                                            GET /1/6370/i/i?a=647&e=5b2171f298fbcb000b8bceed&i=5543927088858064585&r=%2F%2Fx01.aidata.io%2F0.gif%3Fpid%3DYABBI%26id%3D5b2171f298fbcb000b8bceed HTTP/1.1 
Host: dmg.digitaltarget.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         185.15.175.131
HTTP/1.1 302 Found
                                        
Server: nginx/1.6.2
Date: Wed, 13 Jun 2018 18:37:50 GMT
Content-Length: 0
P3P: policyref="http://dmg.digitaltarget.ru/p3p.xml", CP="NON NID PSAa PSDa OUR BUS COM NAV DEM STA PRE"
Location: /1/6370/i/i?a=647&e=5b2171f298fbcb000b8bceed&i=5543927088858064585&r=%2F%2Fx01.aidata.io%2F0.gif%3Fpid%3DYABBI%26id%3D5b2171f298fbcb000b8bceed&q=scc
Set-Cookie: visessid=1b1132e2_1628c4c6de7_0000000003888a94; Path=/; Domain=dmg.digitaltarget.ru viuserid=7tdlDQQ5o5lB55l5Tyv_; Max-Age=93312000; Expires=Fri, 28 May 2021 19:35:15 GMT; Path=/; Domain=dmg.digitaltarget.ru


--- Additional Info ---
                                        
                                            GET /processor.js?i=261786675225039 HTTP/1.1 
Host: tag.digitaltarget.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         185.15.175.135
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.2.7
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 9082
Last-Modified: Fri, 08 Jun 2018 11:16:48 GMT
Connection: keep-alive
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines, with no line terminators
Size:   9082
Md5:    ce62b5683f97d4d04fee3f5d3f0be996
Sha1:   d01e363fea135936de884da29c484f3fc2ec74ff
Sha256: 32eaf2cf827d2432ccc9585a75d5d51ff583c720e12b343417aca7c5657a0b94
                                        
                                            GET /match?dp=24&euid=a7095d9d8cfa7ef4 HTTP/1.1 
Host: acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: aid=lPsLSFshcfJsg19lQ9aEAkPWwvY+mFspA3jr/piV7xtqPO39; cSyncDp7v2=1528918514; cSyncDp14=1528918514; cSyncDp17=1528918514; cSyncDp23=1528918514; cSyncDp24=1528918514; cSyncDp32=1528918514; cSyncDp35=1528918514; cSyncDp37=1528918514; cSyncDp45=1528918514; cSyncDp54v2=1528918514; cSyncDp62=1528918514; cSyncDp67v2=1528918514; cSyncDp68=1528918514; cSyncDp71=1528918514; cSyncDp74=1528918514; cSyncDp75=1528918514; cSyncDp77=1528918514; cSyncDp79=1528918514; cSyncDp84=1528918514; cSyncDp88=1528918514; cSyncDp92=1528918514; cSyncDp96=1528918514; cSyncDp98=1528918514; cSyncDp101=1528918514

                                         
                                         148.251.11.72
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: close
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /1/6370/i/i?a=647&e=5b2171f298fbcb000b8bceed&i=5543927088858064585&r=%2F%2Fx01.aidata.io%2F0.gif%3Fpid%3DYABBI%26id%3D5b2171f298fbcb000b8bceed&q=scc HTTP/1.1 
Host: dmg.digitaltarget.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: visessid=1b1132e2_1628c4c6de7_0000000003888a94; viuserid=7tdlDQQ5o5lB55l5Tyv_

                                         
                                         185.15.175.131
HTTP/1.1 302 Found
                                        
Server: nginx/1.6.2
Date: Wed, 13 Jun 2018 18:37:50 GMT
Content-Length: 0
Location: //x01.aidata.io/0.gif?pid=YABBI&id=5b2171f298fbcb000b8bceed
P3P: policyref="http://dmg.digitaltarget.ru/p3p.xml", CP="NON NID PSAa PSDa OUR BUS COM NAV DEM STA PRE"
Set-Cookie: viuserid=7tdlDQQ5o5lB55l5Tyv_; Max-Age=93312000; Expires=Fri, 28 May 2021 19:35:15 GMT; Path=/; Domain=dmg.digitaltarget.ru


