urlquery - report: medsouz74.ru/acts/

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
mc.yandex.ru (3)	2672	2017-01-29 05:34:36 UTC	2022-10-06 14:22:39 UTC	77.88.21.119
sync.bumlam.com (2)	3243	2015-08-10 21:04:25 UTC	2022-10-06 17:00:24 UTC	31.172.81.172
ocsp2.globalsign.com (2)	1544	2012-05-21 07:12:19 UTC	2022-10-06 05:47:31 UTC	104.18.21.226
ads.betweendigital.com (4)	1571	2012-10-30 05:08:04 UTC	2022-10-06 17:20:06 UTC	188.42.191.196
acint.net (1)	22962	2014-02-14 21:23:16 UTC	2022-10-06 15:11:39 UTC	46.4.114.109
match.new-programmatic.com (1)	33613	2020-02-18 20:50:06 UTC	2022-10-06 12:22:11 UTC	217.65.2.150
fcgi4.gnezdo.ru (1)	69027	2020-06-11 12:55:54 UTC	2022-10-06 12:22:10 UTC	93.95.102.105
sync.dmp.otm-r.com (1)	19534	2017-02-03 07:19:51 UTC	2022-10-06 17:00:23 UTC	148.251.9.22
status.geotrust.com (1)	3662	2017-12-01 08:55:31 UTC	2022-10-06 04:46:20 UTC	93.184.220.29
s7.addthis.com (3)	1504	2012-05-21 03:34:04 UTC	2022-10-06 05:34:40 UTC	23.38.200.123
bitrix.info (2)	39143	2018-03-10 00:33:22 UTC	2022-10-06 12:49:47 UTC	99.81.218.191
exchange.buzzoola.com (1)	18389	2014-10-17 15:20:27 UTC	2022-10-06 12:22:11 UTC	49.12.83.94
nr.bidderstack.com (1)	352019	2019-02-11 14:43:50 UTC	2022-10-06 12:22:11 UTC	46.4.70.80
1cb35a9db1273f63fe0024060230ea97-sp.ops.beeline.ru (1)	0	No data	No data	37.9.245.57	Domain (beeline.ru) ranked at: 20964
cs.agency2.ru (1)	0	2022-04-29 14:24:02 UTC	2022-10-06 12:22:11 UTC	23.111.107.44	Unknown ranking
ocsp.pki.goog (4)	175	2017-06-14 07:23:31 UTC	2022-10-06 04:46:05 UTC	142.250.74.3
ocsp.sectigo.com (4)	487	2018-12-17 11:31:55 UTC	2022-10-06 12:08:41 UTC	104.18.32.68
v1.addthisedge.com (1)	1721	2019-05-22 18:56:22 UTC	2022-10-06 06:05:40 UTC	23.38.200.123
ocsp.usertrust.com (1)	899	2012-05-21 15:43:18 UTC	2022-10-06 04:46:13 UTC	172.64.155.188
sm.rtb.mts.ru (2)	27154	2019-03-26 14:10:01 UTC	2022-10-06 12:22:10 UTC	217.66.147.41
dmg.digitaltarget.ru (4)	21471	2015-04-23 14:50:51 UTC	2022-10-06 08:05:23 UTC	185.15.175.159
medsouz74.ru (48)	0	2017-09-01 18:44:45 UTC	2022-09-21 06:56:26 UTC	46.254.17.18	Unknown ranking
ssp.bidvol.com (1)	31817	2020-02-22 12:37:29 UTC	2022-10-06 12:22:11 UTC	65.109.23.99
sync.adkernel.com (1)	4993	2017-04-19 09:25:22 UTC	2022-10-06 15:03:44 UTC	77.245.57.72
an.yandex.ru (2)	2577	2017-01-30 05:11:51 UTC	2022-10-06 18:02:22 UTC	87.250.250.90
firefox.settings.services.mozilla.com (2)	867	2020-05-28 17:26:30 UTC	2022-10-06 17:18:03 UTC	54.230.111.7
ocsp.digicert.com (1)	86	2012-05-21 07:02:23 UTC	2022-10-06 14:49:11 UTC	93.184.220.29
www.acint.net (14)	29072	2014-02-14 21:23:16 UTC	2022-10-06 12:32:37 UTC	46.4.114.109
sync.1dmp.io (2)	10017	2016-02-09 11:52:58 UTC	2022-10-06 12:22:11 UTC	136.243.148.229
sape-sync.rutarget.ru (1)	173587	2018-08-07 14:11:47 UTC	2022-10-06 12:22:11 UTC	45.9.27.120
redirect.frontend.weborama.fr (2)	8348	2017-05-04 15:00:27 UTC	2022-10-06 12:22:11 UTC	35.190.24.218
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-10-06 04:55:14 UTC	34.160.144.191
push.services.mozilla.com (1)	2140	2015-09-03 10:29:36 UTC	2022-10-06 05:02:20 UTC	44.237.163.41
ut.rktch.com (1)	41215	2018-06-04 10:29:18 UTC	2022-10-06 12:22:11 UTC	89.108.97.2
m.addthis.com (1)	1448	2013-11-06 20:12:22 UTC	2022-10-06 07:16:19 UTC	23.38.200.123
ocsp.godaddy.com (2)	698	2012-05-20 19:28:57 UTC	2022-10-06 04:48:04 UTC	192.124.249.24
s.uuidksinc.net (1)	3423	2015-07-20 12:00:35 UTC	2022-10-06 12:22:11 UTC	31.220.27.134
cm.g.doubleclick.net (1)	202	2013-05-30 23:19:45 UTC	2022-10-06 14:40:55 UTC	172.217.21.162
x01.aidata.io (2)	12188	2016-03-31 15:36:46 UTC	2022-10-06 12:53:55 UTC	89.108.120.76
px.adhigh.net (2)	10272	2013-01-03 21:02:08 UTC	2022-10-06 15:31:09 UTC	194.190.76.44
r3.o.lencr.org (19)	344	2020-12-02 08:52:13 UTC	2022-10-06 04:46:31 UTC	23.36.76.226
ssp-rtb.sape.ru (1)	31166	2016-02-02 17:01:03 UTC	2022-10-06 16:41:17 UTC	193.3.184.200
mediatoday.ru (1)	136083	2013-05-20 20:53:32 UTC	2022-10-06 12:22:11 UTC	139.45.228.111
dm-eu.hybrid.ai (1)	28847	2021-01-25 11:48:59 UTC	2022-10-06 14:00:24 UTC	37.18.103.16
ocsp.globalsign.com (5)	2075	2012-05-25 06:20:55 UTC	2022-10-06 04:46:52 UTC	104.18.21.226
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-10-06 04:46:50 UTC	34.117.237.239
sync.republer.com (1)	45392	2015-04-29 11:49:27 UTC	2022-10-06 12:22:11 UTC	23.88.82.46
sync.upravel.com (2)	28097	2017-05-29 09:13:46 UTC	2022-10-06 12:22:11 UTC	136.243.48.22
stat.adlabs.ru (1)	200922	2012-07-23 15:58:30 UTC	2022-10-06 12:22:11 UTC	109.248.237.36
edfff2f6-b6a2-4188-b163-b35733872d2c.sync.upravel.com (1)	0	No data	No data	148.251.236.115	Domain (upravel.com) ranked at: 27764
tech.rtb.mts.ru (1)	27360	2017-04-17 12:41:30 UTC	2022-10-06 12:39:52 UTC	213.87.44.187
img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-10-06 15:33:49 UTC	34.120.237.76
ad.adriver.ru (2)	19548	2012-08-31 17:10:27 UTC	2022-10-06 16:53:56 UTC	195.209.108.37
adlmerge.com (1)	146521	2017-04-06 07:10:27 UTC	2022-10-06 12:22:11 UTC	95.211.66.35
tag.digitaltarget.ru (2)	98193	2015-07-21 14:24:58 UTC	2022-10-06 12:22:11 UTC	185.15.175.158
z.moatads.com (1)	374	2014-02-11 16:19:47 UTC	2022-10-06 04:47:27 UTC	23.38.201.146
ssp.bestssp.com (1)	90974	2017-06-10 08:55:20 UTC	2022-10-06 12:22:11 UTC	185.147.80.35
ssp.adriver.ru (1)	12439	2014-01-10 13:39:33 UTC	2022-10-06 17:00:27 UTC	195.209.111.13
status.thawte.com (1)	5123	2017-11-27 12:33:51 UTC	2022-10-06 05:13:36 UTC	93.184.220.29

Scan Date	Severity	Indicator	Comment
2022-10-06	2	medsouz74.ru/acts/	Malware
2022-10-06	2	medsouz74.ru/bitrix/templates/nko_s1/grayscale.js	Malware
2022-10-06	2	medsouz74.ru/bitrix/templates/nko_s1/jquery.jcarousel.min.js	Malware
2022-10-06	2	medsouz74.ru/upload/iblock/866/8660978e062efffd2b73b2c975eb7731.jpeg	Malware
2022-10-06	2	medsouz74.ru/bitrix/cache/css/s1/nko_s1/template_6d10500b7bbde229436dc2937d (...)	Malware

Scan Date	Severity	Indicator	Comment
2022-10-06	2	hybrid.ai	Sinkholed

Date	UQ / IDS / BL	URL	IP
2022-10-06 19:08:43 +0000	0 - 0 - 6	medsouz74.ru/acts/	46.254.17.18

Date	UQ / IDS / BL	URL	IP
2023-03-29 02:54:13 +0000	0 - 1 - 1	dlw1.appzona.org/zws64/sergey_bezrukov_v_prog (...)	46.254.19.209
2023-03-29 00:58:21 +0000	0 - 0 - 1	install4.zonastat.com/ZonaWebSetup.exe?pid=49 (...)	185.22.234.58
2023-03-29 00:53:26 +0000	0 - 0 - 1	install4.zonastat.com/ZonaWebSetup.exe?pid=49 (...)	185.22.234.58
2023-03-29 00:50:04 +0000	0 - 1 - 1	dlw1.appzona.org/zws64/zhenskie_laski_vlagali (...)	46.254.19.209
2023-03-29 00:49:56 +0000	0 - 1 - 1	dlw1.appzona.org/zws64/hotel_transylvania_2[m (...)	46.254.19.209

Date	UQ / IDS / BL	URL	IP
2022-10-06 19:08:43 +0000	0 - 0 - 6	medsouz74.ru/acts/	46.254.17.18

