moscowfirst.ru/2009/09/harley_davidson
90.156.201.97301 Moved Permanently 1 B URL HTTP/1.1 moscowfirst.ru/2009/09/harley_davidson
IP 90.156.201.97:0
File type very short file (no magic)
Hash 7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
Analyzer Verdict Alert fortinet Malware
GET /2009/09/harley_davidson HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 1
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
X-Redirect-By: WordPress
Location: http://moscowfirst.ru/2009/09/harley_davidson/
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:26:59 GMT
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bea3185dd820a31c1981317f37c3456d
1a548a5d27270fc11df9011837a7149571cedd78
469b97bf9f57401b3c9571039483589f2815f4794212b75c7c85cfefe0ae71e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3349
Expires: Sat, 25 Mar 2023 07:22:48 GMT
Date: Sat, 25 Mar 2023 06:26:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16447
Expires: Sat, 25 Mar 2023 11:01:06 GMT
Date: Sat, 25 Mar 2023 06:26:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1313ee2f06606d09c45b06ff9e8e1001
285ca89d1d3ea45d35832bc6d9827f834b3bfe21
63463447d29550c3734f621be02ec85290fbdf4612f79f9fad7e94f7e066dcb0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63463447D29550C3734F621BE02EC85290FBDF4612F79F9FAD7E94F7E066DCB0"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3991
Expires: Sat, 25 Mar 2023 07:33:30 GMT
Date: Sat, 25 Mar 2023 06:26:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 06:15:21 GMT
content-type: application/json
age: 698
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6L2eq1arcQa1b2floHoBIfEo93I5TZagmf648Yzf4PuL3op2h+SMvRBpUHRB+l19SNYdDe6pmgE=
x-amz-request-id: 0T5CJW1E1ESP7NG3
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 05:54:48 GMT
age: 1931
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 06:26:59 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
moscowfirst.ru/2009/09/harley_davidson/
90.156.201.97200 OK 11 kB URL HTTP/1.1 moscowfirst.ru/2009/09/harley_davidson/
IP 90.156.201.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2668), with CRLF, LF line terminators
Hash ee23db29a40d6d54169a4512199c6f40
1c42cd9d7ff1e33fef399e9ada2b04ff40b28012
863d6df029006424979ef13a66b57f63ed2a27d5417d28e97f460c357a477268
Analyzer Verdict Alert fortinet Malware
GET /2009/09/harley_davidson/ HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Server: Apache
Link: <http://moscowfirst.ru/wp-json/>; rel="https://api.w.org/", <http://moscowfirst.ru/?p=964>; rel=shortlink
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:26:59 GMT
Content-Encoding: gzip
www.google.com/buzz/api/button.js?ver=5.3.14
216.58.211.4404 Not Found 1.6 kB URL HTTP/1.1 www.google.com/buzz/api/button.js?ver=5.3.14
IP 216.58.211.4:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash fb9ba593fdc15d26cea09138dd931b6c
e9e546714455b058d663d26119f1ddb3c198ff88
8550c1ef15acac7e653df34c3e40201ffda06ccfd21b0b8f106b68291f7038d8
GET /buzz/api/button.js?ver=5.3.14 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
HTTP/1.1 404 Not Found
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Sat, 25 Mar 2023 06:26:59 GMT
Server: sffe
Content-Length: 1590
X-XSS-Protection: 0
moscowfirst.ru/wp-content/plugins/share-buttons/js/odkl_init.js?ver=5.3.14
90.156.201.97200 OK 54 B URL HTTP/1.1 moscowfirst.ru/wp-content/plugins/share-buttons/js/odkl_init.js?ver=5.3.14
IP 90.156.201.97:0
File type ASCII text, with no line terminators
Hash 2afcb00852ebb9a373c9c911a8501b26
080615d0df648666ec43f25be825008217f6779a
a7663a03e982cecdc4304b391401c307b6d1e60329dadde29d9e85e558749059
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/share-buttons/js/odkl_init.js?ver=5.3.14 HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:47:30 GMT
ETag: W/"1c-59e38247ae73e"
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:26:59 GMT
Content-Encoding: gzip
moscowfirst.ru/wp-content/plugins/share-buttons/css/share-buttons-user.css
90.156.201.97200 OK 1.2 kB URL HTTP/1.1 moscowfirst.ru/wp-content/plugins/share-buttons/css/share-buttons-user.css
IP 90.156.201.97:0
File type ISO-8859 text, with CRLF line terminators
Hash abaa088f17bb5be525cfe67c60fadbeb
4461ad3dc9c0985f96c98e142172f272bb3bea30
2d7d9e60f39af35263e4c426475da6b5fefc76e54492a94343b2b56844aec127
GET /wp-content/plugins/share-buttons/css/share-buttons-user.css HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:47:30 GMT
ETag: W/"dc9-59e382476a184"
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:26:59 GMT
Content-Encoding: gzip
moscowfirst.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
90.156.201.97200 OK 4.1 kB URL HTTP/1.1 moscowfirst.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 90.156.201.97:0
File type ASCII text, with very long lines (9959)
Hash 49965941ca416162bda75a82b161bc14
f32f576e1629d7d86b17f9b5f9d47f9d8e255d27
adcca521abd1aa122bc59a402962e592a48c5e16fb0d74f024a5f9bc11c18766
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Server: Apache
Last-Modified: Fri, 20 May 2016 06:11:28 GMT
ETag: W/"2748-5333ff613c400"
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:26:59 GMT
Content-Encoding: gzip
moscowfirst.ru/wp-content/plugins/share-buttons/js/share-buttons.js?ver=5.3.14
90.156.201.97200 OK 656 B URL HTTP/1.1 moscowfirst.ru/wp-content/plugins/share-buttons/js/share-buttons.js?ver=5.3.14
IP 90.156.201.97:0
File type ASCII text, with CRLF line terminators
Hash df88d254680bad245c16183440abd0f4
91c71f312fa18e1b38040d34d1cdb71608f33835
37b6fe1ea575657b4700d89944d0d52358c9683ce41327dea55245a728f9ee80
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/share-buttons/js/share-buttons.js?ver=5.3.14 HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:47:30 GMT
ETag: W/"6de-59e38247a23ef"
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:26:59 GMT
Content-Encoding: gzip
moscowfirst.ru/wp-content/themes/fusion/style.css
90.156.201.97200 OK 7.7 kB URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/style.css
IP 90.156.201.97:0
File type HTML document, ASCII text, with CRLF line terminators
Hash cccd222ddd9d8c66b77e021f47bee3a2
340dce2e395acd8f2d5e73e45e80fffe4285eaf3
694067fc8bf2a914e829d841d8193cc241ad1c8320ddb4ab2e8d49f99be101a1
GET /wp-content/themes/fusion/style.css HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:37:25 GMT
ETag: W/"930d-59e38006a9d7d"
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:26:59 GMT
Content-Encoding: gzip
moscowfirst.ru/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
90.156.201.97200 OK 34 kB URL HTTP/1.1 moscowfirst.ru/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 90.156.201.97:0
File type ASCII text, with very long lines (31997)
Hash c26376cb7e5bfc9d65bc02d7d0345646
0134b9a70f1d9f7cfc170daee69214a289a9b0e7
58cac0bca0dec60fcf08b5f3f5443e234e969c7b9f75c09bd206ceb164af279d
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Server: Apache
Last-Modified: Fri, 17 May 2019 04:25:54 GMT
ETag: W/"17a69-5890dc7401880"
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:26:59 GMT
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash d07e2a90120308a9342331ca6981f8fe
a1fe88aaf673e01eed4b0dbf4582bbe743cd44a9
cdc679cd03cf1faea64fbd0482ed165401e09e42865cafca4f854a5bebce3487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 06:26:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
moscowfirst.ru/wp-includes/css/dist/block-library/style.min.css?ver=5.3.14
90.156.201.97200 OK 6.1 kB URL HTTP/1.1 moscowfirst.ru/wp-includes/css/dist/block-library/style.min.css?ver=5.3.14
IP 90.156.201.97:0
File type ASCII text, with very long lines (41045), with no line terminators
Hash d6d3b1e64fec1b9514e8c3643af6a7d7
bdfda72e31424d63672850392dcf7e6ec975034f
f7fdf272ba5adfca2766aa059e093c620e43be687e9349030d846e3a0d98be8f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.3.14 HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Server: Apache
Last-Modified: Thu, 11 Jun 2020 05:57:57 GMT
ETag: W/"a055-5a7c8a4722565"
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:26:59 GMT
Content-Encoding: gzip
userapi.com/js/api/openapi.js?34&ver=5.3.14
87.240.190.64301 Moved Permanently 164 B URL HTTP/1.1 userapi.com/js/api/openapi.js?34&ver=5.3.14
IP 87.240.190.64:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 6d359f551ba4cb27d59e94a6cddaec09
d230318bd921ad8167c2eb9dfdc7b1d7d2c7373f
9ecd8531025e89f5e1ca23d81203a9feddbd5b4b75ca79c9868cb53762293bc8
GET /js/api/openapi.js?34&ver=5.3.14 HTTP/1.1
Host: userapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
HTTP/1.1 301 Moved Permanently
Server: kittenx
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: text/html
Content-Length: 164
Connection: keep-alive
Location: https://vk.com/js/api/openapi.js?34&ver=5.3.14
X-Frontend: front220101
Access-Control-Expose-Headers: X-Frontend
Strict-Transport-Security: max-age=15768000
moscowfirst.ru/wp-includes/js/comment-reply.min.js?ver=5.3.14
90.156.201.97200 OK 1.1 kB URL HTTP/1.1 moscowfirst.ru/wp-includes/js/comment-reply.min.js?ver=5.3.14
IP 90.156.201.97:0
File type ASCII text, with very long lines (2337), with no line terminators
Hash 9e8e427b1273f1dd7250c6e84b376025
1ddf35e60322f54488ccfa118ed31511046b7e2c
38056c2d83d5d62deab5bd47b20161abb32f20099f4961476c30e26035fad0ed
GET /wp-includes/js/comment-reply.min.js?ver=5.3.14 HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Server: Apache
Last-Modified: Thu, 15 Apr 2021 06:09:00 GMT
ETag: W/"921-5bffcb30ee380"
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:26:59 GMT
Content-Encoding: gzip
moscowfirst.ru/wp-includes/js/wp-embed.min.js?ver=5.3.14
90.156.201.97200 OK 745 B URL HTTP/1.1 moscowfirst.ru/wp-includes/js/wp-embed.min.js?ver=5.3.14
IP 90.156.201.97:0
File type ASCII text, with very long lines (1391), with no line terminators
Hash 7216339146836b57a9f28092c1132949
bc1e7b49da9dcf1ef6384c6784e37dd663aebb24
49f7deae7e5b885b5988421cf8a4cda531ca05aaf3e79c1305bafeeedfc871b0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=5.3.14 HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Server: Apache
Last-Modified: Thu, 15 Apr 2021 06:09:00 GMT
ETag: W/"56f-5bffcb30ee380"
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:26:59 GMT
Content-Encoding: gzip
apis.google.com/js/plusone.js?ver=5.3.14
142.250.74.78200 OK 21 kB URL HTTP/2 apis.google.com/js/plusone.js?ver=5.3.14
IP 142.250.74.78:0
File type ASCII text, with very long lines (1429)
Hash 28f227507e373fe9bbd21f337bf302f6
64a15ac675eedb4e3b447623d8712af53a52f52a
14e44addce47ef1d5581e99f897adba81bf6cefeedc6d90669449eca5801e32c
GET /js/plusone.js?ver=5.3.14 HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://moscowfirst.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21023
date: Sat, 25 Mar 2023 06:26:59 GMT
expires: Sat, 25 Mar 2023 06:26:59 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "4e24de520bcc7431"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vkontakte.ru/js/api/share.js?11&ver=5.3.14
87.240.137.164301 Moved Permanently 164 B URL HTTP/1.1 vkontakte.ru/js/api/share.js?11&ver=5.3.14
IP 87.240.137.164:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 6d359f551ba4cb27d59e94a6cddaec09
d230318bd921ad8167c2eb9dfdc7b1d7d2c7373f
9ecd8531025e89f5e1ca23d81203a9feddbd5b4b75ca79c9868cb53762293bc8
GET /js/api/share.js?11&ver=5.3.14 HTTP/1.1
Host: vkontakte.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
HTTP/1.1 301 Moved Permanently
Server: kittenx
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: text/html
Content-Length: 164
Connection: keep-alive
Location: https://vkontakte.ru/js/api/share.js?11&ver=5.3.14
X-Frontend: front512004
Access-Control-Expose-Headers: X-Frontend
platform.twitter.com/widgets.js?ver=5.3.14
192.229.233.25200 OK 28 kB URL HTTP/1.1 platform.twitter.com/widgets.js?ver=5.3.14
IP 192.229.233.25:0
File type Unicode text, UTF-8 text, with very long lines (38752)
Hash 8aa708f5eebf10bd82e942dabf1623a5
326a6d469222302a80ecf29039e7837d8870ee47
fcfdc2930fdd7f4b3c7f0c1308ce2e89fcc5082ae6a0a1e16ecf0f7e417f1368
GET /widgets.js?ver=5.3.14 HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 88
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Sat, 25 Mar 2023 06:26:59 GMT
Etag: "9e99725b7a4cd730a934afba2a438bb5+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:51 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71E)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 27630
stg.odnoklassniki.ru/share/odkl_share.js?ver=5.3.14
217.20.147.8301 Moved Permanently 163 B URL HTTP/1.1 stg.odnoklassniki.ru/share/odkl_share.js?ver=5.3.14
IP 217.20.147.8:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 0bbfa2be7753e0ca4e6713612e42adab
0e7d49c500d0a99adb9447f9bba4e858103d9bc7
798e70617ff2491e1f5c5ecb006a2d31fe9c3bab23b9979572b98ac8b3db62f6
GET /share/odkl_share.js?ver=5.3.14 HTTP/1.1
Host: stg.odnoklassniki.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
HTTP/1.1 301 Moved Permanently
Server: Apache
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: text/html
Content-Length: 163
Connection: keep-alive
Location: https://st.mycdn.me/share/odkl_share.js?ver=5.3.14
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 06:26:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
moscowfirst.ru/wp-includes/js/wp-emoji-release.min.js?ver=5.3.14
90.156.201.97200 OK 4.6 kB URL HTTP/1.1 moscowfirst.ru/wp-includes/js/wp-emoji-release.min.js?ver=5.3.14
IP 90.156.201.97:0
File type ASCII text, with very long lines (10927)
Hash 49e2da66225f0d81b2402df0e163b02a
6716804a9b96baadc42159e0fa04d1a79271b244
ff01a635fab5a6979b95f91ff6bfd0dca2b171f7884db8b0e70c582c0b028193
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.3.14 HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Server: Apache
Last-Modified: Thu, 15 Apr 2021 06:09:00 GMT
ETag: W/"3619-5bffcb30ee380"
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:26:59 GMT
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d85a0c5dbdd6105d70f3de5fb5411b68
4f87ba7fb164aca63645b6a4a7fe7e18c4376b0a
41a73fd656a518110f66e2023fc8cb71be5676366710fe2b718d65c1caa58a8c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41A73FD656A518110F66E2023FC8CB71BE5676366710FE2B718D65C1CAA58A8C"
Last-Modified: Wed, 22 Mar 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9019
Expires: Sat, 25 Mar 2023 08:57:18 GMT
Date: Sat, 25 Mar 2023 06:26:59 GMT
Connection: keep-alive
cdn.connect.mail.ru/js/share/2/share.js?ver=5.3.14
94.100.180.100200 OK 3.3 kB URL HTTP/1.1 cdn.connect.mail.ru/js/share/2/share.js?ver=5.3.14
IP 94.100.180.100:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (1531)
Hash f728206fde649dcaf8ed32ce9878f5ce
cdcfcdd3d53134f440bddeabee68fbf4e7c9969a
d24ec5eb4729e532331a5996df25e26134b55b7be2b9949bd644693fc3e42ea7
GET /js/share/2/share.js?ver=5.3.14 HTTP/1.1
Host: cdn.connect.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: application/javascript
Last-Modified: Fri, 31 Mar 2017 18:23:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"58de9e9c-2cde"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Encoding: gzip
cdn.connect.mail.ru/js/loader.js
94.100.180.100301 Moved Permanently 178 B URL HTTP/1.1 cdn.connect.mail.ru/js/loader.js
IP 94.100.180.100:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /js/loader.js HTTP/1.1
Host: cdn.connect.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: http://connect.mail.ru/js/loader.js
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash bfb55a73527b128fa4976a341185ea4c
69e46cace25edb8099b2d467a01be42b330d2970
ed050f0b411b0933184b62d8e290ee7c0075fd2a311828811bb2712e914f3a69
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Wed, 29 Mar 2023 03:30:00 GMT
ETag: "69e46cace25edb8099b2d467a01be42b330d2970"
Last-Modified: Sat, 25 Mar 2023 03:30:01 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3156
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ad515e469bd0b49-OSL
moscowfirst.ru/wp-content/themes/fusion/js/fusion.js?ver=5.3.14
90.156.201.97404 Not Found 8.0 kB URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/js/fusion.js?ver=5.3.14
IP 90.156.201.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902), with CRLF, LF line terminators
Hash e507fffb0d0839ce1a6505a2a95876c9
e42f7784b221c5f3ab2a86dc17b6216f7a6a1648
5cfaeacc2fd12fd307f1fc90e298bcf055ec9fe2d634a174cb1e15e2fb106edb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/fusion/js/fusion.js?ver=5.3.14 HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://moscowfirst.ru/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash bacc5071520f6eb0e2ce4d907fbfbf2d
cf9773b37617f796c15b837c76668d61db7f0d10
7d86477656e9a50e98eebbba4f56120113ad51dd627780b861fb55ac246d9295
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 29 Mar 2023 03:22:47 GMT
ETag: "cf9773b37617f796c15b837c76668d61db7f0d10"
Last-Modified: Sat, 25 Mar 2023 03:22:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3054
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ad515e4a950b52d-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash bacc5071520f6eb0e2ce4d907fbfbf2d
cf9773b37617f796c15b837c76668d61db7f0d10
7d86477656e9a50e98eebbba4f56120113ad51dd627780b861fb55ac246d9295
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:26:59 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 29 Mar 2023 03:22:47 GMT
ETag: "cf9773b37617f796c15b837c76668d61db7f0d10"
Last-Modified: Sat, 25 Mar 2023 03:22:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3054
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ad515e4aa0bb503-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 06:17:24 GMT
age: 575
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
vkontakte.ru/js/api/share.js?11&ver=5.3.14
87.240.137.164200 OK 3.0 kB URL HTTP/2 vkontakte.ru/js/api/share.js?11&ver=5.3.14
IP 87.240.137.164:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1077)
Hash 45f695069be60171a209e5f4db402e09
d4d88799377e7bf0df70c6f24bd5805bc90ae8ff
b96b0e8b870857d6b8250b69cb033b9fd0d57ce1bdd133faf33d0ee83699aac5
GET /js/api/share.js?11&ver=5.3.14 HTTP/1.1
Host: vkontakte.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://moscowfirst.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Sat, 25 Mar 2023 06:26:59 GMT
content-type: application/x-javascript
content-length: 3014
last-modified: Mon, 19 Dec 2022 09:44:48 GMT
etag: "63a03290-bc6"
content-encoding: br
expires: Wed, 29 Mar 2023 06:26:59 GMT
cache-control: max-age=345600
x-frontend: front512004
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.mycdn.me/share/odkl_share.css
217.20.155.82200 OK 46 B URL HTTP/2 st.mycdn.me/share/odkl_share.css
IP 217.20.155.82:0
File type Unicode text, UTF-8 text, with no line terminators
Hash 42a9cf7542532ee2ad00d8f7439d3fdd
3bc6666c3851b1c46e22fe98e888dff8f2062a65
8e3412dd8b9bbb1a2681c489c7c7ea8d700d232592f78540604b0481d88230cb
GET /share/odkl_share.css HTTP/1.1
Host: st.mycdn.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://moscowfirst.ru/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: apache
date: Sat, 25 Mar 2023 06:26:59 GMT
content-type: text/css; charset=utf-8
content-length: 46
last-modified: Thu, 17 Mar 2022 09:18:47 GMT
vary: Accept-Encoding
content-encoding: br
expires: Sun, 26 Mar 2023 06:26:59 GMT
cache-control: max-age=86400
timing-allow-origin: *
X-Firefox-Spdy: h2
st.mycdn.me/share/odkl_share.js?ver=5.3.14
217.20.155.82200 OK 667 B URL HTTP/2 st.mycdn.me/share/odkl_share.js?ver=5.3.14
IP 217.20.155.82:0
File type ASCII text, with very long lines (1690), with no line terminators
Hash 954cfccac5704af63f8971a7a6951b94
c11654dc954b620318ffaad5b99a35e624b600a1
5fac9514e76eaf34525b77dc18045a43e1ede01e7de87f9aef0ff2c0680fdc86
GET /share/odkl_share.js?ver=5.3.14 HTTP/1.1
Host: st.mycdn.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://moscowfirst.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: apache
date: Sat, 25 Mar 2023 06:26:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 667
last-modified: Thu, 17 Mar 2022 09:18:47 GMT
vary: Accept-Encoding
content-encoding: br
expires: Sun, 26 Mar 2023 06:26:59 GMT
cache-control: max-age=86400
timing-allow-origin: *
X-Firefox-Spdy: h2
vk.com/js/api/openapi.js?34&ver=5.3.14
87.240.129.133200 OK 23 kB URL HTTP/2 vk.com/js/api/openapi.js?34&ver=5.3.14
IP 87.240.129.133:0
File type ASCII text, with very long lines (3849)
Hash 6b56e2aa629cc5f334bba9e200af3bfe
1e99707868f45c499400d95e75348c3d7b7686f5
7cb4aa1277e9f29f5c6d21c642b7c08cfce199332e30395c20995847a0db3fab
GET /js/api/openapi.js?34&ver=5.3.14 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://moscowfirst.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Sat, 25 Mar 2023 06:26:59 GMT
content-type: application/x-javascript
content-length: 23318
last-modified: Fri, 02 Dec 2022 07:14:40 GMT
etag: "6389a5e0-5b16"
content-encoding: br
expires: Wed, 29 Mar 2023 06:26:59 GMT
cache-control: max-age=345600
x-frontend: front609304
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cDotH+uyNOlQtj84YKIryw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6OmjJJB3UuKmXKKreDxuVUKqB3M=
Date: Sat, 25 Mar 2023 06:26:59 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/twitter.png
90.156.201.97200 OK 3.8 kB URL HTTP/1.1 moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/twitter.png
IP 90.156.201.97:0
File type PNG image data, 38 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 56219cd61f7be25506cec849890b87f8
fafe5f718c0d820b8a017fcb0a365f15782765ab
d5606a48f0b41be1f7344f8646aecd5b4fdc52e3fe3db05bc8edf37e668b4491
GET /wp-content/plugins/share-buttons/images/social/classic/twitter.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 3778
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:48:16 GMT
ETag: "ec2-59e38272da773"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/googleplus.png
90.156.201.97200 OK 4.8 kB URL HTTP/1.1 moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/googleplus.png
IP 90.156.201.97:0
File type PNG image data, 38 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f93048c47ca5f25340aba33f759516d
e7bdcc48c01dc96ea4ab6241b05a1d8e96e8bd2e
a61978d60261f406b02e4e4e4d19a4c28f935dea87f0c9a40fa1df7f014f5b31
GET /wp-content/plugins/share-buttons/images/social/classic/googleplus.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 4790
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:48:16 GMT
ETag: "12b6-59e382735e4c7"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/odnoklassniki.png
90.156.201.97200 OK 5.2 kB URL HTTP/1.1 moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/odnoklassniki.png
IP 90.156.201.97:0
File type PNG image data, 38 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash cc56c7925089b411861d1ad1d763c588
366b2eca08dc0cd1918e1bf4b1da48482982d505
3fd3cf009ba9eab60698643298c43bc1a52780e12b63d46a3bf1d2cadc3233c6
GET /wp-content/plugins/share-buttons/images/social/classic/odnoklassniki.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 5174
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:48:16 GMT
ETag: "1436-59e38272c47e5"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/livejournal.png
90.156.201.97200 OK 5.1 kB URL HTTP/1.1 moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/livejournal.png
IP 90.156.201.97:0
File type PNG image data, 38 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash b4b23e77c4c0611d2fc07118174a4919
4988d5a346e84c45647112f801fcea402e82ad77
2cae5886a5f542501b57b46c0e1cebea6262a214d39d3977ff7155d428cd821d
GET /wp-content/plugins/share-buttons/images/social/classic/livejournal.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 5091
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:48:16 GMT
ETag: "13e3-59e38273129de"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/yandex.png
90.156.201.97200 OK 4.2 kB URL HTTP/1.1 moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/yandex.png
IP 90.156.201.97:0
File type PNG image data, 38 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash fbaace23f9ab8d21560b738b5e9237c7
a675f94725ec39d68451a18a4daeaba2eb992b89
b78ffe6ca55d2b5fe81260cffba39eb72105e91d5376b51d85e5f7406f4ff735
GET /wp-content/plugins/share-buttons/images/social/classic/yandex.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 4178
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:48:16 GMT
ETag: "1052-59e382732896c"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
connect.mail.ru/js/loader.js
94.100.180.55200 OK 2.4 kB URL HTTP/1.1 connect.mail.ru/js/loader.js
IP 94.100.180.55:0
Hash 7d3369e98e197eb7a740952e5dc9eab9
99417d369ebaab9ecd5263a0798799cceddf9c92
f79524086d745a1c38152fe3bb7ba2b24d6737d109ecc745c5b7bd2c21cfa98e
GET /js/loader.js HTTP/1.1
Host: connect.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://moscowfirst.ru/
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 16 Mar 2023 10:47:49 GMT
etag: W/"6412f3d5-212c"
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
x-webkit-csp-report-only: default-src https: 'unsafe-inline' 'unsafe-eval'; img-src https://* data: ; frame-src https://* about: javascript:
p3p: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
cache-control: no-cache, no-store, must-revalidate, private
content-encoding: gzip
x-envoy-upstream-service-time: 0
moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/googlebuzz.png
90.156.201.97200 OK 4.5 kB URL HTTP/1.1 moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/googlebuzz.png
IP 90.156.201.97:0
File type PNG image data, 38 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash d531e5d78cad85278d50db68d3ff10f0
3626f1425714fd0ae506c2a2a0ac90fe47e9a32d
99c9d7daaf533fda57320f31b3fead60af5ad67024e93bd0c08a6dd138fd0a5e
GET /wp-content/plugins/share-buttons/images/social/classic/googlebuzz.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 4510
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:48:16 GMT
ETag: "119e-59e38272ce424"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/mailru.png
90.156.201.97200 OK 5.7 kB URL HTTP/1.1 moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/mailru.png
IP 90.156.201.97:0
File type PNG image data, 38 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash a9a4c66f446d57944b2c2478506eefdc
f7cb3bb70c08dcb3cf09872daf3b74b862af6250
536f81de3fb6d9b836769a1f533cb65372e3dfaabf6182df8b3dafc2451c0f15
GET /wp-content/plugins/share-buttons/images/social/classic/mailru.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 5690
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:48:16 GMT
ETag: "163a-59e3827301870"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/facebook.png
90.156.201.97200 OK 3.8 kB URL HTTP/1.1 moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/facebook.png
IP 90.156.201.97:0
File type PNG image data, 38 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 86d6f0d26697c3c3cfd7ace0c367296c
14c5dce959d1d874a5326afb9e3231eb17ac3952
987fa9d936f6bd44c07f5c15a64eb535dee6a77682b34b12c9e46ca9bdc7db58
GET /wp-content/plugins/share-buttons/images/social/classic/facebook.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 3834
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:48:16 GMT
ETag: "efa-59e382732fe9b"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/uploads/2009/09/hrl_008.mos.jpg
90.156.201.97200 OK 224 kB URL HTTP/1.1 moscowfirst.ru/wp-content/uploads/2009/09/hrl_008.mos.jpg
IP 90.156.201.97:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:09:18 20:15:18], baseline, precision 8, 600x449, components 3\012- data
Size 224 kB (223572 bytes)
Hash 524daec7e5b6ae378ae831dd13799358
20824c97f7193a2c59ca459e0aa3c2ef9b4f0414
b51fd0eb27bc0205bd4a9073854851f3ed3caaa5ae529a3c033a9270b46b97cd
GET /wp-content/uploads/2009/09/hrl_008.mos.jpg HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/jpeg
Content-Length: 223572
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:46:54 GMT
ETag: "36954-59e38225460b7"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Sun, 26 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/themes/fusion/js/fusion.js?ver=5.3.14
90.156.201.97404 Not Found 8.0 kB URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/js/fusion.js?ver=5.3.14
IP 90.156.201.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902), with CRLF, LF line terminators
Hash e507fffb0d0839ce1a6505a2a95876c9
e42f7784b221c5f3ab2a86dc17b6216f7a6a1648
5cfaeacc2fd12fd307f1fc90e298bcf055ec9fe2d634a174cb1e15e2fb106edb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/fusion/js/fusion.js?ver=5.3.14 HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://moscowfirst.ru/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip
galleryartphoto.com/image/data/logo%20%D0%BA%D0%BE%D0%BF%D0%B8%D1%8F.png
162.255.119.16302 Found 106 B URL HTTP/1.1 galleryartphoto.com/image/data/logo%20%D0%BA%D0%BE%D0%BF%D0%B8%D1%8F.png
IP 162.255.119.16:0
File type HTML document, ASCII text
Hash 1354e623e05c61ce588f58086e6ee6eb
346a9c59f2488e52fe9c36ed4d2bfb9c728f647a
d09abd54cc8a60facb67a8dfc795eebeca641345d9fc6d76d66a7a538afe56a8
NIDS Severity Alert suricata low ET INFO Namecheap URL Forward
GET /image/data/logo%20%D0%BA%D0%BE%D0%BF%D0%B8%D1%8F.png HTTP/1.1
Host: galleryartphoto.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
HTTP/1.1 302 Found
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 106
Connection: keep-alive
Location: http://www.galleryartphoto.com/image/data/logo%20%D0%BA%D0%BE%D0%BF%D0%B8%D1%8F.png
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
www.google.com/buzz/api/button.js?ver=5.3.14
216.58.211.4404 Not Found 1.6 kB URL HTTP/1.1 www.google.com/buzz/api/button.js?ver=5.3.14
IP 216.58.211.4:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash fb9ba593fdc15d26cea09138dd931b6c
e9e546714455b058d663d26119f1ddb3c198ff88
8550c1ef15acac7e653df34c3e40201ffda06ccfd21b0b8f106b68291f7038d8
GET /buzz/api/button.js?ver=5.3.14 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
HTTP/1.1 404 Not Found
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Sat, 25 Mar 2023 06:27:00 GMT
Server: sffe
Content-Length: 1590
X-XSS-Protection: 0
moscowfirst.ru/wp-content/themes/fusion/images/main-bg.gif
90.156.201.97200 OK 124 B URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/images/main-bg.gif
IP 90.156.201.97:0
File type GIF image data, version 89a, 1 x 100\012- data
Hash b6ae083c94f5acf3f93bbf4c76902f01
a9f597b9b0a540700276dc22d330174204b11316
aae7f1c69bb0184d337f21d02ff4c31afb8303f940e90a02b3f46dfffa3a9364
GET /wp-content/themes/fusion/images/main-bg.gif HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/wp-content/themes/fusion/style.css
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/gif
Content-Length: 124
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:37:27 GMT
ETag: "7c-59e380081329e"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Sun, 26 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/vkontakte.png
90.156.201.97200 OK 4.5 kB URL HTTP/1.1 moscowfirst.ru/wp-content/plugins/share-buttons/images/social/classic/vkontakte.png
IP 90.156.201.97:0
File type PNG image data, 38 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b7eec161b413f0ac18465aa67fd4bb7
ea70d748d17904f37e8bfdc632bfe8b0273fc224
5aae8349308183ef3a0004fd1904f0f2ccbccf2b43815b6f17a0e68af6b4dfe2
GET /wp-content/plugins/share-buttons/images/social/classic/vkontakte.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 4489
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:48:16 GMT
ETag: "1189-59e382732143d"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
www.google-analytics.com/ga.js
142.250.74.174200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Sat, 25 Mar 2023 06:05:12 GMT
Expires: Sat, 25 Mar 2023 08:05:12 GMT
Cache-Control: public, max-age=7200
Age: 1308
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
Vary: Accept-Encoding
moscowfirst.ru/wp-content/themes/fusion/images/header-bg.jpg
90.156.201.97200 OK 657 B URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/images/header-bg.jpg
IP 90.156.201.97:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 20x200, components 3\012- data
Hash d9a7eccad65dd109287facb1a13625c0
776d7fd7692c5a97bd66b3fef39a92a3899ad837
5e26eb86270ceac232f7a948df758311a185cbe9d8d5e247e3fe9d99ea75442e
GET /wp-content/themes/fusion/images/header-bg.jpg HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/wp-content/themes/fusion/style.css
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/jpeg
Content-Length: 657
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:37:27 GMT
ETag: "291-59e380086b0d7"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Sun, 26 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/themes/fusion/images/tab-right.png
90.156.201.97200 OK 1.8 kB URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/images/tab-right.png
IP 90.156.201.97:0
File type PNG image data, 500 x 87, 8-bit colormap, non-interlaced\012- data
Hash 0344c7bcb7706f4f87e0584ae35d91c7
68d4d5b12a2fd52c74139dad7cca01dc460e86ea
f0c4fcc01e04ef2a321412d57110d2523f1d5847862fa3e6992fbab529370c3f
GET /wp-content/themes/fusion/images/tab-right.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/wp-content/themes/fusion/style.css
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 1786
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:37:27 GMT
ETag: "6fa-59e38007e4c72"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/themes/fusion/images/tab-left.png
90.156.201.97200 OK 1.4 kB URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/images/tab-left.png
IP 90.156.201.97:0
File type PNG image data, 10 x 87, 8-bit colormap, non-interlaced\012- data
Hash e811409f06d33e50a7dea0a010533045
2884c0fbaa0a22e91f78f8f4452addd8685ef5e2
fa095c311636a0430a8b219ff72a10dde96a64499edbed64752390d3e9d8602b
GET /wp-content/themes/fusion/images/tab-left.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/wp-content/themes/fusion/style.css
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 1380
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:37:26 GMT
ETag: "564-59e380078f54a"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/themes/fusion/images/div-h2.gif
90.156.201.97200 OK 43 B URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/images/div-h2.gif
IP 90.156.201.97:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f489f7b62082d48257ec1639eb30fbaf
8576c907f6d97424bd0d4ca89dd4c1bb15a61fb1
b054095a2676f671e0316218882da42de5c418596c4620dd9ab33e1869708752
GET /wp-content/themes/fusion/images/div-h2.gif HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/wp-content/themes/fusion/style.css
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:37:27 GMT
ETag: "2b-59e380084b509"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Sun, 26 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/themes/fusion/images/post-icons.png
90.156.201.97200 OK 822 B URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/images/post-icons.png
IP 90.156.201.97:0
File type PNG image data, 16 x 160, 8-bit colormap, non-interlaced\012- data
Hash 0709c13bdd05ee7577f47a969f94bd9b
1420ad7ab0f721de7b60a580321909c5722502af
a5d1e6a9c222ad14e0d1b457330db61fa9b6851bceb8f7600534460cbf49bb84
GET /wp-content/themes/fusion/images/post-icons.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/wp-content/themes/fusion/style.css
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 822
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:37:27 GMT
ETag: "336-59e3800843fda"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/themes/fusion/images/header-center.jpg
90.156.201.97200 OK 30 kB URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/images/header-center.jpg
IP 90.156.201.97:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1640x200, components 3\012- data
Hash 79092a342443bb89712ef8f0cc781a4e
90ce79486efff03a713aadebb480ec4a430eea8a
731fa63b4eaf8558acc177a5868b70dee3fa8090f1236833c2dd869d7c242a7a
GET /wp-content/themes/fusion/images/header-center.jpg HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/wp-content/themes/fusion/style.css
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/jpeg
Content-Length: 30226
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:37:26 GMT
ETag: "7612-59e3800760f1e"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Sun, 26 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/themes/fusion/images/input-bg.png
90.156.201.97200 OK 2.6 kB URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/images/input-bg.png
IP 90.156.201.97:0
File type PNG image data, 1000 x 1000, 8-bit grayscale, non-interlaced\012- data
Hash 186f2e5653669f2267a610fd2169c45f
9118d7e06cc7e1d704212f35188441ff967726ab
f7253bb15c707e7894d670444f072cb8f1cfa82821a3037f513bd32ea098c93f
GET /wp-content/themes/fusion/images/input-bg.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/wp-content/themes/fusion/style.css
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 2592
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:37:27 GMT
ETag: "a20-59e38007ec1a2"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/themes/fusion/images/side-start.png
90.156.201.97200 OK 1.9 kB URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/images/side-start.png
IP 90.156.201.97:0
File type PNG image data, 32 x 356, 8-bit/color RGBA, non-interlaced\012- data
Hash 6d086756a6209ca0507a3af789e65a55
2bf4ca867f4f01e3121444796d1ecac7d18e38d8
78efff1b8b77d42268c8b455bf830529d7b116650933d979984b7ec1290dc927
GET /wp-content/themes/fusion/images/side-start.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/wp-content/themes/fusion/style.css
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 1875
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:37:27 GMT
ETag: "753-59e38007db033"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/themes/fusion/images/side-bg.png
90.156.201.97200 OK 6.1 kB URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/images/side-bg.png
IP 90.156.201.97:0
File type PNG image data, 1000 x 356, 8-bit colormap, non-interlaced\012- data
Hash 4316599f3aeafe0482b99cfce64eb393
eab8d3bc49f8f0bd416988bb3957877782b11204
1dced51144b328ef3a8eaa7bcdc784309206d52d46069f455f43babcb3f05c92
GET /wp-content/themes/fusion/images/side-bg.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/wp-content/themes/fusion/style.css
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 6097
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:37:27 GMT
ETag: "17d1-59e380083f1ba"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
moscowfirst.ru/wp-content/themes/fusion/images/b3.gif
90.156.201.97200 OK 52 B URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/images/b3.gif
IP 90.156.201.97:0
File type GIF image data, version 89a, 7 x 7\012- data
Hash 6aed557aec518916d19c865f0be1083d
c1987df0db693e0a2e3c1a68ed533f2db1ee3a60
526739b8964b67bd2556f5bf4dd073eeb031538e3c98a64276134b22e674acc9
GET /wp-content/themes/fusion/images/b3.gif HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/wp-content/themes/fusion/style.css
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/gif
Content-Length: 52
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:37:27 GMT
ETag: "34-59e380080965f"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Sun, 26 Mar 2023 06:27:00 GMT
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 0199c09c2dc8d63c11f55e41dcf5170e
f7ed531f45915c8824c99c4fe222ddff745e6914
33bf19f5b7b7f30bfb134b3ffde29c6ce90ae51132261456b7357136d968fc12
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 29 Mar 2023 04:30:40 GMT
ETag: "f7ed531f45915c8824c99c4fe222ddff745e6914"
Last-Modified: Sat, 25 Mar 2023 04:30:41 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1535
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ad515e84d1cb52d-OSL
moscowfirst.ru/wp-content/themes/fusion/images/rss.png
90.156.201.97200 OK 691 B URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/images/rss.png
IP 90.156.201.97:0
File type PNG image data, 16 x 16, 8-bit/color RGB, non-interlaced\012- data
Hash 84ed4e7b4c5c12aff0879e9edb771037
7e586e39548319e4a8add38d463ec899a9e147ef
f5db2e8703ce98c0e725bc612c1bfa689c4727fcf94af8bc4efd77e9eeffc887
GET /wp-content/themes/fusion/images/rss.png HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/wp-content/themes/fusion/style.css
Cookie: __utma=230459648.1590160762.1679725633.1679725633.1679725633.1; __utmb=230459648.1.10.1679725633; __utmc=230459648; __utmz=230459648.1679725633.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/png
Content-Length: 691
Connection: keep-alive
Keep-Alive: timeout=10
Server: Apache
Last-Modified: Mon, 10 Feb 2020 12:37:26 GMT
ETag: "2b3-59e380076844d"
Accept-Ranges: bytes
Cache-Control: max-age=0
Expires: Sat, 25 Mar 2023 06:27:00 GMT
platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=http%3A%2F%2Fmoscowfirst.ru
192.229.233.25200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=http%3A%2F%2Fmoscowfirst.ru
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56166)
Size 105 kB (105435 bytes)
Hash 58f06e7d628e7e207cad8e48c9cc76be
9042f057d52be00c9535ce93b0ce4c03707e0c41
ea6c34f2e7acfea93ba722fe283f2704392dc518c9a0d1eeca0ba03a0b63d789
GET /widgets/widget_iframe.2b2d73daf636805223fb11d48f3e94f7.html?origin=http%3A%2F%2Fmoscowfirst.ru HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://moscowfirst.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 812053
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sat, 25 Mar 2023 06:27:00 GMT
Etag: "95e1b50b0c179aefb47b5b211bb347b5+gzip"
Last-Modified: Tue, 24 Jan 2023 21:41:13 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F709)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105435
my2.imgsmail.ru/mail/ru/images/js/connect/api/api_min.js?16
185.5.137.202200 OK 14 kB URL HTTP/1.1 my2.imgsmail.ru/mail/ru/images/js/connect/api/api_min.js?16
IP 185.5.137.202:0
File type Unicode text, UTF-8 text, with very long lines (32012)
Hash 7f8ebd051b0f84098ca0c7cd6d613a86
4b66df8e79b657c0d5c3b608b1ca5b83f6d307be
30878dcd0cbc3ad0529a4b349b61fa1af96c2b5c0470d22b044139ccbfee57cd
GET /mail/ru/images/js/connect/api/api_min.js?16 HTTP/1.1
Host: my2.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: application/javascript
Last-Modified: Thu, 16 Mar 2023 10:44:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6412f31f-c533"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: http://my.mail.ru
Content-Encoding: gzip
img1.imgsmail.ru/r/new_share_buttons_sprite.gif
217.69.139.101200 OK 2.1 kB URL HTTP/1.1 img1.imgsmail.ru/r/new_share_buttons_sprite.gif
IP 217.69.139.101:0
File type GIF image data, version 89a, 200 x 141\012- data
Hash 65f5c8f6ce2d55903a017b841b3d097d
8c10c2cebc42bd3ac2ed7af5492ec63e85d42a21
455d67699de43ce8d9e3c1f6f03420d3aa2b6b5356b6d32a6526f7f3e2a889d8
GET /r/new_share_buttons_sprite.gif HTTP/1.1
Host: img1.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/gif
Content-Length: 2050
Last-Modified: Sat, 18 Feb 2017 20:41:26 GMT
Connection: keep-alive
ETag: "58a8b176-802"
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Expires: Sat, 01 Apr 2023 06:27:00 GMT
Cache-Control: max-age=604800
Accept-Ranges: bytes
connect.mail.ru/share_button?type=insertable&caption-mm=1&caption-ok=1&counter=true&text=true&width=420&domain=moscowfirst.ru&url=http%3A%2F%2Fmoscowfirst.ru%2F2009%2F09%2Fharley_davidson%2F&buttonID=6338365&faces_count=10&height=21&sz=21&st=oval&tp=button&caption=%D0%A0%D1%9C%D0%A1%D0%82%D0%A0%C2%B0%D0%A0%D0%86%D0%A0%D1%91%D0%A1%E2%80%9A%D0%A1%D0%83%D0%A1%D0%8F&cp=1&host=http%3A%2F%2Fmoscowfirst.ru&wid=1677468&app_id=-1&appid=-1
94.100.180.55301 Moved Permanently 162 B URL HTTP/1.1 connect.mail.ru/share_button?type=insertable&caption-mm=1&caption-ok=1&counter=true&text=true&width=420&domain=moscowfirst.ru&url=http%3A%2F%2Fmoscowfirst.ru%2F2009%2F09%2Fharley_davidson%2F&buttonID=6338365&faces_count=10&height=21&sz=21&st=oval&tp=button&caption=%D0%A0%D1%9C%D0%A1%D0%82%D0%A0%C2%B0%D0%A0%D0%86%D0%A0%D1%91%D0%A1%E2%80%9A%D0%A1%D0%83%D0%A1%D0%8F&cp=1&host=http%3A%2F%2Fmoscowfirst.ru&wid=1677468&app_id=-1&appid=-1
IP 94.100.180.55:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /share_button?type=insertable&caption-mm=1&caption-ok=1&counter=true&text=true&width=420&domain=moscowfirst.ru&url=http%3A%2F%2Fmoscowfirst.ru%2F2009%2F09%2Fharley_davidson%2F&buttonID=6338365&faces_count=10&height=21&sz=21&st=oval&tp=button&caption=%D0%A0%D1%9C%D0%A1%D0%82%D0%A0%C2%B0%D0%A0%D0%86%D0%A0%D1%91%D0%A1%E2%80%9A%D0%A1%D0%83%D0%A1%D0%8F&cp=1&host=http%3A%2F%2Fmoscowfirst.ru&wid=1677468&app_id=-1&appid=-1 HTTP/1.1
Host: connect.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
location: https://connect.mail.ru/share_button?type=insertable&caption-mm=1&caption-ok=1&counter=true&text=true&width=420&domain=moscowfirst.ru&url=http%3A%2F%2Fmoscowfirst.ru%2F2009%2F09%2Fharley_davidson%2F&buttonID=6338365&faces_count=10&height=21&sz=21&st=oval&tp=button&caption=%D0%A0%D1%9C%D0%A1%D0%82%D0%A0%C2%B0%D0%A0%D0%86%D0%A0%D1%91%D0%A1%E2%80%9A%D0%A1%D0%83%D0%A1%D0%8F&cp=1&host=http%3A%2F%2Fmoscowfirst.ru&wid=1677468&app_id=-1&appid=-1
x-webkit-csp-report-only: default-src https: 'unsafe-inline' 'unsafe-eval'; img-src https://* data: ; frame-src https://* about: javascript:
p3p: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
cache-control: no-cache, no-store, must-revalidate, private
x-envoy-upstream-service-time: 0
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash 63c71ef58255d51418f1c08390edc3d9
254f9aed138b42cad651a6203483feadf2ddd7f8
26b6e61572b4cb3bcca8c0af3608523d0d8ec9f78ab86663d5c08c83d6e7bd49
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1910
Cache-Control: max-age=164153
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 06:27:00 GMT
Etag: "641e6af7-139"
Expires: Mon, 27 Mar 2023 04:02:53 GMT
Last-Modified: Sat, 25 Mar 2023 03:31:03 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 313
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=922070207&utmhn=moscowfirst.ru&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%D0%A4%D0%BE%D1%82%D0%BE%D1%81%D1%8A%D0%B5%D0%BC%D0%BA%D0%B0%20%D0%BC%D0%BE%D1%82%D0%BE%D1%86%D0%B8%D0%BA%D0%BB%D0%B0%20Harley%20Davidson.%20%D0%A4%D0%BE%D1%82%D0%BE%D0%B3%D1%80%D0%B0%D1%84%20%D0%90%D0%BB%D0%B5%D0%BA%D1%81%D0%B0%D0%BD%D0%B4%D1%80%20%D0%9A%D0%BE%D1%80%D0%BE%D0%B1%D0%BE%D0%B2.%20%C2%AB%20%D0%A4%D0%BE%D1%82%D0%BE%2C%20%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE%2C%20%D0%BA%D0%B8%D0%BD%D0%BE%D0%BF%D1%80%D0%BE%D0%B5%D0%BA%D1%82%D1%8B&utmhid=2121559395&utmr=-&utmp=%2F2009%2F09%2Fharley_davidson%2F&utmht=1679725632833&utmac=UA-10878136-2&utmcc=__utma%3D230459648.1590160762.1679725633.1679725633.1679725633.1%3B%2B__utmz%3D230459648.1679725633.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=57428037&utmredir=1&utmu=DAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.174200 OK 35 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=922070207&utmhn=moscowfirst.ru&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%D0%A4%D0%BE%D1%82%D0%BE%D1%81%D1%8A%D0%B5%D0%BC%D0%BA%D0%B0%20%D0%BC%D0%BE%D1%82%D0%BE%D1%86%D0%B8%D0%BA%D0%BB%D0%B0%20Harley%20Davidson.%20%D0%A4%D0%BE%D1%82%D0%BE%D0%B3%D1%80%D0%B0%D1%84%20%D0%90%D0%BB%D0%B5%D0%BA%D1%81%D0%B0%D0%BD%D0%B4%D1%80%20%D0%9A%D0%BE%D1%80%D0%BE%D0%B1%D0%BE%D0%B2.%20%C2%AB%20%D0%A4%D0%BE%D1%82%D0%BE%2C%20%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE%2C%20%D0%BA%D0%B8%D0%BD%D0%BE%D0%BF%D1%80%D0%BE%D0%B5%D0%BA%D1%82%D1%8B&utmhid=2121559395&utmr=-&utmp=%2F2009%2F09%2Fharley_davidson%2F&utmht=1679725632833&utmac=UA-10878136-2&utmcc=__utma%3D230459648.1590160762.1679725633.1679725633.1679725633.1%3B%2B__utmz%3D230459648.1679725633.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=57428037&utmredir=1&utmu=DAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=922070207&utmhn=moscowfirst.ru&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%D0%A4%D0%BE%D1%82%D0%BE%D1%81%D1%8A%D0%B5%D0%BC%D0%BA%D0%B0%20%D0%BC%D0%BE%D1%82%D0%BE%D1%86%D0%B8%D0%BA%D0%BB%D0%B0%20Harley%20Davidson.%20%D0%A4%D0%BE%D1%82%D0%BE%D0%B3%D1%80%D0%B0%D1%84%20%D0%90%D0%BB%D0%B5%D0%BA%D1%81%D0%B0%D0%BD%D0%B4%D1%80%20%D0%9A%D0%BE%D1%80%D0%BE%D0%B1%D0%BE%D0%B2.%20%C2%AB%20%D0%A4%D0%BE%D1%82%D0%BE%2C%20%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE%2C%20%D0%BA%D0%B8%D0%BD%D0%BE%D0%BF%D1%80%D0%BE%D0%B5%D0%BA%D1%82%D1%8B&utmhid=2121559395&utmr=-&utmp=%2F2009%2F09%2Fharley_davidson%2F&utmht=1679725632833&utmac=UA-10878136-2&utmcc=__utma%3D230459648.1590160762.1679725633.1679725633.1679725633.1%3B%2B__utmz%3D230459648.1679725633.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=57428037&utmredir=1&utmu=DAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Sat, 25 Mar 2023 06:27:00 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
connect.facebook.net/ru_RU/all.js
157.240.205.11301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/ru_RU/all.js
IP 157.240.205.11:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ru_RU/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/ru_RU/all.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Sat, 25 Mar 2023 06:27:00 GMT
Connection: keep-alive
Content-Length: 0
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 34b10ffb129f401e41f4765aa0adb3a6
248c2f7ebc15dc59ef7359d85cdd5bd5fa7f97a2
330a90442146d055498c16a08f435fee283bfc913521a55bd0ab830ed81621dd
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 29 Mar 2023 02:57:31 GMT
ETag: "248c2f7ebc15dc59ef7359d85cdd5bd5fa7f97a2"
Last-Modified: Sat, 25 Mar 2023 02:57:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3031
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ad515e9cf5fb503-OSL
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash f91bec0a4e5b6ec5598800635807a333
58e65c61d3622379fbdfc5a3344706cdd04df398
3312157f1da8d91cfe3727fe0c61082c65d33a3fc68e691db711cdc339f7eb02
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6331
Cache-Control: max-age=168239
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 06:27:00 GMT
Etag: "641e69a8-1d7"
Expires: Mon, 27 Mar 2023 05:10:59 GMT
Last-Modified: Sat, 25 Mar 2023 03:25:28 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
my.mail.ru/grstat?name=my.api.browsers.total:my.api.browsers.firefox.105&r=0.44588897389066817
94.100.180.38200 OK 43 B URL HTTP/1.1 my.mail.ru/grstat?name=my.api.browsers.total:my.api.browsers.firefox.105&r=0.44588897389066817
IP 94.100.180.38:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /grstat?name=my.api.browsers.total:my.api.browsers.firefox.105&r=0.44588897389066817 HTTP/1.1
Host: my.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
X-WebKit-CSP-Report-Only: default-src https: 'unsafe-inline' 'unsafe-eval'; img-src https://* data: ; frame-src https://* about: javascript:
P3P: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
Cache-Control: no-cache, no-store, must-revalidate, private
connect.facebook.net/ru_RU/all.js
157.240.205.11200 OK 1.7 kB URL HTTP/2 connect.facebook.net/ru_RU/all.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (1957)
Hash b79c2bdfcd9beadfeafc52b39b060179
b2090ee41182a1e75b0229a603b0c05fe83351dc
61679c56c120a13b85cf10c2a9d0d6ee5b737b7a5ac45128cb6ba1aa76a8d5f7
GET /ru_RU/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://moscowfirst.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 5cd65d80a71d6137d78743e7c121de5e
etag: "8c75d870800e5fdea87bc09dbe518d82"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 25 Mar 2023 06:30:17 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: t5wr382b6t/q/FKzmwYBeQ==
x-fb-debug: gV7nfJ3XU4zQ+JHAiigS/1CIoFqZtuOPiwnvpWfQA9dZFOMyKkovBSWIxOA2QiIeu8QL4yK6ZPWWGDu8cxfkVQ==
content-length: 1688
x-fb-trip-id: 1679558926
date: Sat, 25 Mar 2023 06:27:00 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
connect.mail.ru/share_button?type=insertable&caption-mm=1&caption-ok=1&counter=true&text=true&width=420&domain=moscowfirst.ru&url=http%3A%2F%2Fmoscowfirst.ru%2F2009%2F09%2Fharley_davidson%2F&buttonID=6338365&faces_count=10&height=21&sz=21&st=oval&tp=button&caption=%D0%A0%D1%9C%D0%A1%D0%82%D0%A0%C2%B0%D0%A0%D0%86%D0%A0%D1%91%D0%A1%E2%80%9A%D0%A1%D0%83%D0%A1%D0%8F&cp=1&host=http%3A%2F%2Fmoscowfirst.ru&wid=1677468&app_id=-1&appid=-1
94.100.180.55200 OK 1.4 kB URL HTTP/1.1 connect.mail.ru/share_button?type=insertable&caption-mm=1&caption-ok=1&counter=true&text=true&width=420&domain=moscowfirst.ru&url=http%3A%2F%2Fmoscowfirst.ru%2F2009%2F09%2Fharley_davidson%2F&buttonID=6338365&faces_count=10&height=21&sz=21&st=oval&tp=button&caption=%D0%A0%D1%9C%D0%A1%D0%82%D0%A0%C2%B0%D0%A0%D0%86%D0%A0%D1%91%D0%A1%E2%80%9A%D0%A1%D0%83%D0%A1%D0%8F&cp=1&host=http%3A%2F%2Fmoscowfirst.ru&wid=1677468&app_id=-1&appid=-1
IP 94.100.180.55:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3130)
Hash 98a528b8bb1b406fb70e9f14cd1aa98b
9f6750351aa2ff95c646f5b760bb790437282276
e1b7357cf528e99a356f8cc956464ad8c3213470fb2e43096d7e8105dadd4def
GET /share_button?type=insertable&caption-mm=1&caption-ok=1&counter=true&text=true&width=420&domain=moscowfirst.ru&url=http%3A%2F%2Fmoscowfirst.ru%2F2009%2F09%2Fharley_davidson%2F&buttonID=6338365&faces_count=10&height=21&sz=21&st=oval&tp=button&caption=%D0%A0%D1%9C%D0%A1%D0%82%D0%A0%C2%B0%D0%A0%D0%86%D0%A0%D1%91%D0%A1%E2%80%9A%D0%A1%D0%83%D0%A1%D0%8F&cp=1&host=http%3A%2F%2Fmoscowfirst.ru&wid=1677468&app_id=-1&appid=-1 HTTP/1.1
Host: connect.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://moscowfirst.ru/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
pragma: no-cache
expires: Fri, 25 Mar 2022 06:27:00 GMT