--- Additional Info ---
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 13 Jun 2018 19:35:15 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    de323b14e46f5db34962d90fe4b7e8d8
Sha1:   1733cbb8b675232edf41287dba54d2a8cd647886
Sha256: 3e40e1db5434d2312cb969fb0c7f9482e74c9183665867b87109713635c6a575
                                        
                                            GET /google/sync HTTP/1.1 
Host: sync.upravel.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: session_tptc=1528918514908; user_id=dd54c259-4b75-4c33-9a49-9ffcab8bcb2c

                                         
                                         78.46.16.13
HTTP/1.1 302 Found
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 0
Connection: close
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Set-Cookie: user_id=dd54c259-4b75-4c33-9a49-9ffcab8bcb2c;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
Location: https://cm.g.doubleclick.net/pixel?google_nid=mgcom&google_cm&google_hm=3VTCWUt1TDOaSZ_8q4vLLA


--- Additional Info ---
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         216.58.211.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 13 Jun 2018 19:35:15 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /1/1093/i/i?i=732235239839846.951974627076758&a=77&e=480BFB94F271215B655F836C0284D643&c=ss:77.up:480BFB94F271215B655F836C0284D643.sync:up.xdua:dui30Kt5%3FPDv*)oAd%5D%3E*ShfR.xps:xpspQliD%3DheM%3C%7Dr*mMH)f%24h%26X.dn:acint__net.tg:.cr:http%3A%2F%2Fwww.ohsni.com%2F HTTP/1.1 
Host: dmg.digitaltarget.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: visessid=1b1132e2_1628c4c6de7_0000000003888a94; viuserid=7tdlDQQ5o5lB55l5Tyv_

                                         
                                         185.15.175.131
HTTP/1.1 204 No Content
                                        
Server: nginx/1.6.2
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 0
P3P: policyref="http://dmg.digitaltarget.ru/p3p.xml", CP="NON NID PSAa PSDa OUR BUS COM NAV DEM STA PRE"
Set-Cookie: viuserid=7tdlDQQ5o5lB55l5Tyv_; Max-Age=93312000; Expires=Fri, 28 May 2021 19:35:15 GMT; Path=/; Domain=dmg.digitaltarget.ru


--- Additional Info ---
                                        
                                            GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=480BFB94F271215B655F836C0284D643&cs=1 HTTP/1.1 
Host: sync.1dmp.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: uid=e54cdd11-6f40-11e8-b3c6-448a5bd88743

                                         
                                         136.243.6.169
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 35
Connection: keep-alive
Expires: 0
Cache-Control: private, no-cache, no-store, no-cache=Set-Cookie, proxy-revalidate


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /partners/sprcs?uid=480BFB94F271215B655F836C0284D643 HTTP/1.1 
Host: relap.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         185.99.9.117
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Content-Length: 43
Connection: keep-alive
Pragma: no-cache
Set-Cookie: unique=mQZbgwpn; expires=Sat, 10 Jun 2028 19:35:15 GMT; domain=relap.io; path=/; secure; HttpOnly suid=afc8ba6c59f9b53eaab33f25d9acbedae9c7af59--70f2e89b94fd521b845b8448e249e51f0dc9f1c7; domain=relap.io; path=/; secure; HttpOnly hllc=1; expires=Thu, 14 Jun 2018 19:35:15 GMT; domain=relap.io; path=/; secure; HttpOnly rlpsprcs=eyJ0cyI6MTUyODkxODUxNSwidWlkIjoiNDgwQkZCOTRGMjcxMjE1QjY1NUY4MzZDMDI4NEQ2NDMifQ--49d2e86ba9da06d6fb3806c432823c59a9611bbc; expires=Thu, 13 Jun 2019 19:35:15 GMT; domain=relap.io; path=/; secure; HttpOnly
Date: Wed, 13 Jun 2018 19:35:15 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Strict-Transport-Security: max-age=5184000; includeSubdomains;
Public-Key-Pins: pin-sha256="zrlhGvqKdTwhZXT7o4euzUObogdWdXYWM3wDES66k94="; pin-sha256="spG5gvmcKQU/gsG3RS2F+HNDhJd/1viOj04CbPwrilw="; max-age=5184000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            GET /pixel?google_nid=tinkoff_bank_wdatamind&google_cm&google_hm=gckVVr-rT0qJ5HyMx6Mfjg HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: IDE=AHWqTUmlqlBR0X0xzAWe2Wfgm1Lzt3g-xY_YHnF6NE7o8CXbDAqP3etQJA

