Overview

URL mmnt.ru
IP109.63.168.157
ASNAS12714 Net By Net Holding LLC
Location Russian Federation
Report completed2017-08-09 10:54:37 CEST
StatusLoading report..
urlQuery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2017-08-09 2 www.acint.net/aci.js Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

No other reports on IP: 109.63.168.157


Last 10 reports on ASN: AS12714 Net By Net Holding LLC

Date UQ / IDS / BL URL IP
2017-10-19 08:55:48 +0200
0 - 0 - 0 www.mmnt.ru 176.192.170.214
2017-10-11 15:33:02 +0200
0 - 0 - 0 www.mmnt.net/db/0/8/ftp.minerva.com.au/ 176.192.170.214
2017-10-03 15:55:52 +0200
0 - 0 - 0 renault-catalog.ru/ 80.68.67.7
2017-10-03 12:19:54 +0200
0 - 0 - 1 ftp.m1089.net/newd2event/downloads/hacks/maph (...) 213.141.155.134
2017-09-21 12:15:28 +0200
0 - 0 - 1 www.farcry.ru/ 87.236.30.12
2017-09-17 22:29:44 +0200
0 - 1 - 0 corsair626.no-ip.org/ 79.120.85.102
2017-09-07 00:28:03 +0200
0 - 0 - 8 transfiles.ru/getfiles/209676 194.28.219.4
2017-09-06 21:13:48 +0200
0 - 0 - 8 transfiles.ru/hceth 194.28.219.4
2017-09-05 14:45:48 +0200
0 - 0 - 1 camelot.userlan.ru/main/films/ 89.20.149.70
2017-09-04 15:28:40 +0200
0 - 2 - 0 phpforum.su/txt/index.php/t16413.html 212.48.153.193

Last 1 reports on domain: .

Date UQ / IDS / BL URL IP
2017-10-19 08:55:48 +0200
0 - 0 - 0 www.mmnt.ru 176.192.170.214


JavaScript

Executed Scripts (14)


Executed Evals (0)


Executed Writes (1)

#1 JavaScript::Write (size: 301, repeated: 1) - SHA256: 3ea61dd1c4dc49d630ebda4b911d510182fc582d3d1a4ae1810eae7a057e5418

                                        < a href = 'http://www.liveinternet.ru/click'
target = _blank > < img src = 'http://counter.yadro.ru/hit?t14.1;r;s1176*885*24;uhttp%3A//www.mmnt.ru/;0.04864733755481898'
alt = ''
title = 'LiveInternet: ?>:070=> G8A;> ?@>A<>B@>2 70 24 G0A0, ?>A5B8B5;59 70 24 G0A0 8 70 A53>4=O'
border = '0'
width = '88'
height = '31' > < /a>
                                    


HTTP Transactions (70)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: mmnt.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         46.188.23.8
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: nginx/1.7.6
Date: Wed, 09 Aug 2017 08:54:03 GMT
Content-Length: 160
Connection: keep-alive
Keep-Alive: timeout=20
Location: http://www.mmnt.ru/


--- Additional Info ---
Magic:  HTML document text
Size:   160
Md5:    652d6221fa67e9d2d6af79b794f9feaa
Sha1:   1c7e0a36cb745d50d1142288d3ffa5e7e497401d
Sha256: 91f18f74a568f50ad7205f788e62c394a85e228ab788865e2d3e16dd6566ee82
                                        
                                            GET / HTTP/1.1 
Host: www.mmnt.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         46.188.23.8
HTTP/1.1 200 OK
Content-Type: text/html; charset=windows-1251
                                        
Server: nginx/1.7.6
Date: Wed, 09 Aug 2017 08:54:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4413
Md5:    7c846edcb3f4788650ec3d5c9c045a92
Sha1:   f3bf7fcdba60a82ada7b9ca1f95b001d91dfc847
Sha256: a52428a0ad57413160587933b6b7f03477753251a4fae1f5d6edaaba412be4b4
                                        
                                            GET /top100.cnt?960972 HTTP/1.1 
Host: counter.rambler.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/

                                         
                                         81.19.88.108
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.4.4
Date: Wed, 09 Aug 2017 08:54:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Pragma: no-cache
Cache-Control: no-cache
P3P: policyref="/w3c/p3p.xml", CP="NON ADM DEV TAI PSA PSD IVA OUR IND UNI COM NAV INT"
Set-Cookie: ruid=zIoEBqzNiln0gwAAARQcag==; path=/; domain=.rambler.ru; expires=Sat, 07-Aug-27 08:54:04 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   49
Md5:    56398e76be6355ad5999b262208a17c9
Sha1:   a1fdee122b95748d81cee426d717c05b5174fe96
Sha256: 2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
                                        
                                            GET /top100.gif HTTP/1.1 
Host: www.mmnt.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/

                                         
                                         46.188.23.8
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.7.6
Date: Wed, 09 Aug 2017 08:54:04 GMT
Content-Length: 939
Connection: keep-alive
Keep-Alive: timeout=20
Last-Modified: Thu, 29 Mar 2001 08:24:13 GMT
Etag: "3ac2f12d-3ab"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 88 x 31
Size:   939
Md5:    d6fa18366030d4590f797dbd3ac11f98
Sha1:   2337af1fd3588b4d47ffdb1e43bf37ca97f20fae
Sha256: 34eb037aca76eb2515a191c6a6543c65a9a37e30253d35d7122c8e48e9bef880
                                        
                                            GET /system/context.js HTTP/1.1 
Host: an.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/

                                         
                                         93.158.134.90
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.8.1
Date: Wed, 09 Aug 2017 08:54:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 04 Aug 2017 17:55:50 GMT
Etag: W/"5984b526-20bf"
Expires: Wed, 09 Aug 2017 09:54:04 GMT
Cache-Control: max-age=3600, public
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2795
Md5:    26f5a22746d236a88d49fbcf0f03f873
Sha1:   1a5f0a019e2dbe4eda55bc8ab5788e895c56735d
Sha256: d2a376cc0bcbaea8f63944d344b5888deb0d94e4958ac68e3a5efacad2ee5681
                                        
                                            GET /aci.js HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/

                                         
                                         144.76.152.140
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:04 GMT
Content-Length: 5219
Last-Modified: Wed, 01 Feb 2017 16:58:27 GMT
Connection: keep-alive
Etag: "589213b3-1463"
Content-Encoding: gzip
Expires: Wed, 09 Aug 2017 20:54:04 GMT
Cache-Control: max-age=43200


--- Additional Info ---
Magic:  gzip compressed data, from Unix, max compression
Size:   5219
Md5:    4126f771a21a959f3dc598b7360ee352
Sha1:   d84aaf4c7d9c39e793503d280fd3deed85b4023c
Sha256: 28203a694f6506752ea7c251b8449c10c01e9f37711f82d05c659ddbc324a59e

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            GET /hit?t14.1;r;s1176*885*24;uhttp%3A//www.mmnt.ru/;0.04864733755481898 HTTP/1.1 
Host: counter.yadro.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/

                                         
                                         88.212.196.105
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Date: Wed, 09 Aug 2017 08:54:04 GMT
Server: 0W/0.8c
Location: http://counter.yadro.ru/hit?q;t14.1;r;s1176*885*24;uhttp%3A//www.mmnt.ru/;0.04864733755481898
Content-Length: 32
Expires: Mon, 08 Aug 2016 21:00:00 GMT
Pragma: no-cache
Cache-Control: no-cache
P3P: policyref="/w3c/p3p.xml", CP="UNI"
Set-Cookie: FTID=1PYisi1C7jfc1PYisi004CAD; path=/; expires=Wed, 08 Aug 2018 21:00:00 GMT; domain=.yadro.ru


--- Additional Info ---
Magic:  HTML document text
Size:   32
Md5:    3e9c09a8c5a87f266e047a596f48578c
Sha1:   07d7b1940b7e3f9a3db43197458f9b8ef18a6bce
Sha256: 57fad7ae62012ff4a38ecb6045ac6e8e3a070a33bbd033b21ab6cad3566d9254
                                        