x-webkit-csp-report-only: default-src https: 'unsafe-inline' 'unsafe-eval'; img-src https://* data: ; frame-src https://* about: javascript:
p3p: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
cache-control: no-cache, no-store, must-revalidate, private
content-encoding: gzip
x-envoy-upstream-service-time: 4
connect.ok.ru/connect.js
217.20.147.3200 OK 1.4 kB IP 217.20.147.3:0
File type ASCII text, with very long lines (2871), with no line terminators
Hash f3ae944b615eb198f98c68e71d04f530
3cd9218cfdcb59fedbbff2d0ad074f82d2493440
3e2f97ca4feef4e0495d4ce1e062792fadffa74d2a92301c84975fa8ffd2658c
GET /connect.js HTTP/1.1
Host: connect.ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://moscowfirst.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: apache
date: Sat, 25 Mar 2023 06:27:00 GMT
content-type: text/javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash f91bec0a4e5b6ec5598800635807a333
58e65c61d3622379fbdfc5a3344706cdd04df398
3312157f1da8d91cfe3727fe0c61082c65d33a3fc68e691db711cdc339f7eb02
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6331
Cache-Control: max-age=168239
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 06:27:00 GMT
Etag: "641e69a8-1d7"
Expires: Mon, 27 Mar 2023 05:10:59 GMT
Last-Modified: Sat, 25 Mar 2023 03:25:28 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
moscowfirst.ru/wp-content/themes/fusion/favicon.ico
90.156.201.97404 Not Found 8.0 kB URL HTTP/1.1 moscowfirst.ru/wp-content/themes/fusion/favicon.ico
IP 90.156.201.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902), with CRLF, LF line terminators
Hash c79dca0656059a2fa33b86770054cbc7
ba4a5ac7b01cbe3906c6b12422eb6566742ac356
3775a0e9a764ea0b9493e01f6f5c2cd6db72c000f51bf73888474b2d0e97f29b
GET /wp-content/themes/fusion/favicon.ico HTTP/1.1
Host: moscowfirst.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://moscowfirst.ru/2009/09/harley_davidson/
Cookie: __utma=230459648.1590160762.1679725633.1679725633.1679725633.1; __utmb=230459648.1.10.1679725633; __utmc=230459648; __utmz=230459648.1679725633.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 404 Not Found
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://moscowfirst.ru/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 817bea9ac0bb82a21a7cadccd34516c6
5248a85fd5a42848bde91b249c6560823f69dc4e
845ab01e68600f84e2710a607fdeafdbf4a8d6d09e267da51d28fd6c758a5501
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 29 Mar 2023 05:30:27 GMT
ETag: "5248a85fd5a42848bde91b249c6560823f69dc4e"
Last-Modified: Sat, 25 Mar 2023 05:30:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 783
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ad515eb1f5fb52d-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 817bea9ac0bb82a21a7cadccd34516c6
5248a85fd5a42848bde91b249c6560823f69dc4e
845ab01e68600f84e2710a607fdeafdbf4a8d6d09e267da51d28fd6c758a5501
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 29 Mar 2023 05:30:27 GMT
ETag: "5248a85fd5a42848bde91b249c6560823f69dc4e"
Last-Modified: Sat, 25 Mar 2023 05:30:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 783
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ad515eb288cb503-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 817bea9ac0bb82a21a7cadccd34516c6
5248a85fd5a42848bde91b249c6560823f69dc4e
845ab01e68600f84e2710a607fdeafdbf4a8d6d09e267da51d28fd6c758a5501
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 29 Mar 2023 05:30:27 GMT
ETag: "5248a85fd5a42848bde91b249c6560823f69dc4e"
Last-Modified: Sat, 25 Mar 2023 05:30:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 783
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ad515eb2f69b52d-OSL
connect.facebook.net/ru_RU/all.js?hash=db92d47753a8ca86a24c9b981ce61eb5
157.240.205.11200 OK 87 kB URL HTTP/2 connect.facebook.net/ru_RU/all.js?hash=db92d47753a8ca86a24c9b981ce61eb5
IP 157.240.205.11:0
File type ASCII text, with very long lines (18743)
Hash f0358fb2da5ca2f5f33e32ad23934ba4
09a2c24a14f581a8fc245f230459e3176c19ecdf
40c7cfcef67015f3743589ac319c4d7eaf526c3be30c0f8ff229c53caacd90db
GET /ru_RU/all.js?hash=db92d47753a8ca86a24c9b981ce61eb5 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://moscowfirst.ru
Connection: keep-alive
Referer: http://moscowfirst.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ba0b03c24ca7c6c0014a428a3a8e1439
etag: "6a5690925869fc464d1b8d68602f19cc"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 24 Mar 2024 05:55:09 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 8DWPstpcovXzPjKtI5NLpA==
x-fb-debug: ipv1wcGBfy8d0yGDMNS/Oy35VpBQKk8BJbkBJasqVp5EKdGByuYyfkr5ad7C51yybf5eAxwdXgwaiqlxzKNo8g==
content-length: 87160
x-fb-trip-id: 1679558926
date: Sat, 25 Mar 2023 06:27:00 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
my1.imgsmail.ru/mail/ru/css/new/share/compiled/20.css?1_2
185.5.137.205200 OK 1.5 kB URL HTTP/1.1 my1.imgsmail.ru/mail/ru/css/new/share/compiled/20.css?1_2
IP 185.5.137.205:0
File type ASCII text, with very long lines (8851)
Hash 662855a79c676b7ca48c4d01043eff4e
36a4d74f2fdcc9169ac8db70de8e068a3ea2f9b3
ebb9f7bd53fd137265b514699c3fc872baf145d3ce652f4d2af2d403aad9e5d3
GET /mail/ru/css/new/share/compiled/20.css?1_2 HTTP/1.1
Host: my1.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.mail.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: text/css
Last-Modified: Thu, 16 Mar 2023 10:44:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6412f31f-2294"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
my1.imgsmail.ru/r/js/connect/share/uber-share.js?1_2
185.5.137.205200 OK 8.1 kB URL HTTP/1.1 my1.imgsmail.ru/r/js/connect/share/uber-share.js?1_2
IP 185.5.137.205:0
Hash 1a3d8cf3597754de8c919e5c613a8e0a
c9d1932c395cedd10d817c2d8ad57ba74dbe6b93
41171e7f1266723eb6857303be1817ef37aae64b2e47120804f27c3a8756b240
GET /r/js/connect/share/uber-share.js?1_2 HTTP/1.1
Host: my1.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: application/javascript
Last-Modified: Thu, 16 Mar 2023 10:44:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6412f31f-b478"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: https://my.mail.ru
Content-Encoding: gzip
my1.imgsmail.ru/r/js/ru/jsCore/jquery/jquery.js
185.5.137.205200 OK 65 kB URL HTTP/1.1 my1.imgsmail.ru/r/js/ru/jsCore/jquery/jquery.js
IP 185.5.137.205:0
Hash d940ce380454dab5d64961bb1cee3c52
d42bedad96afc85c331602b1b089f447673732f4
782bcc7147d64a17886924457d9ba37823fe4aed6047faa4421c2ab069e3210a
GET /r/js/ru/jsCore/jquery/jquery.js HTTP/1.1
Host: my1.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 06:27:00 GMT
Content-Type: application/javascript
Last-Modified: Thu, 16 Mar 2023 10:44:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"6412f31f-35795"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: https://my.mail.ru
Content-Encoding: gzip
my1.imgsmail.ru/mail/ru/images/my/app/connect/share/presets/20/mm-oval.png
185.5.137.205200 OK 6.9 kB URL HTTP/1.1 my1.imgsmail.ru/mail/ru/images/my/app/connect/share/presets/20/mm-oval.png
IP 185.5.137.205:0
File type PNG image data, 300 x 320, 8-bit/color RGBA, non-interlaced\012- data
Hash 41691fd92a3e2c05552a929d69084a5a
12add87f2c80dd03b3bb788301a1e9e661f7e5a8
b531632cd2388f2cfbfd5ebf18b8b8d73092b54250c8ddd75ebaea3e89cf2f80
GET /mail/ru/images/my/app/connect/share/presets/20/mm-oval.png HTTP/1.1
Host: my1.imgsmail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://my1.imgsmail.ru/mail/ru/css/new/share/compiled/20.css?1_2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 06:27:01 GMT
Content-Type: image/png
Content-Length: 6903
Last-Modified: Thu, 16 Nov 2017 11:32:21 GMT
Connection: keep-alive
ETag: "5a0d7745-1af7"
Expires: Sat, 01 Apr 2023 06:27:01 GMT
Cache-Control: max-age=604800
Accept-Ranges: bytes
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash a58707f45dbbc1418c44e4ae4f5d46ee
6ad3e608f2929cfb023442baec3e19ab0f69f23b
d225b5865e5c8ac1e015f332d38c96d22a9898c6d6b0008d754210c44b8ce432
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:01 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Wed, 29 Mar 2023 02:38:07 GMT
ETag: "6ad3e608f2929cfb023442baec3e19ab0f69f23b"
Last-Modified: Sat, 25 Mar 2023 02:38:08 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3561
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ad515edeb44b503-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 30caa8ed56c4e64c7c9be393e73a275e
493671e66147d54210ed950d19b5b7dee8c3831e
341aa538de682b6b5d6cf1c75a7409d4b45542b60931386720357fc809f2bbff
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 06:27:01 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 29 Mar 2023 02:25:12 GMT
ETag: "493671e66147d54210ed950d19b5b7dee8c3831e"
Last-Modified: Sat, 25 Mar 2023 02:25:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3500
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ad515edea22b52d-OSL
rs.mail.ru/d525461.gif?0.5688786393966017
95.163.41.56200 OK 43 B URL HTTP/2 rs.mail.ru/d525461.gif?0.5688786393966017
IP 95.163.41.56:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /d525461.gif?0.5688786393966017 HTTP/1.1
Host: rs.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 06:27:01 GMT
content-type: image/gif
content-length: 43
set-cookie: p=NmkAANCnMD4A; expires=Mon, 24-Mar-25 06:27:01 GMT; path=/; domain=.mail.ru; SameSite=None; Secure
cache-control: private, no-cache, no-store
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSAo PSDo OUR BUS UNI NAV STA INT"
timing-allow-origin: *
X-Firefox-Spdy: h2
my.mail.ru/grstat?name=shows&connect=1
94.100.180.38200 OK 43 B URL HTTP/1.1 my.mail.ru/grstat?name=shows&connect=1
IP 94.100.180.38:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /grstat?name=shows&connect=1 HTTP/1.1
Host: my.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 25 Mar 2023 06:27:01 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
X-WebKit-CSP-Report-Only: default-src https: 'unsafe-inline' 'unsafe-eval'; img-src https://* data: ; frame-src https://* about: javascript:
P3P: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
Cache-Control: no-cache, no-store, must-revalidate, private
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15604
Expires: Sat, 25 Mar 2023 10:47:05 GMT
Date: Sat, 25 Mar 2023 06:27:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15604
Expires: Sat, 25 Mar 2023 10:47:05 GMT
Date: Sat, 25 Mar 2023 06:27:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15604
Expires: Sat, 25 Mar 2023 10:47:05 GMT
Date: Sat, 25 Mar 2023 06:27:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15604
Expires: Sat, 25 Mar 2023 10:47:05 GMT
Date: Sat, 25 Mar 2023 06:27:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15604
Expires: Sat, 25 Mar 2023 10:47:05 GMT
Date: Sat, 25 Mar 2023 06:27:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4160b82-5435-4953-972b-ec17ed6cfabb.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4160b82-5435-4953-972b-ec17ed6cfabb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a181b1a0f36b14bbd372dedf341a5bfc
f86e75abebaa04f5a32c71b333f4ffe4c558025f
ab96058001db408e27be4d86eb9e2b688ba1691f206f4639971c5eb245ea5a4b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4160b82-5435-4953-972b-ec17ed6cfabb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6721
x-amzn-requestid: 0462dd66-7dc9-4339-89a1-467b3e39b392
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzFHfIAMFVyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-452c60524b5562dc5fda941a;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: usehpOA6Rgi0ehv2QGrAOAshAu9i0q9G3Fae44xd2mRX2JPfKPR_Nw==
via: 1.1 50cc3f0b039433daebdf343a3f4489ae.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:24 GMT
age: 31597
etag: "f86e75abebaa04f5a32c71b333f4ffe4c558025f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 73f9697594d173d623b331b5c35eab8d
6323f751f6b7517f062a0442480f672086ea02a1
116cb71658b31e87f19c390b242c684f6505cc8edf90b7fc934ac726fc7ddd18
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8635
x-amzn-requestid: fc715b03-f48f-4300-b752-ab157a684f08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihcETyIAMFhYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a2-68f685ec0f50dae026ea3f64;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: ogff88YPb_ia9BPyBI0afIy9cWym7eDnXHKykpTS3NVG4EY_SUENDA==
via: 1.1 ba490acb2ea716cd57876286ed686786.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
etag: "6323f751f6b7517f062a0442480f672086ea02a1"
content-type: image/jpeg
age: 31593
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffee34a3-12df-40ea-af86-6afc03344df7.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffee34a3-12df-40ea-af86-6afc03344df7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4ca31c4d32baf4dfe47aa66f9bef6ad
3a9e4ffb07bcbadc0de49768340118a92f1452ad
b6327b977fa5c7a3a4b5b0782cd4b8e3dbfd0477d9ed6144aaf8fce7707d29d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffee34a3-12df-40ea-af86-6afc03344df7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6055
x-amzn-requestid: b70d352a-b1ea-4ef9-a526-ea58ee8d5673
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM9hGGvboAMFXxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b7606-30abc12859cca1374a3db351;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:41:26 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: pZtJ1e712xhI02KjnbzADmHL-VdgRJpyxNKkjx6GVuTfGJMP9xMAeA==
via: 1.1 17d76c2aee343249585a570f2d36d2ee.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:43:50 GMT
age: 31391
etag: "3a9e4ffb07bcbadc0de49768340118a92f1452ad"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c831201ad81f55c63c1b101ce854a810
0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5
c854489720d2ca4a95eef00addda0fcdaf481402d044df7725282654a97eb54a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00ac1765-db6c-42e3-99bf-d857d27a34b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5556
x-amzn-requestid: 6b050645-14aa-47f7-b4a5-2e27abbe5115
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM69eHE3IAMF0Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b71ef-6ab2948e2bf2578f29798372;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:23:59 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: ZQcPeutl5BzzzysPzWEzrEY8WU-0F-0twvGPT7RAX-UjNOCk3NtmMQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 06:24:35 GMT
age: 146
etag: "0e9b952f6489f0a5f4862d3bea2fbe0ecdd379e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34604413-bee5-4988-a671-1d741769c6b7.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34604413-bee5-4988-a671-1d741769c6b7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 75513f23b93b5b6a22b41f7ad13a1727
f8968e39fa4fce0250ca3d44dc7918adbdcebe42
b53216a453788e47243c74cbc5ec0b60a2ad7e9a23a4563f7bf54f3c35b66333
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34604413-bee5-4988-a671-1d741769c6b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13355
x-amzn-requestid: 22cf8d87-b411-482e-899e-583ec3fd5ab8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CORDlF6VoAMFdWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641bfbb0-0e6894f745750fc4457386d9;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 07:11:44 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: i2QUqmLEG6e0emHV6NynX0Z7FLauczxddXh8YsRM4hWYNtWIBQ4-Sg==
via: 1.1 626ad4a6bf529166d2aad94a2957694c.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 07:32:09 GMT
age: 82492
etag: "f8968e39fa4fce0250ca3d44dc7918adbdcebe42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aecd210f66f83c73c3450d047ae7448a
d68861e96e12e8a3f293dbae8b687f05b6e15afb
22b69c41c56e5538d91f824d5dc2e63ab5563f99ae8e429c9166f4b397cacd0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5296
x-amzn-requestid: 11fdf0c8-244c-4cd5-bfa7-4c77d777174f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzEqkIAMFXOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-5c241d63598dbf595b54ead5;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: b1KWFmKdRQ4DU0v5JmC7AJatpv2B5FAHKVWL7pFiyh13fqYDA5qydA==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 31593
etag: "d68861e96e12e8a3f293dbae8b687f05b6e15afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.facebook.com/plugins/like.php?action=&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3092456e70f88%26domain%3Dmoscowfirst.ru%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fmoscowfirst.ru%252Ff39fb3d050de29e%26relation%3Dparent.parent&color_scheme=light&container_width=420&href=http%3A%2F%2Fmoscowfirst.ru%2F2009%2F09%2Fharley_davidson%2F&layout=standart&locale=ru_RU&sdk=joey&send=false&show_faces=false&width=450
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?action=&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3092456e70f88%26domain%3Dmoscowfirst.ru%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fmoscowfirst.ru%252Ff39fb3d050de29e%26relation%3Dparent.parent&color_scheme=light&container_width=420&href=http%3A%2F%2Fmoscowfirst.ru%2F2009%2F09%2Fharley_davidson%2F&layout=standart&locale=ru_RU&sdk=joey&send=false&show_faces=false&width=450
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?action=&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3092456e70f88%26domain%3Dmoscowfirst.ru%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fmoscowfirst.ru%252Ff39fb3d050de29e%26relation%3Dparent.parent&color_scheme=light&container_width=420&href=http%3A%2F%2Fmoscowfirst.ru%2F2009%2F09%2Fharley_davidson%2F&layout=standart&locale=ru_RU&sdk=joey&send=false&show_faces=false&width=450 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://moscowfirst.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}, {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: XumCog/HT0rZiZ+oTUnn0cZegWdqvdz++7co+OCI6l/7lSOEaEr+G5czQM0S+mT7+Axg/j9u5jmLcVPZpGZ/BA==
content-length: 0
date: Sat, 25 Mar 2023 06:27:04 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2