                                         
                                         216.58.207.226
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.datamind.ru/cookie/accepter?source=google&google_gid=CAESEKCFxT10x5ANoqlTLki9lDk&google_cver=1
Date: Wed, 13 Jun 2018 19:35:15 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 312
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="43,42,41,39,35",quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  HTML document text
Size:   312
Md5:    f0d2feec6e69f59e9329c43a7d5bb264
Sha1:   a3f59daaa78a1f3502ef79d7e7a977917ae043ad
Sha256: 58a27b72faee074132fcad68e84b2c3be9b49b474451abd83360a22de708835a
                                        
                                            GET /0.gif?pid=YABBI&id=5b2171f298fbcb000b8bceed HTTP/1.1 
Host: x01.aidata.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         144.76.85.254
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 0
Connection: keep-alive
Location: http://x01.aidata.io/0.gif?pid=YABBI&id=5b2171f298fbcb000b8bceed&bounce=1
Expires: Wed, 13 Jun 2018 19:35:14 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Wed, 13 Jun 2018 19:35:14 GMT
Set-Cookie: __upin=gkopJVdJ8Ty46AOM84Zo2Q;domain=.aidata.io;path=/;max-age=63072000 __upints=1528918515;domain=.aidata.io;path=/;max-age=63072000
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'


--- Additional Info ---
                                        
                                            GET /match/?dp=96&euid=AU00BD4DAAA76 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: aid=lPsLSFshcfJsg19lQ9aEAkPWwvY+mFspA3jr/piV7xtqPO39; cSyncDp7v2=1528918514; cSyncDp14=1528918514; cSyncDp17=1528918514; cSyncDp23=1528918514; cSyncDp24=1528918514; cSyncDp32=1528918514; cSyncDp35=1528918514; cSyncDp37=1528918514; cSyncDp45=1528918514; cSyncDp54v2=1528918514; cSyncDp62=1528918514; cSyncDp67v2=1528918514; cSyncDp68=1528918514; cSyncDp71=1528918514; cSyncDp74=1528918514; cSyncDp75=1528918514; cSyncDp77=1528918514; cSyncDp79=1528918514; cSyncDp84=1528918514; cSyncDp88=1528918514; cSyncDp92=1528918514; cSyncDp96=1528918514; cSyncDp98=1528918514; cSyncDp101=1528918514

                                         
                                         148.251.11.72
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: close
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /pixel?google_nid=mgcom&google_cm&google_hm=3VTCWUt1TDOaSZ_8q4vLLA HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: IDE=AHWqTUmlqlBR0X0xzAWe2Wfgm1Lzt3g-xY_YHnF6NE7o8CXbDAqP3etQJA

                                         
                                         216.58.207.226
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.upravel.com/image?source=google&google_gid=CAESEOQNmo4JOaQzOilQArrlgBE&google_cver=1
Date: Wed, 13 Jun 2018 19:35:15 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 302
X-XSS-Protection: 1; mode=block
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="43,42,41,39,35",quic=":443"; ma=2592000; v="43,42,41,39,35"


--- Additional Info ---
Magic:  HTML document text
Size:   302
Md5:    2f50a56db4c2fa80f3fd489b479e6da0
Sha1:   b78fac9ba344eb89f7dbc96f9dd9b3b238bd513c
Sha256: 45d9cdc3729a7a09fbc1d981ed18630979b7f45b368a00d1a10f92e5fbde1e27
                                        
                                            GET /0.gif?pid=YABBI&id=5b2171f298fbcb000b8bceed&bounce=1 HTTP/1.1 
Host: x01.aidata.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: __upin=gkopJVdJ8Ty46AOM84Zo2Q; __upints=1528918515