                                            GET /r?dm=mmnt.ru HTTP/1.1 
Host: rp.mmnt.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/

                                         
                                         109.63.168.157
HTTP/1.1 302 Moved
                                        
Server: nginx/1.7.6
Date: Wed, 09 Aug 2017 08:54:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Pragma: no-cache
Cache-Control: no-cache
Location: /i/969612b9674a747583c72404dc2b77cb.png


--- Additional Info ---
                                        
                                            GET /hit?q;t14.1;r;s1176*885*24;uhttp%3A//www.mmnt.ru/;0.04864733755481898 HTTP/1.1 
Host: counter.yadro.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/
Cookie: FTID=1PYisi1C7jfc1PYisi004CAD

                                         
                                         88.212.196.105
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Wed, 09 Aug 2017 08:54:04 GMT
Server: 0W/0.8c
Connection: Close
Content-Length: 234
Expires: Mon, 08 Aug 2016 21:00:00 GMT
Pragma: no-cache
Cache-Control: no-cache
P3P: policyref="/w3c/p3p.xml", CP="UNI"
Set-Cookie: VID=0Uf8ev1ZMQvc1PYisi004CCq; path=/; expires=Wed, 08 Aug 2018 21:00:00 GMT; domain=.yadro.ru


--- Additional Info ---
Magic:  GIF image data, version 89a, 88 x 31
Size:   234
Md5:    d3974748a3a9f2259ba8eb51672f42ad
Sha1:   b4ae836c952c3bc5fc06524423ea2d90633c10ba
Sha256: 282bc6c83b6713140c4bbe746b7a4f175db5a8579075c6a8adb166afbe389448
                                        
                                            GET /hit/?v=0.0.20&uid=ebc4dc6a-7bea-45bf-9f6d-322a516db4d9&dp=10&tz=%2B02%3A00&nc=02791686&u=http%3A%2F%2Fwww.mmnt.ru%2F&r=&rs=1176x885&t=%D0%9C%D0%B0%D0%BC%D0%BE%D0%BD%D1%82.%20%D0%9F%D0%BE%D0%B8%D1%81%D0%BA%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D0%B8%D1%81%D1%82%D0%B5%D0%BC%D0%B0.%20%D0%9F%D0%BE%D0%B8%D1%81%D0%BA%20%D0%B2%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%D0%B5!%20%D0%93%D0%BB%D0%BE%D0%B1%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D0%B8%D1%81%D0%BA%20%D1%84%D0%B0%D0%B9%D0%BB%D0%BE%D0%B2%20(ftp)&oE=1&oP=1&dT=2017-08-09T10%3A54%3A04.773 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/

                                         
                                         144.76.152.140
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:04 GMT
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: keep-alive
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: aid=kEyYjFmKzay5QlLbDXJ+AsHVzIwRUYA4V/U+yJ9W5eA9OVSA; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /mc/?dp=10 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/

                                         
                                         144.76.152.140
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cSyncDp7v2=1502268844; expires=Fri, 08-Sep-17 08:54:04 GMT; path=/; domain=.acint.net cSyncDp14=1502268844; expires=Fri, 08-Sep-17 08:54:04 GMT; path=/; domain=.acint.net cSyncDp32=1502268844; expires=Fri, 08-Sep-17 08:54:04 GMT; path=/; domain=.acint.net cSyncDp37=1502268844; expires=Fri, 08-Sep-17 08:54:04 GMT; path=/; domain=.acint.net cSyncDp45=1502268844; expires=Fri, 08-Sep-17 08:54:04 GMT; path=/; domain=.acint.net cSyncDp54v2=1502268844; expires=Fri, 08-Sep-17 08:54:04 GMT; path=/; domain=.acint.net cSyncDp62=1502268844; expires=Fri, 08-Sep-17 08:54:04 GMT; path=/; domain=.acint.net cSyncDp67v2=1502268844; expires=Fri, 08-Sep-17 08:54:04 GMT; path=/; domain=.acint.net cSyncDp68=1502268844; expires=Fri, 08-Sep-17 08:54:04 GMT; path=/; domain=.acint.net cSyncDp71=1502268844; expires=Fri, 08-Sep-17 08:54:04 GMT; path=/; domain=.acint.net cSyncDp72=1502268844; expires=Fri, 08-Sep-17 08:54:04 GMT; path=/; domain=.acint.net cSyncDp74=1502268844; expires=Fri, 08-Sep-17 08:54:04 GMT; path=/; domain=.acint.net cSyncDp79=1502268844; expires=Fri, 08-Sep-17 08:54:04 GMT; path=/; domain=.acint.net cSyncDp84=1502268844; expires=Fri, 08-Sep-17 08:54:04 GMT; path=/; domain=.acint.net aid=kEyYjFmKzay3xlLUDXNoAv00aixwjlzeRPYV8u46JoncQZUo; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   809
Md5:    3f9138b7237ba63901f3a129dd8d04bc
Sha1:   91875c2241ca12715f78657b8a60b7f1d06ae2ce
Sha256: ea11decec7199378db4e15f5f422cb59be4a8374fd0ab9d3a7da15e3aa21ff39
                                        
                                            GET /i/969612b9674a747583c72404dc2b77cb.png HTTP/1.1 
Host: rp.mmnt.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/

                                         
                                         109.63.168.157
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx/1.7.6
Date: Wed, 09 Aug 2017 08:54:04 GMT
Content-Length: 269
Connection: keep-alive
Keep-Alive: timeout=20
Last-Modified: Wed, 09 Aug 2017 06:08:15 GMT
Etag: "598aa6cf-10d"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 88 x 18, 4-bit colormap, non-interlaced
Size:   269
Md5:    3ac4c6b3b744a1bf9893e3a560dd65ce
Sha1:   012f13e37a6812564c317987e86a23d2d287baac
Sha256: 3fd23698bd92364e5d01b61c72d43a5522a05d1db6eaa588e0c94daeab9bba1a
                                        
                                            POST /gsorganizationvalsha2g2 HTTP/1.1 
Host: ocsp2.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 111
Content-Type: application/ocsp-request

                                         
                                         104.16.26.216
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 09 Aug 2017 08:54:04 GMT
Content-Length: 1570
Connection: keep-alive
Set-Cookie: __cfduid=d004557f154fc8de39ad338691e1e6eeb1502268844; expires=Thu, 09-Aug-18 08:54:04 GMT; path=/; domain=.globalsign.com; HttpOnly
Last-Modified: Wed, 09 Aug 2017 07:40:16 GMT
Expires: Sun, 13 Aug 2017 07:40:16 GMT
Etag: "5b4dd51e8bd98dd0b98eb066004e624c27115945"
Cache-Control: public, no-transform, must-revalidate
CF-Cache-Status: HIT
Vary: Accept-Encoding
Server: cloudflare-nginx
CF-RAY: 38b97d1931277684-ARN


--- Additional Info ---
Magic:  data
Size:   1570
Md5:    7e52ff14e685212349832b8368d64cbd
Sha1:   5b4dd51e8bd98dd0b98eb066004e624c27115945
Sha256: 21b3f2e0e19000372ea2f01a737a62d915ba4f74ad3f68fef9b2ee2fcf1c98de
                                        
                                            GET /match?bidder_id=73&external_user_id=8C984C90ACCD8A59D452C6B70268730D HTTP/1.1 
Host: match.ads.betweendigital.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         88.212.241.117
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: openresty/1.11.2.3
Date: Wed, 09 Aug 2017 08:54:04 GMT
Content-Length: 167
Connection: keep-alive
Set-Cookie: tuuid=09a9e74c-b3e0-4974-974e-da2124ad7b11; expires=Sat, 07-Aug-27 08:54:04 GMT; path=/; domain=.ads.betweendigital.com
Location: http://match.ads.betweendigital.com/match?bidder_id=73&external_user_id=8C984C90ACCD8A59D452C6B70268730D&ul_cb=1


--- Additional Info ---
Magic:  HTML document text
Size:   167
Md5:    157a46cba73679fe0587990a8eefa99f
Sha1:   f02c84e22211d0c9be744110b733ec05e9e31ed3
Sha256: a169b8d9e772dddd5590b0e1448b147113d687a80d5e884dab2e0bbe50eab92b
                                        
                                            GET /match/sape?id=8C984C90ACCD8A59D452C6B70268730D HTTP/1.1 
Host: sync.dmp.otm-r.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         138.201.53.196
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: chk=1; path=/ chk.sig=7vJRiWlrUwYlIgR3pwpXlJwlSGQ; path=/
Location: /match/sape?id=8C984C90ACCD8A59D452C6B70268730D&chk=1


--- Additional Info ---
                                        
                                            GET /sape?ssp_id=8C984C90ACCD8A59D452C6B70268730D HTTP/1.1 
Host: cm.targeterra.info
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         88.99.95.152
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST
Access-Control-Allow-Headers: Content-Type, Cookie, Host, Origin, Referer, User-Agent, Content-Length, Accept-Language, Accept-Encoding
Access-Control-Allow-Credentials: true
Set-Cookie: _=8eb62355-2ef7-439d-935b-aec4ffecbb95; Domain=.targeterra.info; Path=/; Expires=Thu, 12 Dec 2030 00:00:00 GMT
Content-Length: 43
Cache-Control: public, max-age=0
Connection: close
Date: Wed, 09 Aug 2017 08:54:05 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    07fff40b5dd495aca2ac4e1c3fbc60aa
Sha1:   e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
Sha256: a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
                                        
                                            GET /match?id=106&vid=8C984C90ACCD8A59D452C6B70268730D HTTP/1.1 
Host: st.targetix.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         212.8.236.36
HTTP/1.1 302 Found
                                        
Date: Wed, 09 Aug 2017 08:54:05 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store
Pragma: no-cache
Expires: -1
Location: http://cm.g.doubleclick.net/pixel?google_nid=hybrid&google_cm&google_sc
Set-Cookie: vid=97670e10181452f87742; expires=Mon, 09 Aug 2077 08:54:05 GMT; domain=.targetix.net; path=/
P3P: CP='IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT'
X-Mode: 102
X-XSS-Protection: 1; mode=block
Access-Control-Allow-Origin: *
Server: Hybrid Web Server


--- Additional Info ---
                                        
                                            GET /cm.gif?p=48&id=8C984C90ACCD8A59D452C6B70268730D HTTP/1.1 
Host: ad.mail.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         94.100.180.76
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:05 GMT
Content-Length: 43
Connection: keep-alive
Set-Cookie: VID=2wioM2073YHc0000070E14nc:::; path=/; expires=Fri, 10-Aug-18 08:54:05 GMT; domain=.mail.ru
Expires: Wed, 09 Aug 2017 14:54:05 GMT
Cache-Control: max-age=21600
Last-Modified: Wed, 09 Aug 2017 08:54:05 GMT


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rmatch/?r=%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1 
Host: ssp-rtb.sape.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         95.181.171.214
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:05 GMT
Content-Length: 154
Connection: keep-alive
Location: //acint.net/match?dp=14&euid=D6ABB55FADCD8A598A12D037022E2005
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=X7Wr1lmKza030BKKBSAuAkmeDk+ji+cIZLmg7stwfN/3INy2; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/


--- Additional Info ---
Magic:  HTML document text
Size:   154
Md5:    cfbeaf604823f038b8b46f0ac862b98c
Sha1:   7b9eb1dac48e74fa5f418bc456cb410f88b81d98
Sha256: 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
                                        
                                            GET /match?dsp=sape HTTP/1.1 
Host: sync.republer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         194.190.117.33
HTTP/1.1 307 Temporary Redirect
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:05 GMT
Content-Length: 0
Connection: close
P3P: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Host: spb2
Set-Cookie: ruid=25b03c6b-46c6-4582-8881-11f60d668c9b; Max-Age=31536000; Expires=Thu, 09 Aug 2018 08:54:05 GMT; Path=/; Domain=.republer.com; HTTPOnly
Location: /match?dsp=sape&qset=1


--- Additional Info ---
                                        
                                            GET /sync2.204?pid=152&anket_id=8C984C90ACCD8A59D452C6B70268730D HTTP/1.1 
Host: profile.ssp.rambler.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: ruid=zIoEBqzNiln0gwAAARQcag==

                                         
                                         91.192.149.30
HTTP/1.1 204 Http No Content
Content-Type: application/x-javascript; charset=Windows-1251
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:05 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: ruid=zIoEBqzNiln0gwAAARQcag==; domain=.rambler.ru; path=/; expires=Mon, 5 Feb 2018 08:54:05 GMT embryo=; domain=.rambler.ru; path=/; expires=Wed, 9 Aug 2017 07:54:05 GMT uuts=4vrJyBROzuCGivtdeNvYeHxeZQl2xZIR; domain=.rambler.ru; path=/; expires=Mon, 5 Feb 2018 08:54:05 GMT
X-Passed: pf234k
Strict-Transport-Security: max-age=0
P3P: policyref="/w3c/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"


--- Additional Info ---
                                        
                                            GET /merge_gpsid/?sid=50&id=8C984C90ACCD8A59D452C6B70268730D HTTP/1.1 
Host: stat.adlabs.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         109.248.237.37
HTTP/1.1 302
                                        
Server: nginx/1.8.0
Date: Wed, 09 Aug 2017 08:54:06 GMT
Content-Length: 0
Connection: keep-alive
Location: //adlmerge.com/merge_gpsid/?sid=50&id=8C984C90ACCD8A59D452C6B70268730D


--- Additional Info ---
                                        
                                            GET /sync/pixel?source=sape&uid=8C984C90ACCD8A59D452C6B70268730D HTTP/1.1 
Host: eu.track.digitaladsystems.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         94.130.38.41
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:05 GMT
Content-Length: 35
Connection: keep-alive
Keep-Alive: timeout=20
Set-Cookie: uid=07bb66f6-ff8f-4ea4-816e-e8429ac787c4; Max-Age=315360000; Expires=Sat, 07 Aug 2027 08:54:05 GMT; Path=/; Domain=.digitaladsystems.com


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /cgi-bin/sync.cgi?ssp_id=43&external_id=8C984C90ACCD8A59D452C6B70268730D HTTP/1.1 
Host: ssp.adriver.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         195.209.111.13
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /image?source=sape&id=8C984C90ACCD8A59D452C6B70268730D HTTP/1.1 
Host: sync.upravel.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         148.251.236.118
HTTP/1.1 302 Found
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:05 GMT
Content-Length: 0
Location: http://sync.upravel.com/image?source=sape&id=8C984C90ACCD8A59D452C6B70268730D&session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cDovL3d3dy5hY2ludC5uZXQvbWMvP2RwXHUwMDNkMTAiXX19
Connection: close
Set-Cookie: session_tptc=1502268845117;Version=1;Comment=;Domain=.upravel.com;Path=/;Max-Age=180
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"


--- Additional Info ---
                                        
                                            GET /match?bidder_id=73&external_user_id=8C984C90ACCD8A59D452C6B70268730D&ul_cb=1 HTTP/1.1 
Host: match.ads.betweendigital.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: tuuid=09a9e74c-b3e0-4974-974e-da2124ad7b11

                                         
                                         88.212.241.117
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: openresty/1.11.2.3
Date: Wed, 09 Aug 2017 08:54:05 GMT
Content-Length: 167
Connection: keep-alive
Location: http://ads.betweendigital.com/match?bidder_id=73&external_user_id=8C984C90ACCD8A59D452C6B70268730D&ul_cb=1


--- Additional Info ---
Magic:  HTML document text
Size:   167
Md5:    157a46cba73679fe0587990a8eefa99f
Sha1:   f02c84e22211d0c9be744110b733ec05e9e31ed3
Sha256: a169b8d9e772dddd5590b0e1448b147113d687a80d5e884dab2e0bbe50eab92b
                                        
                                            GET /match/sape?id=8C984C90ACCD8A59D452C6B70268730D&chk=1 HTTP/1.1 
Host: sync.dmp.otm-r.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: chk=1; chk.sig=7vJRiWlrUwYlIgR3pwpXlJwlSGQ

                                         
                                         138.201.53.196
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:05 GMT
Content-Length: 0
Connection: keep-alive


--- Additional Info ---
                                        
                                            GET /match?dsp=sape&qset=1 HTTP/1.1 
Host: sync.republer.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: ruid=25b03c6b-46c6-4582-8881-11f60d668c9b

                                         
                                         194.190.117.33
HTTP/1.1 307 Temporary Redirect
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:05 GMT
Content-Length: 0
Connection: close
P3P: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Host: spb1
Set-Cookie: ruid=25b03c6b-46c6-4582-8881-11f60d668c9b; Max-Age=31536000; Expires=Thu, 09 Aug 2018 08:54:05 GMT; Path=/; Domain=.republer.com; HTTPOnly
Location: http://acint.net/match?dp=54&euid=25b03c6b-46c6-4582-8881-11f60d668c9b&dsp=sape


--- Additional Info ---
                                        
                                            GET /match?dp=14&euid=D6ABB55FADCD8A598A12D037022E2005 HTTP/1.1 
Host: acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: aid=kEyYjFmKzay3xlLUDXNoAv00aixwjlzeRPYV8u46JoncQZUo; cSyncDp7v2=1502268844; cSyncDp14=1502268844; cSyncDp32=1502268844; cSyncDp37=1502268844; cSyncDp45=1502268844; cSyncDp54v2=1502268844; cSyncDp62=1502268844; cSyncDp67v2=1502268844; cSyncDp68=1502268844; cSyncDp71=1502268844; cSyncDp72=1502268844; cSyncDp74=1502268844; cSyncDp79=1502268844; cSyncDp84=1502268844

                                         
                                         144.76.152.140
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:05 GMT
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: close
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /merge_gpsid/?sid=50&id=8C984C90ACCD8A59D452C6B70268730D HTTP/1.1 
Host: adlmerge.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         85.17.189.108
HTTP/1.1 301
                                        
Server: nginx/1.8.0
Date: Wed, 09 Aug 2017 08:54:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://adlmerge.com/md/?mdback=http%3a%2f%2fadlmerge.com%2fmerge_gpsid%2f%3fsid%3d50%26id%3d8C984C90ACCD8A59D452C6B70268730D&


--- Additional Info ---
                                        
                                            GET /match?bidder_id=73&external_user_id=8C984C90ACCD8A59D452C6B70268730D&ul_cb=1 HTTP/1.1 
Host: ads.betweendigital.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: tuuid=09a9e74c-b3e0-4974-974e-da2124ad7b11

                                         
                                         35.186.231.122
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 68
Date: Wed, 09 Aug 2017 08:54:05 GMT
Via: 1.1 google


--- Additional Info ---
Magic:  PNG image, 1 x 1, 8-bit/color RGBA, non-interlaced
Size:   68
Md5:    c4a2b870062c2bb98c500bc1526c0498
Sha1:   528666ccdb12997358077bc8fcdbfb6b825c7788
Sha256: 2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 09 Aug 2017 08:54:05 GMT
Server: Apache
Last-Modified: Tue, 08 Aug 2017 16:57:38 GMT
Expires: Tue, 15 Aug 2017 16:57:38 GMT
Etag: 26C1F76B72EE808C76EFA674D58881D93C26E313
Cache-Control: max-age=546812,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp20
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    4d650272d521153a3d1e1cf1e4c91060
Sha1:   26c1f76b72ee808c76efa674d58881d93c26e313
Sha256: a34ed1f6551329b83596f63b3ac39f9c42cb7ce134e29f028038fa9dfd2e6860
                                        
                                            GET /md/?mdback=http%3a%2f%2fadlmerge.com%2fmerge_gpsid%2f%3fsid%3d50%26id%3d8C984C90ACCD8A59D452C6B70268730D& HTTP/1.1 
Host: adlmerge.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         85.17.189.108
HTTP/1.1 301
                                        
Server: nginx/1.8.0
Date: Wed, 09 Aug 2017 08:54:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __LXGUID=6452195559712766305; Domain=.adlmerge.com; expires=Thu, 09-Aug-2018 08:54:05 GMT; Path=/
P3P: policyref="adlmerge.com/w3c/p3p.xml",CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Location: http://adlmerge.com/merge_gpsid/?sid=50&id=8C984C90ACCD8A59D452C6B70268730D&md=6452195559712766305


--- Additional Info ---
                                        
                                            GET /match?dp=54&euid=25b03c6b-46c6-4582-8881-11f60d668c9b&dsp=sape HTTP/1.1 
Host: acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: aid=kEyYjFmKzay3xlLUDXNoAv00aixwjlzeRPYV8u46JoncQZUo; cSyncDp7v2=1502268844; cSyncDp14=1502268844; cSyncDp32=1502268844; cSyncDp37=1502268844; cSyncDp45=1502268844; cSyncDp54v2=1502268844; cSyncDp62=1502268844; cSyncDp67v2=1502268844; cSyncDp68=1502268844; cSyncDp71=1502268844; cSyncDp72=1502268844; cSyncDp74=1502268844; cSyncDp79=1502268844; cSyncDp84=1502268844

                                         
                                         144.76.152.140
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:05 GMT
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: close
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /merge_gpsid/?sid=50&id=8C984C90ACCD8A59D452C6B70268730D&md=6452195559712766305 HTTP/1.1 
Host: adlmerge.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: __LXGUID=6452195559712766305

                                         
                                         85.17.189.108
HTTP/1.1 200
Content-Type: image/gif
                                        
Server: nginx/1.8.0
Date: Wed, 09 Aug 2017 08:54:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __LXGUID=6452195559712766305; Domain=.adlmerge.com; expires=Thu, 09-Aug-2018 08:54:05 GMT; Path=/
P3P: policyref="adlmerge.com/w3c/p3p.xml",CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 09 Aug 2017 08:54:05 GMT
Server: Apache
Last-Modified: Sat, 05 Aug 2017 22:05:35 GMT
Expires: Sat, 12 Aug 2017 22:05:35 GMT
Etag: 7CFC9DC5EC6A0784DFB9EAF48115054F3F1DA150
Cache-Control: max-age=306089,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp27
Content-Length: 727
Connection: close


--- Additional Info ---
Magic:  data
Size:   727
Md5:    891a508fcd97d8f650f4fa92e70f97bf
Sha1:   7cfc9dc5ec6a0784dfb9eaf48115054f3f1da150
Sha256: e1b2ccd608b480b3f488d5dfecb70075402f902e80be3e3ac59ab1b155122994
                                        
                                            GET /image?source=sape&id=8C984C90ACCD8A59D452C6B70268730D&session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cDovL3d3dy5hY2ludC5uZXQvbWMvP2RwXHUwMDNkMTAiXX19 HTTP/1.1 
Host: sync.upravel.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: session_tptc=1502268845117

                                         
                                         148.251.236.118
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:05 GMT
Content-Length: 0
Connection: close
Location: http://sync.upravel.com/google/sync
Set-Cookie: user_id=c441ffef-2be3-4936-8e95-d422c5b15ec5;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"


--- Additional Info ---
                                        
                                            GET /google/sync HTTP/1.1 
Host: sync.upravel.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: session_tptc=1502268845117; user_id=c441ffef-2be3-4936-8e95-d422c5b15ec5

                                         
                                         148.251.236.118
HTTP/1.1 302 Found
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:05 GMT
Content-Length: 0
Connection: close
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Location: https://cm.g.doubleclick.net/pixel?google_nid=mgcom&google_cm&google_hm=xEH_7yvjSTaOldQixbFexQ
Set-Cookie: user_id=c441ffef-2be3-4936-8e95-d422c5b15ec5;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000


--- Additional Info ---
                                        
                                            GET /pixel?google_nid=hybrid&google_cm&google_sc HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         172.217.22.162
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: http://cm.g.doubleclick.net/pixel?google_nid=hybrid&google_cm=&google_sc=&google_tc=
Date: Wed, 09 Aug 2017 08:54:05 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 293
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Wed, 09-Aug-2017 09:09:05 GMT; path=/; domain=.doubleclick.net


--- Additional Info ---
Magic:  HTML document text
Size:   293
Md5:    a4ec7bc2d4ee6925736aedfc042f55a4
Sha1:   dc2ceccbf8e9b2064cc4fbc638898f8fab225a41
Sha256: 6fa779853abcee618a5e9776075215b6fbddd2a6425f41aae41311bf83ed1c1c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 09 Aug 2017 08:54:05 GMT
Server: Apache
Last-Modified: Sat, 05 Aug 2017 22:05:35 GMT
Expires: Sat, 12 Aug 2017 22:05:35 GMT
Etag: 7955C90DB84CFD484F837174CC48C17530E899E4
Cache-Control: max-age=306089,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp27
Content-Length: 471
Connection: close


--- Additional Info ---
Magic:  data
Size:   471
Md5:    35e245b1a087da9074317202859c7491
Sha1:   7955c90db84cfd484f837174cc48c17530e899e4
Sha256: e50d8cd0e21f2f42c062ee76198520b4f7e511cbce6da4402337cb8ee829af05
                                        
                                            GET /pixel?google_nid=hybrid&google_cm=&google_sc=&google_tc= HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: test_cookie=CheckForPermission

                                         
                                         172.217.22.162
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="http://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: http://st.targetix.net/google-match?google_gid=CAESEGsfyd5-AeImM5TXyoWxCIk&google_cver=1
Date: Wed, 09 Aug 2017 08:54:05 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 289
X-XSS-Protection: 1; mode=block
Set-Cookie: id=2481d9ba63ce553c||t=1502268845|et=730|cs=002213fd483538d48c0c9dcfa5; expires=Fri, 09-Aug-2019 08:54:05 GMT; path=/; domain=.doubleclick.net test_cookie=; domain=.doubleclick.net; path=/; expires=Mon, 21 Jul 2008 23:59:00 GMT IDE=AHWqTUnP4i9TXqpTzdowjquOXILKm8Yp7K5TyzAD25MgUKoSd0fVZUVaBw; expires=Fri, 09-Aug-2019 08:54:05 GMT; path=/; domain=.doubleclick.net; HttpOnly


--- Additional Info ---
Magic:  HTML document text
Size:   289
Md5:    095d2bb105e1406c2fef704b0e16504f
Sha1:   97c9372d36c18c7358fb41b9592689835730c903
Sha256: 63a41f507442b8f9c34239f5cf6baa93423432aa28bb8094a562cc2de6d0dbef
                                        
                                            POST /ocsp HTTP/1.1 
Host: clients1.google.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 107
Content-Type: application/ocsp-request

                                         
                                         216.58.211.142
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 09 Aug 2017 08:54:05 GMT
Expires: Sun, 13 Aug 2017 08:54:05 GMT
Cache-Control: public, max-age=345600
Server: ocsp_responder
Content-Length: 463
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   463
Md5:    33c31b13cc3dd734cb76d0a0ce1bd97e
Sha1:   da98f3e5f40642303418eea5f6bb3dc46ea420d5
Sha256: 86e92e9327ce3f73bb27f8c1c3304a967a574898e8e4ad5f808cf9ba3f0c96ce
                                        
                                            GET /google-match?google_gid=CAESEGsfyd5-AeImM5TXyoWxCIk&google_cver=1 HTTP/1.1 
Host: st.targetix.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: vid=97670e10181452f87742

                                         
                                         212.8.236.36
HTTP/1.1 302 Found
                                        
Date: Wed, 09 Aug 2017 08:54:05 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store
Pragma: no-cache
Expires: -1
Location: http://st-us.targetix.net/google-match?google_gid=CAESEGsfyd5-AeImM5TXyoWxCIk&google_cver=1
P3P: CP='IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT'
X-Mode: 104
X-XSS-Protection: 1; mode=block
Access-Control-Allow-Origin: *
Server: Hybrid Web Server


--- Additional Info ---
                                        
                                            GET /google-match?google_gid=CAESEGsfyd5-AeImM5TXyoWxCIk&google_cver=1 HTTP/1.1 
Host: st-us.targetix.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: vid=97670e10181452f87742

                                         
                                         67.55.65.228
HTTP/1.1 204 No Content
                                        
Date: Wed, 09 Aug 2017 08:54:05 GMT
Connection: keep-alive
Cache-Control: no-cache, no-store
Pragma: no-cache
Expires: -1
P3P: CP='IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT'
X-Mode: 403
X-XSS-Protection: 1; mode=block
Access-Control-Allow-Origin: *
Server: Hybrid Web Server


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: g.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1390
Content-Transfer-Encoding: binary
Cache-Control: max-age=475004, public, no-transform, must-revalidate
Last-Modified: Mon, 7 Aug 2017 20:48:03 GMT
Expires: Mon, 14 Aug 2017 20:48:03 GMT
Date: Wed, 09 Aug 2017 08:54:05 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1390
Md5:    d4757944133012f134b5ab3109641a54
Sha1:   df316bc8eb739a65c5b4a2abcb18203b0ed4a339
Sha256: 78b01a863d649c2b4106ff3447d61f4e412530bbb4e99271de7936e28bab2bdb
                                        
                                            GET /adcm.js HTTP/1.1 
Host: tag.digitaltarget.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         185.15.175.135
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.2.7
Date: Wed, 09 Aug 2017 09:00:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Jul 2017 10:04:06 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1099
Md5:    e098edaac47aa198e4cf4ab0085e033d
Sha1:   ca0da9d56757fdfc4a2db29ca82e64692902ddd8
Sha256: 0a2c18d3e3bed0d2260e1b3489e6b7f2c877f12a3203eb7392761ccbc57cbc1f
                                        
                                            GET /pixel?google_nid=mgcom&google_cm&google_hm=xEH_7yvjSTaOldQixbFexQ HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         172.217.22.162
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://cm.g.doubleclick.net/pixel?google_nid=mgcom&google_cm=&google_hm=xEH_7yvjSTaOldQixbFexQ&google_tc=
Date: Wed, 09 Aug 2017 08:54:06 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 315
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Wed, 09-Aug-2017 09:09:06 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="39,38,37,36,35",quic=":443"; ma=2592000; v="39,38,37,36,35"


--- Additional Info ---
Magic:  HTML document text
Size:   315
Md5:    12ff9e8ffe82541d796a9aa1ff35e9ed
Sha1:   c3bb6ef73b8c0a0186c9065f2f32abfa4b71ab73
Sha256: 58c4402be96d3d1b718dc5707d7d4b0339ff869bdf7989b646f82e81cb97e121
                                        
                                            GET /pixel?google_nid=mgcom&google_cm=&google_hm=xEH_7yvjSTaOldQixbFexQ&google_tc= HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: id=2481d9ba63ce553c||t=1502268845|et=730|cs=002213fd483538d48c0c9dcfa5; IDE=AHWqTUnP4i9TXqpTzdowjquOXILKm8Yp7K5TyzAD25MgUKoSd0fVZUVaBw; test_cookie=CheckForPermission

                                         
                                         172.217.22.162
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.upravel.com/image?source=google&google_gid=CAESENYnQNMo_vJEsO9ieST71MA&google_cver=1
Date: Wed, 09 Aug 2017 08:54:06 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 302
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=; domain=.doubleclick.net; path=/; expires=Mon, 21 Jul 2008 23:59:00 GMT
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="39,38,37,36,35",quic=":443"; ma=2592000; v="39,38,37,36,35"


--- Additional Info ---
Magic:  HTML document text
Size:   302
Md5:    a57e4095cfc1ce3dce525946e14b6166
Sha1:   39700096e276e91dafddfcb955cd6dc9123495d9
Sha256: bc8c8600c1cedbadafd7966b39e972245c7cf9ccda7dc08586cbb835d0c732e9
                                        
                                            GET /resource/context_static_r_2446.js HTTP/1.1 
Host: an.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/

                                         
                                         93.158.134.90
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.8.1
Date: Wed, 09 Aug 2017 08:54:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 02 Aug 2017 19:59:46 GMT
Etag: W/"59822f32-90073"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   130912
Md5:    d7d128f29939f8811b90e0a46d4d3464
Sha1:   37d7863a570d4cc181c52763b011989b92add9e5
Sha256: 2c8555b8eac2ba89e3fffda1156d9da73a259f184e61a4b23eca206eba298be9
                                        
                                            GET /processor.js?i=6594916246418 HTTP/1.1 
Host: tag.digitaltarget.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         185.15.175.135
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.2.7
Date: Wed, 09 Aug 2017 09:00:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 17 Jul 2017 10:04:06 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2056
Md5:    e89a8890c8b303977f3cc93f6823ac13
Sha1:   fbcb26edf893161bc6e83afc524f07ceb7849eaa
Sha256: f6ce52a8599992649e676f6453d0331a017ede1763bd8d13b70dda6d4436c678
                                        
                                            GET /1/1093/i/i?i=904706290401857.83910791154116&a=77&e=8C984C90ACCD8A59D452C6B70268730D&c=ss:77.up:8C984C90ACCD8A59D452C6B70268730D.sync:up.dn:acint__net.tg:.cr:http%3A%2F%2Fwww.mmnt.ru%2F HTTP/1.1 
Host: dmg.digitaltarget.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         185.15.175.133
HTTP/1.1 302 Found
                                        
Server: nginx/1.6.2
Date: Wed, 09 Aug 2017 09:37:00 GMT
Content-Length: 0
P3P: policyref="http://dmg.digitaltarget.ru/p3p.xml", CP="NON NID PSAa PSDa OUR BUS COM NAV DEM STA PRE"
Location: /1/1093/i/i?i=904706290401857.83910791154116&a=77&e=8C984C90ACCD8A59D452C6B70268730D&c=ss:77.up:8C984C90ACCD8A59D452C6B70268730D.sync:up.dn:acint__net.tg:.cr:http%3A%2F%2Fwww.mmnt.ru%2F&q=scc
Set-Cookie: viuserid=UgSVakPgdRue5555CICo; Max-Age=93312000; Expires=Fri, 24 Jul 2020 08:54:07 GMT; Path=/; Domain=dmg.digitaltarget.ru visessid=a82d476b_15d1da94dbd_0000000001828bbd; Path=/; Domain=dmg.digitaltarget.ru


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 09 Aug 2017 08:54:07 GMT
Server: Apache
Last-Modified: Mon, 07 Aug 2017 10:25:17 GMT
Expires: Mon, 14 Aug 2017 10:25:17 GMT
Etag: 39910F0D5B507CDC9CE80BB83A63C5FC9DA7CAC5
Cache-Control: max-age=436869,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp27
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    d185afbeac1e72c073662172b52e3883
Sha1:   39910f0d5b507cdc9ce80bb83a63c5fc9da7cac5
Sha256: 4bbf3f003142ce707b02a24d8bbad9f876f5114587c8343573a9d086af6db534
                                        
                                            GET /1/1093/i/i?i=904706290401857.83910791154116&a=77&e=8C984C90ACCD8A59D452C6B70268730D&c=ss:77.up:8C984C90ACCD8A59D452C6B70268730D.sync:up.dn:acint__net.tg:.cr:http%3A%2F%2Fwww.mmnt.ru%2F&q=scc HTTP/1.1 
Host: dmg.digitaltarget.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: viuserid=UgSVakPgdRue5555CICo; visessid=a82d476b_15d1da94dbd_0000000001828bbd

                                         
                                         185.15.175.133
HTTP/1.1 302 Found
                                        
Server: nginx/1.6.2
Date: Wed, 09 Aug 2017 09:37:00 GMT
Content-Length: 0
Location: https://stat.sputnik.ru/amber.gif?id=UgSVakPgdRue5555CICo
P3P: policyref="http://dmg.digitaltarget.ru/p3p.xml", CP="NON NID PSAa PSDa OUR BUS COM NAV DEM STA PRE"
Set-Cookie: viuserid=UgSVakPgdRue5555CICo; Max-Age=93312000; Expires=Fri, 24 Jul 2020 08:54:07 GMT; Path=/; Domain=dmg.digitaltarget.ru


--- Additional Info ---
                                        
                                            GET /meta/238399?target-ref=http%3A%2F%2Fwww.mmnt.ru%2F&charset=utf-8&imp-id=1&enable-flat-highlight=1&test-tag=218802813927426&ad-session-id=2638451502268847234&pcode-version=2446&flash-ver=10&available-width=1148&grab=dNCc0LDQvNC-0L3Rgi4g0J_QvtC40YHQutC-0LLQsNGPINGB0LjRgdGC0LXQvNCwLiDQn9C-0LjRgdC6INCyINCY0L3RgtC10YDQvdC10YLQtSEg0JPQu9C-0LHQsNC70YzQvdGL0Lkg0L_QvtC40YHQuiDRhNCw0LnQu9C-0LIgKGZ0cCkK&layout-config=%7B%22win_width%22%3A1176%2C%22win_height%22%3A754%2C%22width%22%3A1148%2C%22height%22%3A0%2C%22left%22%3A12%2C%22top%22%3A68%2C%22visible%22%3A1%2C%22ad_no%22%3A0%2C%22req_no%22%3A0%7D&callback=Ya[1502268854259] HTTP/1.1 
Host: an.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/

                                         
                                         93.158.134.90
HTTP/1.1 302 Found
                                        
Server: nginx/1.8.1
Date: Wed, 09 Aug 2017 08:54:07 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="NOI DEVa TAIa OUR BUS UNI STA"
Last-Modified: Wed, 09 Aug 2017 08:54:07 GMT
Expires: Wed, 09 Aug 2017 08:54:07 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Pragma: no-cache
Location: https://an.yandex.ru/meta/238399?redir-setuniq=1&target-ref=http%3A%2F%2Fwww.mmnt.ru%2F&charset=utf-8&imp-id=1&enable-flat-highlight=1&test-tag=218802813927426&ad-session-id=2638451502268847234&pcode-version=2446&flash-ver=10&available-width=1148&grab=dNCc0LDQvNC-0L3Rgi4g0J_QvtC40YHQutC-0LLQsNGPINGB0LjRgdGC0LXQvNCwLiDQn9C-0LjRgdC6INCyINCY0L3RgtC10YDQvdC10YLQtSEg0JPQu9C-0LHQsNC70YzQvdGL0Lkg0L_QvtC40YHQuiDRhNCw0LnQu9C-0LIgKGZ0cCkK&layout-config=%7B%22win_width%22%3A1176%2C%22win_height%22%3A754%2C%22width%22%3A1148%2C%22height%22%3A0%2C%22left%22%3A12%2C%22top%22%3A68%2C%22visible%22%3A1%2C%22ad_no%22%3A0%2C%22req_no%22%3A0%7D&callback=Ya[1502268854259]
Set-Cookie: yandexuid=9978214751502268847; domain=.yandex.ru; path=/; expires=Sat, 07-Aug-2027 08:54:07 GMT
X-XSS-Protection: 1; mode=block


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: gn.symcd.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         23.43.139.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx/1.10.2
Content-Length: 1419
Content-Transfer-Encoding: binary
Cache-Control: max-age=315414, public, no-transform, must-revalidate
Last-Modified: Sun, 6 Aug 2017 00:27:38 GMT
Expires: Sun, 13 Aug 2017 00:27:38 GMT
Date: Wed, 09 Aug 2017 08:54:07 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1419
Md5:    33d0b579fe72cbe7eeb8cf908a128940
Sha1:   da94fb9f082ab407f4efa91e3236006e13621beb
Sha256: f24492cd3a90fcd58203a804c0cf9145c746bf05270f305ca1cf148761733401
                                        
                                            GET /image?source=google&google_gid=CAESENYnQNMo_vJEsO9ieST71MA&google_cver=1 HTTP/1.1 
Host: sync.upravel.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: session_tptc=1502268845117; user_id=c441ffef-2be3-4936-8e95-d422c5b15ec5

                                         
                                         148.251.236.118
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:07 GMT
Content-Length: 0
Connection: close
Location: https://sync.upravel.com/aidata/sync
Set-Cookie: user_id=c441ffef-2be3-4936-8e95-d422c5b15ec5;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"


--- Additional Info ---
                                        
                                            GET /metrika/watch.js HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/

                                         
                                         93.158.134.119
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx/1.8.1
Date: Wed, 09 Aug 2017 08:54:07 GMT
Content-Length: 29733
Connection: keep-alive
P3P: CP="NOI DEVa TAIa OUR BUS UNI STA"
Last-Modified: Mon, 07 Aug 2017 14:26:29 GMT
Content-Encoding: gzip
Expires: Wed, 09 Aug 2017 09:54:07 GMT
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=31536000


--- Additional Info ---
Magic:  gzip compressed data, from Unix, last modified: Mon Aug 07 13:45:43 2017, max compression
Size:   29733
Md5:    fa426629c9ff7805dfdcc26017da1e77
Sha1:   d2247ea9881e035676187383c3ac624693d375de
Sha256: 8bb35c9bd62680252b986ff9f36e7a703d2ed9105d18342660dcf7b2d2c6e199
                                        
                                            GET /meta/238399?redir-setuniq=1&target-ref=http%3A%2F%2Fwww.mmnt.ru%2F&charset=utf-8&imp-id=1&enable-flat-highlight=1&test-tag=218802813927426&ad-session-id=2638451502268847234&pcode-version=2446&flash-ver=10&available-width=1148&grab=dNCc0LDQvNC-0L3Rgi4g0J_QvtC40YHQutC-0LLQsNGPINGB0LjRgdGC0LXQvNCwLiDQn9C-0LjRgdC6INCyINCY0L3RgtC10YDQvdC10YLQtSEg0JPQu9C-0LHQsNC70YzQvdGL0Lkg0L_QvtC40YHQuiDRhNCw0LnQu9C-0LIgKGZ0cCkK&layout-config=%7B%22win_width%22%3A1176%2C%22win_height%22%3A754%2C%22width%22%3A1148%2C%22height%22%3A0%2C%22left%22%3A12%2C%22top%22%3A68%2C%22visible%22%3A1%2C%22ad_no%22%3A0%2C%22req_no%22%3A0%7D&callback=Ya[1502268854259] HTTP/1.1 
Host: an.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/
Cookie: yandexuid=9978214751502268847

                                         
                                         93.158.134.90
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Server: nginx/1.8.1
Date: Wed, 09 Aug 2017 08:54:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI DEVa TAIa OUR BUS UNI STA"
Last-Modified: Wed, 09 Aug 2017 08:54:07 GMT
Expires: Wed, 09 Aug 2017 08:54:07 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Pragma: no-cache
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2713
Md5:    d3b06dd806184c65663c742082f7b68e
Sha1:   1e345675e8edf01e185067b20c57e0b24a499eba
Sha256: cc2fb6b13f267a74ff6b7f308b06a22260ef2d7659e3828e24ab4d732a578973
                                        
                                            GET /amber.gif?id=UgSVakPgdRue5555CICo HTTP/1.1 
Host: stat.sputnik.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         5.143.224.43
HTTP/1.1 404 Not Found
Content-Type: text/plain
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:07 GMT
Content-Length: 13
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   13
Md5:    1e6cd917ed71a1241e4bedc29264bd98
Sha1:   5b65037351caeb0e5a48d963d7ffa88d0271d546
Sha256: 7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
                                        
                                            GET /aidata/sync HTTP/1.1 
Host: sync.upravel.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: session_tptc=1502268845117; user_id=c441ffef-2be3-4936-8e95-d422c5b15ec5

                                         
                                         148.251.236.118
HTTP/1.1 302 Found
Content-Type: image/png
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:07 GMT
Content-Length: 0
Connection: close
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Location: https://x01.aidata.io/0.gif?pid=MGCOM&id=c441ffef-2be3-4936-8e95-d422c5b15ec5
Set-Cookie: user_id=c441ffef-2be3-4936-8e95-d422c5b15ec5;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000


--- Additional Info ---
                                        
                                            OPTIONS /watch/238399?cnt-class=1&page-url=http%3A%2F%2Fwww.mmnt.ru%2F&browser-info=ti%3A7%3Ati%3A1%3Aj%3A1%3As%3A1176x885x24%3Af%3A10.0.45.2%3Afpr%3A65694993101%3Acn%3A1%3Aw%3A1159x754%3Az%3A120%3Ai%3A20170809105407%3Aet%3A1502268848%3Aen%3Awindows-1251%3Av%3A873%3Ac%3A1%3Ala%3Aen-us%3Aar%3A1%3Apv%3A1%3Als%3A1107426302877%3Arqn%3A1%3Arn%3A390409868%3Ahid%3A867785047%3Arqnl%3A1%3Ast%3A1502268848%3Au%3A%3At%3A%D0%9C%D0%B0%D0%BC%D0%BE%D0%BD%D1%82.%20%D0%9F%D0%BE%D0%B8%D1%81%D0%BA%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D0%B8%D1%81%D1%82%D0%B5%D0%BC%D0%B0.%20%D0%9F%D0%BE%D0%B8%D1%81%D0%BA%20%D0%B2%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%D0%B5!%20%D0%93%D0%BB%D0%BE%D0%B1%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D0%B8%D1%81%D0%BA%20%D1%84%D0%B0%D0%B9%D0%BB%D0%BE%D0%B2%20(ftp) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Origin: http://www.mmnt.ru
Access-Control-Request-Method: POST

                                         
                                         93.158.134.119
HTTP/1.1 200 OK
                                        
Server: nginx/1.8.1
Date: Wed, 09 Aug 2017 08:54:07 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="NOI DEVa TAIa OUR BUS UNI STA"
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1728000
X-XSS-Protection: 1; mode=block


--- Additional Info ---
                                        
                                            GET /watch/238399?cnt-class=1&page-url=http%3A%2F%2Fwww.mmnt.ru%2F&browser-info=ti%3A4%3Ati%3A7%3Ati%3A1%3Aj%3A1%3As%3A1176x885x24%3Af%3A10.0.45.2%3Afpr%3A65694993101%3Acn%3A1%3Aw%3A1159x754%3Az%3A120%3Ai%3A20170809105407%3Aet%3A1502268848%3Aen%3Awindows-1251%3Av%3A873%3Ac%3A1%3Ala%3Aen-us%3Aar%3A1%3Apv%3A1%3Als%3A1107426302877%3Arqn%3A1%3Arn%3A390409868%3Ahid%3A867785047%3Arqnl%3A1%3Ast%3A1502268848%3Au%3A%3At%3A%D0%9C%D0%B0%D0%BC%D0%BE%D0%BD%D1%82.%20%D0%9F%D0%BE%D0%B8%D1%81%D0%BA%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D0%B8%D1%81%D1%82%D0%B5%D0%BC%D0%B0.%20%D0%9F%D0%BE%D0%B8%D1%81%D0%BA%20%D0%B2%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%D0%B5!%20%D0%93%D0%BB%D0%BE%D0%B1%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D0%B8%D1%81%D0%BA%20%D1%84%D0%B0%D0%B9%D0%BB%D0%BE%D0%B2%20(ftp) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/
Cookie: yandexuid=9978214751502268847