Request	Response
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 54.230.111.7 HASH: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551 54.230.111.7 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert Cache-Control: max-age=259200 Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Wed, 05 Oct 2022 15:47:18 GMT X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: h1ZxUMMY4WWeVyOEl5p0ezHeSGMezl4QEwlQh1MZzh4qWdzZQAjecg== Age: 98473 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 2d12f67fe57a87e7366b662d153a5582 Sha1: d7b02d81cc74f24a251d9363e0f4b0a149264ec1 Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4" Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3990 Expires: Thu, 06 Oct 2022 20:15:02 GMT Date: Thu, 06 Oct 2022 19:08:32 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 282f6e1328452c1cb41f6a6272fff757 Sha1: 20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262 Sha256: 6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471" Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4412 Expires: Thu, 06 Oct 2022 20:22:04 GMT Date: Thu, 06 Oct 2022 19:08:32 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 94a09d62ab3057cda67a091c8d7478f5 Sha1: b1c9d223a951d0bc9f17c9f3b84501266a552b58 Sha256: 582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: qW+tRNZkvJ4YNzkKJf9e7KaRu37G1mvCKxhWIrBfG8vvE/UdNY5ld25F75ReUMzmWEWa2XQq+hc= x-amz-request-id: SMYMYXR62ZHES6GS content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Thu, 06 Oct 2022 18:58:51 GMT age: 581 last-modified: Fri, 30 Sep 2022 18:50:55 GMT etag: "67d5a988edcda47bc3b3b3f65d32b4b6" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 67d5a988edcda47bc3b3b3f65d32b4b6 Sha1: d4f0e0da8b3690cc7da925026d3414b68c7d954f Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Thu, 06 Oct 2022 19:08:32 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 54.230.111.7 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 54.230.111.7 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT X-Content-Type-Options: nosniff Cache-Control: max-age=3600, max-age=3600 Date: Thu, 06 Oct 2022 18:29:41 GMT Expires: Thu, 06 Oct 2022 19:07:03 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: hk_tiwr4NHcqhN0DBZR0fHvU01LRuXs9zQWUzvZ_Z2BjBmLqwG4KAg== Age: 2331 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3541 Cache-Control: 'max-age=158059' Date: Thu, 06 Oct 2022 19:08:32 GMT Last-Modified: Thu, 06 Oct 2022 18:09:31 GMT Server: ECS (ska/F70B) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 8be5570b9a5ca76c580da007a824b029 Sha1: 38840f2ac6476bdd5608121c5653e338c7ad9715 Sha256: 0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: /3d5BEL0793oH6CtJY3Cuw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 44.237.163.41 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 44.237.163.41 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: zM09FllzSdBrjGy2IDtpul5lnIU= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /acts/ HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: medsouz74.ru/acts/ FQDN: medsouz74.ru IP: 46.254.17.18 HASH: e6e86ef68ab87251c71a3c48276e988471cfbf060ad98ccc3bbdff8fe9ef215f 46.254.17.18 HTTP/1.1 200 OK Content-Type: text/html; charset=windows-1251 Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:33 GMT Transfer-Encoding: chunked Connection: keep-alive X-Powered-By: PHP/5.6.35 P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA" X-Powered-CMS: Bitrix Site Manager (7a455765bf6e98501d9071daa43f46e1) Set-Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4; path=/; HttpOnly Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (439), with CRLF, LF line terminators Size: 7604 Md5: 3ea18ee6faed9f004ed48baeb11a4858 Sha1: 242e09ca5f534872652cea561c1ec0eccc4eb02f Sha256: e6e86ef68ab87251c71a3c48276e988471cfbf060ad98ccc3bbdff8fe9ef215f Alerts: Blocklists: - fortinet: Malware
GET /bitrix/cache/css/s1/nko_s1/page_36b77c7f328f9a0f0d3644abe470bf40/page_36b77c7f328f9a0f0d3644abe470bf40_v1.css?15435611911352 HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/bitrix/cache/css/s1/nko_s1/page_36b77c7f32 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 4dfe95f6383bea60c0a27a17ceec0865076c9de70f2bc346a992465021588182 46.254.17.18 HTTP/1.1 200 OK Content-Type: text/css Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:33 GMT Content-Length: 1352 Last-Modified: Fri, 30 Nov 2018 06:59:51 GMT Connection: keep-alive ETag: "5c00dfe7-548" Accept-Ranges: bytes --- Additional Info --- Magic: ASCII text Size: 1352 Md5: 5fd7fa0eb23e3e184bd0eebbeab0f0f7 Sha1: df4f2c4bd4822e55be9eefbb8998c7499e853bd2 Sha256: 4dfe95f6383bea60c0a27a17ceec0865076c9de70f2bc346a992465021588182
GET /js/250/addthis_widget.js HTTP/1.1 Host: s7.addthis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/	URL: s7.addthis.com/js/250/addthis_widget.js FQDN: s7.addthis.com IP: 23.38.200.123 HASH: 21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571 23.38.200.123 HTTP/1.1 308 Permanent Redirect Content-Type: text/html Server: nginx/1.15.8 Content-Length: 171 Location: https://s7.addthis.com/js/250/addthis_widget.js Date: Thu, 06 Oct 2022 19:08:33 GMT Connection: keep-alive X-Distribution: 99 X-Host: s7.addthis.com --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 171 Md5: 3c417e9efbcaeb3bf7e7df75cf3b22fd Sha1: 00465aec6b8ec302eae8abb99678fc5c09c3f343 Sha256: 21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571
GET /bitrix/templates/nko_s1/grayscale.js HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/bitrix/templates/nko_s1/grayscale.js FQDN: medsouz74.ru IP: 46.254.17.18 HASH: cc5df36b109e28126c56ceb7c576a55de261601c68ed479b6c38758e76de3fcf 46.254.17.18 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:33 GMT Content-Length: 12906 Last-Modified: Thu, 13 Sep 2012 06:00:14 GMT Connection: keep-alive ETag: "5051766e-326a" Accept-Ranges: bytes --- Additional Info --- Magic: ASCII text Size: 12906 Md5: 05f38518a8a687a59ce47d3fecc00325 Sha1: 7b7d247db124cb89e44649e39de9197d200a84f8 Sha256: cc5df36b109e28126c56ceb7c576a55de261601c68ed479b6c38758e76de3fcf Alerts: Blocklists: - fortinet: Malware
GET /bitrix/cache/js/s1/nko_s1/template_351e98f5a8022763a28c10d6de73a775/template_351e98f5a8022763a28c10d6de73a775_v1.js?1543558722643 HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/bitrix/cache/js/s1/nko_s1/template_351e98f (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: f29e0af8d4a2d13d533294e4dd6a6843ce36a149d40cfa6fb97f832892d94f52 46.254.17.18 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:33 GMT Content-Length: 643 Last-Modified: Fri, 30 Nov 2018 06:18:42 GMT Connection: keep-alive ETag: "5c00d642-283" Accept-Ranges: bytes --- Additional Info --- Magic: ASCII text, with very long lines (343) Size: 643 Md5: 054be968f3fe34d3670d3cfd39489355 Sha1: de06a88e8d42766bcb14a5ababab5d6c0a4f9d3b Sha256: f29e0af8d4a2d13d533294e4dd6a6843ce36a149d40cfa6fb97f832892d94f52
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 19:08:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: b0e8a79f3e381ab34a44278947ac7c7e Sha1: 70d01e6fdc8565c661b6ae8c5a043ddf2da16530 Sha256: 885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
GET /js/250/addthis_widget.js HTTP/1.1 Host: s7.addthis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://medsouz74.ru/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s7.addthis.com/js/250/addthis_widget.js FQDN: s7.addthis.com IP: 23.38.200.123 HASH: b4f0a30adea9d2d3fd4f74d0b07ae167397434c002bea27eaea8b95022d72aae 23.38.200.123 HTTP/2 200 OK content-type: application/javascript server: nginx/1.15.8 last-modified: Mon, 26 Oct 2020 18:11:48 GMT etag: W/"5f971164-5834c" cache-control: public, max-age=600 strict-transport-security: max-age=15724800; includeSubDomains content-encoding: gzip content-length: 116393 date: Thu, 06 Oct 2022 19:08:33 GMT vary: Accept-Encoding x-distribution: 99 x-host: s7.addthis.com X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (54602) Size: 116393 Md5: 8caf41650f1ef5c6430490d20e2d2af6 Sha1: b69f795ea1b8ec18280f7d1707ac8b7712fd3694 Sha256: b4f0a30adea9d2d3fd4f74d0b07ae167397434c002bea27eaea8b95022d72aae
GET /bitrix/templates/nko_s1/jquery.jcarousel.min.js HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/bitrix/templates/nko_s1/jquery.jcarousel.min.js FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 414931870d7e9da3a2432132dc08fa04934ba24f8c4fef455571889311a5ab11 46.254.17.18 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:33 GMT Content-Length: 15668 Last-Modified: Mon, 04 Jun 2012 11:24:16 GMT Connection: keep-alive ETag: "4fcc9ae0-3d34" Accept-Ranges: bytes --- Additional Info --- Magic: ASCII text, with very long lines (15184), with CRLF line terminators Size: 15668 Md5: 819259ceec87de71d89e058f633b9b72 Sha1: dd0fbccffce0f8339302a928fef52636a233fdd4 Sha256: 414931870d7e9da3a2432132dc08fa04934ba24f8c4fef455571889311a5ab11 Alerts: Blocklists: - fortinet: Malware
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 19:08:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: b0e8a79f3e381ab34a44278947ac7c7e Sha1: 70d01e6fdc8565c661b6ae8c5a043ddf2da16530 Sha256: 885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549
GET /ba.js HTTP/1.1 Host: bitrix.info User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/	URL: bitrix.info/ba.js FQDN: bitrix.info IP: 99.81.218.191 HASH: 0d65b327ff4539fbcdc2d773ee883fd832b37aca69352141a731cae2e46844e5 99.81.218.191 HTTP/1.1 200 OK Content-Type: application/javascript Date: Thu, 06 Oct 2022 19:08:33 GMT Transfer-Encoding: chunked Connection: keep-alive Server: nginx/1.10.1 Last-Modified: Wed, 19 May 2021 09:38:44 GMT ETag: W/"60a4dca4-1a03" P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Set-Cookie: bx_user_id=9638d93f971bf5505da14c98db14538f; expires=Sun, 03-Oct-32 19:08:33 GMT; path=/; domain=bitrix.info; SameSite=None; Secure Access-Control-Allow-Origin: * Expires: Sat, 08 Oct 2022 19:08:33 GMT Cache-Control: max-age=172800 Strict-Transport-Security: max-age=63072000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (6659), with no line terminators Size: 3008 Md5: 3f4ae6a3d97c2564a0e5c02e1ebdf4f8 Sha1: df7bad29a1e8c70f9e27467e73a1a3a894055cdf Sha256: 0d65b327ff4539fbcdc2d773ee883fd832b37aca69352141a731cae2e46844e5
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 470fa94e4f49f0ee5ded8dba23c6f738274cc30f86abb2b4e935da8b2e0d853f 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "470FA94E4F49F0EE5DED8DBA23C6F738274CC30F86ABB2B4E935DA8B2E0D853F" Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14619 Expires: Thu, 06 Oct 2022 23:12:12 GMT Date: Thu, 06 Oct 2022 19:08:33 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: cbe708eaeca5f16c6ebcddcf854853e3 Sha1: 97086d513268b383df2bc15ded5c775266195777 Sha256: 470fa94e4f49f0ee5ded8dba23c6f738274cc30f86abb2b4e935da8b2e0d853f
GET /aci.js HTTP/1.1 Host: www.acint.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://medsouz74.ru/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.acint.net/aci.js FQDN: www.acint.net IP: 46.4.114.109 HASH: a47a88a9b6c7635e5074c25c6e3c92f399fdf8772376e94f077167241e59f9de 46.4.114.109 HTTP/2 200 OK content-type: application/x-javascript server: openresty date: Thu, 06 Oct 2022 19:08:33 GMT content-length: 7461 last-modified: Wed, 08 Jun 2022 16:58:23 GMT etag: "62a0d52f-1d25" content-encoding: gzip expires: Fri, 07 Oct 2022 07:08:33 GMT cache-control: max-age=43200 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (1408) Size: 7461 Md5: ae0aab6c5a2ae2e1168e74f6e6ae4741 Sha1: 2c00f69ee4bbe2ec96c0f7bb33b5f827a6195af8 Sha256: a47a88a9b6c7635e5074c25c6e3c92f399fdf8772376e94f077167241e59f9de
GET /mc/?dp=10 HTTP/1.1 Host: www.acint.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/ Upgrade-Insecure-Requests: 1	URL: www.acint.net/mc/?dp=10 FQDN: www.acint.net IP: 46.4.114.109 HASH: 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c 46.4.114.109 HTTP/1.1 302 Moved Temporarily Content-Type: text/html Server: openresty Date: Thu, 06 Oct 2022 19:08:33 GMT Content-Length: 142 Connection: keep-alive Location: https://www.acint.net/mc/?dp=10 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 142 Md5: 82c98e8e012b79c922655461171cc2fa Sha1: 0828d79135573276005b04be42d79a8a3291292b Sha256: 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /mc/?dp=10 HTTP/1.1 Host: www.acint.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://medsouz74.ru/ Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers	URL: www.acint.net/mc/?dp=10 FQDN: www.acint.net IP: 46.4.114.109 HASH: 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319 46.4.114.109 HTTP/2 302 Found content-type: text/html server: openresty date: Thu, 06 Oct 2022 19:08:33 GMT content-length: 154 location: /mc/?dp=10&tc=1 set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Thu, 06-Oct-22 19:18:33 GMT aid=nVqzHGM/J7EGJAD+l+owAvfe6aH1NC1b+i6O+Dp9P4zEvQq1; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 154 Md5: cfbeaf604823f038b8b46f0ac862b98c Sha1: 7b9eb1dac48e74fa5f418bc456cb410f88b81d98 Sha256: 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /mc/?dp=10&tc=1 HTTP/1.1 Host: www.acint.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://medsouz74.ru/ Connection: keep-alive Cookie: test_cookie=CheckForPermission; aid=nVqzHGM/J7EGJAD+l+owAvfe6aH1NC1b+i6O+Dp9P4zEvQq1 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers	URL: www.acint.net/mc/?dp=10&tc=1 FQDN: www.acint.net IP: 46.4.114.109 HASH: 3dc79094ba889ffecb6c05567e0cd43a681ad0944f4b86a5a9fee706a80d00e1 46.4.114.109 HTTP/2 200 OK content-type: text/html server: openresty date: Thu, 06 Oct 2022 19:08:33 GMT set-cookie: cSyncDp7v2=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp14v3=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp17=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp32=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp45v3=1665083313; expires=Fri, 07-Oct-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp53=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp54v2=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp62=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp67v2=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp68=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp71=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp77=1665083313; expires=Thu, 20-Oct-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp84=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp85=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp95v3=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp101=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp104v2=1665083313; expires=Thu, 20-Oct-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp107=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp110=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp111v2=1665083313; expires=Thu, 20-Oct-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp112v2=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp125v2=1665083313; expires=Fri, 21-Oct-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp126=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp127=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp129=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp136v2=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp138=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp144=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp146=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp148=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp149=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp151=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp178=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp179=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp186=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net cSyncDp221=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL" content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators Size: 1469 Md5: d5c7e06321d16c71ec6f161e84228b5c Sha1: 2469ac9dc73d5f8a1083595c06521cd4250c9589 Sha256: 3dc79094ba889ffecb6c05567e0cd43a681ad0944f4b86a5a9fee706a80d00e1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 151034ed8d274df03e725c11599536d5a285d02ae38ed5c57758dc18f76736b2 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "151034ED8D274DF03E725C11599536D5A285D02AE38ED5C57758DC18F76736B2" Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2227 Expires: Thu, 06 Oct 2022 19:45:41 GMT Date: Thu, 06 Oct 2022 19:08:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: deeff898fcb8f0dff53f35bfe6335b94 Sha1: d9574ba0a1bc7ca35f23e95a250a675a92af7f4d Sha256: 151034ed8d274df03e725c11599536d5a285d02ae38ed5c57758dc18f76736b2
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 17221e1d2e6ae04f61aebcd324fe68587da44f14db721920b3bdc1e51f3b5b38 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "17221E1D2E6AE04F61AEBCD324FE68587DA44F14DB721920B3BDC1E51F3B5B38" Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4828 Expires: Thu, 06 Oct 2022 20:29:02 GMT Date: Thu, 06 Oct 2022 19:08:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a33794ed6feb32db4b9ccdf2177dc244 Sha1: d0f11f78136b4adb76db83a5fea31746cec4a2c4 Sha256: 17221e1d2e6ae04f61aebcd324fe68587da44f14db721920b3bdc1e51f3b5b38
GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1 Host: ssp-rtb.sape.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmat (...) FQDN: ssp-rtb.sape.ru IP: 193.3.184.200 HASH: 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c 193.3.184.200 HTTP/1.1 302 Moved Temporarily Content-Type: text/html Server: openresty Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 142 Connection: keep-alive P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL" Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET Location: https://acint.net/match?dp=14&euid=CDB803C1B2273F636300F59C0231EC7A Expires: Wed, 19 Apr 2000 11:43:00 GMT Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0 Set-Cookie: sspuid=wQO4zWM/J7Kc9QBjeuwxAkMqQ1Fs6IWMQduUmnFFzBO62pJv; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 142 Md5: 82c98e8e012b79c922655461171cc2fa Sha1: 0828d79135573276005b04be42d79a8a3291292b Sha256: 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /upload/iblock/378/378a4de55472fa49c72fe2e040d3d72a.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/378/378a4de55472fa49c72fe2e0 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 7957d5784b49caba746b16f12893bd5e025ec9c72b2e030b36473d5e1110751c 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 4252 Last-Modified: Wed, 05 Feb 2020 10:18:38 GMT Connection: keep-alive ETag: "5e3a967e-109c" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 224x225, components 3\012- data Size: 4252 Md5: 80d11903fb758cbc4ca4b30f88723dfb Sha1: 70b3ffc3a8174c76dcb13789e454adef3fa22ebc Sha256: 7957d5784b49caba746b16f12893bd5e025ec9c72b2e030b36473d5e1110751c
GET /bitrix/templates/nko_s1/images/header-bg.png HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/bitrix/cache/css/s1/nko_s1/template_6d10500b7bbde229436dc2937d81c3fa/template_6d10500b7bbde229436dc2937d81c3fa_v1.css?154355872213431 Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/bitrix/templates/nko_s1/images/header-bg.png FQDN: medsouz74.ru IP: 46.254.17.18 HASH: e37e8b88c0f6c337b700e5190b2a615860e17b7ac440692d71add8185899c19d 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/png Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 1177 Last-Modified: Thu, 13 Sep 2012 05:37:34 GMT Connection: keep-alive ETag: "5051711e-499" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 1001 x 150, 8-bit/color RGBA, non-interlaced\012- data Size: 1177 Md5: 1656f32c954b9771ad7b4e1630602acf Sha1: 12ec27ccb9fc708453a69c06fde567a797d447cd Sha256: e37e8b88c0f6c337b700e5190b2a615860e17b7ac440692d71add8185899c19d
GET /bitrix/components/bitrix/menu/templates/tree/images/page.gif HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/bitrix/cache/css/s1/nko_s1/template_6d10500b7bbde229436dc2937d81c3fa/template_6d10500b7bbde229436dc2937d81c3fa_v1.css?154355872213431 Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/bitrix/components/bitrix/menu/templates/tr (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: d98ddabd7160a22039b3c28dffc9ed1e7205903da754a43783cabbbf751979ed 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/gif Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 248 Last-Modified: Mon, 04 Jun 2012 09:41:40 GMT Connection: keep-alive ETag: "4fcc82d4-f8" Accept-Ranges: bytes --- Additional Info --- Magic: GIF image data, version 89a, 17 x 17\012- data Size: 248 Md5: c0ce993513f256aa17db823cd1b0b8c4 Sha1: fc76da82ae8c031955c84230d569eb6be5e3e611 Sha256: d98ddabd7160a22039b3c28dffc9ed1e7205903da754a43783cabbbf751979ed
GET /match?dsp=sape HTTP/1.1 Host: sync.republer.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: sync.republer.com/match?dsp=sape FQDN: sync.republer.com IP: 23.88.82.46 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 23.88.82.46 HTTP/2 204 No Content server: nginx date: Thu, 06 Oct 2022 19:08:34 GMT strict-transport-security: max-age=0 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 Host: sync.1dmp.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe (...) FQDN: sync.1dmp.io IP: 136.243.148.229 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 136.243.148.229 HTTP/2 302 Found server: nginx date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 0 expires: 0 cache-control: private, no-cache, no-store, no-cache=Set-Cookie, proxy-revalidate set-cookie: uid=4620b961-45aa-11ed-acfd-901b0e8b2a6e; Version=1; Path=/; Domain=.1dmp.io; Expires=Fri, 06 Oct 2023 19:08:34 GMT; SameSite=None; Secure uid-legacy=4620b961-45aa-11ed-acfd-901b0e8b2a6e; Version=1; Path=/; Domain=.1dmp.io; Expires=Fri, 06 Oct 2023 19:08:34 GMT location: /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1CB35A9DB1273F63FE0024060230EA97&cs=1 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sectigo.com/ FQDN: ocsp.sectigo.com IP: 104.18.32.68 HASH: f6dbbea051048b91ae0276b1acf0831b153878ce039d3218ad10e3676df51684 104.18.32.68 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 471 Connection: keep-alive Last-Modified: Tue, 04 Oct 2022 15:41:02 GMT Expires: Tue, 11 Oct 2022 15:41:01 GMT Etag: "495d1c842868e1e5aa7d5049a419d41fc161bd3d" Cache-Control: max-age=418946,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb3 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7560afb959b4b4e8-OSL --- Additional Info --- Magic: data Size: 471 Md5: a116b1d81285955e34ce7b24ff5cb1b2 Sha1: 495d1c842868e1e5aa7d5049a419d41fc161bd3d Sha256: f6dbbea051048b91ae0276b1acf0831b153878ce039d3218ad10e3676df51684
GET /upload/iblock/ee0/ee065e739f069d2ccc715388a1b11ec0.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/ee0/ee065e739f069d2ccc715388 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 83e33cb201d07ee5da3d0b3fcf0cc3f21fb9f3eeb7c467ce864e8974182b37d0 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 8228 Last-Modified: Thu, 28 Jun 2012 09:13:14 GMT Connection: keep-alive ETag: "4fec202a-2024" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 144x144, components 3\012- data Size: 8228 Md5: 89a2589aa0d9e029c415b524e570c3e7 Sha1: 55d66c9626f6eec38f18af9902e0b5c802adc8ea Sha256: 83e33cb201d07ee5da3d0b3fcf0cc3f21fb9f3eeb7c467ce864e8974182b37d0
GET /sape/sync HTTP/1.1 Host: sync.upravel.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: sync.upravel.com/sape/sync FQDN: sync.upravel.com IP: 136.243.48.22 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 136.243.48.22 HTTP/2 302 Found content-type: image/png server: nginx date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 0 location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 set-cookie: session_tptc=1665083314154;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180 session_tptc-legacy=1665083314154;Version=1;Domain=.upravel.com;Path=/;Max-Age=180 p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA" access-control-allow-origin: * access-control-allow-methods: GET, POST, OPTIONS access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range access-control-expose-headers: Content-Length,Content-Range access-control-allow-credentials: false X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bitrix/templates/nko_s1/images/bg3.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/bitrix/cache/css/s1/nko_s1/template_6d10500b7bbde229436dc2937d81c3fa/template_6d10500b7bbde229436dc2937d81c3fa_v1.css?154355872213431 Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/bitrix/templates/nko_s1/images/bg3.jpg FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 9017a8889f9bd44e4159f373fc07d1dcd1bdd75a3f24688aa29d04008b90fa21 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 129408 Last-Modified: Tue, 11 Sep 2012 10:37:32 GMT Connection: keep-alive ETag: "504f146c-1f980" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 1900x1267, components 3\012- data Size: 129408 Md5: 2b38ebca3145b019f14ceb24d931bde1 Sha1: ad5703cd4873da2dabb8c6ae0c32f92fc9a02d12 Sha256: 9017a8889f9bd44e4159f373fc07d1dcd1bdd75a3f24688aa29d04008b90fa21
GET /upload/iblock/cbe/cbeeef2a85fe490e974e034509669121.png HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/cbe/cbeeef2a85fe490e974e0345 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 84d7964b24a74959ab84f722888e356c0b1afa9f3b900cdac61f105271bbde42 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/png Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 20231 Last-Modified: Fri, 25 Jun 2021 09:14:49 GMT Connection: keep-alive ETag: "60d59e89-4f07" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 267 x 87, 8-bit/color RGBA, non-interlaced\012- data Size: 20231 Md5: 67ac34ee10abac680fb70fce23494870 Sha1: 2c2100bf0b476a7ab8265dfd541bf798d8ca2da1 Sha256: 84d7964b24a74959ab84f722888e356c0b1afa9f3b900cdac61f105271bbde42
GET /upload/iblock/42c/42c99dc0a2156760016ef81d3963f268.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/42c/42c99dc0a2156760016ef81d (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: f6dcfcb3171de0e915f9d0e012ade98661aa0b44ca34ff3097b20bb90744900b 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 3347 Last-Modified: Thu, 28 Jun 2012 08:58:34 GMT Connection: keep-alive ETag: "4fec1cba-d13" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 144x144, components 3\012- data Size: 3347 Md5: d3b9c63b074d45c1ef0f0a65e6205118 Sha1: 3f416d16b1a63df7aa64d8f10fe0c757de791823 Sha256: f6dcfcb3171de0e915f9d0e012ade98661aa0b44ca34ff3097b20bb90744900b
GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1CB35A9DB1273F63FE0024060230EA97&cs=1 HTTP/1.1 Host: sync.1dmp.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.acint.net/ Connection: keep-alive Cookie: uid=4620b961-45aa-11ed-acfd-901b0e8b2a6e Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe (...) FQDN: sync.1dmp.io IP: 136.243.148.229 HASH: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015 136.243.148.229 HTTP/2 200 OK content-type: image/gif server: nginx date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 35 expires: 0 cache-control: private, no-cache, no-store, no-cache=Set-Cookie, proxy-revalidate set-cookie: uid=4620b961-45aa-11ed-acfd-901b0e8b2a6e; Version=1; Path=/; Domain=.1dmp.io; Expires=Fri, 06 Oct 2023 19:08:34 GMT; SameSite=None; Secure uid-legacy=4620b961-45aa-11ed-acfd-901b0e8b2a6e; Version=1; Path=/; Domain=.1dmp.io; Expires=Fri, 06 Oct 2023 19:08:34 GMT X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 35 Md5: 28d6814f309ea289f847c69cf91194c6 Sha1: 0f4e929dd5bb2564f7ab9c76338e04e292a42ace Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D HTTP/1.1 Host: exchange.buzzoola.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: exchange.buzzoola.com/cookiesync/redirect/sape?redirect (...) FQDN: exchange.buzzoola.com IP: 49.12.83.94 HASH: 86771f887e799f586abf75178feeddcca68b1f979887623c8be80b305be6c806 49.12.83.94 HTTP/2 301 Moved Permanently content-type: text/html; charset=utf-8 server: nginx date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 115 location: https://www.acint.net/match?dp=126&euid=8764eba9-b9ee-4eac-4d0c-d1990e6dbd20 serverid: TODO X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text Size: 115 Md5: d24bdd8452a92d70388b2da63208d0b2 Sha1: 2cb0c88a52440dec74dd004b25fc0f5d3aa919b4 Sha256: 86771f887e799f586abf75178feeddcca68b1f979887623c8be80b305be6c806
GET /hit/?v=0.4.0&uid=7560b3a5-c265-4fea-8243-d0ae4088e449&dp=10&tz=%2B00%3A00&nc=14237361&u=http%3A%2F%2Fmedsouz74.ru%2Facts%2F&r=&rs=1280x1024&t=%D0%9D%D0%BE%D1%80%D0%BC%D0%B0%D1%82%D0%B8%D0%B2%D0%BD%D0%BE-%D0%BF%D1%80%D0%B0%D0%B2%D0%BE%D0%B2%D1%8B%D0%B5%20%D0%B0%D0%BA%D1%82%D1%8B%20%E2%80%93%20%D0%9D%D0%9A%20%C2%AB%D0%9C%D0%95%D0%94%D0%A1%D0%9E%D0%AE%D0%97%C2%BB&oE=1&oP=1&dT=2022-10-06T19%3A08%3A33.710&fu=65366985-ebd6-4561-999f-11935734bfb0 HTTP/1.1 Host: www.acint.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/	URL: www.acint.net/hit/?v=0.4.0&uid=7560b3a5-c265-4fea-8243- (...) FQDN: www.acint.net IP: 46.4.114.109 HASH: 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c 46.4.114.109 HTTP/1.1 302 Moved Temporarily Content-Type: text/html Server: openresty Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 142 Connection: keep-alive Location: https://www.acint.net/hit/?v=0.4.0&uid=7560b3a5-c265-4fea-8243-d0ae4088e449&dp=10&tz=%2B00%3A00&nc=14237361&u=http%3A%2F%2Fmedsouz74.ru%2Facts%2F&r=&rs=1280x1024&t=%D0%9D%D0%BE%D1%80%D0%BC%D0%B0%D1%82%D0%B8%D0%B2%D0%BD%D0%BE-%D0%BF%D1%80%D0%B0%D0%B2%D0%BE%D0%B2%D1%8B%D0%B5%20%D0%B0%D0%BA%D1%82%D1%8B%20%E2%80%93%20%D0%9D%D0%9A%20%C2%AB%D0%9C%D0%95%D0%94%D0%A1%D0%9E%D0%AE%D0%97%C2%BB&oE=1&oP=1&dT=2022-10-06T19%3A08%3A33.710&fu=65366985-ebd6-4561-999f-11935734bfb0 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 142 Md5: 82c98e8e012b79c922655461171cc2fa Sha1: 0828d79135573276005b04be42d79a8a3291292b Sha256: 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /upload/iblock/4a2/4a2f2e921077f324b2d933ecf5b752ac.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/4a2/4a2f2e921077f324b2d933ec (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 633b08f09edf1852cf1c7747e98b92077a8a510912ae11251734e97b91d793ff 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 3726 Last-Modified: Mon, 17 Dec 2012 11:49:22 GMT Connection: keep-alive ETag: "50cf06c2-e8e" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 144x144, components 3\012- data Size: 3726 Md5: 7ca2d09e5fa951f756d8cd54296e469e Sha1: 202c8f232ed2eecb5aac262689a893efa1c173cb Sha256: 633b08f09edf1852cf1c7747e98b92077a8a510912ae11251734e97b91d793ff
GET /upload/iblock/b80/b805885a907f73784946d56aca2f6056.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/b80/b805885a907f73784946d56a (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: c27293efd70d65eab01404d370949ad8fa2b623703df6a8e54e7ce8af9ecfdf0 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 4380 Last-Modified: Mon, 17 Dec 2012 11:35:06 GMT Connection: keep-alive ETag: "50cf036a-111c" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 144x144, components 3\012- data Size: 4380 Md5: 3d50f40dff5455ff7ebc6832cf7f6478 Sha1: 8d5170941bdf68676b756f55f5b0670edbd79db1 Sha256: c27293efd70d65eab01404d370949ad8fa2b623703df6a8e54e7ce8af9ecfdf0
GET /matchspm?pi=1000005&pui=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 Host: ut.rktch.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: ut.rktch.com/matchspm?pi=1000005&pui=1CB35A9DB1273F63FE (...) FQDN: ut.rktch.com IP: 89.108.97.2 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 89.108.97.2 HTTP/1.1 302 Found Server: nginx/1.22.0 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 0 Connection: keep-alive location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect Set-Cookie: b_uid=d99d105459a86792580779443e034dbce966; Max-Age=2592000; Expires=Sat, 05 Nov 2022 19:08:34 GMT; Domain=rktch.com; Secure; SameSite=None Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS Access-Control-Allow-Headers: Content-Type, Accept, Authorization Access-Control-Allow-Credentials: true --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1 Host: sync.upravel.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.acint.net/ Connection: keep-alive Cookie: session_tptc=1665083314154 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7 (...) FQDN: sync.upravel.com IP: 136.243.48.22 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 136.243.48.22 HTTP/2 302 Found content-type: image/png server: nginx date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 0 location: https://edfff2f6-b6a2-4188-b163-b35733872d2c.sync.upravel.com/sape/sync?ud_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyIsImh0dHBzOi8vd3d3LmFjaW50Lm5ldC8iXX19 set-cookie: user_id=edfff2f6-b6a2-4188-b163-b35733872d2c;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000 user_id-legacy=edfff2f6-b6a2-4188-b163-b35733872d2c;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000 p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA" access-control-allow-origin: * access-control-allow-methods: GET, POST, OPTIONS access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range access-control-expose-headers: Content-Length,Content-Range access-control-allow-credentials: false X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 86d7fd15054e39d5555d704cb61c7acbf5b082ed2ee0d9496a2a155bd024c16a 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "86D7FD15054E39D5555D704CB61C7ACBF5B082ED2EE0D9496A2A155BD024C16A" Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5978 Expires: Thu, 06 Oct 2022 20:48:12 GMT Date: Thu, 06 Oct 2022 19:08:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 1a0e1b1881da10f48ff73cbf09c8212b Sha1: 460a2a4fd811117d89caa9f6ff479eb30a9fa452 Sha256: 86d7fd15054e39d5555d704cb61c7acbf5b082ed2ee0d9496a2a155bd024c16a
GET /upload/iblock/4a4/4a48ac6af07f0fca2cf9eb87bf88e6d6.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/4a4/4a48ac6af07f0fca2cf9eb87 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 4a849d17b006d03967400072f4c07f8966820eed95ed26545386fa94d608bb74 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 4382 Last-Modified: Mon, 17 Dec 2012 11:58:12 GMT Connection: keep-alive ETag: "50cf08d4-111e" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 144x144, components 3\012- data Size: 4382 Md5: 61c2286d4410c73f072907c8212a498d Sha1: 44ed17294553c462b2a68bef54a6fdb8102b7f5c Sha256: 4a849d17b006d03967400072f4c07f8966820eed95ed26545386fa94d608bb74
GET /upload/iblock/d61/d617fad18287dd029e03214afd3814d5.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/d61/d617fad18287dd029e03214a (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 5c466769de0cbd5be9602832f28df1977ca69482047fc17a8556fcbb5cf03bcb 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 6409 Last-Modified: Mon, 17 Dec 2012 11:54:48 GMT Connection: keep-alive ETag: "50cf0808-1909" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 144x144, components 3\012- data Size: 6409 Md5: 9fa1e2077bdd664995fc99b447061b2f Sha1: 2466b5378a14afb51d23754f88493fc578f428a8 Sha256: 5c466769de0cbd5be9602832f28df1977ca69482047fc17a8556fcbb5cf03bcb
GET /upload/iblock/49f/49f7ce776497607f868ace36dc7e3f8e.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/49f/49f7ce776497607f868ace36 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: cbb621db1697f8d7bea64ca7e2016001cdd93a3afb020bc2709e817d5b8c6de4 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 74899 Last-Modified: Wed, 05 Feb 2020 10:21:00 GMT Connection: keep-alive ETag: "5e3a970c-12493" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1590x400, components 3\012- data Size: 74899 Md5: 8cb42ea18816082c41418e6e8d44ef76 Sha1: 3c440836d9d41de5b0b11be5a5ccac1b75d825a7 Sha256: cbb621db1697f8d7bea64ca7e2016001cdd93a3afb020bc2709e817d5b8c6de4
GET /match?dp=126&euid=8764eba9-b9ee-4eac-4d0c-d1990e6dbd20 HTTP/1.1 Host: www.acint.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.acint.net/ Connection: keep-alive Cookie: test_cookie=CheckForPermission; aid=nVqzHGM/J7EGJAD+l+owAvfe6aH1NC1b+i6O+Dp9P4zEvQq1; cSyncDp7v2=1665083313; cSyncDp14v3=1665083313; cSyncDp17=1665083313; cSyncDp32=1665083313; cSyncDp45v3=1665083313; cSyncDp53=1665083313; cSyncDp54v2=1665083313; cSyncDp62=1665083313; cSyncDp67v2=1665083313; cSyncDp68=1665083313; cSyncDp71=1665083313; cSyncDp77=1665083313; cSyncDp84=1665083313; cSyncDp85=1665083313; cSyncDp95v3=1665083313; cSyncDp101=1665083313; cSyncDp104v2=1665083313; cSyncDp107=1665083313; cSyncDp110=1665083313; cSyncDp111v2=1665083313; cSyncDp112v2=1665083313; cSyncDp125v2=1665083313; cSyncDp126=1665083313; cSyncDp127=1665083313; cSyncDp129=1665083313; cSyncDp136v2=1665083313; cSyncDp138=1665083313; cSyncDp144=1665083313; cSyncDp146=1665083313; cSyncDp148=1665083313; cSyncDp149=1665083313; cSyncDp151=1665083313; cSyncDp178=1665083313; cSyncDp179=1665083313; cSyncDp186=1665083313; cSyncDp221=1665083313 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: www.acint.net/match?dp=126&euid=8764eba9-b9ee-4eac-4d0c (...) FQDN: www.acint.net IP: 46.4.114.109 HASH: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda 46.4.114.109 HTTP/2 200 OK content-type: image/gif server: openresty date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 43 last-modified: Mon, 28 Sep 1970 06:00:00 GMT p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL" expires: Wed, 19 Apr 2000 11:43:00 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: ad4b0f606e0f8465bc4c4c170b37e1a3 Sha1: 50b30fd5f87c85fe5cba2635cb83316ca71250d7 Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hit/?v=0.4.0&uid=7560b3a5-c265-4fea-8243-d0ae4088e449&dp=10&tz=%2B00%3A00&nc=14237361&u=http%3A%2F%2Fmedsouz74.ru%2Facts%2F&r=&rs=1280x1024&t=%D0%9D%D0%BE%D1%80%D0%BC%D0%B0%D1%82%D0%B8%D0%B2%D0%BD%D0%BE-%D0%BF%D1%80%D0%B0%D0%B2%D0%BE%D0%B2%D1%8B%D0%B5%20%D0%B0%D0%BA%D1%82%D1%8B%20%E2%80%93%20%D0%9D%D0%9A%20%C2%AB%D0%9C%D0%95%D0%94%D0%A1%D0%9E%D0%AE%D0%97%C2%BB&oE=1&oP=1&dT=2022-10-06T19%3A08%3A33.710&fu=65366985-ebd6-4561-999f-11935734bfb0 HTTP/1.1 Host: www.acint.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://medsouz74.ru/ Connection: keep-alive Cookie: test_cookie=CheckForPermission; aid=nVqzHGM/J7EGJAD+l+owAvfe6aH1NC1b+i6O+Dp9P4zEvQq1; cSyncDp7v2=1665083313; cSyncDp14v3=1665083313; cSyncDp17=1665083313; cSyncDp32=1665083313; cSyncDp45v3=1665083313; cSyncDp53=1665083313; cSyncDp54v2=1665083313; cSyncDp62=1665083313; cSyncDp67v2=1665083313; cSyncDp68=1665083313; cSyncDp71=1665083313; cSyncDp77=1665083313; cSyncDp84=1665083313; cSyncDp85=1665083313; cSyncDp95v3=1665083313; cSyncDp101=1665083313; cSyncDp104v2=1665083313; cSyncDp107=1665083313; cSyncDp110=1665083313; cSyncDp111v2=1665083313; cSyncDp112v2=1665083313; cSyncDp125v2=1665083313; cSyncDp126=1665083313; cSyncDp127=1665083313; cSyncDp129=1665083313; cSyncDp136v2=1665083313; cSyncDp138=1665083313; cSyncDp144=1665083313; cSyncDp146=1665083313; cSyncDp148=1665083313; cSyncDp149=1665083313; cSyncDp151=1665083313; cSyncDp178=1665083313; cSyncDp179=1665083313; cSyncDp186=1665083313; cSyncDp221=1665083313 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: www.acint.net/hit/?v=0.4.0&uid=7560b3a5-c265-4fea-8243- (...) FQDN: www.acint.net IP: 46.4.114.109 HASH: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda 46.4.114.109 HTTP/2 200 OK content-type: image/gif server: openresty date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 43 last-modified: Mon, 28 Sep 1970 06:00:00 GMT expires: Wed, 19 Apr 2000 11:43:00 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: ad4b0f606e0f8465bc4c4c170b37e1a3 Sha1: 50b30fd5f87c85fe5cba2635cb83316ca71250d7 Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match/396/?remote_uid=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 Host: s.uuidksinc.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s.uuidksinc.net/match/396/?remote_uid=1CB35A9DB1273F63F (...) FQDN: s.uuidksinc.net IP: 31.220.27.134 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.220.27.134 HTTP/2 302 Found server: nginx/1.19.0 date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 0 location: https://www.acint.net/match?dp=127&euid=oNoxCTyUw2sr6TmU23b6 set-cookie: jcsuuid=oNoxCTyUw2sr6TmU23b6; expires=Fri, 06 Oct 2023 19:08:34 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upload/iblock/2df/2df2c3ac71c64fc40107c3d9e1fd1cbb.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/2df/2df2c3ac71c64fc40107c3d9 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: a1e63e8a2213663c42736e4a7e222e6bf667ffc6853541d59ed3acb183d6595d 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 3974 Last-Modified: Tue, 18 Dec 2012 08:59:02 GMT Connection: keep-alive ETag: "50d03056-f86" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 144x144, components 3\012- data Size: 3974 Md5: 2f27ed0e0f79a6b51a8f3c383c7b1d36 Sha1: 65ee051b19fa114a5a00175af88ab0d794413c01 Sha256: a1e63e8a2213663c42736e4a7e222e6bf667ffc6853541d59ed3acb183d6595d
GET /upload/iblock/88e/88e51c61021a973b4f1ba2a6116e068c.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/88e/88e51c61021a973b4f1ba2a6 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 551e32a44e86392b293f0ee1ea2784705e769692ae89c6928e88c5561619704f 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 2843 Last-Modified: Tue, 18 Dec 2012 09:08:36 GMT Connection: keep-alive ETag: "50d03294-b1b" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 144x144, components 3\012- data Size: 2843 Md5: 6a9724316ca9b58a2c6431d456d64c22 Sha1: 9b3ee993c7ab7ae363c95bbac02344a7bec573af Sha256: 551e32a44e86392b293f0ee1ea2784705e769692ae89c6928e88c5561619704f
GET /upload/iblock/23a/23a1bd12c4eaca38f6c045aea1f5e6b3.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/23a/23a1bd12c4eaca38f6c045ae (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: f57eb9090188a9c3c415244d90434f46e93e30a750551e835eea8f95f7fc1a45 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 3637 Last-Modified: Tue, 18 Dec 2012 09:03:18 GMT Connection: keep-alive ETag: "50d03156-e35" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 144x144, components 3\012- data Size: 3637 Md5: 56c788f8e45b9d3c36cbea007ca04746 Sha1: 0ebdfcf741edccd8bccd9ca8738d3f99d348daf9 Sha256: f57eb9090188a9c3c415244d90434f46e93e30a750551e835eea8f95f7fc1a45
GET /upload/iblock/866/8660978e062efffd2b73b2c975eb7731.jpeg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/866/8660978e062efffd2b73b2c9 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 108113404f31a7de1dfccb207f16da81b2c4f7cf21eadea7bc3def1bf99fc700 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 4106 Last-Modified: Thu, 30 Mar 2017 08:18:02 GMT Connection: keep-alive ETag: "58dcbf3a-100a" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 332x77, components 3\012- data Size: 4106 Md5: 512d67668c408aa780fafc8877bcd7b9 Sha1: cb972dc4b467e41c50d020f832dcfc4fb7696fea Sha256: 108113404f31a7de1dfccb207f16da81b2c4f7cf21eadea7bc3def1bf99fc700 Alerts: Blocklists: - fortinet: Malware
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: e2bf3b76f0ec5b47dfe0d10371ed613af7fae0e7c209edc7b70ea5fd8a505d5f 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "E2BF3B76F0EC5B47DFE0D10371ED613AF7FAE0E7C209EDC7B70EA5FD8A505D5F" Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9539 Expires: Thu, 06 Oct 2022 21:47:33 GMT Date: Thu, 06 Oct 2022 19:08:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 0987136340d664379cab5818b427f9a6 Sha1: ed7487954f2789a031b3c3918830cc20521e0e2a Sha256: e2bf3b76f0ec5b47dfe0d10371ed613af7fae0e7c209edc7b70ea5fd8a505d5f
GET /upload/iblock/39f/39f24b3b78b09aff68d02cea06283179.png HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/39f/39f24b3b78b09aff68d02cea (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: cde783d800671728d2335ce7e544c059a61a5e9c872bc2ba02d475cb7e6bbed3 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/png Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 10125 Last-Modified: Wed, 05 Feb 2020 10:16:21 GMT Connection: keep-alive ETag: "5e3a95f5-278d" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 225 x 225, 8-bit colormap, non-interlaced\012- data Size: 10125 Md5: 8981eb651ef2d26049f3d0ec27f12d02 Sha1: 2e1335b627faaefa464ad1ce11efd6435610e077 Sha256: cde783d800671728d2335ce7e544c059a61a5e9c872bc2ba02d475cb7e6bbed3
GET /upload/iblock/8c1/8c14c279950f2522e29b0abbc9911dbc.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/8c1/8c14c279950f2522e29b0abb (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 4d1947e5fb67785a2a281aafaf2bfa547c54d538569f8d9b07298f073007a582 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 3891 Last-Modified: Thu, 15 May 2014 08:09:30 GMT Connection: keep-alive ETag: "5374763a-f33" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 160x83, components 3\012- data Size: 3891 Md5: e8b2bf3a7e669c2b9b67af99c3359db8 Sha1: 4cf3d257c6fb7febfbef8f2fde42aeed592b91e9 Sha256: 4d1947e5fb67785a2a281aafaf2bfa547c54d538569f8d9b07298f073007a582
GET /merge_gpsid/?sid=50&id=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 Host: stat.adlabs.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: stat.adlabs.ru/merge_gpsid/?sid=50&id=1CB35A9DB1273F63F (...) FQDN: stat.adlabs.ru IP: 109.248.237.36 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 109.248.237.36 HTTP/2 302 Found server: nginx date: Thu, 06 Oct 2022 18:55:53 GMT content-length: 0 location: //adlmerge.com/merge_gpsid/?sid=50&id=1CB35A9DB1273F63FE0024060230EA97 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upload/iblock/280/2808210f31a44f33168bdd41063a9364.png HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/280/2808210f31a44f33168bdd41 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 7359693de75421cfdd0117b862bea5de2fbda2bc702e7a72e06f127fa44bfe4d 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/png Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 6713 Last-Modified: Wed, 05 Feb 2020 10:22:44 GMT Connection: keep-alive ETag: "5e3a9774-1a39" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 236 x 213, 8-bit colormap, non-interlaced\012- data Size: 6713 Md5: 63a8765ef4fac130b995bc9b687306bb Sha1: bd0429101e8a2200a5f446866bcc45a6e664af42 Sha256: 7359693de75421cfdd0117b862bea5de2fbda2bc702e7a72e06f127fa44bfe4d
GET /upload/iblock/c81/c813ca0195e20fdd18298a2289336072.png HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/c81/c813ca0195e20fdd18298a22 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: ebf295fc77d1cbed018180106a3e25022ce0dbeb6b2c688e6c22e3bbc3796e76 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/png Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 8491 Last-Modified: Wed, 05 Feb 2020 10:26:03 GMT Connection: keep-alive ETag: "5e3a983b-212b" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 198 x 55, 8-bit/color RGBA, non-interlaced\012- data Size: 8491 Md5: 0a4e0533ebce753045b9ad82d998eb9d Sha1: a9c8acbeb2f5cee397df7aadd3f33ea8eaa4249e Sha256: ebf295fc77d1cbed018180106a3e25022ce0dbeb6b2c688e6c22e3bbc3796e76
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: fc0f407b6128b32f5b353da2edb414b949634d4cf7620fb101bb90108fc8deb1 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "FC0F407B6128B32F5B353DA2EDB414B949634D4CF7620FB101BB90108FC8DEB1" Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3919 Expires: Thu, 06 Oct 2022 20:13:53 GMT Date: Thu, 06 Oct 2022 19:08:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: ccb384e272eb7a1d9263a9166b4df2d2 Sha1: 346478ee1017491c9a3136cd9e5dc4d75ca25627 Sha256: fc0f407b6128b32f5b353da2edb414b949634d4cf7620fb101bb90108fc8deb1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 470bc52f002146fff1793cad08fa1269a3012e842bbf490934cbdc254cd49c02 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "470BC52F002146FFF1793CAD08FA1269A3012E842BBF490934CBDC254CD49C02" Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8988 Expires: Thu, 06 Oct 2022 21:38:22 GMT Date: Thu, 06 Oct 2022 19:08:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 58a1deac9d602eb53f6e008b7bc84349 Sha1: 7a9d7c38c965465f9f484af2902d93eecd37b069 Sha256: 470bc52f002146fff1793cad08fa1269a3012e842bbf490934cbdc254cd49c02
GET /upload/iblock/edd/edd9fad4f78d1d9f3b823ba3e2ecad76.png HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/edd/edd9fad4f78d1d9f3b823ba3 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: d8c77af6510aff529008165c576f0408c82e2765db19c07beacc35a3546f0486 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/png Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 12981 Last-Modified: Wed, 05 Feb 2020 10:27:59 GMT Connection: keep-alive ETag: "5e3a98af-32b5" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 239 x 111, 8-bit/color RGBA, non-interlaced\012- data Size: 12981 Md5: be9b8dcaca51d708ef7d1283ec41a14c Sha1: eaa7a78108ec78ead797e86ce048260fab5f5464 Sha256: d8c77af6510aff529008165c576f0408c82e2765db19c07beacc35a3546f0486
GET /match?dp=14&euid=CDB803C1B2273F636300F59C0231EC7A HTTP/1.1 Host: acint.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.acint.net/ Connection: keep-alive Cookie: test_cookie=CheckForPermission; aid=nVqzHGM/J7EGJAD+l+owAvfe6aH1NC1b+i6O+Dp9P4zEvQq1; cSyncDp7v2=1665083313; cSyncDp14v3=1665083313; cSyncDp17=1665083313; cSyncDp32=1665083313; cSyncDp45v3=1665083313; cSyncDp53=1665083313; cSyncDp54v2=1665083313; cSyncDp62=1665083313; cSyncDp67v2=1665083313; cSyncDp68=1665083313; cSyncDp71=1665083313; cSyncDp77=1665083313; cSyncDp84=1665083313; cSyncDp85=1665083313; cSyncDp95v3=1665083313; cSyncDp101=1665083313; cSyncDp104v2=1665083313; cSyncDp107=1665083313; cSyncDp110=1665083313; cSyncDp111v2=1665083313; cSyncDp112v2=1665083313; cSyncDp125v2=1665083313; cSyncDp126=1665083313; cSyncDp127=1665083313; cSyncDp129=1665083313; cSyncDp136v2=1665083313; cSyncDp138=1665083313; cSyncDp144=1665083313; cSyncDp146=1665083313; cSyncDp148=1665083313; cSyncDp149=1665083313; cSyncDp151=1665083313; cSyncDp178=1665083313; cSyncDp179=1665083313; cSyncDp186=1665083313; cSyncDp221=1665083313 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: acint.net/match?dp=14&euid=CDB803C1B2273F636300F59C0231EC7A FQDN: acint.net IP: 46.4.114.109 HASH: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda 46.4.114.109 HTTP/2 200 OK content-type: image/gif server: openresty date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 43 last-modified: Mon, 28 Sep 1970 06:00:00 GMT p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL" expires: Wed, 19 Apr 2000 11:43:00 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: ad4b0f606e0f8465bc4c4c170b37e1a3 Sha1: 50b30fd5f87c85fe5cba2635cb83316ca71250d7 Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D HTTP/1.1 Host: ssp.bestssp.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.ne (...) FQDN: ssp.bestssp.com IP: 185.147.80.35 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 185.147.80.35 HTTP/1.1 302 Found Server: nginx/1.16.1 Date: Thu, 06 Oct 2022 19:08:34 GMT Transfer-Encoding: chunked Connection: keep-alive Location: https://www.acint.net/match?dp=95&euid=TDBLRRGC Set-Cookie: uid=TDBLRRGC; Expires=Thu, 06 Oct 2032 00:00:00 GMT; mf2=1; Expires=Sat, 05 Nov 2022 00:00:00 GMT; --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bitrix/cache/css/s1/nko_s1/template_6d10500b7bbde229436dc2937d81c3fa/template_6d10500b7bbde229436dc2937d81c3fa_v1.css?154355872213431 HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/bitrix/cache/css/s1/nko_s1/template_6d1050 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 46.254.17.18 HTTP/1.1 200 OK Content-Type: text/css Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:33 GMT Content-Length: 13431 Last-Modified: Fri, 30 Nov 2018 06:18:42 GMT Connection: keep-alive ETag: "5c00d642-3477" Accept-Ranges: bytes --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Alerts: Blocklists: - fortinet: Malware
GET /sape/cm?user_id=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 Host: nr.bidderstack.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: nr.bidderstack.com/sape/cm?user_id=1CB35A9DB1273F63FE00 (...) FQDN: nr.bidderstack.com IP: 46.4.70.80 HASH: 82cb517a8f80c91dfcec543c6d140deb3baaf463ea9e77655475096eba7bc7d9 46.4.70.80 HTTP/1.1 200 OK Content-Type: image/gif Server: nginx Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 44 Connection: keep-alive Set-Cookie: uid=54d408ab-3b99-48e3-9abf-1aabae1a66fd; domain=.bidderstack.com; path=/; expires=Fri, 06-Oct-2023 19:08:34 GMT; Access-Control-Allow-Credentials: true --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 44 Md5: f9d60352c70a2ba15616d1c9421f3844 Sha1: e9abc8bea7721a4b6a50295850d13c515006a95c Sha256: 82cb517a8f80c91dfcec543c6d140deb3baaf463ea9e77655475096eba7bc7d9
GET /bitrix/templates/nko_s1/images/topmenu-bg.gif HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/bitrix/cache/css/s1/nko_s1/template_6d10500b7bbde229436dc2937d81c3fa/template_6d10500b7bbde229436dc2937d81c3fa_v1.css?154355872213431 Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/bitrix/templates/nko_s1/images/topmenu-bg.gif FQDN: medsouz74.ru IP: 46.254.17.18 HASH: a90fb83876502d8f4cf6bf17507850138b12996c758ff0215d185549fcaac13e 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/gif Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 277 Last-Modified: Mon, 04 Jun 2012 11:24:30 GMT Connection: keep-alive ETag: "4fcc9aee-115" Accept-Ranges: bytes --- Additional Info --- Magic: GIF image data, version 89a, 1 x 58\012- data Size: 277 Md5: 5d2e0bc7929cf3d31555d0fab6c1c901 Sha1: 03438af45071e31562c03a894497c14caad3658f Sha256: a90fb83876502d8f4cf6bf17507850138b12996c758ff0215d185549fcaac13e
GET /match?dp=129&euid=fxsumm0wkg HTTP/1.1 Host: www.acint.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.acint.net/ Connection: keep-alive Cookie: test_cookie=CheckForPermission; aid=nVqzHGM/J7EGJAD+l+owAvfe6aH1NC1b+i6O+Dp9P4zEvQq1; cSyncDp7v2=1665083313; cSyncDp14v3=1665083313; cSyncDp17=1665083313; cSyncDp32=1665083313; cSyncDp45v3=1665083313; cSyncDp53=1665083313; cSyncDp54v2=1665083313; cSyncDp62=1665083313; cSyncDp67v2=1665083313; cSyncDp68=1665083313; cSyncDp71=1665083313; cSyncDp77=1665083313; cSyncDp84=1665083313; cSyncDp85=1665083313; cSyncDp95v3=1665083313; cSyncDp101=1665083313; cSyncDp104v2=1665083313; cSyncDp107=1665083313; cSyncDp110=1665083313; cSyncDp111v2=1665083313; cSyncDp112v2=1665083313; cSyncDp125v2=1665083313; cSyncDp126=1665083313; cSyncDp127=1665083313; cSyncDp129=1665083313; cSyncDp136v2=1665083313; cSyncDp138=1665083313; cSyncDp144=1665083313; cSyncDp146=1665083313; cSyncDp148=1665083313; cSyncDp149=1665083313; cSyncDp151=1665083313; cSyncDp178=1665083313; cSyncDp179=1665083313; cSyncDp186=1665083313; cSyncDp221=1665083313 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: www.acint.net/match?dp=129&euid=fxsumm0wkg FQDN: www.acint.net IP: 46.4.114.109 HASH: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda 46.4.114.109 HTTP/2 200 OK content-type: image/gif server: openresty date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 43 last-modified: Mon, 28 Sep 1970 06:00:00 GMT p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL" expires: Wed, 19 Apr 2000 11:43:00 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: ad4b0f606e0f8465bc4c4c170b37e1a3 Sha1: 50b30fd5f87c85fe5cba2635cb83316ca71250d7 Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=95&euid=TDBLRRGC HTTP/1.1 Host: www.acint.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.acint.net/ Connection: keep-alive Cookie: test_cookie=CheckForPermission; aid=nVqzHGM/J7EGJAD+l+owAvfe6aH1NC1b+i6O+Dp9P4zEvQq1; cSyncDp7v2=1665083313; cSyncDp14v3=1665083313; cSyncDp17=1665083313; cSyncDp32=1665083313; cSyncDp45v3=1665083313; cSyncDp53=1665083313; cSyncDp54v2=1665083313; cSyncDp62=1665083313; cSyncDp67v2=1665083313; cSyncDp68=1665083313; cSyncDp71=1665083313; cSyncDp77=1665083313; cSyncDp84=1665083313; cSyncDp85=1665083313; cSyncDp95v3=1665083313; cSyncDp101=1665083313; cSyncDp104v2=1665083313; cSyncDp107=1665083313; cSyncDp110=1665083313; cSyncDp111v2=1665083313; cSyncDp112v2=1665083313; cSyncDp125v2=1665083313; cSyncDp126=1665083313; cSyncDp127=1665083313; cSyncDp129=1665083313; cSyncDp136v2=1665083313; cSyncDp138=1665083313; cSyncDp144=1665083313; cSyncDp146=1665083313; cSyncDp148=1665083313; cSyncDp149=1665083313; cSyncDp151=1665083313; cSyncDp178=1665083313; cSyncDp179=1665083313; cSyncDp186=1665083313; cSyncDp221=1665083313 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: www.acint.net/match?dp=95&euid=TDBLRRGC FQDN: www.acint.net IP: 46.4.114.109 HASH: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda 46.4.114.109 HTTP/2 200 OK content-type: image/gif server: openresty date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 43 last-modified: Mon, 28 Sep 1970 06:00:00 GMT p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL" expires: Wed, 19 Apr 2000 11:43:00 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: ad4b0f606e0f8465bc4c4c170b37e1a3 Sha1: 50b30fd5f87c85fe5cba2635cb83316ca71250d7 Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /usersync?dspcsid=8&redirect=1 HTTP/1.1 Host: ssp.bidvol.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: ssp.bidvol.com/usersync?dspcsid=8&redirect=1 FQDN: ssp.bidvol.com IP: 65.109.23.99 HASH: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda 65.109.23.99 HTTP/2 302 Found server: nginx/1.22.0 date: Thu, 06 Oct 2022 19:08:34 GMT x-request-id: ad28e310-fb8f-40fa-bf14-bdb030acac65 set-cookie: bvuid=fxsumm0wkg; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None bvuid2=fxsumm0wkg; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT vary: Origin access-control-allow-origin: * access-control-allow-credentials: true cache-control: no-store, no-cache, must-revalidate, proxy-revalidate pragma: no-cache expires: 0 surrogate-control: no-store location: https://www.acint.net/match?dp=129&euid=fxsumm0wkg X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: ad4b0f606e0f8465bc4c4c170b37e1a3 Sha1: 50b30fd5f87c85fe5cba2635cb83316ca71250d7 Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /bitrix/templates/nko_s1/images/topmenu-d.gif HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/bitrix/cache/css/s1/nko_s1/template_6d10500b7bbde229436dc2937d81c3fa/template_6d10500b7bbde229436dc2937d81c3fa_v1.css?154355872213431 Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/bitrix/templates/nko_s1/images/topmenu-d.gif FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 0f0fecde3c9e734df28d23455b83a2c6029e6af5f043aacd9f2545a31108aac5 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/gif Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 316 Last-Modified: Mon, 04 Jun 2012 11:24:30 GMT Connection: keep-alive ETag: "4fcc9aee-13c" Accept-Ranges: bytes --- Additional Info --- Magic: GIF image data, version 89a, 2 x 50\012- data Size: 316 Md5: 9a3206e5ce14e4f73efd43dc13f1a736 Sha1: 280c8480f065addad0198a28c5b4193d1fe7f836 Sha256: 0f0fecde3c9e734df28d23455b83a2c6029e6af5f043aacd9f2545a31108aac5
GET /upload/iblock/e64/e64a0ea7ede7f6342c645268807c3e9d.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/e64/e64a0ea7ede7f6342c645268 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: bafd10681a4f3ca7c9057fbd94e46e63316f64bec7ff6fb3e42b688cd993e29c 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 2654 Last-Modified: Thu, 28 Jun 2012 08:49:52 GMT Connection: keep-alive ETag: "4fec1ab0-a5e" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 144x144, components 3\012- data Size: 2654 Md5: 21239e368fa2956bbe0c90974dcc47b9 Sha1: 1666df6540d91330d933b91171d19785baa43ff3 Sha256: bafd10681a4f3ca7c9057fbd94e46e63316f64bec7ff6fb3e42b688cd993e29c
GET /upload/medialibrary/77c/77c51054ebc3b989e81500a67c23e21f.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/medialibrary/77c/77c51054ebc3b989e8 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 321ebcf033e16d3e3a959201cb3aac14af07532e8bd2671b0f00083bd5534775 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 149192 Last-Modified: Fri, 10 Aug 2018 09:23:44 GMT Connection: keep-alive ETag: "5b6d59a0-246c8" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=15, height=710, bps=0, PhotometricIntepretation=CMYK, orientation=upper-left, width=785], progressive, precision 8, 785x710, components 3 DIY-Thermocam raw data\012- (Lepton 3.x), scale 29023--5692, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 0.000000, slope 43410353893779213626900480.000000\012- data Size: 149192 Md5: eefdf430c180651e47627b06340e31f9 Sha1: 2456925a7a168c3fd822659cbe44781420289a79 Sha256: 321ebcf033e16d3e3a959201cb3aac14af07532e8bd2671b0f00083bd5534775
GET /upload/iblock/7af/7aff48c7923ae02855ae6cda6fa8e7f0.png HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/7af/7aff48c7923ae02855ae6cda (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 6e5bd9bd07c358459dfc6ff6b80d0cb1931d5e669c45735027ccd11f151a2891 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/png Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 15089 Last-Modified: Thu, 30 Mar 2017 08:15:19 GMT Connection: keep-alive ETag: "58dcbe97-3af1" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 557 x 101, 8-bit/color RGBA, non-interlaced\012- data Size: 15089 Md5: a974a7e68c71ccb2d597523c42620916 Sha1: 20d99fdccfaf878c717bddb15609ad840648ea54 Sha256: 6e5bd9bd07c358459dfc6ff6b80d0cb1931d5e669c45735027ccd11f151a2891
GET /upload/iblock/7b6/7b6d93c758134f75731a88647f597fa5.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/7b6/7b6d93c758134f75731a8864 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 4155d9b0dbb178e3cfc7f24490be3049de2e555f68a6577b74708563dede682b 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 6155 Last-Modified: Thu, 28 Jun 2012 08:53:38 GMT Connection: keep-alive ETag: "4fec1b92-180b" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 144x144, components 3\012- data Size: 6155 Md5: 4f665f4a22c816bc0634de71c1c95d8d Sha1: eaccb9a598d45999f6cdf726bf6c9f7561ee8f82 Sha256: 4155d9b0dbb178e3cfc7f24490be3049de2e555f68a6577b74708563dede682b
GET /bitrix/templates/nko_s1/images/topmenu-c.png HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/bitrix/cache/css/s1/nko_s1/template_6d10500b7bbde229436dc2937d81c3fa/template_6d10500b7bbde229436dc2937d81c3fa_v1.css?154355872213431 Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/bitrix/templates/nko_s1/images/topmenu-c.png FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 142c94ac4c13695244a3f6143c5ca539617c39f5a93c073be62938d4f81ec441 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/png Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 641 Last-Modified: Thu, 13 Sep 2012 05:40:48 GMT Connection: keep-alive ETag: "505171e0-281" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 14 x 58, 8-bit/color RGBA, non-interlaced\012- data Size: 641 Md5: 53a4ace83dea7868520a17cddbcf731d Sha1: dbec74ab13aa9b675a8b7647d91af5de0d38d90d Sha256: 142c94ac4c13695244a3f6143c5ca539617c39f5a93c073be62938d4f81ec441
GET /images/t5.gif HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/images/t5.gif FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 22bb0ce4a287c7187c43a352b694833250b8f53dacc8de400fb4dd7577b13300 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/gif Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 4958 Last-Modified: Wed, 27 Feb 2013 11:53:06 GMT Connection: keep-alive ETag: "512df3a2-135e" Accept-Ranges: bytes --- Additional Info --- Magic: GIF image data, version 89a, 110 x 144\012- data Size: 4958 Md5: d6763121f305c31273ed3cd6b587130e Sha1: ee6e60624be68da49a503c427ee5955f8b7d6afe Sha256: 22bb0ce4a287c7187c43a352b694833250b8f53dacc8de400fb4dd7577b13300
GET /upload/iblock/af6/af62e0b0a328da8be29c31e785251289.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/af6/af62e0b0a328da8be29c31e7 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: ef625cc79f8e2049f0ef9790e5a632f3120dc8a8119fcc4ca5f1e36c5ab26768 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 129765 Last-Modified: Fri, 25 Jun 2021 09:18:57 GMT Connection: keep-alive ETag: "60d59f81-1fae5" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 562x600, components 3\012- data Size: 129765 Md5: de5db73e0f12a40bcf976fe0400d0b64 Sha1: 040dd10da4d3e3d2ab60bca9ee357777cdd0cd5d Sha256: ef625cc79f8e2049f0ef9790e5a632f3120dc8a8119fcc4ca5f1e36c5ab26768
POST /gsgccr3dvtlsca2020 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.globalsign.com/gsgccr3dvtlsca2020 FQDN: ocsp.globalsign.com IP: 104.18.21.226 HASH: c488788753594d63d9035be183051cf114927154be91979de1154b0ff811f9a1 104.18.21.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 1414 Connection: keep-alive Expires: Mon, 10 Oct 2022 15:17:49 GMT ETag: "8aca23f2c7b9e8147a8f181d33c4a43724d7bae2" Last-Modified: Thu, 06 Oct 2022 15:17:50 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 2563 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 7560afbc8fe30b39-OSL --- Additional Info --- Magic: data Size: 1414 Md5: 0abea2b33b22011ebece2d99fcbc3bc7 Sha1: 8aca23f2c7b9e8147a8f181d33c4a43724d7bae2 Sha256: c488788753594d63d9035be183051cf114927154be91979de1154b0ff811f9a1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 48369835fd492c9f416e09748b88d7c44ae6fbb58a707490c2a088fc224ea973 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "48369835FD492C9F416E09748B88D7C44AE6FBB58A707490C2A088FC224EA973" Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2261 Expires: Thu, 06 Oct 2022 19:46:15 GMT Date: Thu, 06 Oct 2022 19:08:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: db09d070d52c6aad1d58582eb60f0021 Sha1: bb64cf2d477280e81300ba27d6832b047a92037f Sha256: 48369835fd492c9f416e09748b88d7c44ae6fbb58a707490c2a088fc224ea973
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: e877c0bedcdaf331324ba11c5fe5a2a22a79089677d7f8419600be5f19ac0fa8 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "E877C0BEDCDAF331324BA11C5FE5A2A22A79089677D7F8419600BE5F19AC0FA8" Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9058 Expires: Thu, 06 Oct 2022 21:39:32 GMT Date: Thu, 06 Oct 2022 19:08:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 4ca3a35f00ba4c2b76dbced08aacbac6 Sha1: d72ea5eeff994490e3ac9972508c6112bd231e0b Sha256: e877c0bedcdaf331324ba11c5fe5a2a22a79089677d7f8419600be5f19ac0fa8
GET /p?ssp=sp&id=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 Host: 1cb35a9db1273f63fe0024060230ea97-sp.ops.beeline.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: 1cb35a9db1273f63fe0024060230ea97-sp.ops.beeline.ru/p?ss (...) FQDN: 1cb35a9db1273f63fe0024060230ea97-sp.ops.beeline.ru IP: 37.9.245.57 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 37.9.245.57 HTTP/2 301 Moved Permanently server: nginx date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 0 location: https://www.acint.net/match?dp=111&euid=b3fecf3c-2cb4-4609-b56e-fc033981e047 access-control-allow-origin: * cache-control: no-store, no-cache, must-revalidate expires: Thu, 01 Jan 1970 00:00:00 GMT set-cookie: BeeAID=b3fecf3c-2cb4-4609-b56e-fc033981e047; expires=Wed, 27 Sep 2023 19:08:34 GMT; domain=ops.beeline.ru; path=/; secure; SameSite=None access-control-allow-credentials: true, true access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS, GET, HEAD, POST, OPTIONS, PUT, DELETE access-control-allow-headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT x-route: http://upstream_cookiesync x-host: 192.168.152.36 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 Host: sync.bumlam.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: sync.bumlam.com/?src=sap1&uid=1CB35A9DB1273F63FE0024060 (...) FQDN: sync.bumlam.com IP: 31.172.81.172 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.172.81.172 HTTP/1.1 302 Moved Temporarily Server: nginx Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 0 Connection: keep-alive Set-Cookie: suuid3=IiQ0NjZkZDBhNi00NWFhLTExZWQtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Wed, 01 Oct 2042 19:08:34 GMT; Domain=bumlam.com; SameSite=None; Secure P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARiyz_yZBmIgMUNCMzVBOURCMTI3M0Y2M0ZFMDAyNDA2MDIzMEVBOTeiARBGbdCmRaoR7YbgACWQwGR8 ETag: 466dd0a6-45aa-11ed-86e0-002590c0647c Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 4f7a4fb81cb2e98bd62c7b4a72c5be3a06b59b209a207e8b2c542cd6c3a3270e 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "4F7A4FB81CB2E98BD62C7B4A72C5BE3A06B59B209A207E8B2C542CD6C3A3270E" Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3752 Expires: Thu, 06 Oct 2022 20:11:06 GMT Date: Thu, 06 Oct 2022 19:08:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 45b0256611480a9ec22d86de1a78432f Sha1: de84427d350a56e26672456b58c2cbdba76db281 Sha256: 4f7a4fb81cb2e98bd62c7b4a72c5be3a06b59b209a207e8b2c542cd6c3a3270e
GET /upload/iblock/d83/d83d607616bac7fa58199ccd9dd80039.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/iblock/d83/d83d607616bac7fa58199ccd (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 1725ed37ec04708f6db11f605111031ea586b74a286ebbd326e0e9c875189ef0 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 1792111 Last-Modified: Thu, 30 Mar 2017 08:09:14 GMT Connection: keep-alive ETag: "58dcbd2a-1b586f" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 6859x2422, components 3\012- data Size: 1792111 Md5: 298e63193d83751354abc80fe80ee4ac Sha1: d9bafa37f5184643b16f804ab2d52c8e1b2e1fe7 Sha256: 1725ed37ec04708f6db11f605111031ea586b74a286ebbd326e0e9c875189ef0
GET /match?dp=111&euid=b3fecf3c-2cb4-4609-b56e-fc033981e047 HTTP/1.1 Host: www.acint.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.acint.net/ Connection: keep-alive Cookie: test_cookie=CheckForPermission; aid=nVqzHGM/J7EGJAD+l+owAvfe6aH1NC1b+i6O+Dp9P4zEvQq1; cSyncDp7v2=1665083313; cSyncDp14v3=1665083313; cSyncDp17=1665083313; cSyncDp32=1665083313; cSyncDp45v3=1665083313; cSyncDp53=1665083313; cSyncDp54v2=1665083313; cSyncDp62=1665083313; cSyncDp67v2=1665083313; cSyncDp68=1665083313; cSyncDp71=1665083313; cSyncDp77=1665083313; cSyncDp84=1665083313; cSyncDp85=1665083313; cSyncDp95v3=1665083313; cSyncDp101=1665083313; cSyncDp104v2=1665083313; cSyncDp107=1665083313; cSyncDp110=1665083313; cSyncDp111v2=1665083313; cSyncDp112v2=1665083313; cSyncDp125v2=1665083313; cSyncDp126=1665083313; cSyncDp127=1665083313; cSyncDp129=1665083313; cSyncDp136v2=1665083313; cSyncDp138=1665083313; cSyncDp144=1665083313; cSyncDp146=1665083313; cSyncDp148=1665083313; cSyncDp149=1665083313; cSyncDp151=1665083313; cSyncDp178=1665083313; cSyncDp179=1665083313; cSyncDp186=1665083313; cSyncDp221=1665083313 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: www.acint.net/match?dp=111&euid=b3fecf3c-2cb4-4609-b56e (...) FQDN: www.acint.net IP: 46.4.114.109 HASH: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda 46.4.114.109 HTTP/2 200 OK content-type: image/gif server: openresty date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 43 last-modified: Mon, 28 Sep 1970 06:00:00 GMT p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL" expires: Wed, 19 Apr 2000 11:43:00 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: ad4b0f606e0f8465bc4c4c170b37e1a3 Sha1: 50b30fd5f87c85fe5cba2635cb83316ca71250d7 Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /p?ssp=sp&uid=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 Host: cs.agency2.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cs.agency2.ru/p?ssp=sp&uid=1CB35A9DB1273F63FE0024060230EA97 FQDN: cs.agency2.ru IP: 23.111.107.44 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 23.111.107.44 HTTP/1.1 301 Moved Permanently Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 0 Connection: keep-alive Server: fasthttp Cache-Control: no-store, no-cache, must-revalidate Expires: Thu, 01 Jan 1970 00:00:00 GMT Location: https://www.acint.net/match?dp=186&euid=91584db5-0fdc-4b9a-895a-3175556a7381 Set-Cookie: uuid=91584db5-0fdc-4b9a-895a-3175556a7381; expires=Wed, 27 Sep 2023 19:08:34 GMT; domain=agency2.ru; path=/; secure; SameSite=None Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT X-Host: 23.111.107.44 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /core/match.gif?s=32&id=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 Host: mediatoday.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: mediatoday.ru/core/match.gif?s=32&id=1CB35A9DB1273F63FE (...) FQDN: mediatoday.ru IP: 139.45.228.111 HASH: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b 139.45.228.111 HTTP/2 200 OK content-type: image/gif server: nginx/1.22.0 date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 43 p3p: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA cache-control: no-cache, max-age=0, must-revalidate, no-store pragma: no-cache expires: Thursday, 01-Jan-1970 00:00:00 GMT set-cookie: idntfy=VU7g1eXQsPQlXdp; expires=Sun, 03-Oct-2032 19:08:34 GMT; domain=mediatoday.ru; path=/core; SameSite=None; Secure X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: 325472601571f31e1bf00674c368d335 Sha1: 2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F" Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3208 Expires: Thu, 06 Oct 2022 20:02:02 GMT Date: Thu, 06 Oct 2022 19:08:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 31e440ccd993c4ee793f50511c2ac7c4 Sha1: 4380327d50b7001d158aee05a57c6078e57c94e4 Sha256: 65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
GET /match?id=106&vid=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 Host: dm-eu.hybrid.ai User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: dm-eu.hybrid.ai/match?id=106&vid=1CB35A9DB1273F63FE0024 (...) FQDN: dm-eu.hybrid.ai IP: 37.18.103.16 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 37.18.103.16 HTTP/2 204 No Content date: Thu, 06 Oct 2022 19:08:34 GMT cache-control: no-cache, no-store pragma: no-cache expires: -1 set-cookie: vid=793f0b1d3777dad74540; expires=Fri, 06 Oct 2023 19:08:34 GMT; domain=.hybrid.ai; path=/; samesite=none p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC" x-mode: 521 x-xss-protection: 1; mode=block access-control-allow-origin: * server: Hybrid Web Server X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Alerts: Blocklists: - quad9: Sinkholed
POST /gsalphasha2g2 HTTP/1.1 Host: ocsp2.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp2.globalsign.com/gsalphasha2g2 FQDN: ocsp2.globalsign.com IP: 104.18.21.226 HASH: 01d40600a8d3d414d4715633f26aadee0473fb9518f5ad43858faa632125a912 104.18.21.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 1423 Connection: keep-alive Expires: Mon, 10 Oct 2022 17:38:41 GMT ETag: "23338a2226e05be3c2bea258cf374f582e64b0fc" Last-Modified: Thu, 06 Oct 2022 17:38:42 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 1014 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 7560afbd4906b506-OSL --- Additional Info --- Magic: data Size: 1423 Md5: 920716f022a7df80d6a97304544be613 Sha1: 23338a2226e05be3c2bea258cf374f582e64b0fc Sha256: 01d40600a8d3d414d4715633f26aadee0473fb9518f5ad43858faa632125a912
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 11080 x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZjO7xE5eoAMFQLw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0 x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT x-amz-cf-pop: HIO50-C1, SEA73-P2 x-cache: Hit from cloudfront x-amz-cf-id: LySueW1si-yWLwecUILV1s57IEV2FdcQ9_pH1Aoe4AYISi7QXXfd3A== via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google date: Wed, 05 Oct 2022 21:39:28 GMT age: 77346 etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11080 Md5: 2277f8f2d93b4bc3b05d348343177892 Sha1: 531d9e4ec9078cd2d7376a19fcb287084af36c82 Sha256: 62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: f9393e7b8cbaedc8e1ef87fd89c617cf102f58813d84d866ff68e3124f94d44c 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9044 x-amzn-requestid: 127bce04-9f75-4bb1-bbe7-33bf1694d96c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZdZPmHG5oAMFehw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-633ba263-3896085b3b73ff5403237206;Sampled=0 x-amzn-remapped-date: Tue, 04 Oct 2022 03:02:59 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: E4yZTPRLFdK717YfwjOIFOJDi0wYpyA736dQELeM5iPLvGDXBosEWg== via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google date: Thu, 06 Oct 2022 05:04:17 GMT age: 50657 etag: "ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9044 Md5: 70ea26af79226e9ff06d6198e2c019dc Sha1: ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57 Sha256: f9393e7b8cbaedc8e1ef87fd89c617cf102f58813d84d866ff68e3124f94d44c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7270 x-amzn-requestid: e5d0bb7a-b9d5-49b1-b51c-8db019da641f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZjQOGEQloAMFjgw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-633dfa5a-519d91fb0b83920960da479d;Sampled=0 x-amzn-remapped-date: Wed, 05 Oct 2022 21:42:50 GMT x-amz-cf-pop: HIO50-C1, SEA73-P2 x-cache: Miss from cloudfront x-amz-cf-id: l1HGT5ycH36vVojsOPFptRSU1YJFvLbBsgiWJqzRlRIGgm2o5vf6jg== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google date: Wed, 05 Oct 2022 21:58:56 GMT etag: "447cbf348ef10d0136a1811e843c46937defbba1" age: 76178 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7270 Md5: e238ccaa3b9fa88476a8514855e8232f Sha1: 447cbf348ef10d0136a1811e843c46937defbba1 Sha256: 43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7511 x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZjO6uG70IAMFjBw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0 x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT x-amz-cf-pop: HIO50-C1, SEA73-P2 x-cache: Hit from cloudfront x-amz-cf-id: BddSUzh-PKiFmfw2p9gPW-B0qtrXWxCXfee29Pk-wLqN7RO21Yic6g== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google date: Wed, 05 Oct 2022 21:37:06 GMT age: 77488 etag: "69ad212cb7ae309d4f02019552887135bfae67da" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7511 Md5: 9e520f87cae411cfc2ed1c8a14184385 Sha1: 69ad212cb7ae309d4f02019552887135bfae67da Sha256: 723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a
GET /images/partner/2.png HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/images/partner/2.png FQDN: medsouz74.ru IP: 46.254.17.18 HASH: c8bf97016912d7faa08c73a5d7f54995426f298ef635f4cfb9c8a967d357e7f5 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/png Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 28746 Last-Modified: Sun, 10 Feb 2013 09:36:26 GMT Connection: keep-alive ETag: "51176a1a-704a" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 261 x 72, 8-bit/color RGBA, non-interlaced\012- data Size: 28746 Md5: 497bdd2ecc304d02ebd0c8e3f78976e6 Sha1: 9c749cfe6c228dfd64334f9e2234e1fe3361acfd Sha256: c8bf97016912d7faa08c73a5d7f54995426f298ef635f4cfb9c8a967d357e7f5
GET /images/partner/1.png HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/images/partner/1.png FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 2e45a0e0957676a1095e144c47f839aff65dac2025eb5513949841f71c29eced 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/png Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 21987 Last-Modified: Sun, 10 Feb 2013 09:36:14 GMT Connection: keep-alive ETag: "51176a0e-55e3" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 261 x 72, 8-bit/color RGBA, non-interlaced\012- data Size: 21987 Md5: 6471835115be556485786e37324a8d26 Sha1: 1aec6e0f61b5469f3553d741bcfbe57ddea412b8 Sha256: 2e45a0e0957676a1095e144c47f839aff65dac2025eb5513949841f71c29eced
GET /userbind?src=sape&id=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 Host: match.new-programmatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: match.new-programmatic.com/userbind?src=sape&id=1CB35A9 (...) FQDN: match.new-programmatic.com IP: 217.65.2.150 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 217.65.2.150 HTTP/1.1 204 No Content Server: nginx/1.18.0 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 0 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Vary: Origin --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10158 x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZaqZCH7doAMFcPQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0 x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: aeOU8fGkf5uHuYZ79k17EzxiFnwm0_z7SeZJElgwECzRyhR2N_SYJA== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google date: Thu, 06 Oct 2022 03:50:38 GMT age: 55076 etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10158 Md5: 4fc2ddd86450d64d3fb659ab4e78be58 Sha1: bbe71936b78a8c34d03ab87948dc840b35c6948f Sha256: 84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f
GET /match?dp=186&euid=91584db5-0fdc-4b9a-895a-3175556a7381 HTTP/1.1 Host: www.acint.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.acint.net/ Connection: keep-alive Cookie: test_cookie=CheckForPermission; aid=nVqzHGM/J7EGJAD+l+owAvfe6aH1NC1b+i6O+Dp9P4zEvQq1; cSyncDp7v2=1665083313; cSyncDp14v3=1665083313; cSyncDp17=1665083313; cSyncDp32=1665083313; cSyncDp45v3=1665083313; cSyncDp53=1665083313; cSyncDp54v2=1665083313; cSyncDp62=1665083313; cSyncDp67v2=1665083313; cSyncDp68=1665083313; cSyncDp71=1665083313; cSyncDp77=1665083313; cSyncDp84=1665083313; cSyncDp85=1665083313; cSyncDp95v3=1665083313; cSyncDp101=1665083313; cSyncDp104v2=1665083313; cSyncDp107=1665083313; cSyncDp110=1665083313; cSyncDp111v2=1665083313; cSyncDp112v2=1665083313; cSyncDp125v2=1665083313; cSyncDp126=1665083313; cSyncDp127=1665083313; cSyncDp129=1665083313; cSyncDp136v2=1665083313; cSyncDp138=1665083313; cSyncDp144=1665083313; cSyncDp146=1665083313; cSyncDp148=1665083313; cSyncDp149=1665083313; cSyncDp151=1665083313; cSyncDp178=1665083313; cSyncDp179=1665083313; cSyncDp186=1665083313; cSyncDp221=1665083313 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: www.acint.net/match?dp=186&euid=91584db5-0fdc-4b9a-895a (...) FQDN: www.acint.net IP: 46.4.114.109 HASH: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda 46.4.114.109 HTTP/2 200 OK content-type: image/gif server: openresty date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 43 last-modified: Mon, 28 Sep 1970 06:00:00 GMT p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL" expires: Wed, 19 Apr 2000 11:43:00 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: ad4b0f606e0f8465bc4c4c170b37e1a3 Sha1: 50b30fd5f87c85fe5cba2635cb83316ca71250d7 Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sape/sync?ud_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyIsImh0dHBzOi8vd3d3LmFjaW50Lm5ldC8iXX19 HTTP/1.1 Host: edfff2f6-b6a2-4188-b163-b35733872d2c.sync.upravel.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.acint.net/ Connection: keep-alive Cookie: session_tptc=1665083314154; user_id=edfff2f6-b6a2-4188-b163-b35733872d2c Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: edfff2f6-b6a2-4188-b163-b35733872d2c.sync.upravel.com/s (...) FQDN: edfff2f6-b6a2-4188-b163-b35733872d2c.sync.upravel.com IP: 148.251.236.115 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 148.251.236.115 HTTP/2 302 Found content-type: image/png server: nginx date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 0 p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA" set-cookie: user_id=edfff2f6-b6a2-4188-b163-b35733872d2c;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000 user_id-legacy=edfff2f6-b6a2-4188-b163-b35733872d2c;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000 location: https://www.acint.net/match?dp=71&euid=edfff2f6-b6a2-4188-b163-b35733872d2c access-control-allow-origin: * access-control-allow-methods: GET, POST, OPTIONS access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range access-control-expose-headers: Content-Length,Content-Range access-control-allow-credentials: false X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6476b35e-8b14-44b0-a85a-4793280f25c1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: a4146e8a0561009b63c55d0c13673958546b96f684a9c5a43a1f3200782798e9 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 3777 x-amzn-requestid: 093c576f-e1f7-4d45-9f8c-7ca3e7539313 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZjPtDEpSIAMF_Nw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-633df986-3cbcc83c1db24bbf193c3047;Sampled=0 x-amzn-remapped-date: Wed, 05 Oct 2022 21:39:18 GMT x-amz-cf-pop: HIO50-C1, SEA73-P2 x-cache: Miss from cloudfront x-amz-cf-id: GXneoYCI_hqJxLyI-RAxkJJf08pBsc6usoQlztb3HHPQSd1PDh7kgQ== via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 google date: Wed, 05 Oct 2022 21:52:47 GMT age: 76547 etag: "0e1d6cefe5ffe1994f26322962df8b0a13743339" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 3777 Md5: 1a1a279f8386262762dcf70621e06ed5 Sha1: 0e1d6cefe5ffe1994f26322962df8b0a13743339 Sha256: a4146e8a0561009b63c55d0c13673958546b96f684a9c5a43a1f3200782798e9
GET /match/sape?id=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 Host: sync.dmp.otm-r.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: sync.dmp.otm-r.com/match/sape?id=1CB35A9DB1273F63FE0024 (...) FQDN: sync.dmp.otm-r.com IP: 148.251.9.22 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 148.251.9.22 HTTP/2 204 No Content server: nginx/1.17.2 date: Thu, 06 Oct 2022 19:08:34 GMT access-control-allow-origin: * X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/partner/3.png HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/images/partner/3.png FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 2df343ed8043f969b06b260b4beb885b32f98b1fa9ae816552c292ccb540c632 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/png Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 22510 Last-Modified: Sun, 10 Feb 2013 09:36:40 GMT Connection: keep-alive ETag: "51176a28-57ee" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 261 x 72, 8-bit/color RGBA, non-interlaced\012- data Size: 22510 Md5: ab0bf7e91f1a3aceb09151fdb52de848 Sha1: 5cdd2918b9283475370a7027c42939f2192f4a87 Sha256: 2df343ed8043f969b06b260b4beb885b32f98b1fa9ae816552c292ccb540c632
GET /images/t1.gif HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/images/t1.gif FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 21637abbca860e186cadd673c5708c40824a6203a3a2278f4354973c8d58ce18 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/gif Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 7022 Last-Modified: Wed, 27 Feb 2013 11:53:06 GMT Connection: keep-alive ETag: "512df3a2-1b6e" Accept-Ranges: bytes --- Additional Info --- Magic: GIF image data, version 89a, 193 x 144\012- data Size: 7022 Md5: 3988935152f8a413ec057608f3f2e49d Sha1: 4f2b96fd7759a1f83a5178b9df423666a86a1efb Sha256: 21637abbca860e186cadd673c5708c40824a6203a3a2278f4354973c8d58ce18
GET /images/t2.gif HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/images/t2.gif FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 099f36aa00986e3506e50ef62a861ba3624d9676a7f79c210545a96887695610 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/gif Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 5298 Last-Modified: Wed, 27 Feb 2013 11:53:06 GMT Connection: keep-alive ETag: "512df3a2-14b2" Accept-Ranges: bytes --- Additional Info --- Magic: GIF image data, version 89a, 130 x 144\012- data Size: 5298 Md5: 7a8cd303f2dfef5892dd710c40f4b73b Sha1: 5cdd259fec88efdffb2b9f033a98f6d93a13bf8e Sha256: 099f36aa00986e3506e50ef62a861ba3624d9676a7f79c210545a96887695610
GET /match?dp=71&euid=edfff2f6-b6a2-4188-b163-b35733872d2c HTTP/1.1 Host: www.acint.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.acint.net/ Connection: keep-alive Cookie: test_cookie=CheckForPermission; aid=nVqzHGM/J7EGJAD+l+owAvfe6aH1NC1b+i6O+Dp9P4zEvQq1; cSyncDp7v2=1665083313; cSyncDp14v3=1665083313; cSyncDp17=1665083313; cSyncDp32=1665083313; cSyncDp45v3=1665083313; cSyncDp53=1665083313; cSyncDp54v2=1665083313; cSyncDp62=1665083313; cSyncDp67v2=1665083313; cSyncDp68=1665083313; cSyncDp71=1665083313; cSyncDp77=1665083313; cSyncDp84=1665083313; cSyncDp85=1665083313; cSyncDp95v3=1665083313; cSyncDp101=1665083313; cSyncDp104v2=1665083313; cSyncDp107=1665083313; cSyncDp110=1665083313; cSyncDp111v2=1665083313; cSyncDp112v2=1665083313; cSyncDp125v2=1665083313; cSyncDp126=1665083313; cSyncDp127=1665083313; cSyncDp129=1665083313; cSyncDp136v2=1665083313; cSyncDp138=1665083313; cSyncDp144=1665083313; cSyncDp146=1665083313; cSyncDp148=1665083313; cSyncDp149=1665083313; cSyncDp151=1665083313; cSyncDp178=1665083313; cSyncDp179=1665083313; cSyncDp186=1665083313; cSyncDp221=1665083313 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: www.acint.net/match?dp=71&euid=edfff2f6-b6a2-4188-b163- (...) FQDN: www.acint.net IP: 46.4.114.109 HASH: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda 46.4.114.109 HTTP/2 200 OK content-type: image/gif server: openresty date: Thu, 06 Oct 2022 19:08:34 GMT content-length: 43 last-modified: Mon, 28 Sep 1970 06:00:00 GMT p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL" expires: Wed, 19 Apr 2000 11:43:00 GMT cache-control: private, no-cache, no-store, must-revalidate, max-age=0 X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 43 Md5: ad4b0f606e0f8465bc4c4c170b37e1a3 Sha1: 50b30fd5f87c85fe5cba2635cb83316ca71250d7 Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /images/partner/4.png HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/images/partner/4.png FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 49b7a67c2baeffd4fb49174b735888486a64ecfd35c3a5719cba95c8a5580a95 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/png Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 38251 Last-Modified: Sun, 10 Feb 2013 09:37:00 GMT Connection: keep-alive ETag: "51176a3c-956b" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 261 x 72, 8-bit/color RGBA, non-interlaced\012- data Size: 38251 Md5: ad4e0fc8e64d1a65be296d9fafbbf175 Sha1: 1d3e3aa767e0b3663ba678467b2836f3964a8aa6 Sha256: 49b7a67c2baeffd4fb49174b735888486a64ecfd35c3a5719cba95c8a5580a95
GET /images/t3.gif HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/images/t3.gif FQDN: medsouz74.ru IP: 46.254.17.18 HASH: cad31b68b6c595341268041043a6419c9a9de1fb07ccc38e2906e6a3f823f608 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/gif Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 7506 Last-Modified: Wed, 27 Feb 2013 11:53:06 GMT Connection: keep-alive ETag: "512df3a2-1d52" Accept-Ranges: bytes --- Additional Info --- Magic: GIF image data, version 89a, 242 x 144\012- data Size: 7506 Md5: 711b96e66fd36d8e2cbbbb10131de915 Sha1: 60863867283c032af70f5dbcc0d1087cea2c3d0e Sha256: cad31b68b6c595341268041043a6419c9a9de1fb07ccc38e2906e6a3f823f608
GET /images/t4.gif HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/images/t4.gif FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 8bb411e4320089ab988a20f2b76971a8796b76b201e6c3cb4db4edb5a2cdc99d 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/gif Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 3988 Last-Modified: Wed, 27 Feb 2013 11:53:06 GMT Connection: keep-alive ETag: "512df3a2-f94" Accept-Ranges: bytes --- Additional Info --- Magic: GIF image data, version 89a, 157 x 144\012- data Size: 3988 Md5: fab746febbac56017aea49a194000770 Sha1: f328bc29987a1d0a0c1fc571e9dcfbf621324e30 Sha256: 8bb411e4320089ab988a20f2b76971a8796b76b201e6c3cb4db4edb5a2cdc99d
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1 Host: s7.addthis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://medsouz74.ru/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers	URL: s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html FQDN: s7.addthis.com IP: 23.38.200.123 HASH: d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051 23.38.200.123 HTTP/2 200 OK content-type: text/html server: nginx/1.15.8 last-modified: Mon, 26 Oct 2020 18:11:48 GMT etag: W/"5f971164-11adc" timing-allow-origin: * cache-control: public, max-age=86313600 p3p: CP="NON ADM OUR DEV IND COM STA" strict-transport-security: max-age=15724800; includeSubDomains content-encoding: gzip content-length: 26421 date: Thu, 06 Oct 2022 19:08:34 GMT vary: Accept-Encoding x-host: s7.addthis.com X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757) Size: 26421 Md5: 707317ccaabe08d32d1bd781754e6871 Sha1: bb82dcd3e044c960e0861c2ce878f5504e628f78 Sha256: d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F" Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3208 Expires: Thu, 06 Oct 2022 20:02:02 GMT Date: Thu, 06 Oct 2022 19:08:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 31e440ccd993c4ee793f50511c2ac7c4 Sha1: 4380327d50b7001d158aee05a57c6078e57c94e4 Sha256: 65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
GET /images/t6.gif HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/images/t6.gif FQDN: medsouz74.ru IP: 46.254.17.18 HASH: fb81a30f7006c0c1fa1a723728aa32a37d0a3136988abcefde9e2d2ed4a00bb8 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/gif Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 4937 Last-Modified: Wed, 27 Feb 2013 11:53:06 GMT Connection: keep-alive ETag: "512df3a2-1349" Accept-Ranges: bytes --- Additional Info --- Magic: GIF image data, version 89a, 162 x 144\012- data Size: 4937 Md5: 71bb0ad3a0c0917677a58d4677f5109b Sha1: 04964b3cdb62d26dad2f309f304363f08ae6b913 Sha256: fb81a30f7006c0c1fa1a723728aa32a37d0a3136988abcefde9e2d2ed4a00bb8
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: c0075e0eb64a39d31b7decea2d2cfcdd5320adb99478fdf808922fc801f06b4f 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C0075E0EB64A39D31B7DECEA2D2CFCDD5320ADB99478FDF808922FC801F06B4F" Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6611 Expires: Thu, 06 Oct 2022 20:58:45 GMT Date: Thu, 06 Oct 2022 19:08:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: e503369b0810c5211e6f1c807b4cfe40 Sha1: f505fabc64a8bf2df698353af5731306735dfb33 Sha256: c0075e0eb64a39d31b7decea2d2cfcdd5320adb99478fdf808922fc801f06b4f
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F" Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3208 Expires: Thu, 06 Oct 2022 20:02:02 GMT Date: Thu, 06 Oct 2022 19:08:34 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 31e440ccd993c4ee793f50511c2ac7c4 Sha1: 4380327d50b7001d158aee05a57c6078e57c94e4 Sha256: 65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
GET /upload/medialibrary/40d/40d15d35fa89a5c98097260d74cc4d33.jpg HTTP/1.1 Host: medsouz74.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/acts/ Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4	URL: medsouz74.ru/upload/medialibrary/40d/40d15d35fa89a5c980 (...) FQDN: medsouz74.ru IP: 46.254.17.18 HASH: 9638ce250c0f9852acd316c119a862d3d184f82b3792ecc8da2a827c63e436e3 46.254.17.18 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx/1.12.2 Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 1980 Last-Modified: Tue, 10 Jul 2012 06:28:32 GMT Connection: keep-alive ETag: "4ffbcb90-7bc" Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 139x66, components 3\012- data Size: 1980 Md5: da70a6784dcf63a4a74bbe5ef39df585 Sha1: 167c31ad95366e65360b3dd83671259111db2b69 Sha256: 9638ce250c0f9852acd316c119a862d3d184f82b3792ecc8da2a827c63e436e3
GET /?src=sap1&s_data=CAIQARiyz_yZBmIgMUNCMzVBOURCMTI3M0Y2M0ZFMDAyNDA2MDIzMEVBOTeiARBGbdCmRaoR7YbgACWQwGR8 HTTP/1.1 Host: sync.bumlam.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.acint.net/ Connection: keep-alive Cookie: suuid3=IiQ0NjZkZDBhNi00NWFhLTExZWQtODZlMC0wMDI1OTBjMDY0N2M* Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: sync.bumlam.com/?src=sap1&s_data=CAIQARiyz_yZBmIgMUNCMz (...) FQDN: sync.bumlam.com IP: 31.172.81.172 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.172.81.172 HTTP/1.1 200 OK Content-Type: text/html; charset=utf-8 Server: nginx Date: Thu, 06 Oct 2022 19:08:34 GMT Content-Length: 0 Connection: keep-alive Set-Cookie: suuid3=IiQ0NjZkZDBhNi00NWFhLTExZWQtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Wed, 01 Oct 2042 19:08:34 GMT; Domain=bumlam.com; SameSite=None; Secure P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bx_stat HTTP/1.1 Host: bitrix.info User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/x-www-form-urlencoded Content-Length: 389 Origin: http://medsouz74.ru Connection: keep-alive Referer: http://medsouz74.ru/	URL: bitrix.info/bx_stat FQDN: bitrix.info IP: 99.81.218.191 HASH: bb54369234516c2f2469a9989fce0f73145879defec57a2b276b5b1e0bf92336 99.81.218.191 HTTP/1.1 406 Not Acceptable Content-Type: text/html Date: Thu, 06 Oct 2022 19:08:34 GMT Transfer-Encoding: chunked Connection: keep-alive Server: nginx/1.10.1 Access-Control-Allow-Origin: http://medsouz74.ru --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 10 Md5: 190f0ca90ef9d8f401ed505b8e377411 Sha1: 12ad51bbdfcc081a984bbff898a0d47cc29a61dc Sha256: bb54369234516c2f2469a9989fce0f73145879defec57a2b276b5b1e0bf92336
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1 Host: z.moatads.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://medsouz74.ru/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: z.moatads.com/addthismoatframe568911941483/moatframe.js FQDN: z.moatads.com IP: 23.38.201.146 HASH: 92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac 23.38.201.146 HTTP/2 200 OK content-type: application/x-javascript x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg= x-amz-request-id: 61EC92F13BB22DD4 last-modified: Fri, 08 Nov 2019 20:13:52 GMT etag: "f14b4e1f799b14f798a195f43cf58376" content-encoding: gzip accept-ranges: bytes content-length: 948 server: AmazonS3 vary: Accept-Encoding cache-control: max-age=32903 date: Thu, 06 Oct 2022 19:08:34 GMT X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (523) Size: 948 Md5: f14b4e1f799b14f798a195f43cf58376 Sha1: b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86 Sha256: 92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /metrika/watch.js HTTP/1.1 Host: mc.yandex.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://medsouz74.ru/	URL: mc.yandex.ru/metrika/watch.js FQDN: mc.yandex.ru IP: 77.88.21.119 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 77.88.21.119 HTTP/1.1 302 Moved temporarily Content-Length: 0 Location: https://mc.yandex.ru/metrika/watch.js --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /live/red_lojson/300lo.json?si=633f27b130a7a80d&bkl=0&bl=5&pdt=1660&sid=633f27b130a7a80d&pub=ra-4ffbb06c6de7e481&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=medsouz74.ru&fp=acts%2F&fr=&fcu=Yz8nse_LeiA&of=0&pd=0&irt=0&vcl=0&md=2&ct=1&tct=0&abt=1&cdn=0&pi=1&rb=0&gen=100&chr=windows-1251&colc=1665083314835&jsl=1&uvs=633f27b108fc378d000&skipb=1&callback=addthis.cbs.jsonp__84402053211993130 HTTP/1.1 Host: m.addthis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://medsouz74.ru/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: m.addthis.com/live/red_lojson/300lo.json?si=633f27b130a (...) FQDN: m.addthis.com IP: 23.38.200.123 HASH: e3e2da7a895584e240240da1821d60bc79892bd554b93c8b6eb480fade8fb962 23.38.200.123 HTTP/2 200 OK content-type: application/javascript;charset=utf-8 content-length: 89 cache-control: max-age=0, no-cache, no-store, no-transform pragma: no-cache content-disposition: attachment; filename=1.txt date: Thu, 06 Oct 2022 19:08:35 GMT X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with no line terminators Size: 89 Md5: d35f9064cfa134f7fbbb214fc3b01a16 Sha1: 4c7d5be923c3ce9bfd681048b20de2fff364c582 Sha256: e3e2da7a895584e240240da1821d60bc79892bd554b93c8b6eb480fade8fb962
POST /gseccovsslca2018 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.globalsign.com/gseccovsslca2018 FQDN: ocsp.globalsign.com IP: 104.18.21.226 HASH: 19d7b8f7d5351a1d19646539cec9bbaf6609fab8feec7b43f32647a865b6214f 104.18.21.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 19:08:35 GMT Content-Length: 940 Connection: keep-alive Expires: Mon, 10 Oct 2022 16:22:20 GMT ETag: "f9f5e85e4338cf6a448ee3ffcdf13d23eef84468" Last-Modified: Thu, 06 Oct 2022 16:22:21 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 585 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 7560afbf1ab40b39-OSL --- Additional Info --- Magic: data Size: 940 Md5: 15ac1355f627c371d26d5ebb9f3c8394 Sha1: f9f5e85e4338cf6a448ee3ffcdf13d23eef84468 Sha256: 19d7b8f7d5351a1d19646539cec9bbaf6609fab8feec7b43f32647a865b6214f
GET /metrika/watch.js HTTP/1.1 Host: mc.yandex.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://medsouz74.ru/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: mc.yandex.ru/metrika/watch.js FQDN: mc.yandex.ru IP: 77.88.21.119 HASH: 485ba52769d75db2ed79f65318d37070d09ce3441680aa22caa10ae3cdcb45cd 77.88.21.119 HTTP/2 200 OK content-type: application/javascript content-length: 57285 date: Thu, 06 Oct 2022 19:08:35 GMT access-control-allow-origin: * etag: "633be002-dfc5" expires: Thu, 06 Oct 2022 20:08:35 GMT last-modified: Tue, 04 Oct 2022 10:25:54 GMT cache-control: max-age=3600 content-encoding: br strict-transport-security: max-age=31536000 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Unicode text, UTF-8 (with BOM) text, with very long lines (570) Size: 57285 Md5: 44366cc385a5c0f49df4f22b71434b42 Sha1: 3f56349f8a3fff52e28a3300052bdc2bde97371c Sha256: 485ba52769d75db2ed79f65318d37070d09ce3441680aa22caa10ae3cdcb45cd
GET /live/boost/ra-4ffbb06c6de7e481/_ate.track.config_resp HTTP/1.1 Host: v1.addthisedge.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://medsouz74.ru/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: v1.addthisedge.com/live/boost/ra-4ffbb06c6de7e481/_ate. (...) FQDN: v1.addthisedge.com IP: 23.38.200.123 HASH: b542daef470a9730029174f975ce3ce236b3e58bf9183b11956acce994b13a16 23.38.200.123 HTTP/2 200 OK content-type: application/javascript;charset=utf-8 content-disposition: attachment; filename=1.txt content-encoding: gzip content-length: 47 cache-control: public, max-age=60, s-maxage=86400 date: Thu, 06 Oct 2022 19:08:35 GMT vary: Accept-Encoding X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with no line terminators Size: 47 Md5: 24c668b115f75423506f2ea21d1b49c2 Sha1: 14f956ddb2d9e8b072cd5f605c3f39526490b391 Sha256: b542daef470a9730029174f975ce3ce236b3e58bf9183b11956acce994b13a16
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 19:08:35 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: eac86f868b3967f1946c7f5fc712b25f Sha1: e2ae8eb09715a0af0791c085eb35bf66e0548e30 Sha256: bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06
POST /gsgccr3dvtlsca2020 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.globalsign.com/gsgccr3dvtlsca2020 FQDN: ocsp.globalsign.com IP: 104.18.21.226 HASH: 872bd894060cb8341a6bc328be59cf4c1fb71d6fa7f718c70e316954ee9723c3 104.18.21.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 19:08:35 GMT Content-Length: 1414 Connection: keep-alive Expires: Mon, 10 Oct 2022 17:24:46 GMT ETag: "94d25e93b5176f170d9e3ff50421fbe86736b3cb" Last-Modified: Thu, 06 Oct 2022 17:24:47 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 137 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 7560afc02bc90b39-OSL --- Additional Info --- Magic: data Size: 1414 Md5: 10c21fedd4ff77d9f0b12f6b57013a1d Sha1: 94d25e93b5176f170d9e3ff50421fbe86736b3cb Sha256: 872bd894060cb8341a6bc328be59cf4c1fb71d6fa7f718c70e316954ee9723c3
GET /cgi-bin/sync.cgi?dsp_id=153&external_id=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 Host: ssp.adriver.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id= (...) FQDN: ssp.adriver.ru IP: 195.209.111.13 HASH: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 195.209.111.13 HTTP/1.1 200 OK Content-Type: image/gif Server: nginx Date: Thu, 06 Oct 2022 19:08:35 GMT Transfer-Encoding: chunked Connection: keep-alive --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 42 Md5: d89746888da2d9510b64a9f031eaecd5 Sha1: d5fceb6532643d0d84ffe09c40c481ecdf59e15a Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pixel?google_nid=agentstvo_sape_limited&google_hm=HLNanbEnP2P-ACQGAjDqlw HTTP/1.1 Host: cm.g.doubleclick.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cm.g.doubleclick.net/pixel?google_nid=agentstvo_sape_li (...) FQDN: cm.g.doubleclick.net IP: 172.217.21.162 HASH: 0b8a20373c6dd04e091902226d922b3688143a8938afb9d283d889de7b55ceb5 172.217.21.162 HTTP/2 200 OK content-type: image/png date: Thu, 06 Oct 2022 19:08:35 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, must-revalidate cross-origin-resource-policy: cross-origin server: HTTP server (unknown) content-length: 170 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data Size: 170 Md5: e7673c60af825466f83d46da72ca1635 Sha1: fc0fcbee0835709ba2d28798a612bfd687903fb5 Sha256: 0b8a20373c6dd04e091902226d922b3688143a8938afb9d283d889de7b55ceb5
POST / HTTP/1.1 Host: status.geotrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: status.geotrust.com/ FQDN: status.geotrust.com IP: 93.184.220.29 HASH: 680211c8e353916d126804684826db4991678c39371c0548a1ad0fd645bcaecf 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 1412 Cache-Control: 'max-age=158059' Date: Thu, 06 Oct 2022 19:08:35 GMT Last-Modified: Thu, 06 Oct 2022 18:45:03 GMT Server: ECS (ska/F717) X-Cache: HIT Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: ebf1af73f4609321fb542b3727f9eae0 Sha1: 8c0b93cbf4bde0dc3714356d797b459359908b53 Sha256: 680211c8e353916d126804684826db4991678c39371c0548a1ad0fd645bcaecf
GET /cookie_matching_ssp/Sape-dsp/1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 Host: fcgi4.gnezdo.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fcgi4.gnezdo.ru/cookie_matching_ssp/Sape-dsp/1CB35A9DB1 (...) FQDN: fcgi4.gnezdo.ru IP: 93.95.102.105 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 93.95.102.105 HTTP/2 204 No Content server: nginx date: Thu, 06 Oct 2022 19:08:35 GMT set-cookie: uid=XV9maWM/J7M6I4Y1WARmAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691 HTTP/1.1 Host: ad.adriver.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.acint.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid (...) FQDN: ad.adriver.ru IP: 195.209.108.37 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 195.209.108.37 HTTP/1.1 302 Moved Temporarily Content-Type: text/html Date: Thu, 06 Oct 2022 19:08:35 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-control: no-cache, max-age=0, must-revalidate, no-store Pragma: no-cache Expires: Thu, 01 Jan 1970 00:00:00 GMT P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA Set-Cookie: cid=-6007573066; expires=Sat, 05 Oct 2024 19:08:35 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure Location: /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-6007573066 Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /gseccovsslca2018 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.globalsign.com/gseccovsslca2018 FQDN: ocsp.globalsign.com IP: 104.18.21.226 HASH: fd92c9f6666ddf637b1cd26b33eee0f43d690d5422fd5eddcf1e89c50baa68ce 104.18.21.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 19:08:35 GMT Content-Length: 938 Connection: keep-alive Expires: Mon, 10 Oct 2022 15:45:28 GMT ETag: "4bfcf09461d60eef818988ce1be6efdbea0461e0" Last-Modified: Thu, 06 Oct 2022 15:45:29 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 3363 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 7560afc06c180b39-OSL --- Additional Info --- Magic: data Size: 938 Md5: 7cc0e7f2de07a944f508ea6dea51ea40 Sha1: 4bfcf09461d60eef818988ce1be6efdbea0461e0 Sha256: fd92c9f6666ddf637b1cd26b33eee0f43d690d5422fd5eddcf1e89c50baa68ce
POST / HTTP/1.1 Host: ocsp.usertrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.usertrust.com/ FQDN: ocsp.usertrust.com IP: 172.64.155.188 HASH: 726c2f509c944f0d7f2f8a131a3a673b876aa146e0d364922ba81b21f1927211 172.64.155.188 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 19:08:35 GMT Content-Length: 472 Connection: keep-alive Last-Modified: Thu, 06 Oct 2022 16:18:19 GMT Expires: Thu, 13 Oct 2022 16:18:18 GMT Etag: "acd5f85c41f4a1b639277e0069253033f5d1bfaa" Cache-Control: max-age=602433,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb4 X-Frame-Options: SAMEORIGIN CF-Cache-Status: HIT Age: 136 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 7560afc07a57fac4-OSL --- Additional Info --- Magic: data Size: 472 Md5: e9a6f8e4791ecfb2eefcb32e2df57194 Sha1: acd5f85c41f4a1b639277e0069253033f5d1bfaa Sha256: 726c2f509c944f0d7f2f8a131a3a673b876aa146e0d364922ba81b21f1927211
POST /gsalphasha2g2 HTTP/1.1 Host: ocsp2.globalsign.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp2.globalsign.com/gsalphasha2g2 FQDN: ocsp2.globalsign.com IP: 104.18.21.226 HASH: 7f5b1c5088cac16480c7f0a92af1fa549c3b6e65abafe4c7bd232f52d435f799 104.18.21.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 19:08:35 GMT Content-Length: 1423 Connection: keep-alive Expires: Mon, 10 Oct 2022 16:43:11 GMT ETag: "89d9c9c4b6dec66986ed49af3301e466ce3fa167" Last-Modified: Thu, 06 Oct 2022 16:43:12 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 2487 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 7560afc09dd7b506-OSL --- Additional Info --- Magic: data Size: 1423 Md5: 259aaa09d1c5ff47b5c7db89abd523d0 Sha1: 89d9c9c4b6dec66986ed49af3301e466ce3fa167 Sha256: 7f5b1c5088cac16480c7f0a92af1fa549c3b6e65abafe4c7bd232f52d435f799
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sectigo.com/ FQDN: ocsp.sectigo.com IP: 104.18.32.68 HASH: 8b5eecb0afd745c8c2b6726a56b1b33f5c337a73bd12575926f8308c62c688f4 104.18.32.68 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 19:08:35 GMT Content-Length: 472 Connection: keep-alive Last-Modified: Tue, 04 Oct 2022 04:09:18 GMT

                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         54.230.111.7

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/json

                                        

                                        
                                            
Content-Length: 939 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert 

                                        
                                            
Cache-Control: max-age=259200 

                                        
                                            
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
Date: Wed, 05 Oct 2022 15:47:18 GMT 

                                        
                                            
X-Content-Type-Options: nosniff 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-P1 

                                        
                                            
X-Amz-Cf-Id: h1ZxUMMY4WWeVyOEl5p0ezHeSGMezl4QEwlQh1MZzh4qWdzZQAjecg== 

                                        
                                            
Age: 98473 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    2d12f67fe57a87e7366b662d153a5582

                                                Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1

                                                Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471" 

                                        
                                            
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=4412 

                                        
                                            
Expires: Thu, 06 Oct 2022 20:22:04 GMT 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:32 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    94a09d62ab3057cda67a091c8d7478f5

                                                Sha1:   b1c9d223a951d0bc9f17c9f3b84501266a552b58

                                                Sha256: 582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471

                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.117.237.239

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:32 GMT 

                                        
                                            
content-length: 12 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 3541 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:32 GMT 

                                        
                                            
Last-Modified: Thu, 06 Oct 2022 18:09:31 GMT 

                                        
                                            
Server: ECS (ska/F70B) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    8be5570b9a5ca76c580da007a824b029

                                                Sha1:   38840f2ac6476bdd5608121c5653e338c7ad9715

                                                Sha256: 0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2

                                        
                                            GET /js/250/addthis_widget.js HTTP/1.1 

                                        
                                            
Host: s7.addthis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/

                                         23.38.200.123

                                        
                                            HTTP/1.1 308 Permanent Redirect 

                                        
                                            
Content-Type: text/html

                                        

                                        
                                            
Server: nginx/1.15.8 

                                        
                                            
Content-Length: 171 

                                        
                                            
Location: https://s7.addthis.com/js/250/addthis_widget.js 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:33 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
X-Distribution: 99 

                                        
                                            
X-Host: s7.addthis.com 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   171

                                                Md5:    3c417e9efbcaeb3bf7e7df75cf3b22fd

                                                Sha1:   00465aec6b8ec302eae8abb99678fc5c09c3f343

                                                Sha256: 21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571

                                        
                                            GET /bitrix/cache/js/s1/nko_s1/template_351e98f5a8022763a28c10d6de73a775/template_351e98f5a8022763a28c10d6de73a775_v1.js?1543558722643 HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/javascript

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:33 GMT 

                                        
                                            
Content-Length: 643 

                                        
                                            
Last-Modified: Fri, 30 Nov 2018 06:18:42 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "5c00d642-283" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (343)

                                                Size:   643

                                                Md5:    054be968f3fe34d3670d3cfd39489355

                                                Sha1:   de06a88e8d42766bcb14a5ababab5d6c0a4f9d3b

                                                Sha256: f29e0af8d4a2d13d533294e4dd6a6843ce36a149d40cfa6fb97f832892d94f52

                                        
                                            GET /js/250/addthis_widget.js HTTP/1.1 

                                        
                                            
Host: s7.addthis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: http://medsouz74.ru/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         23.38.200.123

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
server: nginx/1.15.8 

                                        
                                            
last-modified: Mon, 26 Oct 2020 18:11:48 GMT 

                                        
                                            
etag: W/"5f971164-5834c" 

                                        
                                            
cache-control: public, max-age=600 

                                        
                                            
strict-transport-security: max-age=15724800; includeSubDomains 

                                        
                                            
content-encoding: gzip 

                                        
                                            
content-length: 116393 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:33 GMT 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
x-distribution: 99 

                                        
                                            
x-host: s7.addthis.com 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (54602)

                                                Size:   116393

                                                Md5:    8caf41650f1ef5c6430490d20e2d2af6

                                                Sha1:   b69f795ea1b8ec18280f7d1707ac8b7712fd3694

                                                Sha256: b4f0a30adea9d2d3fd4f74d0b07ae167397434c002bea27eaea8b95022d72aae

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:33 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    b0e8a79f3e381ab34a44278947ac7c7e

                                                Sha1:   70d01e6fdc8565c661b6ae8c5a043ddf2da16530

                                                Sha256: 885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "470FA94E4F49F0EE5DED8DBA23C6F738274CC30F86ABB2B4E935DA8B2E0D853F" 

                                        
                                            
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=14619 

                                        
                                            
Expires: Thu, 06 Oct 2022 23:12:12 GMT 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:33 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    cbe708eaeca5f16c6ebcddcf854853e3

                                                Sha1:   97086d513268b383df2bc15ded5c775266195777

                                                Sha256: 470fa94e4f49f0ee5ded8dba23c6f738274cc30f86abb2b4e935da8b2e0d853f

                                        
                                            GET /mc/?dp=10 HTTP/1.1 

                                        
                                            
Host: www.acint.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/ 

                                        
                                            
Upgrade-Insecure-Requests: 1

                                         46.4.114.109

                                        
                                            HTTP/1.1 302 Moved Temporarily 

                                        
                                            
Content-Type: text/html

                                        

                                        
                                            
Server: openresty 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:33 GMT 

                                        
                                            
Content-Length: 142 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Location: https://www.acint.net/mc/?dp=10 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   142

                                                Md5:    82c98e8e012b79c922655461171cc2fa

                                                Sha1:   0828d79135573276005b04be42d79a8a3291292b

                                                Sha256: 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

                                        
                                            GET /mc/?dp=10&tc=1 HTTP/1.1 

                                        
                                            
Host: www.acint.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: http://medsouz74.ru/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: test_cookie=CheckForPermission; aid=nVqzHGM/J7EGJAD+l+owAvfe6aH1NC1b+i6O+Dp9P4zEvQq1 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: iframe 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         46.4.114.109

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html

                                        

                                        
                                            
server: openresty 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:33 GMT 

                                        
                                            
set-cookie: cSyncDp7v2=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp14v3=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp32=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v3=1665083313; expires=Fri, 07-Oct-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp54v2=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v2=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp77=1665083313; expires=Thu, 20-Oct-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp84=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v3=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp101=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1665083313; expires=Thu, 20-Oct-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp111v2=1665083313; expires=Thu, 20-Oct-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp112v2=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v2=1665083313; expires=Fri, 21-Oct-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v2=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp138=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp144=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp178=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp179=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp221=1665083313; expires=Sat, 05-Nov-22 19:08:33 GMT; path=/; Secure; SameSite=None; domain=.acint.net 

                                        
                                            
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL" 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators

                                                Size:   1469

                                                Md5:    d5c7e06321d16c71ec6f161e84228b5c

                                                Sha1:   2469ac9dc73d5f8a1083595c06521cd4250c9589

                                                Sha256: 3dc79094ba889ffecb6c05567e0cd43a681ad0944f4b86a5a9fee706a80d00e1

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "17221E1D2E6AE04F61AEBCD324FE68587DA44F14DB721920B3BDC1E51F3B5B38" 

                                        
                                            
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=4828 

                                        
                                            
Expires: Thu, 06 Oct 2022 20:29:02 GMT 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    a33794ed6feb32db4b9ccdf2177dc244

                                                Sha1:   d0f11f78136b4adb76db83a5fea31746cec4a2c4

                                                Sha256: 17221e1d2e6ae04f61aebcd324fe68587da44f14db721920b3bdc1e51f3b5b38

                                        
                                            GET /upload/iblock/378/378a4de55472fa49c72fe2e040d3d72a.jpg HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 4252 

                                        
                                            
Last-Modified: Wed, 05 Feb 2020 10:18:38 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "5e3a967e-109c" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 224x225, components 3\012- data

                                                Size:   4252

                                                Md5:    80d11903fb758cbc4ca4b30f88723dfb

                                                Sha1:   70b3ffc3a8174c76dcb13789e454adef3fa22ebc

                                                Sha256: 7957d5784b49caba746b16f12893bd5e025ec9c72b2e030b36473d5e1110751c

                                        
                                            GET /bitrix/components/bitrix/menu/templates/tree/images/page.gif HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/bitrix/cache/css/s1/nko_s1/template_6d10500b7bbde229436dc2937d81c3fa/template_6d10500b7bbde229436dc2937d81c3fa_v1.css?154355872213431 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/gif

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 248 

                                        
                                            
Last-Modified: Mon, 04 Jun 2012 09:41:40 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "4fcc82d4-f8" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 17 x 17\012- data

                                                Size:   248

                                                Md5:    c0ce993513f256aa17db823cd1b0b8c4

                                                Sha1:   fc76da82ae8c031955c84230d569eb6be5e3e611

                                                Sha256: d98ddabd7160a22039b3c28dffc9ed1e7205903da754a43783cabbbf751979ed

                                        
                                            GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 

                                        
                                            
Host: sync.1dmp.io

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         136.243.148.229

                                        
                                            HTTP/2 302 Found

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
content-length: 0 

                                        
                                            
expires: 0 

                                        
                                            
cache-control: private, no-cache, no-store, no-cache=Set-Cookie, proxy-revalidate 

                                        
                                            
set-cookie: uid=4620b961-45aa-11ed-acfd-901b0e8b2a6e; Version=1; Path=/; Domain=.1dmp.io; Expires=Fri, 06 Oct 2023 19:08:34 GMT; SameSite=None; Secure
uid-legacy=4620b961-45aa-11ed-acfd-901b0e8b2a6e; Version=1; Path=/; Domain=.1dmp.io; Expires=Fri, 06 Oct 2023 19:08:34 GMT 

                                        
                                            
location: /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1CB35A9DB1273F63FE0024060230EA97&cs=1 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /upload/iblock/ee0/ee065e739f069d2ccc715388a1b11ec0.jpg HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 8228 

                                        
                                            
Last-Modified: Thu, 28 Jun 2012 09:13:14 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "4fec202a-2024" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 144x144, components 3\012- data

                                                Size:   8228

                                                Md5:    89a2589aa0d9e029c415b524e570c3e7

                                                Sha1:   55d66c9626f6eec38f18af9902e0b5c802adc8ea

                                                Sha256: 83e33cb201d07ee5da3d0b3fcf0cc3f21fb9f3eeb7c467ce864e8974182b37d0

                                        
                                            GET /bitrix/templates/nko_s1/images/bg3.jpg HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/bitrix/cache/css/s1/nko_s1/template_6d10500b7bbde229436dc2937d81c3fa/template_6d10500b7bbde229436dc2937d81c3fa_v1.css?154355872213431 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 129408 

                                        
                                            
Last-Modified: Tue, 11 Sep 2012 10:37:32 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "504f146c-1f980" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 1900x1267, components 3\012- data

                                                Size:   129408

                                                Md5:    2b38ebca3145b019f14ceb24d931bde1

                                                Sha1:   ad5703cd4873da2dabb8c6ae0c32f92fc9a02d12

                                                Sha256: 9017a8889f9bd44e4159f373fc07d1dcd1bdd75a3f24688aa29d04008b90fa21

                                        
                                            GET /upload/iblock/42c/42c99dc0a2156760016ef81d3963f268.jpg HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 3347 

                                        
                                            
Last-Modified: Thu, 28 Jun 2012 08:58:34 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "4fec1cba-d13" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 144x144, components 3\012- data

                                                Size:   3347

                                                Md5:    d3b9c63b074d45c1ef0f0a65e6205118

                                                Sha1:   3f416d16b1a63df7aa64d8f10fe0c757de791823

                                                Sha256: f6dcfcb3171de0e915f9d0e012ade98661aa0b44ca34ff3097b20bb90744900b

                                        
                                            GET /cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D HTTP/1.1 

                                        
                                            
Host: exchange.buzzoola.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         49.12.83.94

                                        
                                            HTTP/2 301 Moved Permanently 

                                        
                                            
content-type: text/html; charset=utf-8

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
content-length: 115 

                                        
                                            
location: https://www.acint.net/match?dp=126&euid=8764eba9-b9ee-4eac-4d0c-d1990e6dbd20 

                                        
                                            
serverid: TODO 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document, ASCII text

                                                Size:   115

                                                Md5:    d24bdd8452a92d70388b2da63208d0b2

                                                Sha1:   2cb0c88a52440dec74dd004b25fc0f5d3aa919b4

                                                Sha256: 86771f887e799f586abf75178feeddcca68b1f979887623c8be80b305be6c806

                                        
                                            GET /upload/iblock/4a2/4a2f2e921077f324b2d933ecf5b752ac.jpg HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 3726 

                                        
                                            
Last-Modified: Mon, 17 Dec 2012 11:49:22 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "50cf06c2-e8e" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 144x144, components 3\012- data

                                                Size:   3726

                                                Md5:    7ca2d09e5fa951f756d8cd54296e469e

                                                Sha1:   202c8f232ed2eecb5aac262689a893efa1c173cb

                                                Sha256: 633b08f09edf1852cf1c7747e98b92077a8a510912ae11251734e97b91d793ff

                                        
                                            GET /matchspm?pi=1000005&pui=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 

                                        
                                            
Host: ut.rktch.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         89.108.97.2

                                        
                                            HTTP/1.1 302 Found

                                        

                                        
                                            
Server: nginx/1.22.0 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 0 

                                        
                                            
Connection: keep-alive 

                                        
                                            
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect 

                                        
                                            
Set-Cookie: b_uid=d99d105459a86792580779443e034dbce966; Max-Age=2592000; Expires=Sat, 05 Nov 2022 19:08:34 GMT; Domain=rktch.com; Secure; SameSite=None 

                                        
                                            
Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS 

                                        
                                            
Access-Control-Allow-Headers: Content-Type, Accept, Authorization 

                                        
                                            
Access-Control-Allow-Credentials: true 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "86D7FD15054E39D5555D704CB61C7ACBF5B082ED2EE0D9496A2A155BD024C16A" 

                                        
                                            
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=5978 

                                        
                                            
Expires: Thu, 06 Oct 2022 20:48:12 GMT 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    1a0e1b1881da10f48ff73cbf09c8212b

                                                Sha1:   460a2a4fd811117d89caa9f6ff479eb30a9fa452

                                                Sha256: 86d7fd15054e39d5555d704cb61c7acbf5b082ed2ee0d9496a2a155bd024c16a

                                        
                                            GET /upload/iblock/d61/d617fad18287dd029e03214afd3814d5.jpg HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 6409 

                                        
                                            
Last-Modified: Mon, 17 Dec 2012 11:54:48 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "50cf0808-1909" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 144x144, components 3\012- data

                                                Size:   6409

                                                Md5:    9fa1e2077bdd664995fc99b447061b2f

                                                Sha1:   2466b5378a14afb51d23754f88493fc578f428a8

                                                Sha256: 5c466769de0cbd5be9602832f28df1977ca69482047fc17a8556fcbb5cf03bcb

                                        
                                            GET /match?dp=126&euid=8764eba9-b9ee-4eac-4d0c-d1990e6dbd20 HTTP/1.1 

                                        
                                            
Host: www.acint.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: test_cookie=CheckForPermission; aid=nVqzHGM/J7EGJAD+l+owAvfe6aH1NC1b+i6O+Dp9P4zEvQq1; cSyncDp7v2=1665083313; cSyncDp14v3=1665083313; cSyncDp17=1665083313; cSyncDp32=1665083313; cSyncDp45v3=1665083313; cSyncDp53=1665083313; cSyncDp54v2=1665083313; cSyncDp62=1665083313; cSyncDp67v2=1665083313; cSyncDp68=1665083313; cSyncDp71=1665083313; cSyncDp77=1665083313; cSyncDp84=1665083313; cSyncDp85=1665083313; cSyncDp95v3=1665083313; cSyncDp101=1665083313; cSyncDp104v2=1665083313; cSyncDp107=1665083313; cSyncDp110=1665083313; cSyncDp111v2=1665083313; cSyncDp112v2=1665083313; cSyncDp125v2=1665083313; cSyncDp126=1665083313; cSyncDp127=1665083313; cSyncDp129=1665083313; cSyncDp136v2=1665083313; cSyncDp138=1665083313; cSyncDp144=1665083313; cSyncDp146=1665083313; cSyncDp148=1665083313; cSyncDp149=1665083313; cSyncDp151=1665083313; cSyncDp178=1665083313; cSyncDp179=1665083313; cSyncDp186=1665083313; cSyncDp221=1665083313 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         46.4.114.109

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/gif

                                        

                                        
                                            
server: openresty 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
content-length: 43 

                                        
                                            
last-modified: Mon, 28 Sep 1970 06:00:00 GMT 

                                        
                                            
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL" 

                                        
                                            
expires: Wed, 19 Apr 2000 11:43:00 GMT 

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3

                                                Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7

                                                Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

                                        
                                            GET /match/396/?remote_uid=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 

                                        
                                            
Host: s.uuidksinc.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         31.220.27.134

                                        
                                            HTTP/2 302 Found

                                        

                                        
                                            
server: nginx/1.19.0 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
content-length: 0 

                                        
                                            
location: https://www.acint.net/match?dp=127&euid=oNoxCTyUw2sr6TmU23b6 

                                        
                                            
set-cookie: jcsuuid=oNoxCTyUw2sr6TmU23b6; expires=Fri, 06 Oct 2023 19:08:34 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /upload/iblock/88e/88e51c61021a973b4f1ba2a6116e068c.jpg HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 2843 

                                        
                                            
Last-Modified: Tue, 18 Dec 2012 09:08:36 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "50d03294-b1b" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 144x144, components 3\012- data

                                                Size:   2843

                                                Md5:    6a9724316ca9b58a2c6431d456d64c22

                                                Sha1:   9b3ee993c7ab7ae363c95bbac02344a7bec573af

                                                Sha256: 551e32a44e86392b293f0ee1ea2784705e769692ae89c6928e88c5561619704f

                                        
                                            GET /upload/iblock/39f/39f24b3b78b09aff68d02cea06283179.png HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 10125 

                                        
                                            
Last-Modified: Wed, 05 Feb 2020 10:16:21 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "5e3a95f5-278d" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 225 x 225, 8-bit colormap, non-interlaced\012- data

                                                Size:   10125

                                                Md5:    8981eb651ef2d26049f3d0ec27f12d02

                                                Sha1:   2e1335b627faaefa464ad1ce11efd6435610e077

                                                Sha256: cde783d800671728d2335ce7e544c059a61a5e9c872bc2ba02d475cb7e6bbed3

                                        
                                            GET /merge_gpsid/?sid=50&id=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 

                                        
                                            
Host: stat.adlabs.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         109.248.237.36

                                        
                                            HTTP/2 302 Found

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Thu, 06 Oct 2022 18:55:53 GMT 

                                        
                                            
content-length: 0 

                                        
                                            
location: //adlmerge.com/merge_gpsid/?sid=50&id=1CB35A9DB1273F63FE0024060230EA97 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /upload/iblock/c81/c813ca0195e20fdd18298a2289336072.png HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 8491 

                                        
                                            
Last-Modified: Wed, 05 Feb 2020 10:26:03 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "5e3a983b-212b" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 198 x 55, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   8491

                                                Md5:    0a4e0533ebce753045b9ad82d998eb9d

                                                Sha1:   a9c8acbeb2f5cee397df7aadd3f33ea8eaa4249e

                                                Sha256: ebf295fc77d1cbed018180106a3e25022ce0dbeb6b2c688e6c22e3bbc3796e76

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "470BC52F002146FFF1793CAD08FA1269A3012E842BBF490934CBDC254CD49C02" 

                                        
                                            
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=8988 

                                        
                                            
Expires: Thu, 06 Oct 2022 21:38:22 GMT 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    58a1deac9d602eb53f6e008b7bc84349

                                                Sha1:   7a9d7c38c965465f9f484af2902d93eecd37b069

                                                Sha256: 470bc52f002146fff1793cad08fa1269a3012e842bbf490934cbdc254cd49c02

                                        
                                            GET /match?dp=14&euid=CDB803C1B2273F636300F59C0231EC7A HTTP/1.1 

                                        
                                            
Host: acint.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: test_cookie=CheckForPermission; aid=nVqzHGM/J7EGJAD+l+owAvfe6aH1NC1b+i6O+Dp9P4zEvQq1; cSyncDp7v2=1665083313; cSyncDp14v3=1665083313; cSyncDp17=1665083313; cSyncDp32=1665083313; cSyncDp45v3=1665083313; cSyncDp53=1665083313; cSyncDp54v2=1665083313; cSyncDp62=1665083313; cSyncDp67v2=1665083313; cSyncDp68=1665083313; cSyncDp71=1665083313; cSyncDp77=1665083313; cSyncDp84=1665083313; cSyncDp85=1665083313; cSyncDp95v3=1665083313; cSyncDp101=1665083313; cSyncDp104v2=1665083313; cSyncDp107=1665083313; cSyncDp110=1665083313; cSyncDp111v2=1665083313; cSyncDp112v2=1665083313; cSyncDp125v2=1665083313; cSyncDp126=1665083313; cSyncDp127=1665083313; cSyncDp129=1665083313; cSyncDp136v2=1665083313; cSyncDp138=1665083313; cSyncDp144=1665083313; cSyncDp146=1665083313; cSyncDp148=1665083313; cSyncDp149=1665083313; cSyncDp151=1665083313; cSyncDp178=1665083313; cSyncDp179=1665083313; cSyncDp186=1665083313; cSyncDp221=1665083313 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         46.4.114.109

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/gif

                                        

                                        
                                            
server: openresty 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
content-length: 43 

                                        
                                            
last-modified: Mon, 28 Sep 1970 06:00:00 GMT 

                                        
                                            
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL" 

                                        
                                            
expires: Wed, 19 Apr 2000 11:43:00 GMT 

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3

                                                Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7

                                                Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

                                        
                                            GET /bitrix/templates/nko_s1/images/topmenu-bg.gif HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/bitrix/cache/css/s1/nko_s1/template_6d10500b7bbde229436dc2937d81c3fa/template_6d10500b7bbde229436dc2937d81c3fa_v1.css?154355872213431 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/gif

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 277 

                                        
                                            
Last-Modified: Mon, 04 Jun 2012 11:24:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "4fcc9aee-115" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 1 x 58\012- data

                                                Size:   277

                                                Md5:    5d2e0bc7929cf3d31555d0fab6c1c901

                                                Sha1:   03438af45071e31562c03a894497c14caad3658f

                                                Sha256: a90fb83876502d8f4cf6bf17507850138b12996c758ff0215d185549fcaac13e

                                        
                                            GET /match?dp=95&euid=TDBLRRGC HTTP/1.1 

                                        
                                            
Host: www.acint.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: test_cookie=CheckForPermission; aid=nVqzHGM/J7EGJAD+l+owAvfe6aH1NC1b+i6O+Dp9P4zEvQq1; cSyncDp7v2=1665083313; cSyncDp14v3=1665083313; cSyncDp17=1665083313; cSyncDp32=1665083313; cSyncDp45v3=1665083313; cSyncDp53=1665083313; cSyncDp54v2=1665083313; cSyncDp62=1665083313; cSyncDp67v2=1665083313; cSyncDp68=1665083313; cSyncDp71=1665083313; cSyncDp77=1665083313; cSyncDp84=1665083313; cSyncDp85=1665083313; cSyncDp95v3=1665083313; cSyncDp101=1665083313; cSyncDp104v2=1665083313; cSyncDp107=1665083313; cSyncDp110=1665083313; cSyncDp111v2=1665083313; cSyncDp112v2=1665083313; cSyncDp125v2=1665083313; cSyncDp126=1665083313; cSyncDp127=1665083313; cSyncDp129=1665083313; cSyncDp136v2=1665083313; cSyncDp138=1665083313; cSyncDp144=1665083313; cSyncDp146=1665083313; cSyncDp148=1665083313; cSyncDp149=1665083313; cSyncDp151=1665083313; cSyncDp178=1665083313; cSyncDp179=1665083313; cSyncDp186=1665083313; cSyncDp221=1665083313 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         46.4.114.109

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/gif

                                        

                                        
                                            
server: openresty 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
content-length: 43 

                                        
                                            
last-modified: Mon, 28 Sep 1970 06:00:00 GMT 

                                        
                                            
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL" 

                                        
                                            
expires: Wed, 19 Apr 2000 11:43:00 GMT 

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3

                                                Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7

                                                Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

                                        
                                            GET /bitrix/templates/nko_s1/images/topmenu-d.gif HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/bitrix/cache/css/s1/nko_s1/template_6d10500b7bbde229436dc2937d81c3fa/template_6d10500b7bbde229436dc2937d81c3fa_v1.css?154355872213431 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/gif

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 316 

                                        
                                            
Last-Modified: Mon, 04 Jun 2012 11:24:30 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "4fcc9aee-13c" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 2 x 50\012- data

                                                Size:   316

                                                Md5:    9a3206e5ce14e4f73efd43dc13f1a736

                                                Sha1:   280c8480f065addad0198a28c5b4193d1fe7f836

                                                Sha256: 0f0fecde3c9e734df28d23455b83a2c6029e6af5f043aacd9f2545a31108aac5

                                        
                                            GET /upload/medialibrary/77c/77c51054ebc3b989e81500a67c23e21f.jpg HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 149192 

                                        
                                            
Last-Modified: Fri, 10 Aug 2018 09:23:44 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "5b6d59a0-246c8" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=15, height=710, bps=0, PhotometricIntepretation=CMYK, orientation=upper-left, width=785], progressive, precision 8, 785x710, components 3 DIY-Thermocam raw data\012-  (Lepton 3.x), scale 29023--5692, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 0.000000, slope 43410353893779213626900480.000000\012- data

                                                Size:   149192

                                                Md5:    eefdf430c180651e47627b06340e31f9

                                                Sha1:   2456925a7a168c3fd822659cbe44781420289a79

                                                Sha256: 321ebcf033e16d3e3a959201cb3aac14af07532e8bd2671b0f00083bd5534775

                                        
                                            GET /upload/iblock/7b6/7b6d93c758134f75731a88647f597fa5.jpg HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 6155 

                                        
                                            
Last-Modified: Thu, 28 Jun 2012 08:53:38 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "4fec1b92-180b" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 144x144, components 3\012- data

                                                Size:   6155

                                                Md5:    4f665f4a22c816bc0634de71c1c95d8d

                                                Sha1:   eaccb9a598d45999f6cdf726bf6c9f7561ee8f82

                                                Sha256: 4155d9b0dbb178e3cfc7f24490be3049de2e555f68a6577b74708563dede682b

                                        
                                            GET /images/t5.gif HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/gif

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 4958 

                                        
                                            
Last-Modified: Wed, 27 Feb 2013 11:53:06 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "512df3a2-135e" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 110 x 144\012- data

                                                Size:   4958

                                                Md5:    d6763121f305c31273ed3cd6b587130e

                                                Sha1:   ee6e60624be68da49a503c427ee5955f8b7d6afe

                                                Sha256: 22bb0ce4a287c7187c43a352b694833250b8f53dacc8de400fb4dd7577b13300

                                        
                                            POST /gsgccr3dvtlsca2020 HTTP/1.1 

                                        
                                            
Host: ocsp.globalsign.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 79 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         104.18.21.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 1414 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Expires: Mon, 10 Oct 2022 15:17:49 GMT 

                                        
                                            
ETag: "8aca23f2c7b9e8147a8f181d33c4a43724d7bae2" 

                                        
                                            
Last-Modified: Thu, 06 Oct 2022 15:17:50 GMT 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 

                                        
                                            
CF-Cache-Status: HIT 

                                        
                                            
Age: 2563 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Server: cloudflare 

                                        
                                            
CF-RAY: 7560afbc8fe30b39-OSL 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   1414

                                                Md5:    0abea2b33b22011ebece2d99fcbc3bc7

                                                Sha1:   8aca23f2c7b9e8147a8f181d33c4a43724d7bae2

                                                Sha256: c488788753594d63d9035be183051cf114927154be91979de1154b0ff811f9a1

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "E877C0BEDCDAF331324BA11C5FE5A2A22A79089677D7F8419600BE5F19AC0FA8" 

                                        
                                            
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=9058 

                                        
                                            
Expires: Thu, 06 Oct 2022 21:39:32 GMT 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    4ca3a35f00ba4c2b76dbced08aacbac6

                                                Sha1:   d72ea5eeff994490e3ac9972508c6112bd231e0b

                                                Sha256: e877c0bedcdaf331324ba11c5fe5a2a22a79089677d7f8419600be5f19ac0fa8

                                        
                                            GET /?src=sap1&uid=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 

                                        
                                            
Host: sync.bumlam.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         31.172.81.172

                                        
                                            HTTP/1.1 302 Moved Temporarily

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 0 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Set-Cookie: suuid3=IiQ0NjZkZDBhNi00NWFhLTExZWQtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Wed, 01 Oct 2042 19:08:34 GMT; Domain=bumlam.com; SameSite=None; Secure 

                                        
                                            
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                        
                                            
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARiyz_yZBmIgMUNCMzVBOURCMTI3M0Y2M0ZFMDAyNDA2MDIzMEVBOTeiARBGbdCmRaoR7YbgACWQwGR8 

                                        
                                            
ETag: 466dd0a6-45aa-11ed-86e0-002590c0647c 

                                        
                                            
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /upload/iblock/d83/d83d607616bac7fa58199ccd9dd80039.jpg HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/jpeg

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 1792111 

                                        
                                            
Last-Modified: Thu, 30 Mar 2017 08:09:14 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "58dcbd2a-1b586f" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 6859x2422, components 3\012- data

                                                Size:   1792111

                                                Md5:    298e63193d83751354abc80fe80ee4ac

                                                Sha1:   d9bafa37f5184643b16f804ab2d52c8e1b2e1fe7

                                                Sha256: 1725ed37ec04708f6db11f605111031ea586b74a286ebbd326e0e9c875189ef0

                                        
                                            GET /p?ssp=sp&uid=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 

                                        
                                            
Host: cs.agency2.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         23.111.107.44

                                        
                                            HTTP/1.1 301 Moved Permanently

                                        

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 0 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Server: fasthttp 

                                        
                                            
Cache-Control: no-store, no-cache, must-revalidate 

                                        
                                            
Expires: Thu, 01 Jan 1970 00:00:00 GMT 

                                        
                                            
Location: https://www.acint.net/match?dp=186&euid=91584db5-0fdc-4b9a-895a-3175556a7381 

                                        
                                            
Set-Cookie: uuid=91584db5-0fdc-4b9a-895a-3175556a7381; expires=Wed, 27 Sep 2023 19:08:34 GMT; domain=agency2.ru; path=/; secure; SameSite=None 

                                        
                                            
Access-Control-Allow-Credentials: true 

                                        
                                            
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE 

                                        
                                            
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT 

                                        
                                            
X-Host: 23.111.107.44 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F" 

                                        
                                            
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3208 

                                        
                                            
Expires: Thu, 06 Oct 2022 20:02:02 GMT 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    31e440ccd993c4ee793f50511c2ac7c4

                                                Sha1:   4380327d50b7001d158aee05a57c6078e57c94e4

                                                Sha256: 65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

                                        
                                            POST /gsalphasha2g2 HTTP/1.1 

                                        
                                            
Host: ocsp2.globalsign.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 79 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         104.18.21.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 1423 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Expires: Mon, 10 Oct 2022 17:38:41 GMT 

                                        
                                            
ETag: "23338a2226e05be3c2bea258cf374f582e64b0fc" 

                                        
                                            
Last-Modified: Thu, 06 Oct 2022 17:38:42 GMT 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 

                                        
                                            
CF-Cache-Status: HIT 

                                        
                                            
Age: 1014 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Server: cloudflare 

                                        
                                            
CF-RAY: 7560afbd4906b506-OSL 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   1423

                                                Md5:    920716f022a7df80d6a97304544be613

                                                Sha1:   23338a2226e05be3c2bea258cf374f582e64b0fc

                                                Sha256: 01d40600a8d3d414d4715633f26aadee0473fb9518f5ad43858faa632125a912

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 9044 

                                        
                                            
x-amzn-requestid: 127bce04-9f75-4bb1-bbe7-33bf1694d96c 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: ZdZPmHG5oAMFehw= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-633ba263-3896085b3b73ff5403237206;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Tue, 04 Oct 2022 03:02:59 GMT 

                                        
                                            
x-amz-cf-pop: SEA73-P1 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: E4yZTPRLFdK717YfwjOIFOJDi0wYpyA736dQELeM5iPLvGDXBosEWg== 

                                        
                                            
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Thu, 06 Oct 2022 05:04:17 GMT 

                                        
                                            
age: 50657 

                                        
                                            
etag: "ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   9044

                                                Md5:    70ea26af79226e9ff06d6198e2c019dc

                                                Sha1:   ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57

                                                Sha256: f9393e7b8cbaedc8e1ef87fd89c617cf102f58813d84d866ff68e3124f94d44c

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 7511 

                                        
                                            
x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: ZjO6uG70IAMFjBw= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA73-P2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: BddSUzh-PKiFmfw2p9gPW-B0qtrXWxCXfee29Pk-wLqN7RO21Yic6g== 

                                        
                                            
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Wed, 05 Oct 2022 21:37:06 GMT 

                                        
                                            
age: 77488 

                                        
                                            
etag: "69ad212cb7ae309d4f02019552887135bfae67da" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   7511

                                                Md5:    9e520f87cae411cfc2ed1c8a14184385

                                                Sha1:   69ad212cb7ae309d4f02019552887135bfae67da

                                                Sha256: 723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a

                                        
                                            GET /images/partner/1.png HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/png

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 21987 

                                        
                                            
Last-Modified: Sun, 10 Feb 2013 09:36:14 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "51176a0e-55e3" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 261 x 72, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   21987

                                                Md5:    6471835115be556485786e37324a8d26

                                                Sha1:   1aec6e0f61b5469f3553d741bcfbe57ddea412b8

                                                Sha256: 2e45a0e0957676a1095e144c47f839aff65dac2025eb5513949841f71c29eced

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 10158 

                                        
                                            
x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: ZaqZCH7doAMFcPQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT 

                                        
                                            
x-amz-cf-pop: SEA73-P1 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: aeOU8fGkf5uHuYZ79k17EzxiFnwm0_z7SeZJElgwECzRyhR2N_SYJA== 

                                        
                                            
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Thu, 06 Oct 2022 03:50:38 GMT 

                                        
                                            
age: 55076 

                                        
                                            
etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   10158

                                                Md5:    4fc2ddd86450d64d3fb659ab4e78be58

                                                Sha1:   bbe71936b78a8c34d03ab87948dc840b35c6948f

                                                Sha256: 84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f

                                        
                                            GET /sape/sync?ud_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyIsImh0dHBzOi8vd3d3LmFjaW50Lm5ldC8iXX19 HTTP/1.1 

                                        
                                            
Host: edfff2f6-b6a2-4188-b163-b35733872d2c.sync.upravel.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: session_tptc=1665083314154; user_id=edfff2f6-b6a2-4188-b163-b35733872d2c 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         148.251.236.115

                                        
                                            HTTP/2 302 Found 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
content-length: 0 

                                        
                                            
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA" 

                                        
                                            
set-cookie: user_id=edfff2f6-b6a2-4188-b163-b35733872d2c;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=edfff2f6-b6a2-4188-b163-b35733872d2c;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000 

                                        
                                            
location: https://www.acint.net/match?dp=71&euid=edfff2f6-b6a2-4188-b163-b35733872d2c 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-allow-methods: GET, POST, OPTIONS 

                                        
                                            
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range 

                                        
                                            
access-control-expose-headers: Content-Length,Content-Range 

                                        
                                            
access-control-allow-credentials: false 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /match/sape?id=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 

                                        
                                            
Host: sync.dmp.otm-r.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         148.251.9.22

                                        
                                            HTTP/2 204 No Content

                                        

                                        
                                            
server: nginx/1.17.2 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /images/t1.gif HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/gif

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 7022 

                                        
                                            
Last-Modified: Wed, 27 Feb 2013 11:53:06 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "512df3a2-1b6e" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 193 x 144\012- data

                                                Size:   7022

                                                Md5:    3988935152f8a413ec057608f3f2e49d

                                                Sha1:   4f2b96fd7759a1f83a5178b9df423666a86a1efb

                                                Sha256: 21637abbca860e186cadd673c5708c40824a6203a3a2278f4354973c8d58ce18

                                        
                                            GET /match?dp=71&euid=edfff2f6-b6a2-4188-b163-b35733872d2c HTTP/1.1 

                                        
                                            
Host: www.acint.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: test_cookie=CheckForPermission; aid=nVqzHGM/J7EGJAD+l+owAvfe6aH1NC1b+i6O+Dp9P4zEvQq1; cSyncDp7v2=1665083313; cSyncDp14v3=1665083313; cSyncDp17=1665083313; cSyncDp32=1665083313; cSyncDp45v3=1665083313; cSyncDp53=1665083313; cSyncDp54v2=1665083313; cSyncDp62=1665083313; cSyncDp67v2=1665083313; cSyncDp68=1665083313; cSyncDp71=1665083313; cSyncDp77=1665083313; cSyncDp84=1665083313; cSyncDp85=1665083313; cSyncDp95v3=1665083313; cSyncDp101=1665083313; cSyncDp104v2=1665083313; cSyncDp107=1665083313; cSyncDp110=1665083313; cSyncDp111v2=1665083313; cSyncDp112v2=1665083313; cSyncDp125v2=1665083313; cSyncDp126=1665083313; cSyncDp127=1665083313; cSyncDp129=1665083313; cSyncDp136v2=1665083313; cSyncDp138=1665083313; cSyncDp144=1665083313; cSyncDp146=1665083313; cSyncDp148=1665083313; cSyncDp149=1665083313; cSyncDp151=1665083313; cSyncDp178=1665083313; cSyncDp179=1665083313; cSyncDp186=1665083313; cSyncDp221=1665083313 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         46.4.114.109

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/gif

                                        

                                        
                                            
server: openresty 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
content-length: 43 

                                        
                                            
last-modified: Mon, 28 Sep 1970 06:00:00 GMT 

                                        
                                            
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL" 

                                        
                                            
expires: Wed, 19 Apr 2000 11:43:00 GMT 

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3

                                                Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7

                                                Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

                                        
                                            GET /images/t3.gif HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/gif

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 7506 

                                        
                                            
Last-Modified: Wed, 27 Feb 2013 11:53:06 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "512df3a2-1d52" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 242 x 144\012- data

                                                Size:   7506

                                                Md5:    711b96e66fd36d8e2cbbbb10131de915

                                                Sha1:   60863867283c032af70f5dbcc0d1087cea2c3d0e

                                                Sha256: cad31b68b6c595341268041043a6419c9a9de1fb07ccc38e2906e6a3f823f608

                                        
                                            GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1 

                                        
                                            
Host: s7.addthis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/ 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: iframe 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         23.38.200.123

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html

                                        

                                        
                                            
server: nginx/1.15.8 

                                        
                                            
last-modified: Mon, 26 Oct 2020 18:11:48 GMT 

                                        
                                            
etag: W/"5f971164-11adc" 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
cache-control: public, max-age=86313600 

                                        
                                            
p3p: CP="NON ADM OUR DEV IND COM STA" 

                                        
                                            
strict-transport-security: max-age=15724800; includeSubDomains 

                                        
                                            
content-encoding: gzip 

                                        
                                            
content-length: 26421 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
x-host: s7.addthis.com 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)

                                                Size:   26421

                                                Md5:    707317ccaabe08d32d1bd781754e6871

                                                Sha1:   bb82dcd3e044c960e0861c2ce878f5504e628f78

                                                Sha256: d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051

                                        
                                            GET /images/t6.gif HTTP/1.1 

                                        
                                            
Host: medsouz74.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/acts/ 

                                        
                                            
Cookie: PHPSESSID=583li3qbhj1154ojcehtap71e4

                                         46.254.17.18

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/gif

                                        

                                        
                                            
Server: nginx/1.12.2 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 4937 

                                        
                                            
Last-Modified: Wed, 27 Feb 2013 11:53:06 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
ETag: "512df3a2-1349" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 162 x 144\012- data

                                                Size:   4937

                                                Md5:    71bb0ad3a0c0917677a58d4677f5109b

                                                Sha1:   04964b3cdb62d26dad2f309f304363f08ae6b913

                                                Sha256: fb81a30f7006c0c1fa1a723728aa32a37d0a3136988abcefde9e2d2ed4a00bb8

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F" 

                                        
                                            
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=3208 

                                        
                                            
Expires: Thu, 06 Oct 2022 20:02:02 GMT 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    31e440ccd993c4ee793f50511c2ac7c4

                                                Sha1:   4380327d50b7001d158aee05a57c6078e57c94e4

                                                Sha256: 65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f

                                        
                                            GET /?src=sap1&s_data=CAIQARiyz_yZBmIgMUNCMzVBOURCMTI3M0Y2M0ZFMDAyNDA2MDIzMEVBOTeiARBGbdCmRaoR7YbgACWQwGR8 HTTP/1.1 

                                        
                                            
Host: sync.bumlam.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: suuid3=IiQ0NjZkZDBhNi00NWFhLTExZWQtODZlMC0wMDI1OTBjMDY0N2M* 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         31.172.81.172

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html; charset=utf-8

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
Content-Length: 0 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Set-Cookie: suuid3=IiQ0NjZkZDBhNi00NWFhLTExZWQtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Wed, 01 Oct 2042 19:08:34 GMT; Domain=bumlam.com; SameSite=None; Secure 

                                        
                                            
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                        
                                            
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /addthismoatframe568911941483/moatframe.js HTTP/1.1 

                                        
                                            
Host: z.moatads.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         23.38.201.146

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/x-javascript

                                        

                                        
                                            
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg= 

                                        
                                            
x-amz-request-id: 61EC92F13BB22DD4 

                                        
                                            
last-modified: Fri, 08 Nov 2019 20:13:52 GMT 

                                        
                                            
etag: "f14b4e1f799b14f798a195f43cf58376" 

                                        
                                            
content-encoding: gzip 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
content-length: 948 

                                        
                                            
server: AmazonS3 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
cache-control: max-age=32903 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:34 GMT 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (523)

                                                Size:   948

                                                Md5:    f14b4e1f799b14f798a195f43cf58376

                                                Sha1:   b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86

                                                Sha256: 92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac

                                        
                                            GET /live/red_lojson/300lo.json?si=633f27b130a7a80d&bkl=0&bl=5&pdt=1660&sid=633f27b130a7a80d&pub=ra-4ffbb06c6de7e481&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=medsouz74.ru&fp=acts%2F&fr=&fcu=Yz8nse_LeiA&of=0&pd=0&irt=0&vcl=0&md=2&ct=1&tct=0&abt=1&cdn=0&pi=1&rb=0&gen=100&chr=windows-1251&colc=1665083314835&jsl=1&uvs=633f27b108fc378d000&skipb=1&callback=addthis.cbs.jsonp__84402053211993130 HTTP/1.1 

                                        
                                            
Host: m.addthis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: http://medsouz74.ru/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         23.38.200.123

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript;charset=utf-8

                                        

                                        
                                            
content-length: 89 

                                        
                                            
cache-control: max-age=0, no-cache, no-store, no-transform 

                                        
                                            
pragma: no-cache 

                                        
                                            
content-disposition: attachment; filename=1.txt 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:35 GMT 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with no line terminators

                                                Size:   89

                                                Md5:    d35f9064cfa134f7fbbb214fc3b01a16

                                                Sha1:   4c7d5be923c3ce9bfd681048b20de2fff364c582

                                                Sha256: e3e2da7a895584e240240da1821d60bc79892bd554b93c8b6eb480fade8fb962

                                        
                                            GET /metrika/watch.js HTTP/1.1 

                                        
                                            
Host: mc.yandex.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: http://medsouz74.ru/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         77.88.21.119

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
content-length: 57285 

                                        
                                            
date: Thu, 06 Oct 2022 19:08:35 GMT 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
etag: "633be002-dfc5" 

                                        
                                            
expires: Thu, 06 Oct 2022 20:08:35 GMT 

                                        
                                            
last-modified: Tue, 04 Oct 2022 10:25:54 GMT 

                                        
                                            
cache-control: max-age=3600 

                                        
                                            
content-encoding: br 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (570)

                                                Size:   57285

                                                Md5:    44366cc385a5c0f49df4f22b71434b42

                                                Sha1:   3f56349f8a3fff52e28a3300052bdc2bde97371c

                                                Sha256: 485ba52769d75db2ed79f65318d37070d09ce3441680aa22caa10ae3cdcb45cd

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:35 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    eac86f868b3967f1946c7f5fc712b25f

                                                Sha1:   e2ae8eb09715a0af0791c085eb35bf66e0548e30

                                                Sha256: bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06

                                        
                                            GET /cgi-bin/sync.cgi?dsp_id=153&external_id=1CB35A9DB1273F63FE0024060230EA97 HTTP/1.1 

                                        
                                            
Host: ssp.adriver.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         195.209.111.13

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: image/gif

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:35 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   42

                                                Md5:    d89746888da2d9510b64a9f031eaecd5

                                                Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a

                                                Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: status.geotrust.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 1412 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:35 GMT 

                                        
                                            
Last-Modified: Thu, 06 Oct 2022 18:45:03 GMT 

                                        
                                            
Server: ECS (ska/F717) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 279 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   279

                                                Md5:    ebf1af73f4609321fb542b3727f9eae0

                                                Sha1:   8c0b93cbf4bde0dc3714356d797b459359908b53

                                                Sha256: 680211c8e353916d126804684826db4991678c39371c0548a1ad0fd645bcaecf

                                        
                                            GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691 HTTP/1.1 

                                        
                                            
Host: ad.adriver.ru

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.acint.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         195.209.108.37

                                        
                                            HTTP/1.1 302 Moved Temporarily 

                                        
                                            
Content-Type: text/html

                                        

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:35 GMT 

                                        
                                            
Transfer-Encoding: chunked 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cache-control: no-cache, max-age=0, must-revalidate, no-store 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Expires: Thu, 01 Jan 1970 00:00:00 GMT 

                                        
                                            
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA 

                                        
                                            
Set-Cookie: cid=-6007573066; expires=Sat, 05 Oct 2024 19:08:35 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure 

                                        
                                            
Location: /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-6007573066 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Access-Control-Allow-Credentials: true 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.usertrust.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         172.64.155.188

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:35 GMT 

                                        
                                            
Content-Length: 472 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Thu, 06 Oct 2022 16:18:19 GMT 

                                        
                                            
Expires: Thu, 13 Oct 2022 16:18:18 GMT 

                                        
                                            
Etag: "acd5f85c41f4a1b639277e0069253033f5d1bfaa" 

                                        
                                            
Cache-Control: max-age=602433,s-maxage=1800,public,no-transform,must-revalidate 

                                        
                                            
X-CCACDN-Proxy-ID: mcdpinlb4 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
CF-Cache-Status: HIT 

                                        
                                            
Age: 136 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Vary: Accept-Encoding 

                                        
                                            
Server: cloudflare 

                                        
                                            
CF-RAY: 7560afc07a57fac4-OSL 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    e9a6f8e4791ecfb2eefcb32e2df57194

                                                Sha1:   acd5f85c41f4a1b639277e0069253033f5d1bfaa

                                                Sha256: 726c2f509c944f0d7f2f8a131a3a673b876aa146e0d364922ba81b21f1927211

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sectigo.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         104.18.32.68

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Thu, 06 Oct 2022 19:08:35 GMT 

                                        
                                            
Content-Length: 472 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Tue, 04 Oct 2022 04:09:18 GMT

URL	medsouz74.ru/acts/
IP	46.254.17.18 (Russia)
ASN	#210079 EuroByte LLC
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-10-06 19:08:43 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	6
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (59)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 46.254.17.18

Last 5 reports on ASN: EuroByte LLC

Last 1 reports on domain: medsouz74.ru

No other reports with similar screenshot

JavaScript

Executed Scripts (21)

Executed Evals (2)

#1 JavaScript::Eval (size: 11) - SHA256: 8ee784d797ce97ed9716bb42682346deb0c7ae8ff75d7ad8ae60508907054c16

#2 JavaScript::Eval (size: 8) - SHA256: 3c4b9b06fe520e9d07b2150eebd412a59c91d789706d99a2b2dc9bf217604d1f

Executed Writes (0)

HTTP Transactions (176)

Overview

Domain Summary (59)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 46.254.17.18

Last 5 reports on ASN: EuroByte LLC

Last 1 reports on domain: medsouz74.ru

No other reports with similar screenshot

JavaScript

Executed Scripts (21)

Executed Evals (2)

#1 JavaScript::Eval (size: 11) - SHA256: 8ee784d797ce97ed9716bb42682346deb0c7ae8ff75d7ad8ae60508907054c16

#2 JavaScript::Eval (size: 8) - SHA256: 3c4b9b06fe520e9d07b2150eebd412a59c91d789706d99a2b2dc9bf217604d1f

Executed Writes (0)

HTTP Transactions (176)

Network Intrusion Detection Systems