                                         
                                         144.76.85.254
HTTP/1.1 204 No Content
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:15 GMT
Connection: keep-alive
Expires: Wed, 13 Jun 2018 19:35:14 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Wed, 13 Jun 2018 19:35:14 GMT
Set-Cookie: __upin=gkopJVdJ8Ty46AOM84Zo2Q;domain=.aidata.io;path=/;max-age=63072000 __upints=1528918515;domain=.aidata.io;path=/;max-age=63072000
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 13 Jun 2018 19:35:15 GMT
Server: Apache
Last-Modified: Sun, 10 Jun 2018 09:26:03 GMT
Expires: Sun, 17 Jun 2018 09:26:03 GMT
Etag: EF2C834E409CC07ADA6090392A9FF6524BE766D0
Cache-Control: max-age=308447,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp13
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    cd0569aa0e017bc79fe39f929353e5e0
Sha1:   ef2c834e409cc07ada6090392a9ff6524be766d0
Sha256: b330d4311560380db6de671a59dacbbc56f1f7449a37b0c5bfad75f36e194e61
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 13 Jun 2018 19:35:15 GMT
Server: Apache
Last-Modified: Tue, 12 Jun 2018 01:16:20 GMT
Expires: Tue, 19 Jun 2018 01:16:20 GMT
Etag: 990787E64B5D1F96C72B2061E3F0144A07F045D2
Cache-Control: max-age=451864,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp32
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    c8ecef5a7181d8d7c39d8ae06ebb7c04
Sha1:   990787e64b5d1f96c72b2061e3f0144a07f045d2
Sha256: 87012060245a4444849459a31b945668516ba7dbfbd16396f7ea8ca71136f671
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 13 Jun 2018 19:35:15 GMT
Server: Apache
Last-Modified: Tue, 12 Jun 2018 01:16:20 GMT
Expires: Tue, 19 Jun 2018 01:16:20 GMT
Etag: AE4B185B2ECC39CC7C8F4124E5AEB796F5ECC58F
Cache-Control: max-age=451864,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp32
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    e21c39af1710d2a6de021715d268f796
Sha1:   ae4b185b2ecc39cc7c8f4124e5aeb796f5ecc58f
Sha256: eee7a074c25f2f892d51e619013f11662e8783769f8b1573b1dca114d77632f5
                                        
                                            GET /image?source=google&google_gid=CAESEOQNmo4JOaQzOilQArrlgBE&google_cver=1 HTTP/1.1 
Host: sync.upravel.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: session_tptc=1528918514908; user_id=dd54c259-4b75-4c33-9a49-9ffcab8bcb2c

                                         
                                         78.46.16.13
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 0
Connection: close
Location: https://sync.upravel.com/aidata/sync
Set-Cookie: user_id=dd54c259-4b75-4c33-9a49-9ffcab8bcb2c;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"


--- Additional Info ---
                                        
                                            GET /aidata/sync HTTP/1.1 
Host: sync.upravel.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: session_tptc=1528918514908; user_id=dd54c259-4b75-4c33-9a49-9ffcab8bcb2c

                                         
                                         78.46.16.13
HTTP/1.1 302 Found
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:15 GMT
Content-Length: 0
Connection: close
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Set-Cookie: user_id=dd54c259-4b75-4c33-9a49-9ffcab8bcb2c;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
Location: https://x01.aidata.io/0.gif?pid=MGCOM&id=dd54c259-4b75-4c33-9a49-9ffcab8bcb2c&back=


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 13 Jun 2018 19:35:16 GMT
Server: Apache
Last-Modified: Wed, 13 Jun 2018 03:41:49 GMT
Expires: Wed, 20 Jun 2018 03:41:49 GMT
Etag: 6F6926137955F19F6908CD3EF20CCAFB49CDA3C5
Cache-Control: max-age=546992,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp13
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    07a858b27097ffa302ce225c79be83c1
Sha1:   6f6926137955f19f6908cd3ef20ccafb49cda3c5
Sha256: 3c02a39e29b214dd25910e23dd548444e8b9d43577a916d3d703ff8c77c558e4
                                        
                                            GET /0.gif?pid=MGCOM&id=dd54c259-4b75-4c33-9a49-9ffcab8bcb2c&back= HTTP/1.1 
Host: x01.aidata.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: __upin=gkopJVdJ8Ty46AOM84Zo2Q; __upints=1528918515

                                         
                                         144.76.85.254
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:16 GMT
Content-Length: 0
Connection: keep-alive
Location: https://counter.yadro.ru/id-redir/aidata.gif?back=STOP
Set-Cookie: livin=1;path=/;expires=Wed, 20 Jun 2018 19:35:16 GMT;max-age=604800 __upin=gkopJVdJ8Ty46AOM84Zo2Q;domain=.aidata.io;path=/;max-age=63072000 __upints=1528918515;domain=.aidata.io;path=/;max-age=63072000
Expires: Wed, 13 Jun 2018 19:35:15 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Wed, 13 Jun 2018 19:35:15 GMT
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 13 Jun 2018 19:35:16 GMT
Server: Apache
Last-Modified: Wed, 13 Jun 2018 07:15:12 GMT
Expires: Wed, 20 Jun 2018 07:15:12 GMT
Etag: AEA4FF78CB2EE678A39CA1230D79EBC3772A5BFD
Cache-Control: max-age=559795,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp32
Content-Length: 279
Connection: close


