r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7344
Expires: Fri, 02 Dec 2022 05:04:11 GMT
Date: Fri, 02 Dec 2022 03:01:47 GMT
Connection: keep-alive
kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
188.114.97.1200 OK 15 kB URL HTTP/1.1 kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (20374), with CRLF, LF line terminators
Hash 94ed710bb7736f200c3893499cefdf3f
80d55a0356aa4a02ae69f91244aad91921b45680
d4eda8f74d99555e7d815064cb0cf1329bf10ed9e70ef81bf3d577e7e65bfb2d
Analyzer Verdict Alert fortinet Phishing
GET /dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:47 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Cache-Status: HIT
X-Cache-Skip: 000
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WbYc0Z85XxflUuFc1lpg%2FMRIgJKFqrWwqRzLmHEiGuBRtdqoOjhwRkHnPeBGg898QTBUHV2D7OEewlZpSb7ow5M%2FgQY07wpqm%2FyUalkzZn2qU9vgN8ygBrCAyqbhQWiwsfZ2rho%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7730d1edbe65b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2998
Cache-Control: max-age=116362
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:48 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 11:21:10 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 02:18:10 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2618
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5227
Expires: Fri, 02 Dec 2022 04:28:55 GMT
Date: Fri, 02 Dec 2022 03:01:48 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: fr9ZGBcxF83+yQM1CLbwuDqTVGmMyu+S31UgGum7ZP5lk5mMBGIyvHscYhOfkPRI80P3I4bNHkdpun8Ur9UtNg==
x-amz-request-id: A8ZA0QGYMK33QR5P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 02:46:32 GMT
age: 916
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 03:01:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
kozbanov-lawyer.ru/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.3
188.114.97.1200 OK 676 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.3
IP 188.114.97.1:0
Hash aed6d7df00952fe5e2c7c636649262f6
7d27a3280224fa23a11af27e6816ba0a49ab5d70
06c5b0cd3f5177c83dc46e5fa8aca26cd4c79f9a3a256cfd03352c129039fdf6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.0.3 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:30:56 GMT
ETag: W/"5c125100-6cf"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173516
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bbOef6211TV5%2BBta4z6PIDbNNIQ15oI8OQ0bPbD6GHP%2FVL5Qah6NG6jUWgLQ%2FC7mmQ65A7uCrJr168QyumkSYmeCl8B9nWb%2FzrZ8vg%2Fd18XNuo6l6wdOrHo2lA1IHSu1h2psC3c%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f01e08b500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/plugins/table-of-contents-plus/screen.min.css?ver=1509
188.114.97.1200 OK 451 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/table-of-contents-plus/screen.min.css?ver=1509
IP 188.114.97.1:0
File type ASCII text, with very long lines (1156), with no line terminators
Hash 9cbb12ded165859b75441a829fb683af
1e85f7bd7f0fa9dbc53157bbead5eb703c502db8
3dba212407392e05ef866072e63f519c9ef7365ea376cb5a8824e77726a6759b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/table-of-contents-plus/screen.min.css?ver=1509 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:32:13 GMT
ETag: W/"5c12514d-484"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173516
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EikYVwLVxwpoMeL0loVpKE0Y7wB6NAAqQM%2BciZ3NO6yLZFeXTe%2FuxqdKyJkOBTNsAwo%2BaUGvqYFyxm2cMU%2BQQCMaHQJbHwtgNaQ6uriVNzvHdHVRdOohhNv1p68odhEJbiW7s20%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f01cf7b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/grid-responsive.css?ver=1.0.1
188.114.97.1200 OK 1.2 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/grid-responsive.css?ver=1.0.1
IP 188.114.97.1:0
Hash 71cbbc2b4b75d38fde4164930c4b1a5f
bc669826f776560c05ed95d509c6048a4e731ff1
c6f60ff63ea7e00e90f3db1812ab9600d24f17a153f923db3e5fbaa31ed3342c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/css/grid-responsive.css?ver=1.0.1 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:02 GMT
ETag: W/"5e4d72f2-153e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173516
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zncEXc1HVHo9tGZ0slh0J%2BGRFmqD%2FfALylZ%2BM1ttyLjtaSwxRInbPS9M%2BRDYKQ7ZhL41sa4VtY1ROR9kCmNtR3jfR%2F%2BXmb3kD3yVDQAy%2F6pz0OcvlYsO%2BsvCegO%2FwJguhEZqWWE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f02c4b0b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/master-3a9d5bbe25fa4ce5b9fec2f02ef5f866.css?ver=1.0.1
188.114.97.1200 OK 21 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/master-3a9d5bbe25fa4ce5b9fec2f02ef5f866.css?ver=1.0.1
IP 188.114.97.1:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash dd9634fd6b76b33a1ecc722ec66c6594
60cde4939736097ec7dc5001e889635bcf60f2b7
514351d0c268660be9fa9a34578c4146032b70f5835f6ecd4bf6b12b673cf14d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/css/master-3a9d5bbe25fa4ce5b9fec2f02ef5f866.css?ver=1.0.1 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:02 GMT
ETag: W/"5e4d72f2-2613e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3pdtH7J2rw4h7Yw5gB9uCiSx5vZBQ0NpOgtTU3ebAVUXUoicnCP8N53TCNnpjNtijo8seGxfb2uGjCs4L7YXzDNbwMbOrn7bShxFuQeJIsKHfdUoc3SF%2Bsk%2FEcgrQNFRBPYOrbA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f03e12b500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.24.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:01:48 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 191296
expires: Wed, 22 Nov 2023 03:01:48 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qMpV6t4%2FLlfZG8eZxbfzYV0Hf%2Fy2bHNGuZG5c1Ia2IBu7yGYchZ%2F8ghvDV0p6nwqCwa6AHlXkGyfmKaPKhSn5t7CMxAcXctvMu8QQzfpp4m2GW957mFn6N%2F4mF9QhfqIg29J7Yo1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7730d1f06e351c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/master-gecko.css?ver=1.0.1
188.114.97.1200 OK 237 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/master-gecko.css?ver=1.0.1
IP 188.114.97.1:0
Hash 42b856f70401792ff61ce39f0d15187e
d89f7caec9972737f77b4d6effc214e5ddc6e8c6
498fb25e1b77547c448f19fbbec16747f9ad3ffede9e65af1df28e6b51e7c7c5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/css/master-gecko.css?ver=1.0.1 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:02 GMT
ETag: W/"5e4d72f2-147"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fy3axyBxgLRcVB%2FBBEYVO73kgTfMGqAgF2NUQ3oOZ4JEUNEesR9R1A%2B4ctCOuz3Q%2BkiVVaba%2B6EWz576hGYWboSv1wlwGWd4vPN49YKLOYrq7E%2F%2FSmRzJQKV38Z1WloNEPMJUTc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f03d03b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/menu-dropdown-direction.css?ver=1.0.1
188.114.97.1200 OK 310 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/menu-dropdown-direction.css?ver=1.0.1
IP 188.114.97.1:0
File type ASCII text, with very long lines (1519), with no line terminators
Hash d73a797f7592ab9bce3849ab5737817e
9423b36627b10be53d0806fadfe6c8d8d68f9e71
f7d7f8fbdf96b9b72d137ad3ea7ad6bfbd9b935b04f697d60d9ee4600b9478c5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/css/menu-dropdown-direction.css?ver=1.0.1 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:02 GMT
ETag: W/"5e4d72f2-5ef"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gkgKKEeobzZAQ3TPO8%2Bu%2FMcg3d0M51f6Zv4WLe7KEHLdgFn0pObCWF3Pu1hloXR%2F6MEiuGuGQxnVxUq13QV8X44fRzYa7ggtIkn%2BruPA2NrdCj2Ifo38qrwslvBJ%2FfT6%2B0GPlNo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f08d39b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/templates/rt_vermilion/css/systems.css
188.114.97.1404 Not Found 627 B URL HTTP/1.1 kozbanov-lawyer.ru/templates/rt_vermilion/css/systems.css
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c95b644b53c4bce1ead22a9708a5eeac
075ad54e440562674721bca80c6deed23d1a084d
ef94074762d3397c8ec71b8bdb94993543cb4d33c618453f135741d49ba2c704
GET /templates/rt_vermilion/css/systems.css HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 404 Not Found
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gVlaN6iJSpNTNRfOlPmoJQcRFSYCKjELHDcRwju3WiZ39P4%2Fr9NfBBJC787EzdfvlCp06f7133S30ifoMy%2BZbQPeAqaZDhbNzv6uOzg1N%2BnqkCeXfignEIXcu%2FuQ%2Fz8WP5q%2B5iM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f01fbcb505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/style.css?ver=4.9.8
188.114.97.1200 OK 474 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/style.css?ver=4.9.8
IP 188.114.97.1:0
Hash 64512c3158a4553e2793a93d47c71224
51c04d04a577de6c3ebae959d392d8d49b906733
be702a318efa54999935c28540445356ecfbba55d3ffc14776ae15e92f3a18b7
GET /wp-content/themes/casino-theme/style.css?ver=4.9.8 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:19 GMT
ETag: W/"5e4d7303-330"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zLSH%2Fk7zStCRKGV6eYxGnHb2Scq63po47sNXa7wY%2F9RXfgNHhIm%2FVB6FEEc8%2Fji9KSLAGU3UImt9Xd4GedIj4%2BiQ9CYO0c%2Ftd%2BNDIRM8nJ002X6uF7Ag6g%2BDLmW2GscAJI8ytwk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f02cf8b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/plugins/wp-special-textboxes/css/stb-core.css?ver=5.9.107
188.114.97.1200 OK 792 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/wp-special-textboxes/css/stb-core.css?ver=5.9.107
IP 188.114.97.1:0
Hash 28e92d0115685376ea13f80d4624cd77
5c49d2ba210b35e9d558c6cf13a5bccaaa950ed8
482f6d092f111156af642386342ff908983668446198cb59289e92180312dc86
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-special-textboxes/css/stb-core.css?ver=5.9.107 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:32:27 GMT
ETag: W/"5c12515b-e8a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RufpYsbCIKVAQRQYWcusqVjw290PoD2jZqWSQTmTec9BwY21Re2uZSaMV50kCbeWJ1Uz0Tq1Ickay4VDe5CorMJNvoKADIW0COhlw%2BA%2B0KTzzT8q9zbBODo1bpK%2FP4q6YuPwceE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f0dd5ab506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/mediaqueries.css?ver=1.0.1
188.114.97.1404 Not Found 627 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/mediaqueries.css?ver=1.0.1
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c95b644b53c4bce1ead22a9708a5eeac
075ad54e440562674721bca80c6deed23d1a084d
ef94074762d3397c8ec71b8bdb94993543cb4d33c618453f135741d49ba2c704
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/mediaqueries.css?ver=1.0.1 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 404 Not Found
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pxmTv2UXyCC0VbXo3pN1QArXvra1f1EkUb6KLX7v3BwVYI3kWkDJl6ZfBiC6bHkOdk6GOR3QxRbjPx1RIMb8ii2r74ilY1YJYPeoK7IIarIhZlI%2BGlkBEeuxTJGmZWLk4LuECa0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f04e1ab500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/demo-3a9d5bbe25fa4ce5b9fec2f02ef5f866.css?ver=1.0.1
188.114.97.1404 Not Found 627 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/demo-3a9d5bbe25fa4ce5b9fec2f02ef5f866.css?ver=1.0.1
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c95b644b53c4bce1ead22a9708a5eeac
075ad54e440562674721bca80c6deed23d1a084d
ef94074762d3397c8ec71b8bdb94993543cb4d33c618453f135741d49ba2c704
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/demo-3a9d5bbe25fa4ce5b9fec2f02ef5f866.css?ver=1.0.1 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 404 Not Found
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9fao%2FyAuVgoNmb3oAtxbfeiIwSZgAZ5efPUivH2cBEhBhFG8bfH8Lb9xHty8It2RhHT6F%2FAWKBvqvZJqjSM89kZ3Yx3CL%2Fft8s0wqhD36ye1Ry%2BvLpAvwnkTHf%2BEnkSvz4NAdns%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f04c570b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/themes/twocolumns.css?version=3.6.4
188.114.97.1200 OK 589 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/themes/twocolumns.css?version=3.6.4
IP 188.114.97.1:0
Hash b1e45bf9bcd536be8008b443608c6c6b
0d22ff7469317a36f82f2b6274c9c791daa21b24
e140ee41b7a34f1a34911b6cd5c933673469cbd4f60777f23c1e4d82e810bfa3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/themes/twocolumns.css?version=3.6.4 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 25 May 2018 08:00:30 GMT
ETag: W/"5b07c29e-881"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J%2BRvBmXqJbVysVeVOsZbZ4wY6pbhNhfVXXH3MejV2ISdtWb%2Fcr8uvsALlpvQFwxJ4a7u%2F13LYMHxhCsflYVY7PjR8WM2ls%2BhEn8srkyfRp1qCY5jx94GdbHPZ3QQmKpUvA2znIw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f0ecaa0b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-includes/js/jquery/jquery.js?ver=1.12.4
188.114.97.1200 OK 34 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 188.114.97.1:0
File type ASCII text, with very long lines (32077)
Hash 3a80fc6d5f853164f2f53a98659c0c21
3327cc9fd1e64d96894c1322e3ef52dea7fe4cf1
c390de9d0d8953f70b165680d6122a3fc871006c67a676030596a4c36e882674
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:33:01 GMT
ETag: W/"5c12517d-17ba0"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QoqL0nP2nfTCWSR2Fe79zgLRjdQWzyJY%2BV%2BXoAuHNy5Mj8sYE%2BKUTcU2LRnKK59VEQCktZNwhRQg8zM7ph6JtjRlHOOzLUgIt%2Fv%2FMGgG5KdDPikbbsmdalkWOPKBC%2BxWOsSzQDY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f0ed5db506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/menu.css?ver=1.0.1
188.114.97.1200 OK 2.2 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/menu.css?ver=1.0.1
IP 188.114.97.1:0
File type ASCII text, with very long lines (11594), with no line terminators
Hash d0c9fed4ee25a9901b0075392fced627
8e15174d523c566ecd24b03bd6f64284b3bb89bc
6707a90e066997a1a63b069a02ac745de76a5d85468aad53e9a773874f7b522e
GET /wp-content/themes/casino-theme/css/menu.css?ver=1.0.1 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:03 GMT
ETag: W/"5e4d72f3-2d4a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mK20FfLa3GkGH%2FAlyRSTzvQmgZFykV4IfI2JYCwCqrq4bvwrjUbXIvftytF6wBYFGZvdxP7vyxwkvnGn7HSfPcgXjJSG99tSbXbMReWvX7Y8xpVEr9NQ5UaDFD1EvCuzAN58Ado%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f09d42b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.3
188.114.97.1200 OK 4.0 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.3
IP 188.114.97.1:0
Hash e0e4b1426b3215295e18e962a7d55f92
05ea8fd2d6c296a08cfa892650b84408ff473e7c
7551622c8e60a0bc7ea9f97ec1d26e7706618d171b4edc99ed8276872e231970
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.0.3 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:30:59 GMT
ETag: W/"5c125103-38f9"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9MjX4XB2ELsibYmiM5lq0AIyq9pszERH%2BGIloBX%2BgddhlJSsnOwIGj6xXZD6O5v%2B8nTVVYsSAiY0VB2gzNMMPVXIQVY6dRyhliIRs4nkGU%2Fni4lGdO6jea9B9SYI3MX6SwBIHUk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f14d7cb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/plugins/table-of-contents-plus/front.min.js?ver=1509
188.114.97.1200 OK 2.3 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/table-of-contents-plus/front.min.js?ver=1509
IP 188.114.97.1:0
File type ASCII text, with very long lines (6091), with no line terminators
Hash 4f4a997bc181498157d148ba9b649949
87ff26f8385fcf11c28fcc40c2e5619a8138f44d
fe722eb1adc5eb6c3642f87ba188bfb0b899130719fd73381712d6d710d3ed4b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/table-of-contents-plus/front.min.js?ver=1509 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:32:10 GMT
ETag: W/"5c12514a-17cb"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0LTryACKbCCLHfoJCflFua5aMBUYxbqvYIugUxu6vgyoX6k9eIrlfBBEPjoLjzYW4iM1expnvDF%2FUOXDy%2FMIHNMnc7GuzU4Sdia9xAHV1xU1CIbqQY5tpwCEfeA7cQf%2FRZKPibI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f15d80b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/navigation.js?ver=20151215
188.114.97.1200 OK 1.1 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/navigation.js?ver=20151215
IP 188.114.97.1:0
Hash 8da166d76095153623e6bb934ef7525e
e5d0c5d545b3552dd5bf200f29e8f2c8e77ab221
56d5b07b11a2624298632471d166c6197da8a64a9d85d412efe32cc25cf8557c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/js/navigation.js?ver=20151215 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:18 GMT
ETag: W/"5e4d7302-b97"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LqMYvYzWeCkNcX1RC7XLRsuOhVediumzH8vJ9JWOYL50f%2B3%2F2zikpilVJyT6gxMiZ671cHet7H%2FoNu4nKVkfH0bzAu2wfiUN7LukduSHGOHDYTbhBGH4fe7tnoCyrSbGzqY99NM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f16d86b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/edit.css?ver=1553007840
188.114.97.1200 OK 1.2 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/edit.css?ver=1553007840
IP 188.114.97.1:0
File type ASCII text, with very long lines (390), with CRLF line terminators
Hash 36d221b51828ef8bbcf62f1c250ddeba
8276b7312f88f9e7d66bc9f68deb1ac29e7eda5b
ebc9fa2711b97b9ae51a1e8bf173a46a74007041bf642614685ba36dda0717f7
GET /wp-content/themes/casino-theme/css/edit.css?ver=1553007840 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:02 GMT
ETag: W/"5e4d72f2-eb2"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QdMW855NzfqmcIKkbXH1PfosshgD%2BPBPxtGaWg2QhykAKwDOLaTqa8VW9TeGFFiBE1aeZrErhMl6mrPhvClcYsHawpNQMQYGB334iD5YLMrvPzjLRttjXrUv8KyJ1Ko7ELrvhUc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f0bffbb505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/skip-link-focus-fix.js?ver=20151215
188.114.97.1200 OK 416 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/skip-link-focus-fix.js?ver=20151215
IP 188.114.97.1:0
Hash a58187e217f4b2ee9cd10e8954eda607
49f6e0418c24f410db3a8c8681a7d98455d15e9d
69bf8d27242351ec81cf610c4d994e047c2ab1b5868b9e252596eee0a3d6d278
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:19 GMT
ETag: W/"5e4d7303-2ad"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VHfqflv1TWxY0VG1JyKlmVHGwJJHyarOlDEJNhQafI0fZFMb9QVDTB51YXJi%2Fhh6aDtV3SdBp7k6GLH15lP%2FA6NN3ikAlwkFEUA3hC5hEHpR6B%2B37CLfgh6gaUlOAQxWzU9MywA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f16d90b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/jquery.min.js?ver=20151215
188.114.97.1200 OK 34 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/jquery.min.js?ver=20151215
IP 188.114.97.1:0
File type ASCII text, with very long lines (32077)
Hash bcf328167425e857c585773a83f0a9f1
5bf83602f9bb9607edba90a4564c8aa81e09c291
994b0b39c149e2a731357570951341f99d2f50cb1c7e1588e8ff30b665d4136e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/js/jquery.min.js?ver=20151215 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:18 GMT
ETag: W/"5e4d7302-17b8b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GmWZzaZjLCU3Fr7IK2dHbYmjceDFOCb%2Be3Fa9ypk3GG1Z9Cp%2FytOKb6mW84IoygL7CHS1HZELd9v5r7bwk1qP9gKBXEv2wzuGSkPiRlTkUUtegTzjkaXou52g0%2Fzm%2BfD1k6dRt0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f16836b505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/jquery-noconflict.js?ver=20151215
188.114.97.1200 OK 21 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/jquery-noconflict.js?ver=20151215
IP 188.114.97.1:0
Hash e2060c4e5e5955c824723b13a212d3ec
18420ce484978f8ba3d7371febf1638828bb7a67
5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/js/jquery-noconflict.js?ver=20151215 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Content-Length: 21
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:18 GMT
ETag: "5e4d7302-15"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1YY%2F8RfQBOtLM4%2Fvk5d6qm5Hqv%2Fn8S37vpyqNDZ9h6TjJEoWVN%2FqX0nsM6SkU6R2991ScbbDiaFSircceBAcDpx1Li8h19aComW%2FQrr0TC61DsIv0nVxodYW6JQ1h4R2m5%2Ffqo0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f17d93b506-OSL
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/caption.js?ver=20151215
188.114.97.1200 OK 334 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/caption.js?ver=20151215
IP 188.114.97.1:0
File type ASCII text, with very long lines (413)
Hash 67dcbc30fcfad1892362b21170522298
3ff742e04689a2cad78f844f1b76d457bdb72ca5
81c52b778cf87c87d1569c8fc4229d226eaab8e86833d315ec48b48be074fba1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/js/caption.js?ver=20151215 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:18 GMT
ETag: W/"5e4d7302-1eb"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aeNLbkTVw9XU7beoTAH2n7y9xSd3TwnLo4eoCwas7rjXZdwyTlKouBJxYFs0DSpaKUgMwUeJ0hDCtgPXNdbkSrOCyW4tkPEW4fqdz22XvepFBSmC9DkwFZH%2B%2FuAdan6R3UFws50%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f18d99b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
188.114.97.1200 OK 4.0 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 188.114.97.1:0
File type ASCII text, with very long lines (9959)
Hash 2f89b08855471c7476435ce0bec33ba7
970533f152623df03b5fc6fb793b21889e4e0349
d200586b6dd1ff779b6c30947361ff736e076d8c7d502505ab3174ca33455ea0
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:33:01 GMT
ETag: W/"5c12517d-2748"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FbYCd%2BcAXl3QGf4Y3BnCQQoFO3W65sbC7w4XUtMZa2OSvk%2BnAc6qRWq%2BmPLjwUl6xvzgdYExBUww6fRkSIh9aC%2BgW%2B8bQwEkdNj310Vb71lJRRtFm50HSog02yuHnce89fVDtDU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f0ee4bb500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/mootools-core.js?ver=20151215
188.114.97.1200 OK 27 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/mootools-core.js?ver=20151215
IP 188.114.97.1:0
File type ASCII text, with very long lines (785)
Hash 4c23651950610db3ab0eebcf75eafe08
78bc489136a6d10bfbf2e2a17ede591d5049ab95
51e3113569751f8acb6086c37fe8af13e9779e0538912531daed843f895e5dc6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/js/mootools-core.js?ver=20151215 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:18 GMT
ETag: W/"5e4d7302-147b5"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LKLBytFoAuwmchTWdkET6Q0R7gOPWyBQHcp4oYEyd1bvcfzRKi7zNlWcOW51PHIWZcsis9bciIEzIk3g4WxfSyyZtE0mXHMLiCrk2nd6qyWFf%2F4D8He4VKsDsgd7uDCxXSKBIlM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f19da2b506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/bootstrap.css?ver=1.0.1
188.114.97.1200 OK 18 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/bootstrap.css?ver=1.0.1
IP 188.114.97.1:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8ccc3caeb4d179c7411ced0d453568d2
24f7e038de1ff25d1d5640880a0dcc2a35a6c9ca
0f597bf99dcbb112a2ed509e8883f79ff735b518157dad9cfb59a6d685e8b144
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/css/bootstrap.css?ver=1.0.1 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:02 GMT
ETag: W/"5e4d72f2-1a1f0"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lfw5beudTlVwePv5YKlNt7TuwO6KQyvWI6qGdas4%2FP1bKsY8i4s%2BISLY3JwcTDcGfMRd6cb%2BzolmdFxC%2BLnbiJruzYQ1XdGGVHg47tr0bzztyoT8LLysj7XSyxKvMAdgRuv%2FLPM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f029c7b4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/mootools-more.js?ver=20151215
188.114.97.1200 OK 68 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/mootools-more.js?ver=20151215
IP 188.114.97.1:0
File type Unicode text, UTF-8 text, with very long lines (2903)
Hash ae2d2eb322f5b11a8cf9b87e102212c5
7a27aee33f8cde60c36ab776156e4816aa141ef9
dc69b934843a0073d6b6c1125536775cd92a41d21ce2160a1ed2d7cfe1de490d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/js/mootools-more.js?ver=20151215 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:18 GMT
ETag: W/"5e4d7302-39d19"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DF2BOhCGTbX3y8R9IbJmq8IjPNDtvXjhkBoEk1SoPz0%2B3KA8BAadOuMAgBFby%2FuTOAaBeJcYwjrdoDwPJdyGigE4vc684Ok6ViZ4lxg0yuO5sf27vrJaD6G4nVJDAOh7EJV19ns%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f1bdabb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/chart.js?ver=20151215
188.114.97.1200 OK 4.5 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/chart.js?ver=20151215
IP 188.114.97.1:0
File type ASCII text, with very long lines (536)
Hash 76ee9e365261a3cf2b0fd565d601b8ef
822164a3fb51ffb55a5c3356f1a79a29df58a600
264d38df92f6e62b140f92c260ac96af2e210429c40d7b19971313cfccd77af2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/js/chart.js?ver=20151215 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:18 GMT
ETag: W/"5e4d7302-4d31"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9CbMAj9EwXGQ4%2FtpOrx0wO7ElLOiqFPXepMEsWDWKWHxmWFiapF%2F11ErY3Z8p8%2FTWK%2F51e%2Bi%2Bxd3ZNsQOyqThY3Kn%2F7UiNfYKfJMWbEsoHTxiHOW%2FNM3XPyUsVVjxHpkSCMFWQs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f1da5bb4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/gantry-totop.js?ver=20151215
188.114.97.1200 OK 187 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/gantry-totop.js?ver=20151215
IP 188.114.97.1:0
Hash 2b2ecc6023c34d28dcf10a7b57cdf412
b5dcb37a2e705625537c8b2c62cd2ad96114fe5d
c95d89cd5045462341bd479951e46f511bc198a007e1c3c2f701d3da9d754e7e
GET /wp-content/themes/casino-theme/js/gantry-totop.js?ver=20151215 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:18 GMT
ETag: W/"5e4d7302-ff"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F%2BatwvYl77BIAX69qaj4qtCXz8q8K5%2BGeSVcVFqqVKCX%2B96qxYK0Xo0RcyAg6fMT%2B8ZHPbdi5ncEhL%2Bb6YkNhgJitsVv90nrYMrzSB5bFaBpzMCCSKmAOuWhPN1uxYWe7L3hwkg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f1edbab506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/browser-engines.js?ver=20151215
188.114.97.1200 OK 1.3 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/browser-engines.js?ver=20151215
IP 188.114.97.1:0
Hash cfc860ea4db28072a31107b1209fe911
97f3a367aaf72d84a83600996efefeb0d3cb849a
6be53b71dbaa24897dc595a018bf5287257cdcd4a559c44b8a8af6d7d9842369
GET /wp-content/themes/casino-theme/js/browser-engines.js?ver=20151215 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:18 GMT
ETag: W/"5e4d7302-e10"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0IoMaxpjxjqHyEFd3GI%2B0zNS4WQ3D8AIL7H3k%2By0IpRc%2FVCU5uS1%2FNqU6pQNRkLmPjSMT21vKNIeMhQ0Vh5%2BwssiQ0JoUdYMwUA5zqZiaVqqiBdDOkGDrSKQ5wtQ0Q3syntHLng%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f1ea61b4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/jquery-migrate.min.js?ver=20151215
188.114.97.1200 OK 4.0 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/jquery-migrate.min.js?ver=20151215
IP 188.114.97.1:0
File type ASCII text, with very long lines (9959)
Hash 2f89b08855471c7476435ce0bec33ba7
970533f152623df03b5fc6fb793b21889e4e0349
d200586b6dd1ff779b6c30947361ff736e076d8c7d502505ab3174ca33455ea0
GET /wp-content/themes/casino-theme/js/jquery-migrate.min.js?ver=20151215 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:18 GMT
ETag: W/"5e4d7302-2748"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gxWrkS50TD6UO%2BFHjRC14N%2F%2FNpcCNKqtxfrxm1h8vSqJ46CTO%2FDi5N65UVY2QHXieEFUj9sPbBMwr6FGrmGch%2FoPyUwHFdv0VctF063X5KVzSTqbtXV5RB08PvXi6A1xtm9QXyM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f1783db505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/sidemenu.js?ver=20151215
188.114.97.1200 OK 1.2 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/sidemenu.js?ver=20151215
IP 188.114.97.1:0
File type ASCII text, with very long lines (324)
Hash 7adda2b653b829227d343abe1311494c
ff506aca52274fca851f381bd2a2386fd40da4de
2c43bcafef1aee5b49d272f9fe89b0c2c423748e3c3e2f9469d6c7ce64ad9187
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/js/sidemenu.js?ver=20151215 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:18 GMT
ETag: W/"5e4d7302-c12"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6GBLyzlIye6eoIXjpS41Rk%2FVHc3xjAGdxjW8dy2cN1fkbJaFJ8JCtPORwFogsbUDvfdX%2B8WA1rFuoBpruNQxb84yGhnEiddnYw5wh8mvh8vCZUgyZf07nV6lSXfReXi9SFwig4Y%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f22a77b4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-includes/js/jquery/ui/effect.min.js?ver=1.11.4
188.114.97.1200 OK 5.2 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-includes/js/jquery/ui/effect.min.js?ver=1.11.4
IP 188.114.97.1:0
File type ASCII text, with very long lines (12815)
Hash 856be0bcf6f83bda23869b9d928070f9
78ec42aedab08604ab3f9d8a5f604756f160cca2
8b9fa2f42ec45e87a0c573c35583a1f17e99c7558651576a09fe82b0d38eae05
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.11.4 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:33:03 GMT
ETag: W/"5c12517f-346c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uqTMKSftL9C54FFWvCjABjlTIrnZCRyPEipJUem1XDlCXwdQDNoGXgTnkRepl%2FTOO1GI%2Bf1rBhYYR%2B3u1UNjPSIGRZYSWJ65cTnePIfACv84%2FxoQk7awr06gTwVb03j4ijPiQOI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f23a7bb4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-includes/js/jquery/ui/effect-blind.min.js?ver=1.11.4
188.114.97.1200 OK 651 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-includes/js/jquery/ui/effect-blind.min.js?ver=1.11.4
IP 188.114.97.1:0
File type ASCII text, with very long lines (909)
Hash 96f627e7798c9def04ee4b1e7714ab6e
4448490e333c96bec60f73524e3cb31632975283
b4beccacfc6e0c0dd3d311c6384ab0bfbd19431e8e83241b82bddc7d31ce7fa4
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/effect-blind.min.js?ver=1.11.4 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:33:03 GMT
ETag: W/"5c12517f-473"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r%2FYzHWlKtWqW463%2Fxb6qvFdFlW2c5SJ4EwiXhORhigfDNwscmoMEidj%2FbiYt9rFAPQuW6eRFxPNP%2BqGIm25QWi11cOmyOMZ8mfgNvHRrctTTcQUDKv7QgZ7AHBGta2Bt%2FgD1fhI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f24a82b4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/plugins/wp-special-textboxes/js/wstb.min.js?ver=5.9.107
188.114.97.1200 OK 548 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/wp-special-textboxes/js/wstb.min.js?ver=5.9.107
IP 188.114.97.1:0
File type ASCII text, with very long lines (1087)
Hash 72091825ef7903704f9a7eaa0cc1f657
c89609424b128d042711f6a056d6b3b657dccc52
08c73ef9e50d21576593c091ee035966ba02ca5232d71fed2bb5d644cf3a4275
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-special-textboxes/js/wstb.min.js?ver=5.9.107 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:32:34 GMT
ETag: W/"5c125162-465"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k5LE1np2nTdY6zxumdwUx0kaQxcvZPklsm304ZjyAeNZbVL7yiOEl3yZHrYVzpRzY%2FAws%2FvMqFRUf2CBf%2FBIN08MAOJBc24Orr6CpwsY%2BWJ2sxv9ZjNi%2BUD%2Fe9VPl%2FcWnzc6Znk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f24a83b4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/rt-parallax.js?ver=20151215
188.114.97.1200 OK 387 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/rt-parallax.js?ver=20151215
IP 188.114.97.1:0
Hash 5b2eeac89cca9a738e26f2c45ca3b316
d3656cfa2054381a5c75c1edef82c379d48a46bb
400e83ee529ee06858a97b364dd9d9db8a65febfafab9334c602dc37cefdc016
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/js/rt-parallax.js?ver=20151215 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:18 GMT
ETag: W/"5e4d7302-397"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GGrIKOXsSZPWtKnVAGp7a21sTcLaf%2B%2BXMUzRviUYtdGxrJ2ttearuWJmF9VQKYvehOVGYOOVLD%2FlwU7chZ3mSu%2FTCX3%2BE8JpcuIBrY8AGFNwQSz%2BbbM9o49S5bvRClA%2BYh%2FuJNs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f1de8bb500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/rokmediaqueries.js?ver=20151215
188.114.97.1200 OK 1.7 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/rokmediaqueries.js?ver=20151215
IP 188.114.97.1:0
File type HTML document text\012- HTML document, ASCII text
Hash 5da0e9224ce987bb2cd10033c191e565
1c60cc73f9cde5503fd2823b47f55bccdd4a2a59
f4742f7e683472498056b4b5aef824a8992b398b82ef5dd8f6fd07e7e423319f
GET /wp-content/themes/casino-theme/js/rokmediaqueries.js?ver=20151215 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:18 GMT
ETag: W/"5e4d7302-1244"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PdU%2BAK9Y9zmj40C5wYGDqI8qvvJRSg8yqxBVai%2BCSHLY3TBfTEEaes1U3N6N3TMsGMjj%2B6O%2F2lRBG26oqg4JSG93LfJFSp6%2FPnA44CBvPbybsVIkWaAAYqy0KGd5bTIOp8n0NfM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f1fdbdb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kozbanov-lawyer.ru/wp-includes/js/wp-embed.min.js?ver=4.9.8
188.114.97.1200 OK 756 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-includes/js/wp-embed.min.js?ver=4.9.8
IP 188.114.97.1:0
File type ASCII text, with very long lines (1398), with no line terminators
Hash 77ce65aa27658b26944312e742e1d204
952f595220a39db2f6c8e65c648fa6b1ecf92024
277851a5b1d095133da0244edd6952c2f6fe5ec1b25633812001abb796681616
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=4.9.8 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:33:17 GMT
ETag: W/"5c12518d-576"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WzUnznD2haxji%2BNQvFEY5rx1i%2FyV0KY0g2t%2BCKQVI79uRNB8utuoYkHgW7CLuoOSmv1YFvpQqzKDQFsfleG1Vc2geYWRbInuX1ywiwbT4XlHYmnZjWE8pERGCw0Z29CRzP%2FJoDM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f25a89b4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/rokajaxsearch.js?ver=20151215
188.114.97.1200 OK 6.3 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/js/rokajaxsearch.js?ver=20151215
IP 188.114.97.1:0
Hash f3a8d2cf6a5f3c5c972830ad06462b06
04b63feeaf2840606fc82d86f48596b8733d8bba
8ff52ba129497b1cc4827635f0c2576b8af2610d08fb296faf2524cd1492d415
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/js/rokajaxsearch.js?ver=20151215 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Feb 2020 17:40:18 GMT
ETag: W/"5e4d7302-8521"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PZCKxQiIl%2FOI7T7n4gWj7kFGDLgLLzcb7jxHqwk2HVk1iYgHM1JrFconweRisfnYmRwfEr%2BN0hfVqRoXmukaWF%2B1NfdoxiZHwvg4BIn1MraJd9JDzmAuutMBzbXqfnExi7jryUQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f2387bb505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/uploads/nomera/belyj.png
188.114.97.1200 OK 12 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/uploads/nomera/belyj.png
IP 188.114.97.1:0
File type PNG image data, 300 x 175, 8-bit/color RGBA, non-interlaced\012- data
Hash c7ab9f734a62dcdd05915b9c6efcb651
bd03a65c70bc1ed2912a4b32c6d7b632601ed508
c5a4422379aeaae1188613e1fe0c9743f944e099847f7a47a0f2bf893ec66585
GET /wp-content/uploads/nomera/belyj.png HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: image/png
Content-Length: 11685
Connection: keep-alive
Last-Modified: Mon, 12 Sep 2022 19:48:14 GMT
ETag: "631f8cfe-2da5"
X-Cache-Skip: 000
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MOpZFxb9WCehr8TfA%2FbYQoLdK2lFt0RWP16utt6%2Bxd1EGEIRuEqoKRwlQXV%2F4u2qhFaczyd%2Fe3zeKxccmEU9DGz748PkjwtEl6JVRzibfhpwsuYBNd0odLoAWcPOp6rlfZOYkjE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f2ee05b506-OSL
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/plugins/wp-special-textboxes/themes/stb-metro/alert.png
188.114.97.1200 OK 15 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/wp-special-textboxes/themes/stb-metro/alert.png
IP 188.114.97.1:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 464b73a2f6a9663f96380be90087ee51
8e2c879dd21aaf4a9237168483ecd4f229fcdeec
1ed3a52831e8816fe8a7af982270c84b8f2fcd24b2b05991a2ef8997e4409baf
GET /wp-content/plugins/wp-special-textboxes/themes/stb-metro/alert.png HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: image/png
Content-Length: 15070
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:32:36 GMT
ETag: "5c125164-3ade"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BxmDOT8yf1v5gMZ5lx8k5F4N2SGNrVY%2Bpo4qZXdOA1dwhf%2BeKswLgh4gsgl%2F3BcSqSnsjW1%2FR9ErCz%2FILflXBiZ6SR%2Fs2%2FlcMuXr%2BamX4hKdekDuImFPoGh%2Bx2cqMSNN%2FuuPnHs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f33af3b4f7-OSL
alt-svc: h2=":443"; ma=60
semeinoe-pravo.net/wp-content/uploads/2017/12/usynovlenie.jpg
91.106.207.67200 OK 15 kB URL HTTP/1.1 semeinoe-pravo.net/wp-content/uploads/2017/12/usynovlenie.jpg
IP 91.106.207.67:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=ACDSee Pro 5, datetime=2012:09:29 12:41:16], progressive, precision 8, 300x225, components 3\012- data
Hash 8372681748240791e3df91202b45c898
d0faa3f4ea8b35d992ac0f55f984207d18d74aaf
c5559ec89ca88308f2aa27e1ec489590114f1580c389a5018acb12b4c91c7f71
GET /wp-content/uploads/2017/12/usynovlenie.jpg HTTP/1.1
Host: semeinoe-pravo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: image/jpeg
Content-Length: 14655
Last-Modified: Tue, 20 Jul 2021 07:44:09 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "60f67ec9-393f"
Expires: Sun, 01 Jan 2023 03:01:48 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/18.jpg
188.114.97.1200 OK 4.2 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/18.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 5c16bf762666704ce04c0084061ec888
3d705799a2052a813e2dd43851b54c8e6542dfd0
94f3aef9439b20dff384179a634d118e0356636fdbd6cfe5b29d6f6072778a50
GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/18.jpg HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: image/jpeg
Content-Length: 4241
Connection: keep-alive
Last-Modified: Fri, 25 May 2018 08:00:30 GMT
ETag: "5b07c29e-1091"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 91692
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G%2Bv%2BtQXEJhDU1CQeURFVaSbGGLbpHDi4dUKaEP%2BpZKmiVxaXI1902wpDGq8kDYinu0LPBXI8DkvdYB8ZZy7ZrdlDaXHBkPdsdxlmGFJSJRspHpEqTvCsEmPH4%2BYRUycvJxmz%2FFg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f37f0db500-OSL
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-includes/js/wp-emoji-release.min.js?ver=4.9.8
188.114.97.1200 OK 4.4 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-includes/js/wp-emoji-release.min.js?ver=4.9.8
IP 188.114.97.1:0
File type ASCII text, with very long lines (9118)
Hash 753d9a1cd7cc47e65c8b7c21543b1616
c4d57275c339b3b8df1d24124bd10d0926b5575f
8a04b00f98848434b8139a8cede0c5bb33334ea3be64ddd3bfae16977b396a6d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.8 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:33:18 GMT
ETag: W/"5c12518e-2efa"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173515
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WFvjVgKitFRuzevbODjKM7Dz%2Fc%2F3nfiuW1MqpYJHRZj3i6c945%2B3TBTVNNUebxZxuTww7L4ekBT1%2FwzDygYp%2FxAZM5BlyUxSw%2B7ZYtiLO7VVMlet7CcozuvIk531xiUN9vkjaF4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f38f10b500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/themes/casino-theme/demo-3a9d5bbe25fa4ce5b9fec2f02ef5f866.css?ver=1.0.1
188.114.97.1404 Not Found 627 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/demo-3a9d5bbe25fa4ce5b9fec2f02ef5f866.css?ver=1.0.1
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c95b644b53c4bce1ead22a9708a5eeac
075ad54e440562674721bca80c6deed23d1a084d
ef94074762d3397c8ec71b8bdb94993543cb4d33c618453f135741d49ba2c704
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/demo-3a9d5bbe25fa4ce5b9fec2f02ef5f866.css?ver=1.0.1 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 404 Not Found
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3ZfBbJ5QfjpY%2BeaJKRBgzsMjQEyHcNGnPzfPqpuoQei%2BLfzJieIftsoYAIOrLW%2BfCRegdEdNTEur1YSFftIq2IX%2FI%2FTmoS6PVWdVTedE3sObE23avM3ckK%2B9Z%2BV7JacMSf7LRD0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f39f16b500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a1f89be89616166b3e298fbf45beb11
93a055a30f426bd919ffa55a9bdeafd657da996a
5f824cb0f1c5cf60c8ae3b0f9ce44b6d623f4da03bfca283858bfd520743db6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F824CB0F1C5CF60C8AE3B0F9CE44B6D623F4DA03BFCA283858BFD520743DB6B"
Last-Modified: Thu, 01 Dec 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 02 Dec 2022 09:01:48 GMT
Date: Fri, 02 Dec 2022 03:01:48 GMT
Connection: keep-alive
kozbanov-lawyer.ru/wp-content/themes/casino-theme/mediaqueries.css?ver=1.0.1
188.114.97.1404 Not Found 627 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/themes/casino-theme/mediaqueries.css?ver=1.0.1
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c95b644b53c4bce1ead22a9708a5eeac
075ad54e440562674721bca80c6deed23d1a084d
ef94074762d3397c8ec71b8bdb94993543cb4d33c618453f135741d49ba2c704
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/casino-theme/mediaqueries.css?ver=1.0.1 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 404 Not Found
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n6G5TKqc26D95oE0WhO5jZxg%2BQiYYv6td3%2FJy7tKxq%2FOTfFay%2FmW3KqnMSv8pBAndOo%2FpFHmHmuIzfYq3qFal76FjHa2bhGQmlZV3tfw5uhCyi6QcQlCDz2G5kO6L7JOwq4Bk38%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f3af1ab500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 02:08:57 GMT
cache-control: public,max-age=3600
age: 3171
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/24.jpg
188.114.97.1200 OK 621 B URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/24.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 8464b56b94ccc9c4731b6c7f695811c6
a2f6e0eb8ae6636e2365ffab583c10ec603bda93
0c06db183574abbafca9e2e994acf7cd060c031684d24dac497c1cf822805f3d
GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/24.jpg HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: image/jpeg
Content-Length: 621
Connection: keep-alive
Last-Modified: Fri, 25 May 2018 08:00:30 GMT
ETag: "5b07c29e-26d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 171852
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SQ695kh7%2B2vGMFFsWh%2B3vbE0m8ZnUoTLavQJyKqZskKVTujWqDcM%2FFVeKSYOrU6cjej%2F%2B91Pw8MHvAs69x8PilgRvh9yrXuyLYw8lwvwWEeiLjCeice%2BVTY3gZZm9CflWHvtOT8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f3af1fb500-OSL
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/21.jpg
188.114.97.1200 OK 16 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/21.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash 4e5ddb277b8345a085c8996661ef0ab4
53adfbda6d7c9bd5193f3dbf9cca0ae6281f68dd
4cdbbf8a7cd8c116587e3b7ede00f51f868785e64abf635c4660bd2e9b43bcc3
GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/21.jpg HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: image/jpeg
Content-Length: 16075
Connection: keep-alive
Last-Modified: Fri, 25 May 2018 08:00:30 GMT
ETag: "5b07c29e-3ecb"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 52229
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5WfsxwxD0tDInr1OYG54UABSvq2J41USACVfnmJhmI9GDK22QxJgPMRapzlZu96tQwCyTFjISTH3iHNr9FnGcOrlW6OkOksTgE6bKxUcviGPPJKj55BoMFNH1vfXhQaUjiiHHwI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f3bf23b500-OSL
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/17.jpg
188.114.97.1200 OK 17 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/17.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash a20dff5090471c85d6257543fc617901
132061a805fea75cb18783d0b0df68770d0550c0
e857b935368f2912f670bee1b76aa9232a97a1f0b76af6427960ba49213ff746
GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/17.jpg HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: image/jpeg
Content-Length: 17223
Connection: keep-alive
Last-Modified: Fri, 25 May 2018 08:00:30 GMT
ETag: "5b07c29e-4347"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: HIT
Age: 173368
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P%2BHtVJZa%2BBdme92xkRT%2B85NbjhE7sAqIakOKOC%2BI0kNmIUX1u%2B1jutCtroSbi%2BmJYkS1sRUmh5dKFx8832QgJ9mBRt6sEc3Qk1%2FQfJiIIVmFoNCtQjwRzbAR4y3SkmyakADaTEc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f3cf29b500-OSL
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/plugins/wp-special-textboxes/themes/stb-metro/info.png
188.114.97.1200 OK 18 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/wp-special-textboxes/themes/stb-metro/info.png
IP 188.114.97.1:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 8413bf6f1dd2223f3be09256f755c682
2f99d0744f451d7d631fff57510c99ef5a0cfd15
bf75418f7c7e4e45ba7c9ef9e2f0ae766660e4290022bbd91ca89116a8111bc7
GET /wp-content/plugins/wp-special-textboxes/themes/stb-metro/info.png HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: image/png
Content-Length: 18310
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:32:36 GMT
ETag: "5c125164-4786"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3zoJ7epciO0tFPOZodWfJ6U4015a%2B4Wbi5%2Bvdtuy77JJloni5DfuXRpFG8eps0dajSLtLEPNIkS5s8aubG%2Fjcisa%2FUcoQEEGfeegDRhf%2BxC9Em%2FFTNaxpOOFFribITGnK9RYgEo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f2fee1b500-OSL
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/0.jpg
188.114.97.1200 OK 7.5 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/0.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash a61eddba601a02554fd9ac271a23aa0b
d508c1863f4c3be8c28555d80b72f79948d5fa8a
3522f67c8ce88c36ccbb936290ec4933da87a1c26ea1ba7a8eef142a8a3526cf
GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/0.jpg HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: image/jpeg
Content-Length: 7537
Connection: keep-alive
Last-Modified: Fri, 25 May 2018 08:00:30 GMT
ETag: "5b07c29e-1d71"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kcbCQ04K4vY%2B%2BUcUj2I2iv4XyLvhK40ixIdnek4jVWOdWLQQoyo%2FFuV%2FXL%2B1gzHIj6Kr2m95oeB9%2FNrBKS%2BvO3Xo2CYKaWVhO%2BPAkLZvogTxoaHLAyCr%2FobjNsLv1pkoSrx2FGc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f358e7b505-OSL
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/2.jpg
188.114.97.1200 OK 8.1 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/2.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash f5a8b2b6a710aafc60e2c86ca40bfbda
d3284a5dfe4084ce5a2e6f6f1056303afd91deb8
b66ba54631f90cb7760efd716a255373543142e1c66726f8489b5b1d2465f946
GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/2.jpg HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: image/jpeg
Content-Length: 8066
Connection: keep-alive
Last-Modified: Fri, 25 May 2018 08:00:30 GMT
ETag: "5b07c29e-1f82"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dmsRLmcJZETbxeaxbesvQIzkgoj26XO7e62%2Fg609Lse5LPqTQLnTScs6j77h9hQlVPpN3xibCto0%2Fpj4QeDAS62Tnt34RWCTlc4OCv7wKRFaEVTBEv%2FQQtSWg1Q64nDkZNY0XfY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f35b04b4f7-OSL
alt-svc: h2=":443"; ma=60
sovetnik.guru/wp-content/uploads/2017/07/baba_olduktan_sonra_erkekleri_neler_bekliyor_7-300x200.jpg
91.106.207.40200 OK 11 kB URL HTTP/2 sovetnik.guru/wp-content/uploads/2017/07/baba_olduktan_sonra_erkekleri_neler_bekliyor_7-300x200.jpg
IP 91.106.207.40:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x200, components 3\012- data
Hash 4514bbabb5efbd0e452946067bb8dd89
43644898b4e2c9f6e862159fe2f3843baafa62cb
6ca0ed327b4f2a9e34c5b588e4b22323f3c62fc9c08e70b52f8d17a76e9f5b59
GET /wp-content/uploads/2017/07/baba_olduktan_sonra_erkekleri_neler_bekliyor_7-300x200.jpg HTTP/1.1
Host: sovetnik.guru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Fri, 02 Dec 2022 03:01:48 GMT
content-type: image/jpeg
content-length: 11348
last-modified: Wed, 16 Mar 2022 12:33:47 GMT
etag: "6231d92b-2c54"
expires: Sun, 01 Jan 2023 03:01:48 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/30.jpg
188.114.97.1200 OK 6.9 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/30.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Hash 5f32c3774a3fc5f2e4340ce8c92875fb
05dbae405fee015f6d0ff3a8f812a459235342e3
3bb6bca791ed826cc58b92ca985478bf7dfacae54c5cecdbdcd2c8a682db5e22
GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/30.jpg HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: image/jpeg
Content-Length: 6926
Connection: keep-alive
Last-Modified: Fri, 25 May 2018 08:00:30 GMT
ETag: "5b07c29e-1b0e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8EJ1Rsw66%2BsLn0F2GeEb%2BDOj%2BSwxrnv2J4JlHbTumZUuplb0WKYYXQYC8UP%2Bof71quZUG92Cf2gzYqnWNT%2FDl6xg6BYD6XWdChlEwIVp2HN%2FOCYXElBxg%2BYv6SnCQcTFMLkNUK4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f39f11b500-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2999
Cache-Control: max-age=111300
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:48 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:56:48 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
kozbanov-lawyer.ru/wp-content/plugins/wp-special-textboxes/themes/stb-metro/warning.png
188.114.97.1200 OK 20 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/wp-special-textboxes/themes/stb-metro/warning.png
IP 188.114.97.1:0
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 93551a3aa448b291fb298c65875cb86e
b215ea724beb57ed1d73290d86189a384878a629
becc186aefcbbc15ac415d868dedfb684539a2e97deb52fcf6aa932833d52185
GET /wp-content/plugins/wp-special-textboxes/themes/stb-metro/warning.png HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: image/png
Content-Length: 20026
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:32:37 GMT
ETag: "5c125165-4e3a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XY8cz3ft7tlIdKNl9OiwsaJwMOXwresXzf8TyatzNjhoAIAIPJQersJdw8zp5Go0hWziflhhh6N7TBh0X%2BUYg2%2F5X3kN2AFnvlhXV3KCwCFLSZx2HytwhvA7%2FffQfNHw%2FcL3gk4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f35e2eb506-OSL
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/wp-content/uploads/nomera/temnyj.png
188.114.97.1200 OK 11 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/uploads/nomera/temnyj.png
IP 188.114.97.1:0
File type PNG image data, 300 x 175, 8-bit/color RGBA, non-interlaced\012- data
Hash d1f737435cc723c3553584f055a12cdd
7755990090cace7bc9b060b8978f2d582294f531
4a36c501294130673ec66f93c7b153a225960ad42d91aeab997f023aa92d1037
GET /wp-content/uploads/nomera/temnyj.png HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: image/png
Content-Length: 10965
Connection: keep-alive
Last-Modified: Mon, 12 Sep 2022 19:48:14 GMT
ETag: "631f8cfe-2ad5"
X-Cache-Skip: 000
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iwjRLHZ9GtWZ8QV4kjZqzVvF5X7RaurH3gTotCauBKR89pPQsZ5Y%2F%2BXzU14np7iJrm4gtusSGEmVcg6%2FCIZV1AEIzviNaDalL9rLADZLndC5yNUkCs45yBWddd6%2BSv8a0cLoL4Q%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f3df2cb500-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
216.58.207.227200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Hash fe424f96cb627d8b835cb001af17f56e
c5b4368fed99812a99036fba86d01367b5549505
35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kozbanov-lawyer.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:17:08 GMT
expires: Tue, 28 Nov 2023 21:17:08 GMT
cache-control: public, max-age=31536000
age: 279880
last-modified: Mon, 18 Jul 2022 19:24:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0aExdGM.woff2
216.58.207.227200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0aExdGM.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 28444, version 1.0\012- data
Hash e996a4db02cc36705ce700e4b5d06b3a
c5fa1dff68d7d83689f58bc498caea9041cf7b75
7e9c22d02fc319b701844b334477a05fd32acee9668feb98672f6c27887f79cf
GET /s/ptsans/v17/jizaRExUiTo99u79D0aExdGM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kozbanov-lawyer.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:42:50 GMT
expires: Wed, 29 Nov 2023 15:42:50 GMT
cache-control: public, max-age=31536000
age: 213538
last-modified: Wed, 27 Apr 2022 16:45:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
216.58.207.227200 OK 47 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 47048, version 1.0\012- data
Hash 87a1556b696ae2cb1a726bd8c4584a2f
1be0f6f39e0cf316f9827f945eeeaef8294cc37b
141f0c53e457585d4ac7426eb3d757666d250ee6fbf0e9c0878128e4c627f0b1
GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0O6tLQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kozbanov-lawyer.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:42:38 GMT
expires: Wed, 29 Nov 2023 15:42:38 GMT
cache-control: public, max-age=31536000
age: 213550
last-modified: Wed, 27 Apr 2022 16:55:54 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 45300, version 1.0\012- data
Hash 5fe660c3a23b871807b0e1d3ee973d23
62a9dd423b30b6ee3ab3dd40d573545d579af10a
e13ffa988be59cbf299d7ff68f019f902b60848203ac4990819eb7e4624ee52d
GET /s/ptsans/v17/jizaRExUiTo99u79D0KExQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kozbanov-lawyer.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 45300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 22:37:35 GMT
expires: Sun, 26 Nov 2023 22:37:35 GMT
cache-control: public, max-age=31536000
age: 447853
last-modified: Wed, 27 Apr 2022 16:11:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0OqtLQ0Z.woff2
216.58.207.227200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/ptsans/v17/jizfRExUiTo99u79B_mh0OqtLQ0Z.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 29928, version 1.0\012- data
Hash 609bea65e2bf8ee9b728a85a8f1b282c
a0d2fbcf012e6554fb8cb182994ec8eb744ab65d
1a045fdc088409e4e87d57617de7a9b613bf251c12997180910faeed8fa7aba1
GET /s/ptsans/v17/jizfRExUiTo99u79B_mh0OqtLQ0Z.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kozbanov-lawyer.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:36:13 GMT
expires: Thu, 30 Nov 2023 19:36:13 GMT
cache-control: public, max-age=31536000
age: 113135
last-modified: Wed, 27 Apr 2022 16:55:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.163.114.208101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.114.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: URADkGU9wdZ5h3g2mL//YQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mGWo+NSsC1MVwO81e96pLWLS/cE=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kozbanov-lawyer.ru/wp-content/plugins/intelly-related-posts/assets/images/simple-arrow.png
188.114.97.1200 OK 1.3 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/plugins/intelly-related-posts/assets/images/simple-arrow.png
IP 188.114.97.1:0
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 006849bd75bbbb96d5b1f5997bbeb52a
21ce90bf8bc0105fe13d635d5f9b8404d8759e82
56c87ee1e1a6878217897741f85a8048012b693a4cb6b03804a322d8fed02a88
GET /wp-content/plugins/intelly-related-posts/assets/images/simple-arrow.png HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:49 GMT
Content-Type: image/png
Content-Length: 1286
Connection: keep-alive
Last-Modified: Thu, 13 Dec 2018 12:34:48 GMT
ETag: "5c1251e8-506"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Cache-Skip: 000
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KAwL4liMGINpdgG1lXbPldKzG8035VseYTjK%2B0F2nUljvQXMRaDe7iV0%2Fft7lYiU853NlxC7VCtSLa83%2BbuUutVqO%2Bm%2BEt2W7ahaYNd0KurfBFFfLK3B9m8ytmTvzx%2Bnom%2B023k%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f6bc21b4f7-OSL
alt-svc: h2=":443"; ma=60
www.youtube.com/s/player/dab28f34/www-player.css
142.250.74.110200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/dab28f34/www-player.css
IP 142.250.74.110:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9abf9c15a58d40e7ecc2302b4bfb153e
5195babba42ed31eb39751e8c917277ace5e19a4
1eca62432d16bb94000cf099705eee38903254825032b27ddf3d5decbe3d3114
GET /s/player/dab28f34/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/Dq6YajEHRoc
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49849
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:01:14 GMT
expires: Fri, 01 Dec 2023 16:01:14 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Dec 2022 01:20:18 GMT
content-type: text/css
age: 39635
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 21:48:03 GMT
expires: Fri, 01 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 18826
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/dab28f34/www-embed-player.vflset/www-embed-player.js
142.250.74.110200 OK 99 kB URL HTTP/2 www.youtube.com/s/player/dab28f34/www-embed-player.vflset/www-embed-player.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (679)
Hash a9a95fc3a85fc2904a0cffd12ff9b01c
b3db5cd9996da5ffa51fe22a57898a79abfe32df
2ef638f9e81beb63874104df180f7d1de54c01d6e22857f39e16c1581a3f3f7e
GET /s/player/dab28f34/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/Dq6YajEHRoc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 99243
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:01:14 GMT
expires: Fri, 01 Dec 2023 16:01:14 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Dec 2022 01:20:18 GMT
content-type: text/javascript
age: 39635
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:40:43 GMT
expires: Fri, 01 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 37266
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/dab28f34/fetch-polyfill.vflset/fetch-polyfill.js
142.250.74.110200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/dab28f34/fetch-polyfill.vflset/fetch-polyfill.js
IP 142.250.74.110:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/dab28f34/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/Dq6YajEHRoc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:01:14 GMT
expires: Fri, 01 Dec 2023 16:01:14 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Dec 2022 01:20:18 GMT
content-type: text/javascript
age: 39635
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1fa0ccc53637f195fd6a0ac497bffa8d
3bb9af94fcf28e7173183952a4dbcd70c92c706f
1da329b76cfe60f6ff5ca29b320f666e91dc7bf89904ed88f0f7c121a55ce5e3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "1DA329B76CFE60F6FF5CA29B320F666E91DC7BF89904ED88F0F7C121A55CE5E3"
Last-Modified: Thu, 01 Dec 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1055
Expires: Fri, 02 Dec 2022 03:19:24 GMT
Date: Fri, 02 Dec 2022 03:01:49 GMT
Connection: keep-alive
partnerforce.ru/widget/law/v4/js/loader.min.js
172.67.217.192200 OK 19 kB URL HTTP/2 partnerforce.ru/widget/law/v4/js/loader.min.js
IP 172.67.217.192:0
File type Unicode text, UTF-8 text, with very long lines (63093), with no line terminators
Hash 1064d921bb5b9e7a729b8ceedeacfd5a
fa74c92b30241561822e8e421e01d28befc5b4e6
91ecdaad9c0b933d08903e19774d416fe86853212479ce74a87c33c3fe867bb6
GET /widget/law/v4/js/loader.min.js HTTP/1.1
Host: partnerforce.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:01:49 GMT
content-type: application/javascript
last-modified: Wed, 24 Jun 2020 16:48:18 GMT
etag: W/"5ef383d2-f6a9"
x-cache-skip: 100
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X3LtP%2FhbosbytCcNdjIv8FERMr4ItPQGg6GatwsArc80Mu%2Bnc4gkI2%2FcLQGu%2F3upMssm9qHMJNyqmLve0Zt2yzLu70gWDT%2B8A%2BZd3KcrYCAPTDrkzJilAp697RS%2FnjA4E%2F8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7730d1fa3d550af6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kozbanov-lawyer.ru/widget/proxy.php?csurl=/form/two_page2/0.1/init.js?token=e2f74eb89f0f0e540e4ff61fc9419bb5
188.114.97.1200 OK 42 kB URL HTTP/1.1 kozbanov-lawyer.ru/widget/proxy.php?csurl=/form/two_page2/0.1/init.js?token=e2f74eb89f0f0e540e4ff61fc9419bb5
IP 188.114.97.1:0
Hash 2c549d5490813973b6ccf457cf92f1d9
c0661f96ea794a4da62f75c79dda358c5a4c0b81
259e8cd7be1909d271e2feb370554aeeaef9de4747599fa6b006a896af634173
GET /widget/proxy.php?csurl=/form/two_page2/0.1/init.js?token=e2f74eb89f0f0e540e4ff61fc9419bb5 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:49 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Proxy-Cache: MISS
Cache-Control: max-age=60
Pragma: public
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: *
content-encoding: gzip
X-Cache-Status: BYPASS
X-Cache-Skip: 100
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TKqWM0yrN7oEeALtizd%2BhSI45T3IW%2FByYLmEVw7z6SA1tjaEDlGjS0%2BKhaM74vP0MaxUcw8wZPPqWry60qCA6kVgCeKdysIZmzlA7wMGPljKZuaIgEsODb3e97s0T9O6WpdKnIc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7730d1f41f40b500-OSL
alt-svc: h2=":443"; ma=60
counter.yadro.ru/hit?t26.18;r;s1280*1024*24;uhttp%3A//kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992;0.28391805388245506
88.212.201.198302 Moved Temporarily 32 B URL HTTP/1.1 counter.yadro.ru/hit?t26.18;r;s1280*1024*24;uhttp%3A//kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992;0.28391805388245506
IP 88.212.201.198:0
ASN #39134 United Network LLC
File type HTML document, ASCII text
Hash 3e9c09a8c5a87f266e047a596f48578c
07d7b1940b7e3f9a3db43197458f9b8ef18a6bce
57fad7ae62012ff4a38ecb6045ac6e8e3a070a33bbd033b21ab6cad3566d9254
GET /hit?t26.18;r;s1280*1024*24;uhttp%3A//kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992;0.28391805388245506 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/
HTTP/1.1 302 Moved Temporarily
Date: Fri, 02 Dec 2022 03:01:49 GMT
Server: 0W/0.8c
Content-Type: text/html
Location: https://counter.yadro.ru/hit?t26.18;r;s1280*1024*24;uhttp%3A//kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992;0.28391805388245506
Content-Length: 32
Expires: Wed, 01 Dec 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da32e4b24f4f95e4e807cff2459f54c3
02db1c6d628b2f51fa0b46fcb79a71178780bc47
4d6ff368a64dc83f4a637fbf44b2256523ca7c43b824022f8f6428de6cfae368
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 02:51:04 GMT
expires: Fri, 02 Dec 2022 03:06:04 GMT
cache-control: public, max-age=900
age: 645
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.162302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 02 Dec 2022 03:01:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 920992c4818e7d17517e3dfef67a22c1
407b7e56fbb4faacca123af367b6cfdf0b7b2d99
527197c1e55e0b319d64e59070906d60084827233a6d7498cf63145ab665c424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
142.250.74.162302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 02 Dec 2022 03:01:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 02 Dec 2022 03:01:50 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kozbanov-lawyer.ru/wp-content/libraries/gantry/assets/jui/fonts/font-awesome4/fontawesome-webfont.woff?v=4.2.0
188.114.97.1404 Not Found 42 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/libraries/gantry/assets/jui/fonts/font-awesome4/fontawesome-webfont.woff?v=4.2.0
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (20374), with CRLF, LF line terminators
Hash 2d615b3080c66d76ed6f8061ac5a9d72
ed0baf7e6569b477ea430b1300bea704c343848b
c1067c854e1c0f72181c8e2c57d2f9545491eb72e0b9ef3bbef9dec073d64bb0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/libraries/gantry/assets/jui/fonts/font-awesome4/fontawesome-webfont.woff?v=4.2.0 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/master-3a9d5bbe25fa4ce5b9fec2f02ef5f866.css?ver=1.0.1
HTTP/1.1 404 Not Found
Date: Fri, 02 Dec 2022 03:01:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: max-age=14400, must-revalidate
Link: <http://kozbanov-lawyer.ru/wp-json/>; rel="https://api.w.org/"
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o1PPrghRraGQsoLO77U9Uzik2hw0%2FOksYaKDqw1j6Et5mnC51tTdN2ORXoai19KRG%2BlppB7dXmrV9hE69q%2FDRjSGJp0f5BpfuAW%2BSnJx1tsVB0L0FeKfzuCpmF48Z46uNc0swfY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1f9ad3eb4f7-OSL
alt-svc: h2=":443"; ma=60
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
216.58.207.227200 OK 9.8 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9832, version 1.0\012- data
Hash efe937997e08e15b056a3643e2734636
d02decbf472a0928b054cc8e4b13684539a913db
53f2931d978bf9b24d43b5d556ecf315a6b3f089699c5ba3a954c4dde8663361
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9832
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 12:29:20 GMT
expires: Fri, 01 Dec 2023 12:29:20 GMT
cache-control: public, max-age=31536000
age: 52350
last-modified: Mon, 16 Oct 2017 17:32:49 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 03d21c265033c0361f8b4831043eb0dd
c08c8236d539d3ddb2de5f296df4779ef4d8d743
5816e4756b965d17c51acba7de44babf819255d0bd0acc57fd8f5235f71a5992
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 02 Dec 2022 03:01:50 GMT
server: ESF
cache-control: private
content-length: 30915
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 315873c315af2be891e63f8b421bae65
5277bb0c4fea2b036c6faf28d66395c96166ffd2
3f6657d352a42f8257409f2ed365a3fb928ac3eb74a34a2c74a433290182cc92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
216.58.207.228200 OK 14 kB URL HTTP/2 www.google.com/js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js
IP 216.58.207.228:0
File type ASCII text, with very long lines (36106)
Hash 7fc7e22ecccb0cfd0ae897bb40a58efe
5d46470a711120793c362235105836fe49e699a4
1907005cab41fbd6d1d67df3b25586f3232e053a261c9e2b2503459f4980b1c5
GET /js/th/_mW_2QmsfiHfHQzuwJJjeV3lvrJQS7bChqYqZLie29Q.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14302
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 16:31:55 GMT
expires: Tue, 28 Nov 2023 16:31:55 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 03 Nov 2022 10:00:00 GMT
content-type: text/javascript
age: 296995
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.106200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.106:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 495ce8ca1a76ed49929683bfa2237722
be57639b9bfb1bccf0013d5ad8b4edeae7bbe43a
316d6f8ff0135e441334a56daa77d17ce66a48810ad1f1a411ab169cecf7abc5
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 02 Dec 2022 03:01:50 GMT
server: ESF
cache-control: private
content-length: 30966
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/dab28f34/player_ias.vflset/en_US/base.js
142.250.74.110200 OK 471 B URL HTTP/2 www.youtube.com/s/player/dab28f34/player_ias.vflset/en_US/base.js
IP 142.250.74.110:0
Hash d1ebc694c20ec150aad9e485dcdb35f4
1fae3fbe9fecff6ca2fc6dfa620d5193669fa3db
e2f7b273bed2605b18a008d13310bd022b46b8b2b8d82bf18128315f5af7111e
GET /s/player/dab28f34/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/Dq6YajEHRoc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 593839
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:09:00 GMT
expires: Fri, 01 Dec 2023 16:09:00 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Dec 2022 01:20:18 GMT
content-type: text/javascript
age: 39169
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi_webp/edZ-kIDsUSc/sddefault.webp
142.250.74.118200 OK 33 kB URL HTTP/2 i.ytimg.com/vi_webp/edZ-kIDsUSc/sddefault.webp
IP 142.250.74.118:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f18e0e10b0eaaa41a6cbee8ec4793f2c
7c44be93107d0125851783f2380d48d38fb5679d
f31319f49e23c6b8a755bec16e9743bb1d3e00fe7a170efa99ee8b43ec7c1a8c
GET /vi_webp/edZ-kIDsUSc/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 32718
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 02:44:01 GMT
expires: Fri, 02 Dec 2022 04:44:01 GMT
cache-control: public, max-age=7200
age: 1069
etag: "0"
content-type: image/webp
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
151.101.2.133200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 151.101.2.133:0
Hash 3e84c1b1853e591d4383fbcb7d31322a
de6730aaee010e082adbe0dc224ff6d4d0435524
5d082258ce5da91b84bbdee31c7db52953e7b5094303714beb1d2e7110cfcd01
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1423
Server: nginx
Content-Type: application/ocsp-response
Expires: Tue, 06 Dec 2022 00:45:08 GMT
ETag: "de6730aaee010e082adbe0dc224ff6d4d0435524"
Last-Modified: Fri, 02 Dec 2022 00:45:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 02 Dec 2022 03:01:50 GMT
Age: 999
X-Served-By: cache-qpg1269-QPG, cache-bma1622-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 8, 20
X-Timer: S1669950110.252353,VS0,VE0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d1ebc694c20ec150aad9e485dcdb35f4
1fae3fbe9fecff6ca2fc6dfa620d5193669fa3db
e2f7b273bed2605b18a008d13310bd022b46b8b2b8d82bf18128315f5af7111e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/ytc/AMLnZu8k-ZwfZEDzbOMQNZ38TJnfz5qevsEP3TYWmQ=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 861 B URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu8k-ZwfZEDzbOMQNZ38TJnfz5qevsEP3TYWmQ=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 1210c60bef29378c2deb626a9f92e566
2b9464078548973b0970fe85a1a0cb0dd03a87c8
883515d7f7c50d81976149a581c18b8f45ead617531c17609a7d732dc2f9bab5
GET /ytc/AMLnZu8k-ZwfZEDzbOMQNZ38TJnfz5qevsEP3TYWmQ=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 861
x-xss-protection: 0
date: Fri, 02 Dec 2022 02:47:02 GMT
expires: Sat, 03 Dec 2022 02:47:02 GMT
cache-control: public, max-age=86400, no-transform
content-type: image/jpeg
age: 888
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
counter.yadro.ru/hit?t26.18;r;s1280*1024*24;uhttp%3A//kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992;0.28391805388245506
88.212.201.198200 OK 111 B URL HTTP/1.1 counter.yadro.ru/hit?t26.18;r;s1280*1024*24;uhttp%3A//kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992;0.28391805388245506
IP 88.212.201.198:0
ASN #39134 United Network LLC
File type GIF image data, version 87a, 88 x 15\012- data
Hash 43af276eefaf4f8c43f9d1205ed559b0
0f538bb412beae5e68af2a10e782e681b0fc3a45
49f818c3bf653b785505eb4582687ef1b6d2bd0a208b6c975bba742c768bb91b
GET /hit?t26.18;r;s1280*1024*24;uhttp%3A//kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992;0.28391805388245506 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kozbanov-lawyer.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Fri, 02 Dec 2022 03:01:50 GMT
Content-Type: image/gif
Content-Length: 111
Connection: keep-alive
Expires: Wed, 01 Dec 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:01:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14279
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 03:01:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14279
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 03:01:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14279
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 03:01:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd78aa69439c995167f32b8a41a1f4f6
d07d6145182f312f3ed86ecf96b4ffa175416fa0
3b08cf3fad31ee0cf3ee25abc2484fb4283543865a42dfc568b14f9856fd3bb5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7722
x-amzn-requestid: 8d7c4800-6c06-43ed-afa1-94840d42f591
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGy2Gr1IAMFWeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e78-429ae3135d47e3b020c4c7a1;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z8thSamrCRejcAcQEGAp4WpSMzMEvstuZtVpKAjiCH4dyJyf1yihBA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:11 GMT
age: 18699
etag: "d07d6145182f312f3ed86ecf96b4ffa175416fa0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 156e9ea97b774cbd8361072e4041b6c8
fc71ae3cae92ed6011904bb2367f23bf4e69fab4
58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cgj3fw3lpngosMNOK7cZUZO94T__4RTy_p7wa6rI62OOvhI5E9wMSw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:19:21 GMT
age: 70949
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c7113338bc3310b13d23ca415c177e2
2cb4edc6b161c6d2d5b47aa498ae54e677966466
3a83adce869dd7eb064c583bf7ff93c57fabd7ea2da872f7d1f7d868b8a492e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10270
x-amzn-requestid: ac2d2825-2ec4-435e-9921-3ea6524df1dc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfG1nEvYoAMFliA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e8a-4419423112b5723e3dba46ea;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NQ21d2_5JO2Ym-LEnDecub9bK6wUyvM2zUf_XpfMGag83fVWlMjT8w==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:09 GMT
age: 18701
etag: "2cb4edc6b161c6d2d5b47aa498ae54e677966466"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 19623
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d147ccb10bda82b153a596c3c967cd6a
ffd0763f997e71a8c1458523fc17cafe8849dfdf
1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:08:56 GMT
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
content-type: image/jpeg
age: 17574
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 498ab4412ed5cf977bc23e4e870894b0
23753fe8af09ec8ffa10eed4d201a71833885c99
036042656f15e42b4d1537c45f5b8e7190c70305fa9a69c1287c6739ad0b7122
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7334
x-amzn-requestid: a6b8b420-8394-496b-8be8-26dee52e3887
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoHJOoAMF75g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0b38d07f518c8b3134457df2;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 17nFm7AQdmRYS_af-EJ4XBVw8l3YudcphlpcZMveuVjvjhhYdkAQsw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:33:10 GMT
age: 16120
etag: "23753fe8af09ec8ffa10eed4d201a71833885c99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
kozbanov-lawyer.ru/wp-content/libraries/gantry/assets/jui/fonts/font-awesome4/fontawesome-webfont.ttf?v=4.2.0
188.114.97.1404 Not Found 6.7 kB URL HTTP/1.1 kozbanov-lawyer.ru/wp-content/libraries/gantry/assets/jui/fonts/font-awesome4/fontawesome-webfont.ttf?v=4.2.0
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (20374), with CRLF, LF line terminators
Hash eab8aec34eb1a28efd013db2a883a0cb
b36447a1c62be0799d6856b1e2400ceac06f4a4c
65269c2ff9565fec5d520206488d829732559835a0b29c9d37d9b2fe1ff24344
GET /wp-content/libraries/gantry/assets/jui/fonts/font-awesome4/fontawesome-webfont.ttf?v=4.2.0 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/wp-content/themes/casino-theme/css/master-3a9d5bbe25fa4ce5b9fec2f02ef5f866.css?ver=1.0.1
HTTP/1.1 404 Not Found
Date: Fri, 02 Dec 2022 03:01:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: max-age=14400, must-revalidate
Link: <http://kozbanov-lawyer.ru/wp-json/>; rel="https://api.w.org/"
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NDLTtkGzdNbQ%2FHcDel38cX0L2oyXr77qzMNzyJbrIrtExZcvV6tW9F874TsRQ1PIhBZldyNyEDqeQ3znZll5KX2czGBLXcug7Dy%2BkpHh%2B%2FjTUu80wvj2JCDFzeXZis8DIGIqPlo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7730d1fceed4b4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/widget/proxy.php?csurl=/form/two_page2/0.1/init.js?token=e2f74eb89f0f0e540e4ff61fc9419bb5
188.114.97.1200 OK 0 B URL HTTP/1.1 kozbanov-lawyer.ru/widget/proxy.php?csurl=/form/two_page2/0.1/init.js?token=e2f74eb89f0f0e540e4ff61fc9419bb5
IP 188.114.97.1:0
GET /widget/proxy.php?csurl=/form/two_page2/0.1/init.js?token=e2f74eb89f0f0e540e4ff61fc9419bb5 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Proxy-Cache: MISS
Cache-Control: max-age=60
Pragma: public
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: *
content-encoding: gzip
X-Cache-Status: BYPASS
X-Cache-Skip: 100
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bQgeKtXZ8minksVpnu%2BDTWVychc9v9sf9nDBTJ38%2FULWd6WQfUQJL39Hb0Pdf2XOox7gd456KytcN2WuicX2uYNro24mBeQ%2FfZ3sCAFKcFYnaKRzTKecIPOuu6lMe8nhGeluSTs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7730d1f0fcad0b61-OSL
alt-svc: h2=":443"; ma=60
kozbanov-lawyer.ru/widget/proxy.php?csurl=/form/two_page2/0.1/init.js?token=f6b37f6b5b5d0c2d5cfaa21139e80a53
188.114.97.1200 OK 0 B URL HTTP/1.1 kozbanov-lawyer.ru/widget/proxy.php?csurl=/form/two_page2/0.1/init.js?token=f6b37f6b5b5d0c2d5cfaa21139e80a53
IP 188.114.97.1:0
GET /widget/proxy.php?csurl=/form/two_page2/0.1/init.js?token=f6b37f6b5b5d0c2d5cfaa21139e80a53 HTTP/1.1
Host: kozbanov-lawyer.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/dom-maljutki-ufa-foto-detej-dlja-udocherenija-2019-51992
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:01:48 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Proxy-Cache: MISS
Cache-Control: max-age=60
Pragma: public
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
access-control-allow-origin: *
content-encoding: gzip
X-Cache-Status: BYPASS
X-Cache-Skip: 100
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bRCD07hXp%2BDjLuzlb5azQaURlruMIpXV4VNzI1uyCidBCFRd9HJcS7jO%2Bkhvri8xzLXnxguVitvexA38FxEXm5OMXoqXkDy3DghHOq3JpI2akuv00lyOUA%2FPCn403DVSkagxsns%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7730d1f0fd66b506-OSL
alt-svc: h2=":443"; ma=60
www.youtube.com/embed/Dq6YajEHRoc
142.250.74.110200 OK 0 B URL HTTP/2 www.youtube.com/embed/Dq6YajEHRoc
IP 142.250.74.110:0
GET /embed/Dq6YajEHRoc HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Dec 2022 03:01:49 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=_-mE2VbmNGs; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=huELLxDvSM0; Domain=.youtube.com; Expires=Wed, 31-May-2023 03:01:49 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+956; expires=Sun, 01-Dec-2024 03:01:49 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=PT+Sans:regular,italic,700,700italic&subset=latin,latin-ext
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=PT+Sans:regular,italic,700,700italic&subset=latin,latin-ext
IP 142.250.74.106:0
GET /css?family=PT+Sans:regular,italic,700,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 03:01:48 GMT
date: Fri, 02 Dec 2022 03:01:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald:300,400,500,600,700&subset=cyrillic
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald:300,400,500,600,700&subset=cyrillic
IP 142.250.74.106:0
GET /css?family=Oswald:300,400,500,600,700&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kozbanov-lawyer.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 03:01:48 GMT
date: Fri, 02 Dec 2022 03:01:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2