                                         
                                         93.158.134.119
HTTP/1.1 302 Found
                                        
Server: nginx/1.8.1
Date: Wed, 09 Aug 2017 08:54:07 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="NOI DEVa TAIa OUR BUS UNI STA"
Last-Modified: Wed, 09 Aug 2017 08:54:07 GMT
Expires: Wed, 09 Aug 2017 08:54:07 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Pragma: no-cache
Set-Cookie: yabs-sid=147955311502268847; path=/
Location: https://mc.yandex.ru/watch/238399/1?cnt-class=1&page-url=http%3A%2F%2Fwww.mmnt.ru%2F&browser-info=ti%3A4%3Ati%3A7%3Ati%3A1%3Aj%3A1%3As%3A1176x885x24%3Af%3A10.0.45.2%3Afpr%3A65694993101%3Acn%3A1%3Aw%3A1159x754%3Az%3A120%3Ai%3A20170809105407%3Aet%3A1502268848%3Aen%3Awindows-1251%3Av%3A873%3Ac%3A1%3Ala%3Aen-us%3Aar%3A1%3Apv%3A1%3Als%3A1107426302877%3Arqn%3A1%3Arn%3A390409868%3Ahid%3A867785047%3Arqnl%3A1%3Ast%3A1502268848%3Au%3A%3At%3A%D0%9C%D0%B0%D0%BC%D0%BE%D0%BD%D1%82.%20%D0%9F%D0%BE%D0%B8%D1%81%D0%BA%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D0%B8%D1%81%D1%82%D0%B5%D0%BC%D0%B0.%20%D0%9F%D0%BE%D0%B8%D1%81%D0%BA%20%D0%B2%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%D0%B5!%20%D0%93%D0%BB%D0%BE%D0%B1%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D0%B8%D1%81%D0%BA%20%D1%84%D0%B0%D0%B9%D0%BB%D0%BE%D0%B2%20(ftp)
X-XSS-Protection: 1; mode=block


--- Additional Info ---
                                        
                                            GET /watch/238399/1?cnt-class=1&page-url=http%3A%2F%2Fwww.mmnt.ru%2F&browser-info=ti%3A4%3Ati%3A7%3Ati%3A1%3Aj%3A1%3As%3A1176x885x24%3Af%3A10.0.45.2%3Afpr%3A65694993101%3Acn%3A1%3Aw%3A1159x754%3Az%3A120%3Ai%3A20170809105407%3Aet%3A1502268848%3Aen%3Awindows-1251%3Av%3A873%3Ac%3A1%3Ala%3Aen-us%3Aar%3A1%3Apv%3A1%3Als%3A1107426302877%3Arqn%3A1%3Arn%3A390409868%3Ahid%3A867785047%3Arqnl%3A1%3Ast%3A1502268848%3Au%3A%3At%3A%D0%9C%D0%B0%D0%BC%D0%BE%D0%BD%D1%82.%20%D0%9F%D0%BE%D0%B8%D1%81%D0%BA%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D0%B8%D1%81%D1%82%D0%B5%D0%BC%D0%B0.%20%D0%9F%D0%BE%D0%B8%D1%81%D0%BA%20%D0%B2%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%D0%B5!%20%D0%93%D0%BB%D0%BE%D0%B1%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D0%B8%D1%81%D0%BA%20%D1%84%D0%B0%D0%B9%D0%BB%D0%BE%D0%B2%20(ftp) HTTP/1.1 
Host: mc.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/
Cookie: yandexuid=9978214751502268847; yabs-sid=147955311502268847

                                         
                                         93.158.134.119
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.8.1
Date: Wed, 09 Aug 2017 08:54:07 GMT
Content-Length: 43
Connection: keep-alive
P3P: CP="NOI DEVa TAIa OUR BUS UNI STA"
Last-Modified: Wed, 09 Aug 2017 08:54:07 GMT
Expires: Wed, 09 Aug 2017 08:54:07 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Pragma: no-cache
X-XSS-Protection: 1; mode=block


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    df3e567d6f16d040326c7a0ea29a4f41
Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736
Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
                                        
                                            POST /jserr/1 HTTP/1.1 
Host: an.yandex.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Type: text/plain;charset=UTF-8
Referer: http://www.mmnt.ru/
Content-Length: 9015
Origin: http://www.mmnt.ru
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.158.134.90
HTTP/1.1 200 OK
                                        
Server: nginx/1.8.1
Date: Wed, 09 Aug 2017 08:54:07 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="NOI DEVa TAIa OUR BUS UNI STA"
Last-Modified: Wed, 09 Aug 2017 08:54:07 GMT
Expires: Wed, 09 Aug 2017 08:54:07 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Pragma: no-cache
Access-Control-Allow-Origin: http://www.mmnt.ru
Access-Control-Allow-Credentials: true
X-XSS-Protection: 1; mode=block


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         178.255.83.1
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 09 Aug 2017 08:54:08 GMT
Server: Apache
Last-Modified: Sun, 06 Aug 2017 22:50:24 GMT
Expires: Sun, 13 Aug 2017 22:50:24 GMT
Etag: 09146EF63B537A01AF316ECF96A586E53C9C3C39
Cache-Control: max-age=395175,public,no-transform,must-revalidate
X-OCSP-Reponder-ID: rmdccaocsp20
Content-Length: 472
Connection: close


--- Additional Info ---
Magic:  data
Size:   472
Md5:    3c2c7d9640a5a84fe1ff89e0021c78db
Sha1:   09146ef63b537a01af316ecf96a586e53c9c3c39
Sha256: fe1d1d51b601e75c9b2fd401afb7f5e2c2c1bf836ae3336153c70441e1ceba6a
                                        
                                            GET /0.gif?pid=MGCOM&id=c441ffef-2be3-4936-8e95-d422c5b15ec5 HTTP/1.1 
Host: x01.aidata.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10

                                         
                                         138.201.227.192
HTTP/1.1 302 Found
Content-Type: text/plain; charset=utf-8
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:08 GMT
Content-Length: 0
Connection: keep-alive
Location: https://x01.aidata.io/0.gif?pid=MGCOM&id=c441ffef-2be3-4936-8e95-d422c5b15ec5&bounce=1
Expires: Wed, 09 Aug 2017 08:54:07 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Wed, 09 Aug 2017 08:54:07 GMT
Set-Cookie: __upin=bAtmp+xPtrcApPKRbSt/+w;domain=.x01.aidata.io;path=/;max-age=63072000
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'


--- Additional Info ---
                                        
                                            GET /0.gif?pid=MGCOM&id=c441ffef-2be3-4936-8e95-d422c5b15ec5&bounce=1 HTTP/1.1 
Host: x01.aidata.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.acint.net/mc/?dp=10
Cookie: __upin=bAtmp+xPtrcApPKRbSt/+w

                                         
                                         138.201.227.192
HTTP/1.1 204 No Content
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:08 GMT
Connection: keep-alive
Expires: Wed, 09 Aug 2017 08:54:07 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Wed, 09 Aug 2017 08:54:07 GMT
Set-Cookie: __upin=bAtmp+xPtrcApPKRbSt/+w;domain=.x01.aidata.io;path=/;max-age=63072000
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'


--- Additional Info ---
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.mmnt.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         46.188.23.8
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=windows-1251
                                        
Server: nginx/1.7.6
Date: Wed, 09 Aug 2017 08:54:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   436
Md5:    0d8802f914170adf120fcf6584ecb082
Sha1:   3930e5286eb68545f5c68fd0b9b847a10b11a04b
Sha256: a0a34be53c8a28ec483127795f5ea811d20f7adb1d1e71136219bbbbd5194a83
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.mmnt.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         46.188.23.8
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=windows-1251
                                        
Server: nginx/1.7.6
Date: Wed, 09 Aug 2017 08:54:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   436
Md5:    0d8802f914170adf120fcf6584ecb082
Sha1:   3930e5286eb68545f5c68fd0b9b847a10b11a04b
Sha256: a0a34be53c8a28ec483127795f5ea811d20f7adb1d1e71136219bbbbd5194a83
                                        
                                            GET /ping/?v=0.0.20&uid=ebc4dc6a-7bea-45bf-9f6d-322a516db4d9&dp=10&tz=%2B02%3A00&nc=66282053&dT=2017-08-09T10%3A54%3A14.768 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: http://www.mmnt.ru/
Cookie: aid=kEyYjFmKzay3xlLUDXNoAv00aixwjlzeRPYV8u46JoncQZUo; cSyncDp7v2=1502268844; cSyncDp14=1502268844; cSyncDp32=1502268844; cSyncDp37=1502268844; cSyncDp45=1502268844; cSyncDp54v2=1502268844; cSyncDp62=1502268844; cSyncDp67v2=1502268844; cSyncDp68=1502268844; cSyncDp71=1502268844; cSyncDp72=1502268844; cSyncDp74=1502268844; cSyncDp79=1502268844; cSyncDp84=1502268844

                                         
                                         144.76.152.140
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Wed, 09 Aug 2017 08:54:14 GMT
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: keep-alive
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda