Overview

URL kroha.kh.ua/system/logs/xt.exe
IP5.39.10.93
ASNAS16276 OVH SAS
Location France
Report completed2019-03-08 10:46:47 CET
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-03-08 2 kroha.kh.ua/system/logs/xt.exe Malware
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 5.39.10.93

Date UQ / IDS / BL URL IP
2019-06-09 07:02:16 +0200
0 - 0 - 1 tmx-learning.ru/wp-includes 5.39.10.93
2019-06-02 19:04:59 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-06-02 13:42:01 +0200
0 - 1 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-06-02 11:44:22 +0200
0 - 1 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-05-25 17:25:26 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-05-24 14:22:16 +0200
0 - 0 - 1 showbiz.ua/tmp-cg/tikita/yahoo/ee27fe710cee5f (...) 5.39.10.93
2019-05-06 15:17:22 +0200
0 - 1 - 0 agent-parfumer.com.ua/ 5.39.10.93
2019-05-06 02:04:36 +0200
0 - 0 - 1 showbiz.ua/tutu01/index.php 5.39.10.93
2019-05-03 20:08:06 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-05-01 22:31:26 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93

Last 10 reports on ASN: AS16276 OVH SAS

Date UQ / IDS / BL URL IP
2019-07-01 07:47:12 +0200
0 - 0 - 0 https://www.munplanet.com/articles/arlo-camer (...) 158.69.39.233
2019-07-01 04:15:44 +0200
0 - 3 - 0 www.asind.ae/wp-content/uploads/2019/seconder (...) 5.39.72.197
2019-07-01 03:56:20 +0200
0 - 0 - 0 webcamsteen.com/16y4[CUSTOM_AFF 192.99.67.89
2019-07-01 02:43:31 +0200
0 - 0 - 0 167.114.144.169/Android/ 167.114.144.169
2019-06-30 21:34:01 +0200
0 - 0 - 0 streams.tvxweb.org 158.69.54.221
2019-06-30 21:30:47 +0200
0 - 0 - 0 source.magikserv.com 37.187.171.206
2019-06-30 20:09:51 +0200
0 - 0 - 0 www.kweeper.com/popcorn2kg/sentence/6382508 91.121.242.21
2019-06-30 18:49:10 +0200
0 - 0 - 0 www.ovh.com 198.27.92.1
2019-06-30 18:18:47 +0200
0 - 0 - 0 liczniki.org/hit.php?l=alltube&o=1 94.23.92.123
2019-06-30 18:11:40 +0200
0 - 0 - 0 hardrock.blogdns.org/ 91.121.69.126

Last 10 reports on domain: kroha.kh.ua

Date UQ / IDS / BL URL IP
2019-06-02 19:04:59 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-06-02 13:42:01 +0200
0 - 1 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-06-02 11:44:22 +0200
0 - 1 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-05-25 17:25:26 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-05-03 20:08:06 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-05-01 22:31:26 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-04-22 18:43:34 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-04-17 15:52:08 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-04-12 18:43:19 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93
2019-04-02 19:01:45 +0200
0 - 0 - 1 kroha.kh.ua/system/logs/xt.exe 5.39.10.93


JavaScript

Executed Scripts (14)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (45)


Request Response
                                        
                                            GET /system/logs/xt.exe HTTP/1.1 
Host: kroha.kh.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         5.39.10.93
HTTP/1.1 301 Moved Permanently
                                        
Server: nginx/1.12.2
Date: Fri, 08 Mar 2019 09:46:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://babykroha.ua/system/logs/xt.exe


--- Additional Info ---

Alerts:
  Blacklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         80.239.159.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "A1D87D29A7D0493CDC61CE321A8C21943B6A692BDB8950A41D68F8446BAFAFC2"
Last-Modified: Wed, 06 Mar 2019 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43144
Expires: Fri, 08 Mar 2019 21:45:19 GMT
Date: Fri, 08 Mar 2019 09:46:15 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    5fe606bf1e09ab9e9b0cf98000b51563
Sha1:   81faf223d0a1c84dd6d4a393af61fe49440304e5
Sha256: a1d87d29a7d0493cdc61ce321a8c21943b6a692bdb8950a41d68f8446bafafc2
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         80.239.159.56
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Transfer-Encoding: Binary
Last-Modified: Wed, 06 Mar 2019 22:30:21 GMT
Etag: "a2fa25e029214c58808e45d1f75186bb0d1af3bf"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=16645
Expires: Fri, 08 Mar 2019 14:23:40 GMT
Date: Fri, 08 Mar 2019 09:46:15 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    40d3d3b91a4f679f721fd29b33ded32f
Sha1:   a2fa25e029214c58808e45d1f75186bb0d1af3bf
Sha256: 4574eaa2518f49048096c0d3a1b60a8ba9ead0d7369abec3620a6a82da341cb2
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.20.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Mar 2019 09:46:16 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   112302
Md5:    b04e7e7c41f8666d73b3122e7e04957f
Sha1:   fd3fb6457ed0ada126b26d9c81b3781fc5f29c61
Sha256: 1febe9a4a22e6b82fc76de401726cb6f7d19bc3fc8450195adbbe1dfc332e5d5
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.20.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Mar 2019 09:46:16 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    d9d754520ae3340aa37cca6115eee05b
Sha1:   a0320372760d99c762cb2eb4b37f776625ef1b33
Sha256: 7dc8284c51c9a38dc1bf03bd28857ea5336e8f5c564eddbb1c9082ee43c93738
                                        
                                            GET /gtag/js?id=UA-128206001-1 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe

                                         
                                         216.58.207.200
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Access-Control-Allow-Origin: http://www.googletagmanager.com
Access-Control-Allow-Headers: Cache-Control
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Fri, 08 Mar 2019 09:46:16 GMT
Expires: Fri, 08 Mar 2019 09:46:16 GMT
Cache-Control: private, max-age=900
Last-Modified: Fri, 08 Mar 2019 02:44:24 GMT
Server: Google Tag Manager (scaffolding)
X-XSS-Protection: 1; mode=block
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   24689
Md5:    c061055dfcc13dc3506ebb784ea5a734
Sha1:   4fc31b6fabba84431e6590b1c82e0ce50e74c8b7
Sha256: 19b0d7f079727fa792fe01143ddada957deed8f7f8319d846933a567533cf89b
                                        
                                            GET /Media/assets/css/vendors.css HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=dtm8nqlnmdnpb7pb2es4eveqp7; currency=UAH; cart=382ced5dd9631c122808a0402be7116d706441a3%7Ed478f4b476538219c9dbd6e96cfecb7021821029

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 08 Mar 2019 09:46:16 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:05:14 GMT
Etag: "24287-57868f7e3a47d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 17749
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   17749
Md5:    15288777a646fada78b68a7f39cf28f6
Sha1:   1074c8f5a3ceed073daf003948b3a90e4a363dd9
Sha256: f57784fd825af302d206fc978dacdc44805e147b4f2f8d414f6e67239790d766
                                        
                                            GET /Media/assets/favicons/favicon-16x16.png HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=dtm8nqlnmdnpb7pb2es4eveqp7; currency=UAH; cart=382ced5dd9631c122808a0402be7116d706441a3%7Ed478f4b476538219c9dbd6e96cfecb7021821029

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 08 Mar 2019 09:46:16 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 12 Dec 2018 13:02:14 GMT
Etag: "4b6-57cd2ce9b1c5b"
Accept-Ranges: bytes
Content-Length: 1206
Cache-Control: max-age=2592000
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 16 x 16, 8-bit colormap, non-interlaced
Size:   1206
Md5:    5ef32b417050bead34de1ec3552e69c3
Sha1:   74ffb6fc48190f88011d8e0e7418bbaebe7a188a
Sha256: 82b28825e1aef7c9bd0fa16d2bd56f68d553e3113e28ed739e244967d2c6d469
                                        
                                            GET /Media/assets/css/editor.css HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=dtm8nqlnmdnpb7pb2es4eveqp7; currency=UAH; cart=382ced5dd9631c122808a0402be7116d706441a3%7Ed478f4b476538219c9dbd6e96cfecb7021821029

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 08 Mar 2019 09:46:16 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:05:14 GMT
Etag: "c8f-57868f7e3371e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 1017
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1017
Md5:    3d78d96d2b060445ebe1b76f1cd86828
Sha1:   6ead70f82aae74e6b8946ca8e6d6294390d560e5
Sha256: 812808de27037852cda6b078db577e74f1b7af6de27e16f73408fdeece152c50
                                        
                                            GET /Media/assets/css/helpers.css HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=dtm8nqlnmdnpb7pb2es4eveqp7; currency=UAH; cart=382ced5dd9631c122808a0402be7116d706441a3%7Ed478f4b476538219c9dbd6e96cfecb7021821029

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 08 Mar 2019 09:46:16 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:05:14 GMT
Etag: "1180d-57868f7e3371e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 8570
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   8570
Md5:    fc8885590c0b639807801d857e3b9128
Sha1:   2ec12f9d7119108e57e55d2059e7f380bfcdb17e
Sha256: 6183d5db89a099e2da6b2c35d500802110b105af43bdf63a3619ad80326a3926
                                        
                                            GET /Media/assets/css/style.css HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=dtm8nqlnmdnpb7pb2es4eveqp7; currency=UAH; cart=382ced5dd9631c122808a0402be7116d706441a3%7Ed478f4b476538219c9dbd6e96cfecb7021821029

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 08 Mar 2019 09:46:16 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Fri, 21 Dec 2018 12:54:20 GMT
Etag: "1ef29-57d87beebf554-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 18806
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   18806
Md5:    2f6c0704012632b62e80ac961a5be8f0
Sha1:   81c84c4bcc8e0cb77dd8ea7db05d4c1fd9c5b79a
Sha256: 8dfe9decf09179067b9a8475c62c0bad044044d5fda14b4f372c3f0e86ae9a07
                                        
                                            GET /Media/assets/js/static/wezom-old.min.js HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=dtm8nqlnmdnpb7pb2es4eveqp7; currency=UAH; cart=382ced5dd9631c122808a0402be7116d706441a3%7Ed478f4b476538219c9dbd6e96cfecb7021821029

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Mar 2019 09:46:16 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:05:14 GMT
Etag: "270f-57868f7e634bd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 3753
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3753
Md5:    c103288ebb23846348ed303868f61ea8
Sha1:   42708dbd14c0fda14853595c79f2eb1a9f65835a
Sha256: 57c49a6204e979d08d0fb9c5eb0c698a56bb0d629907dbd4189ddf99f8b1a63c
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe

                                         
                                         172.217.21.174
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
Timing-Allow-Origin: *
Date: Fri, 08 Mar 2019 08:17:12 GMT
Expires: Fri, 08 Mar 2019 10:17:12 GMT
Last-Modified: Tue, 19 Feb 2019 19:44:11 GMT
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Server: Golfe2
Content-Length: 17543
Cache-Control: public, max-age=7200
Age: 5344
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   17543
Md5:    a6ce90b9145f18e7a721eb3819daaaab
Sha1:   1c422016bd20a08535d2cc37448c498cf4a0f829
Sha256: 94fe45c14a2ce4fd5f1401c835e5d63111ebf89ff58e03d6b780592f02abf778
                                        
                                            GET /Media/assets/css/static/pic/wezom-info-red.gif HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=dtm8nqlnmdnpb7pb2es4eveqp7; currency=UAH; cart=382ced5dd9631c122808a0402be7116d706441a3%7Ed478f4b476538219c9dbd6e96cfecb7021821029

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Fri, 08 Mar 2019 09:46:16 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:05:14 GMT
Etag: "11d-57868f7e394de"
Accept-Ranges: bytes
Content-Length: 285
Cache-Control: max-age=2592000
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  GIF image data, version 87a, 50 x 18
Size:   285
Md5:    2dfb0e4ee208270ad5521719b18c5f36
Sha1:   794f67a3ecf343b7004ca75baaeccfa721c45f91
Sha256: 9769656f5e3eaca90c1c6958562a639dff2e440fad2ae43449c64afb13c14840
                                        
                                            GET /Media/js/translations/ru.js HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=dtm8nqlnmdnpb7pb2es4eveqp7; currency=UAH; cart=382ced5dd9631c122808a0402be7116d706441a3%7Ed478f4b476538219c9dbd6e96cfecb7021821029

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Mar 2019 09:46:16 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:06:41 GMT
Etag: "14a9-57868fd0de695-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 1564
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1564
Md5:    74b6492bc45e1e5ac860334f389f9555
Sha1:   4570d859349762bcffbb7dbc48ad2a627226c60c
Sha256: 8c9e1f6851a68333dc94cfba6a293d2771bdeee6fea2d72d565742b82c02ae52
                                        
                                            GET /r/collect?v=1&_v=j73&a=544165847&t=pageview&_s=1&dl=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe&ul=en-us&de=UTF-8&dt=%D0%9E%D1%88%D0%B8%D0%B1%D0%BA%D0%B0%20404!%20%D0%A1%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%20%D0%BD%D0%B5%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD%D0%B0&sd=24-bit&sr=1176x885&vp=1176x754&je=1&fl=10.0%20r45&_u=IEBAAUQ~&jid=1563316478&gjid=1020604980&cid=1558057057.1552038377&tid=UA-128206001-1&_gid=1945627345.1552038377&_r=1&gtm=2ou2q1&z=1188361421 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe

                                         
                                         172.217.21.174
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Allow-Origin: *
Date: Fri, 08 Mar 2019 09:46:17 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Server: Golfe2
Content-Length: 35
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.20.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Mar 2019 09:46:17 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    fe5e10290ff79ec5311e99e12145e2ec
Sha1:   198ddedbe90000865ee065bf56c96b2fe1be6311
Sha256: 5b5fb6ee9b47104deea304c90ab5a93e34c5e3c3bd89355d37b5efe552b4eb7c
                                        
                                            GET /Media/assets/js/modernizr.js HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=dtm8nqlnmdnpb7pb2es4eveqp7; currency=UAH; cart=382ced5dd9631c122808a0402be7116d706441a3%7Ed478f4b476538219c9dbd6e96cfecb7021821029; _ga=GA1.2.1558057057.1552038377; _gid=GA1.2.1945627345.1552038377; _gat_gtag_UA_128206001_1=1

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Mar 2019 09:46:17 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:05:14 GMT
Etag: "1798-57868f7e6251d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 2600
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2600
Md5:    8da2167b3cbc4bc748d5290857f89c54
Sha1:   080d2576c9d431dc6c096a2e7fa87016abb6f604
Sha256: 10377a56a197f4dea29022339657d1ad0ae588b19930192d664f113bdb26c092
                                        
                                            GET /maps/api/js?key=AIzaSyDL6xIhFeOJeE9nXsObhPKfD1wRV4xFknE HTTP/1.1 
Host: maps.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe

                                         
                                         172.217.21.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Date: Fri, 08 Mar 2019 09:46:17 GMT
Expires: Fri, 08 Mar 2019 10:16:17 GMT
Cache-Control: public, max-age=1800
Vary: Accept-Language
Content-Encoding: gzip
Server: mafe
Content-Length: 33321
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Server-Timing: gfet4t7; dur=18
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   33321
Md5:    307305aef3f2c23939c7a30d1e644417
Sha1:   ffa43988d8d3b73de73483b98e5195b7cab1a2e9
Sha256: 6f3cc75baa8629a6d50a41fc9d55053bac51b7d546eb318bf6d83df8e06bb931
                                        
                                            GET /Media/assets/css/static/fonts/b64-woff.css?v=1523945764591 HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=dtm8nqlnmdnpb7pb2es4eveqp7; currency=UAH; cart=382ced5dd9631c122808a0402be7116d706441a3%7Ed478f4b476538219c9dbd6e96cfecb7021821029

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Fri, 08 Mar 2019 09:46:16 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:05:14 GMT
Etag: "eb88d-57868f7e365fe-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   727398
Md5:    51ce94d8d0b4695014032fe4990555a6
Sha1:   f9951448a6edf388275e4a498b27dfa3ef17d3b6
Sha256: c6b163f46f68d83a24e286272c26df273e6a590ab2881125db300060cf0146db
                                        
                                            GET /Media/assets/js/vendors.js HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=dtm8nqlnmdnpb7pb2es4eveqp7; currency=UAH; cart=382ced5dd9631c122808a0402be7116d706441a3%7Ed478f4b476538219c9dbd6e96cfecb7021821029; _ga=GA1.2.1558057057.1552038377; _gid=GA1.2.1945627345.1552038377; _gat_gtag_UA_128206001_1=1

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Mar 2019 09:46:17 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Mon, 03 Dec 2018 11:24:22 GMT
Etag: "606d3-57c1c64074b82-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   114633
Md5:    9d350763c168a7874d25147ed3d295e4
Sha1:   f7ec6c0d386d1b21b49118153b5325f1c1fff74a
Sha256: 50d6c93310a7045c6f926903f0ad3350b5fde89f5c1437833cc04a80a95ae8e8
                                        
                                            GET /Media/js/programmer/ulogin.js HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=dtm8nqlnmdnpb7pb2es4eveqp7; currency=UAH; cart=382ced5dd9631c122808a0402be7116d706441a3%7Ed478f4b476538219c9dbd6e96cfecb7021821029; _ga=GA1.2.1558057057.1552038377; _gid=GA1.2.1945627345.1552038377; _gat_gtag_UA_128206001_1=1

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Mar 2019 09:46:18 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 17 Oct 2018 09:06:41 GMT
Etag: "ab19-57868fd0de695-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 13845
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   13845
Md5:    851a71202755f04b83b5f8dd1bed6fb4
Sha1:   62bb56397826a3e8aa60f179f7e319742074f774
Sha256: 351b444524542e90ff65e17af5a1d9964964f6e1d3a918f8b198c774f0535107
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         80.239.159.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "69BF384C1A4A36FAB4C741776564C98DA4022693CFA3A853772B9601CD4C2E32"
Last-Modified: Tue, 05 Mar 2019 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=36272
Expires: Fri, 08 Mar 2019 19:50:50 GMT
Date: Fri, 08 Mar 2019 09:46:18 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    a636adaa39e1d30916ebc0d0d3943b0b
Sha1:   96335dada92a09717c4fc04bc83b9545ca04f612
Sha256: 69bf384c1a4a36fab4c741776564c98da4022693cfa3a853772b9601cd4c2e32
                                        
                                            GET /Media/assets/js/initialize.js HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe
Cookie: PHPSESSID=dtm8nqlnmdnpb7pb2es4eveqp7; currency=UAH; cart=382ced5dd9631c122808a0402be7116d706441a3%7Ed478f4b476538219c9dbd6e96cfecb7021821029; _ga=GA1.2.1558057057.1552038377; _gid=GA1.2.1945627345.1552038377; _gat_gtag_UA_128206001_1=1

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Fri, 08 Mar 2019 09:46:18 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Fri, 21 Dec 2018 11:55:11 GMT
Etag: "e61c-57d86eb576263-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=604800
Content-Length: 15845
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   15845
Md5:    e4016f7385b6c86dc07fdf11c7e8a668
Sha1:   9e2635c901ba89688ff84f58e9caa51161477ac0
Sha256: 30ea09c1da2cb52e11146ae90a4cf37d19c20e0e02ca8900da41fa819ad2063d
                                        
                                            GET /match?rand=24499&u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe&r= HTTP/1.1 
Host: ulogin.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe

                                         
                                         95.163.118.168
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: nginx
Date: Fri, 08 Mar 2019 09:46:19 GMT
Content-Length: 161
Connection: keep-alive
Location: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe


--- Additional Info ---
Magic:  HTML document text
Size:   161
Md5:    3161da3959fb6c146a46cd60054ef55e
Sha1:   341f6879a767b3e5453f2d060d75e11b918838f4
Sha256: 47b641956fcdb7e3361feca67da6511e3d5a7ac0d0f4ac2afec43e650de15b84
                                        
                                            GET /uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe HTTP/1.1 
Host: ulogin.ru
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://babykroha.ua/system/logs/xt.exe

                                         
                                         95.163.118.168
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Fri, 08 Mar 2019 09:46:19 GMT
Content-Length: 199
Connection: keep-alive
Expires: Fri, 08 Mar 2019 09:46:18 GMT
Cache-Control: no-cache
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Last-Modified: Fri, 08 Mar 2019 09:46:18 GMT


--- Additional Info ---
Magic:  HTML document text
Size:   199
Md5:    57d20d8b8f3f11660cd95a83aeb8f483
Sha1:   9878a41ecfb55138f893eb9501af045d77316151
Sha256: 88c0bb39fe16adfe147431b6d6d2915696571afe588f5250c6800df58b41a73c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 116
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Wed, 06 Mar 2019 03:41:03 GMT
Etag: D49E187100AC524F4CC8A981BF3351AF8FA73086
X-OCSP-Responder-ID: mcdpcaocsp1
Content-Length: 472
Cache-Control: public, no-transform, must-revalidate, max-age=409497
Expires: Wed, 13 Mar 2019 03:31:15 GMT
Date: Fri, 08 Mar 2019 09:46:18 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   472
Md5:    5c2108494bab9bba90efe08158fdfbb9
Sha1:   d49e187100ac524f4cc8a981bf3351af8fa73086
Sha256: 8fe61e54ccb4e4b7bf8f3bfe3abbf46e63aa8edf8d3e9d2914dd292e51789017
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.16
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 03 Mar 2019 23:19:13 GMT
Etag: A4258525192A01B6079C98246CAE4222E28CB05E
X-OCSP-Responder-ID: mcdpcaocsp14
Content-Length: 727
Cache-Control: public, no-transform, must-revalidate, max-age=220986
Expires: Sun, 10 Mar 2019 23:09:24 GMT
Date: Fri, 08 Mar 2019 09:46:18 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   727
Md5:    eb36853da5812717cf02fcdeb8f0e184
Sha1:   a4258525192a01b6079c98246cae4222e28cb05e
Sha256: 5283bac9a9e88e6fd69c51d71e2fe8390dbb1e2f5b351918a9fe25fa220f1442
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         91.135.34.19
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Last-Modified: Sun, 03 Mar 2019 23:19:13 GMT
Etag: E19006525F45D277CA2881104836EB7E4C28E923
X-OCSP-Responder-ID: mcdpcaocsp2
Content-Length: 471
Cache-Control: public, no-transform, must-revalidate, max-age=220928
Expires: Sun, 10 Mar 2019 23:08:26 GMT
Date: Fri, 08 Mar 2019 09:46:18 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   471
Md5:    8553c4e4fcc6bdad6f185d30eba69181
Sha1:   e19006525f45d277ca2881104836eb7e4c28e923
Sha256: cb006824b745569040eebce01044c4183ff138dbe03c312fcae9c3e5fbbe9026
                                        
                                            POST / HTTP/1.1 
Host: status.rapidssl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=100074
Date: Fri, 08 Mar 2019 09:46:18 GMT
Etag: "5c81182a-1d7"
Expires: Sat, 09 Mar 2019 13:34:12 GMT
Last-Modified: Thu, 07 Mar 2019 13:10:02 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    ac0b511afd8aed83fbf1bceeb11b7990
Sha1:   a118a08ea5673d9b937ef87cc3fa15951b34cd51
Sha256: 1eb720c109fca166ad6ffa4eaed2223c08585f5fd9b8b6aa19899136d9f24b83
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=127583
Date: Fri, 08 Mar 2019 09:46:18 GMT
Etag: "5c816ef3-1d7"
Expires: Sat, 09 Mar 2019 21:12:41 GMT
Last-Modified: Thu, 07 Mar 2019 19:20:19 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    502420c1d5814fa22398438176a544f0
Sha1:   502adadcff10d9fc2cbc327597e8030718111b9d
Sha256: bd9b689a2fc7bbf3897b839b103b988e1a6dd35691f411e3860c37cc7fcb729e
                                        
                                            GET /0.gif?pid=5667740 HTTP/1.1 
Host: x01.aidata.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe

                                         
                                         94.130.112.156
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Fri, 08 Mar 2019 09:46:18 GMT
Content-Length: 0
Connection: keep-alive
Location: https://x01.aidata.io/0.gif?pid=5667740&bounce=1
Expires: Fri, 08 Mar 2019 09:46:17 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Fri, 08 Mar 2019 09:46:17 GMT
Set-Cookie: __upin=VwDk7zdM/tnbxui7d3ItWQ;domain=.aidata.io;path=/;max-age=63072000 __upints=1552038378;domain=.aidata.io;path=/;max-age=63072000
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'


--- Additional Info ---
                                        
                                            GET /0.gif?pid=5667740&bounce=1 HTTP/1.1 
Host: x01.aidata.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe
Cookie: __upin=VwDk7zdM/tnbxui7d3ItWQ; __upints=1552038378

                                         
                                         94.130.112.156
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Fri, 08 Mar 2019 09:46:18 GMT
Content-Length: 0
Connection: keep-alive
Location: https://cm.g.doubleclick.net/pixel?google_nid=aidata_ddp&back=SYNC&google_cm
Set-Cookie: gl=1;path=/;expires=Fri, 15 Mar 2019 09:46:18 GMT;max-age=604800 __upin=VwDk7zdM/tnbxui7d3ItWQ;domain=.aidata.io;path=/;max-age=63072000 __upints=1552038378;domain=.aidata.io;path=/;max-age=63072000
Expires: Fri, 08 Mar 2019 09:46:17 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Fri, 08 Mar 2019 09:46:17 GMT
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'


--- Additional Info ---
                                        
                                            GET /widgets/v1/zp-sync?pid=1254153&uid=&url=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe HTTP/1.1 
Host: w.uptolike.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe

                                         
                                         95.163.114.203
HTTP/1.1 204 No Content
                                        
Server: nginx
Date: Fri, 08 Mar 2019 09:46:18 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: utl_id2=9323599430; Expires=Sun, 07 Mar 2021 09:46:18 GMT; Path=/; Domain=.w.uptolike.com utl_dat="CNX7yOWVLRAAINXMk+6VLSjVzJPulS0wABZKgQeWxiscSMvDYomrXm4="; Expires=Sun, 07 Mar 2021 09:46:18 GMT; Path=/; Domain=.w.uptolike.com
P3P: CP='IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT'
Access-Control-Allow-Origin: *


--- Additional Info ---
                                        
                                            GET /Media/assets/favicons/favicon-32x32.png HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=dtm8nqlnmdnpb7pb2es4eveqp7; currency=UAH; cart=382ced5dd9631c122808a0402be7116d706441a3%7Ed478f4b476538219c9dbd6e96cfecb7021821029; _ga=GA1.2.1558057057.1552038377; _gid=GA1.2.1945627345.1552038377; _gat_gtag_UA_128206001_1=1

                                         
                                         109.87.24.5
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Fri, 08 Mar 2019 09:46:18 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Wed, 12 Dec 2018 13:02:14 GMT
Etag: "963-57cd2ce9b1c5b"
Accept-Ranges: bytes
Content-Length: 2403
Cache-Control: max-age=2592000
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive


--- Additional Info ---
Magic:  PNG image, 32 x 32, 8-bit/color RGBA, non-interlaced
Size:   2403
Md5:    ecdc0ffcb4388c6d1ca2bc1b9194ed28
Sha1:   6a9bec53e7a52c37a8893cee8d4493c6f5fcd536
Sha256: d9a5354006717ff41c3fb3476bf5b07408060aecae192e329e458a599a51c9b2
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.20.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 08 Mar 2019 09:46:19 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d7dc0b8e5f78b396312d5b80973f7e3c
Sha1:   1ab7aaf2f70992940e4fdc72d00e728754ea0d5c
Sha256: 0400b301b3825a587be715248d160ef8e834bdc1714ce936be93cd0b05b4eed6
                                        
                                            GET /pixel?google_nid=aidata_ddp&back=SYNC&google_cm HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe

                                         
                                         216.58.207.194
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://cm.g.doubleclick.net/pixel?google_nid=aidata_ddp&back=SYNC&google_cm=&google_tc=
Date: Fri, 08 Mar 2019 09:46:19 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 297
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=CheckForPermission; expires=Fri, 08-Mar-2019 10:01:19 GMT; path=/; domain=.doubleclick.net
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  HTML document text
Size:   297
Md5:    baa6755b2a67e6d215dad8d3709d3453
Sha1:   19017d41841dfaaf8b2cc1916a831979ce03a902
Sha256: 23cc31c9da26db4771b467ff266e7b24becf25ffbbfebf8f21849291ee0b0e2e
                                        
                                            GET /pixel?google_nid=aidata_ddp&back=SYNC&google_cm=&google_tc= HTTP/1.1 
Host: cm.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe
Cookie: test_cookie=CheckForPermission

                                         
                                         216.58.207.194
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://x01.aidata.io/0.gif?pid=GOOGLE&back=SYNC&google_gid=CAESEJW20E1COCNhcYmuhLouhJY&google_cver=1
Date: Fri, 08 Mar 2019 09:46:19 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, must-revalidate
Server: HTTP server (unknown)
Content-Length: 310
X-XSS-Protection: 1; mode=block
Set-Cookie: test_cookie=; domain=.doubleclick.net; path=/; expires=Mon, 21 Jul 2008 23:59:00 GMT IDE=AHWqTUnkJt2yYt9MRMwwCKk2lf1CxY7AgdOfAPzdWe6rXJDGST1AusLFaFf_n9E7; expires=Sun, 07-Mar-2021 09:46:19 GMT; path=/; domain=.doubleclick.net; HttpOnly
Alt-Svc: quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,44,43,39",quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  HTML document text
Size:   310
Md5:    f8765a0ef8506a527b4b3c7195588fd7
Sha1:   283dde98df3c2f6e8ee539945333ed751e9903b3
Sha256: 4835503661dc746553ee73eca87f03125727ce15caaac2a63bbe6a2fbf127f07
                                        
                                            GET /0.gif?pid=GOOGLE&back=SYNC&google_gid=CAESEJW20E1COCNhcYmuhLouhJY&google_cver=1 HTTP/1.1 
Host: x01.aidata.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe
Cookie: __upin=VwDk7zdM/tnbxui7d3ItWQ; __upints=1552038378; gl=1

                                         
                                         94.130.112.156
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Fri, 08 Mar 2019 09:46:19 GMT
Content-Length: 0
Connection: keep-alive
Location: https://tags.bluekai.com/site/29099?limit=0&id=VwDk7zdM/tnbxui7d3ItWQ&redir=https://x01.aidata.io/0.gif?pid=ORACLE%26id=$_BK_UUID%26back=SYNC
Set-Cookie: oracle=1;path=/;expires=Fri, 15 Mar 2019 09:46:19 GMT;max-age=604800 __upin=VwDk7zdM/tnbxui7d3ItWQ;domain=.aidata.io;path=/;max-age=63072000 __upints=1552038378;domain=.aidata.io;path=/;max-age=63072000
Expires: Fri, 08 Mar 2019 09:46:18 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Fri, 08 Mar 2019 09:46:18 GMT
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=128325
Date: Fri, 08 Mar 2019 09:46:19 GMT
Etag: "5c817841-1d7"
Expires: Sat, 09 Mar 2019 21:25:04 GMT
Last-Modified: Thu, 07 Mar 2019 20:00:01 GMT
Server: ECS (ams/4986)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    c9eabfebdb3f1dc0c014a968236d85bd
Sha1:   1ad64aba7933b9a69527cfeef237c927d2e8b19a
Sha256: 121808249f53d993bc6ff06586120eb7a5b6001540cca64b2979b9738b4c226d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=89623
Date: Fri, 08 Mar 2019 09:46:19 GMT
Etag: "5c80d8f2-1d7"
Expires: Sat, 09 Mar 2019 10:40:02 GMT
Last-Modified: Thu, 07 Mar 2019 08:40:18 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    fc6173a327f4ef7070924f364f64398f
Sha1:   69657a6391a5c41e7d5fc4e17857814ba37d099b
Sha256: 3c8a05d2e421308364ff6f2bb73dda4e4b37a1dffc2969149309b291b122045c
                                        
                                            GET /site/29099?limit=0&id=VwDk7zdM/tnbxui7d3ItWQ&redir=https://x01.aidata.io/0.gif?pid=ORACLE%26id=$_BK_UUID%26back=SYNC HTTP/1.1 
Host: tags.bluekai.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe

                                         
                                         2.19.123.132
HTTP/1.1 302 Moved Temporarily
                                        
Content-Length: 0
P3P: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV", policyref="http://tags.bluekai.com/w3c/p3p.xml"
Location: https://x01.aidata.io/0.gif?pid=ORACLE&id=$_BK_UUID&back=SYNC
BK-Server: 2000
Date: Fri, 08 Mar 2019 09:46:19 GMT
Connection: keep-alive


--- Additional Info ---
                                        
                                            GET /0.gif?pid=ORACLE&id=$_BK_UUID&back=SYNC HTTP/1.1 
Host: x01.aidata.io
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe
Cookie: __upin=VwDk7zdM/tnbxui7d3ItWQ; __upints=1552038378; gl=1; oracle=1

                                         
                                         94.130.112.156
HTTP/1.1 302 Found
                                        
Server: nginx
Date: Fri, 08 Mar 2019 09:46:19 GMT
Content-Length: 0
Connection: keep-alive
Location: https://ib.adnxs.com/getuid?//x01.aidata.io/0.gif%3Fpid%3DAPPNEXUS%26id%3D%24UID%26back=SYNC
Set-Cookie: anx=1;path=/;expires=Mon, 11 Mar 2019 09:46:19 GMT;max-age=259200 __upin=VwDk7zdM/tnbxui7d3ItWQ;domain=.aidata.io;path=/;max-age=63072000 __upints=1552038378;domain=.aidata.io;path=/;max-age=63072000
Expires: Fri, 08 Mar 2019 09:46:18 GMT
Cache-Control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Fri, 08 Mar 2019 09:46:18 GMT
P3P: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'


--- Additional Info ---
                                        
                                            GET /Media/assets/favicons/favicon-32x32.png HTTP/1.1 
Host: babykroha.ua
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Cookie: PHPSESSID=dtm8nqlnmdnpb7pb2es4eveqp7; currency=UAH; cart=382ced5dd9631c122808a0402be7116d706441a3%7Ed478f4b476538219c9dbd6e96cfecb7021821029

                                         
                                         0.0.0.0
                                        


--- Additional Info ---
                                        
                                            GET /getuid?//x01.aidata.io/0.gif%3Fpid%3DAPPNEXUS%26id%3D%24UID%26back=SYNC HTTP/1.1 
Host: ib.adnxs.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://ulogin.ru/uptolike/?u=https%3A%2F%2Fbabykroha.ua%2Fsystem%2Flogs%2Fxt.exe

                                         
                                         0.0.0.0
                                        


--- Additional Info ---