--- Additional Info ---
Magic:  data
Size:   279
Md5:    b44fa9bee189018bac067bb1e87fe8e5
Sha1:   aea4ff78cb2ee678a39ca1230d79ebc3772a5bfd
Sha256: 658225eeed01bbe3b3f3b4c943b4509ad84632078956da8c0d10e2d843d6627c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 13 Jun 2018 19:35:16 GMT
Server: Apache
Last-Modified: Tue, 12 Jun 2018 01:16:20 GMT
Expires: Tue, 19 Jun 2018 01:16:20 GMT
Etag: 643383629DA7131E1C758259C1E170A26EC10D21
Cache-Control: max-age=451863,public,no-transform,must-revalidate
X-OCSP-Responder-ID: rmdccaocsp32
Content-Length: 312
Connection: close


--- Additional Info ---
Magic:  data
Size:   312
Md5:    1df06bfc161c5d53c74f21c8d366612b
Sha1:   643383629da7131e1c758259c1e170a26ec10d21
Sha256: df4d64fac2f2540f83e5b51cf6333fcb7a2a46556e88bfd97c984b89cf1dacb4
                                        
                                            GET /id-redir/aidata.gif?back=STOP HTTP/1.1 
Host: counter.yadro.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         88.212.201.205
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx/1.11.1
Date: Wed, 13 Jun 2018 19:35:16 GMT
Content-Length: 324
Connection: keep-alive
Location: https://x01.aidata.io/0.gif?pid=LIVE&id=&back=STOP


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   324
Md5:    6fc8142b24db2a4b21bf9e0cad7f756d
Sha1:   f821c4f7ded813fc211dae75fb25bc73f440c407
Sha256: 422907404ceb6f4256f7ef3e7d5a963d307217585be72078e19ddad6a9922af5
                                        
                                            GET /0.gif?pid=LIVE&id=&back=STOP HTTP/1.1 
Host: x01.aidata.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: __upin=gkopJVdJ8Ty46AOM84Zo2Q; __upints=1528918515; livin=1

                                         
                                         144.76.85.254
HTTP/1.1 204 No Content
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:16 GMT
Connection: keep-alive
Expires: Wed, 13 Jun 2018 19:35:15 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Wed, 13 Jun 2018 19:35:15 GMT
Set-Cookie: __upin=gkopJVdJ8Ty46AOM84Zo2Q;domain=.aidata.io;path=/;max-age=63072000 __upints=1528918515;domain=.aidata.io;path=/;max-age=63072000
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'


--- Additional Info ---
                                        
                                            GET /ping/?v=0.1.1&uid=b35e230d-e27d-4d2d-b5c9-a13e59b394fc&dp=10&tz=%2B02%3A00&nc=93683476&dT=2018-06-13T21%3A35%3A17.628 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.ohsni.com/
Cookie: aid=lPsLSFshcfJsg19lQ9aEAkPWwvY+mFspA3jr/piV7xtqPO39; cSyncDp7v2=1528918514; cSyncDp14=1528918514; cSyncDp17=1528918514; cSyncDp23=1528918514; cSyncDp24=1528918514; cSyncDp32=1528918514; cSyncDp35=1528918514; cSyncDp37=1528918514; cSyncDp45=1528918514; cSyncDp54v2=1528918514; cSyncDp62=1528918514; cSyncDp67v2=1528918514; cSyncDp68=1528918514; cSyncDp71=1528918514; cSyncDp74=1528918514; cSyncDp75=1528918514; cSyncDp77=1528918514; cSyncDp79=1528918514; cSyncDp84=1528918514; cSyncDp88=1528918514; cSyncDp92=1528918514; cSyncDp96=1528918514; cSyncDp98=1528918514; cSyncDp101=1528918514; _a_d3t6sf=dui30Kt5?PDv*)oAd]>*ShfR

                                         
                                         148.251.11.72
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 13 Jun 2018 19:35:17 GMT
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: keep-alive
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda