www.samara-photo.ru/personal/user.394.html
188.127.230.8301 Moved Permanently 169 B URL HTTP/1.1 www.samara-photo.ru/personal/user.394.html
IP 188.127.230.8:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 9527755784f5014d2c94dcabdf6ae892
941126eba6b0b049b4a09fb846ebd943e894e068
5b111ef9f2dbaf8e8870567dc8e2302efe2b0feb9d4ba62ce74c1039ab663523
GET /personal/user.394.html HTTP/1.1
Host: www.samara-photo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.2
Date: Sat, 04 Feb 2023 18:16:44 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://uznay-prezidenta.ru/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13121
Expires: Sat, 04 Feb 2023 21:55:25 GMT
Date: Sat, 04 Feb 2023 18:16:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16254
Expires: Sat, 04 Feb 2023 22:47:38 GMT
Date: Sat, 04 Feb 2023 18:16:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4408
Expires: Sat, 04 Feb 2023 19:30:12 GMT
Date: Sat, 04 Feb 2023 18:16:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 17:36:15 GMT
content-type: application/json
age: 2429
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qG4MoFMVZPuLkuTnJDxnll3MuQkDqf0iflWdjcyjjx43WFlK26k6SmjTDm0HOuZtyUnl2eSLkrfzug7ppBDT+g==
x-amz-request-id: SWQSEM5NBVNJ51PG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 17:24:07 GMT
age: 3157
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:44 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ff290d4b87390ea01e9dbce61b227a9
f9234e197717862b8a5c72c222286b91baf555bf
2ba2c94120732845af4a6e122f4e350f3260b17458f26dd1d8082d9e196825ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2BA2C94120732845AF4A6E122F4E350F3260B17458F26DD1D8082D9E196825CA"
Last-Modified: Thu, 02 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21522
Expires: Sun, 05 Feb 2023 00:15:26 GMT
Date: Sat, 04 Feb 2023 18:16:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 17:49:07 GMT
age: 1658
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13283
Expires: Sat, 04 Feb 2023 21:58:08 GMT
Date: Sat, 04 Feb 2023 18:16:45 GMT
Connection: keep-alive
push.services.mozilla.com/
54.201.77.8101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.201.77.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Rw6BFRlgGNVpKQ+bRAe5Xw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: URclf4gThQA2IMKnG9+1KgT67Oo=
uznay-prezidenta.ru/
37.140.192.138200 OK 9.0 kB IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (575), with CRLF, LF line terminators
Hash 15e4269c73fc4ee4cb6dd9e5818ecc3b
0bcb3eda76b433eebae59f648cfaae7d4599c94b
f7518a3a1e786021c0b66c0244daf3fc69e024fa48f8c07bf021c670a1d459a3
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:45 GMT
content-type: text/html; charset=windows-1251
content-length: 9011
x-powered-by: PHP/5.5.38
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-encoding: gzip
set-cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d; path=/; HttpOnly
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2023-02/1675425679_328974823472389472384723894444444444.jpg
37.140.192.138200 OK 32 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2023-02/1675425679_328974823472389472384723894444444444.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 512x365, components 3\012- data
Hash 828029cbb35bc7ad071827c0152d6931
bf227394e92adab8a32d498b64cef3c9b3b7660f
ca92985340864460fb435390f3aeee3bc94897944a7156f70934e6e25f9d6cb3
GET /uploads/posts/2023-02/1675425679_328974823472389472384723894444444444.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 31616
last-modified: Fri, 03 Feb 2023 12:00:49 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.194.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.194.133:0
Hash 4ae23f232bcc8784ee623464fe3b91c8
ec84dc05668a08503c5c7b35eda9f27db24b7767
6acb9af5a8e2d54f97ceda0bdbef00a1c5992fa82d8594ec0bffd59fc03eed5c
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:05:13 GMT
ETag: "ec84dc05668a08503c5c7b35eda9f27db24b7767"
Last-Modified: Sat, 04 Feb 2023 17:05:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:46 GMT
Age: 3129
X-Served-By: cache-qpg1229-QPG, cache-bma1637-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 28
X-Timer: S1675534606.167491,VS0,VE0
uznay-prezidenta.ru/engine/classes/min/index.php?charset=windows-1251&g=general&20
37.140.192.138200 OK 62 kB URL HTTP/2 uznay-prezidenta.ru/engine/classes/min/index.php?charset=windows-1251&g=general&20
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type ASCII text, with very long lines (65470)
Hash 3d6a9b94b28ef1965f9280008fd12599
a874bead7c006f3f529d6452a8e06907888ff329
b837a978084738c199cba6a288a8f0cc2c02f03df3ac86e56ee1ba40efe933c8
GET /engine/classes/min/index.php?charset=windows-1251&g=general&20 HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript; charset=windows-1251
content-length: 61902
x-powered-by: PHP/5.5.38
expires: Sun, 04 Feb 2024 18:16:46 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
content-encoding: gzip
last-modified: Tue, 31 Jan 2017 15:58:54 GMT
etag: "pub1485878334;gz"
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-12/1672403619_23894723894723478238942742347911111111111.jpg
37.140.192.138200 OK 42 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-12/1672403619_23894723894723478238942742347911111111111.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 574x393, components 3\012- data
Hash 0a00b9778e84c6e00ac6f1660c7e6a05
27979d60a043ff0a94cfeabd5caca70eda6c51d8
11d759db375cbee96f1937a3aac6447e7801e0c342469b9362169ce4139db2bf
GET /uploads/posts/2022-12/1672403619_23894723894723478238942742347911111111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 42501
last-modified: Fri, 30 Dec 2022 12:33:07 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2023-01/1672927653_93118633.jpeg
37.140.192.138200 OK 155 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2023-01/1672927653_93118633.jpeg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 1200x800, components 3\012- data
Size 155 kB (154647 bytes)
Hash 92975dbaa8e4066715614de82c62cd35
332dfe5f6415b9305974083678ce4806c6d76fbd
bfce587dd9f91242ed19a067a70ef6e23e9cc8bb528806d68b131b63031e7acf
Analyzer Verdict Alert fortinet Malware
GET /uploads/posts/2023-01/1672927653_93118633.jpeg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 154647
last-modified: Thu, 05 Jan 2023 14:05:53 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-12/1671875474_2387423789423742974247237498888888888.jpg
37.140.192.138200 OK 52 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-12/1671875474_2387423789423742974247237498888888888.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 499x360, components 3\012- data
Hash c5d7eec4a2ce05fb1d7deacd41941187
dcdcfb7a62ab205717a22edf029b48693c1a74b8
e664aeebb874dcafe47792515cccc5d0a8807d9a7867f2a57574fe44679cdcfe
GET /uploads/posts/2022-12/1671875474_2387423789423742974247237498888888888.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 52514
last-modified: Sat, 24 Dec 2022 09:49:58 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-12/1672047872_328947239874237849237472489273422222222222.jpg
37.140.192.138200 OK 36 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-12/1672047872_328947239874237849237472489273422222222222.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 537x363, components 3\012- data
Hash 9db272848ac27d6b27d61c410f5c4f7c
9cc7a2bd46c0100ebaf623bea07b69413720879e
acd26c8effc710d6f99c36baf0d37a4d6f9cdae765ae589cedff0b62163155de
GET /uploads/posts/2022-12/1672047872_328947239874237849237472489273422222222222.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 35917
last-modified: Mon, 26 Dec 2022 09:44:18 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2023-01/1674137120_031100.jpg
37.140.192.138200 OK 94 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2023-01/1674137120_031100.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, PhotometricIntepretation=RGB, orientation=upper-left, resolutionunit=2], baseline, precision 8, 659x400, components 3\012- data
Hash aca70ecdfd29b0be95bcb9cf73639873
a80951434ae03d245bc09fbc74cddba350ada149
0a5e17d2b2c5bcf8c413385fd7e2dd680b82e0d3c68b98d41ceffcfa103736da
GET /uploads/posts/2023-01/1674137120_031100.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 94088
last-modified: Thu, 19 Jan 2023 14:04:36 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-12/1672218712_3247238947238472389742472391111111111111.jpg
37.140.192.138200 OK 43 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-12/1672218712_3247238947238472389742472391111111111111.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 602x400, components 3\012- data
Hash 7ca3ea2424c7ea786b03e633e283d4d7
1acaa4f19e620c3ee65f66e944cafb439b29968d
fb8f481ea001d0a0a7ec0b26b1fa90c277b47d9764497bf5adc90efbacf02584
GET /uploads/posts/2022-12/1672218712_3247238947238472389742472391111111111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 42597
last-modified: Wed, 28 Dec 2022 09:11:11 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/kuban_info.png
37.140.192.138200 OK 12 kB URL HTTP/2 uznay-prezidenta.ru/uploads/kuban_info.png
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type PNG image data, 190 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 6b70a59a3d2f6c8bd3f22e704edf5860
6a3b4891e806f67e34c3281eb94e81bca4bd0378
b8ef1f65611a931f7cb70c6d58ee294ca125be4587fb500b5b8d7f0eb8963eaf
GET /uploads/kuban_info.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 11774
last-modified: Tue, 31 Jan 2017 15:51:40 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-12/1670077019_2394782389472389472387482374111111111111.jpg
37.140.192.138200 OK 30 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-12/1670077019_2394782389472389472387482374111111111111.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 581x385, components 3\012- data
Hash 83b0d2e35a5b8e00fc7b33317e103162
13747153d4fd2d07b49d9956bf8335b0635456d2
6fd82a386121c70822ef59785c45e02dac909a278e00d3d4c6eae556a9853791
GET /uploads/posts/2022-12/1670077019_2394782389472389472387482374111111111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 30116
last-modified: Sat, 03 Dec 2022 14:15:53 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-12/1671269745_238942874928374892374823479111111111111.jpg
37.140.192.138200 OK 26 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-12/1671269745_238942874928374892374823479111111111111.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 636x433, components 3\012- data
Hash 4a507e39c1e23337abe9319145948e07
c1693b3a92d0d36d1f9d1f52147fe2e2eec63b60
a0fbce75b90b7bc31aee4ea6829c0493493a5e654d425b2db577aefacd9be88f
GET /uploads/posts/2022-12/1671269745_238942874928374892374823479111111111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 25542
last-modified: Sat, 17 Dec 2022 09:34:29 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-12/1670927292_324892374389274739274823974222222222221111111.jpg
37.140.192.138200 OK 54 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-12/1670927292_324892374389274739274823974222222222221111111.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 556x407, components 3\012- data
Hash 16fb0600e3f81dadde102f8798b554c8
b44306ff302aa8d30b5861420897d2ffb832edfb
cbbf7515cdaea6e652e1ef96a4b830b00db023df3d7ce32b71712b390f08f263
GET /uploads/posts/2022-12/1670927292_324892374389274739274823974222222222221111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 54266
last-modified: Tue, 13 Dec 2022 10:26:50 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/logo_uvao8.png
37.140.192.138200 OK 36 kB URL HTTP/2 uznay-prezidenta.ru/uploads/logo_uvao8.png
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type PNG image data, 330 x 111, 8-bit/color RGB, non-interlaced\012- data
Hash 820aff04adfdf8bf9e570fe3bca4d394
b31aefd5570d36e9db6a799f9137659e3fdc3fe9
905133f8e6ccb3c515e50d391e46e63556f96ebad15e126268221e856e443b8a
GET /uploads/logo_uvao8.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 35911
last-modified: Tue, 31 Jan 2017 15:51:41 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-12/1671098573_3289472389742374289379382475555555555555.jpg
37.140.192.138200 OK 40 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-12/1671098573_3289472389742374289379382475555555555555.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 526x358, components 3\012- data
Hash d005c519e676f4207394510ad4737d82
e2e08ee2d890323540f67bd5724efa7adbff132b
103346b8b77f8ee3479ba00c3d0e52eae935aa3814dd57290cd4f698b9b3d60c
GET /uploads/posts/2022-12/1671098573_3289472389742374289379382475555555555555.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 40443
last-modified: Thu, 15 Dec 2022 10:01:16 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-12/1671214409_5-.jpg
37.140.192.138200 OK 16 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-12/1671214409_5-.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 320x240, components 3\012- data
Hash 9ee225bdde7d54b170510669f2c94e6a
2ee045be3620723cd0b9e52b24af282879bccfa1
5374e4054e85a1562fc87baecdbe42b17b29a2e272665a2655a21bd67563b82d
GET /uploads/posts/2022-12/1671214409_5-.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 16435
last-modified: Fri, 16 Dec 2022 18:13:13 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-12/1669890711_32489723784927384237942389472322222222222222.jpg
37.140.192.138200 OK 66 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-12/1669890711_32489723784927384237942389472322222222222222.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 560x377, components 3\012- data
Hash 1149a111581691576240e4c10213fb91
09b9394004e1dd20227bb0af1bfa2ae87b3fb4dd
00289b29540f63c5553acaa944a3eaba0ac2ac51658823bedcd888186688a3d0
GET /uploads/posts/2022-12/1669890711_32489723784927384237942389472322222222222222.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 66010
last-modified: Thu, 01 Dec 2022 10:31:20 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-12/1670585031_238947238947234797234234971111111111111.jpg
37.140.192.138200 OK 46 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-12/1670585031_238947238947234797234234971111111111111.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 598x404, components 3\012- data
Hash aaf63dde81f0c831d30dc82d9864ccdb
8baac21510fa9542523d34b5342ccfc6ecf25a7d
3106154c5e87878de3d6193b05419432674ea1f40b0231835345656a598e972b
GET /uploads/posts/2022-12/1670585031_238947238947234797234234971111111111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 45921
last-modified: Fri, 09 Dec 2022 11:22:50 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-12/1670242020_2389742389472389742378942389741111111111111.jpg
37.140.192.138200 OK 28 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-12/1670242020_2389742389472389742378942389741111111111111.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 599x432, components 3\012- data
Hash 3b4fc4b50a5369333acd552a4219c62f
900f51cf140ac802a74f740c781bd3cbdf872b4c
10bf2be191e2244297ddf1cd9c3748f2163d9dd320c6c43bff7fa4930e32e512
GET /uploads/posts/2022-12/1670242020_2389742389472389742378942389741111111111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 27554
last-modified: Mon, 05 Dec 2022 12:06:47 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-11/1669727418_3289423897427342734923784222222222222.jpg
37.140.192.138200 OK 68 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-11/1669727418_3289423897427342734923784222222222222.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 583x393, components 3\012- data
Hash a3b0702a91b06ff9c6836cb636151f42
7c2ab692e3dde8807d3dee9c4849889f9d8002e7
98e29c55b671ebe3b7cba419d364cfda15ed7c918133a6fa2ffd9af79a269597
GET /uploads/posts/2022-11/1669727418_3289423897427342734923784222222222222.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 67687
last-modified: Tue, 29 Nov 2022 13:09:57 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-12/1670754723_3289472398423748723984237411111111111.jpg
37.140.192.138200 OK 46 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-12/1670754723_3289472398423748723984237411111111111.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 635x455, components 3\012- data
Hash a5f33c73c0c8180393da76d783108e48
243c66e1f67c106c3fa97f4b8591937a7c53f109
22cfdc7de6d7f35ded8d39844e2b7e84dd3a72ace72abfa80eac2a56471b7fbf
GET /uploads/posts/2022-12/1670754723_3289472398423748723984237411111111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 45694
last-modified: Sun, 11 Dec 2022 10:31:31 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-12/1671718736_0984028098242842420942048333333333333333444444.jpg
37.140.192.138200 OK 84 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-12/1671718736_0984028098242842420942048333333333333333444444.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 596x421, components 3\012- data
Hash df7af6edb0adba13d0784132dedee2df
9d072936c6925d9cbb2917a570fabf5c3b7e1037
ad31ee2409cb4df4ca8fd926992d5af8e34b023abff2a9c41e2397c2a369ca42
GET /uploads/posts/2022-12/1671718736_0984028098242842420942048333333333333333444444.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 83461
last-modified: Thu, 22 Dec 2022 14:17:20 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/posts/2022-12/1670412496_238974823947239742389472387894222222222222.jpg
37.140.192.138200 OK 79 kB URL HTTP/2 uznay-prezidenta.ru/uploads/posts/2022-12/1670412496_238974823947239742389472387894222222222222.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 529x354, components 3\012- data
Hash 33bfde29b4eb8e5df34a2ac002f2bd39
83b7d83da0fc5e640b7044e02e5b5533ea902a60
99bf06d96afc42649b4c12dc2cbbe1794148502227ca6d91f48ade19c2f215c5
GET /uploads/posts/2022-12/1670412496_238974823947239742389472387894222222222222.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 78774
last-modified: Wed, 07 Dec 2022 11:28:03 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
vk.com/js/api/openapi.js?127
87.240.132.78200 OK 23 kB URL HTTP/2 vk.com/js/api/openapi.js?127
IP 87.240.132.78:0
File type ASCII text, with very long lines (3849)
Hash 6b56e2aa629cc5f334bba9e200af3bfe
1e99707868f45c499400d95e75348c3d7b7686f5
7cb4aa1277e9f29f5c6d21c642b7c08cfce199332e30395c20995847a0db3fab
GET /js/api/openapi.js?127 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 23318
last-modified: Fri, 02 Dec 2022 07:14:40 GMT
etag: "6389a5e0-5b16"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
uznay-prezidenta.ru/templates/up-templ/images/bg-header1.png
37.140.192.138200 OK 15 kB URL HTTP/2 uznay-prezidenta.ru/templates/up-templ/images/bg-header1.png
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type PNG image data, 5 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash bcca7ac8079639b2a30f5868d4dad3d9
bd94418a1af584109848ee38cd8cb272fb91258c
528564ed1cc27c3cc6ef85ade786d27c287e0d80996febb375279cb5af506c10
GET /templates/up-templ/images/bg-header1.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 14557
last-modified: Tue, 31 Jan 2017 16:04:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/templates/up-templ/images/menu-line.png
37.140.192.138200 OK 938 B URL HTTP/2 uznay-prezidenta.ru/templates/up-templ/images/menu-line.png
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type PNG image data, 1 x 15, 8-bit/color RGB, interlaced\012- data
Hash b6db2ed6b8def2e4706038d3674b20a0
d891a0c929f730af8cfb8fb783fd931a5cc19a5b
488bc74716d7f2000caf0fb1da5b4a2cf572eda53cd57245d75b36e56a299d38
GET /templates/up-templ/images/menu-line.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 938
last-modified: Tue, 31 Jan 2017 16:04:18 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/uploads/up1.png
37.140.192.138200 OK 48 kB URL HTTP/2 uznay-prezidenta.ru/uploads/up1.png
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type PNG image data, 1000 x 224, 8-bit/color RGBA, non-interlaced\012- data
Hash 757c95c5a7f7cd0c5b495c986e0c4e60
68c96d95d17ab0ec56c54711935778fbb842bfe8
1da599db978f6d6d09a9ab01a8e59ced3b55872a4667de8b39028e1828476bd2
GET /uploads/up1.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 48350
last-modified: Tue, 31 Jan 2017 15:51:44 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/templates/up-templ/images/navigation.jpg
37.140.192.138200 OK 1.3 kB URL HTTP/2 uznay-prezidenta.ru/templates/up-templ/images/navigation.jpg
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 3x40, components 3\012- data
Hash a459de1b805988a16393001e5ca7114d
e49ab19a3b0579952c9e30caabaa302a989143c1
81c2579982211df0351af6de596550de10515037683761dee93abfebc7b72ef8
GET /templates/up-templ/images/navigation.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 1255
last-modified: Tue, 31 Jan 2017 16:04:18 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/templates/up-templ/images/bg-footer1.png
37.140.192.138200 OK 15 kB URL HTTP/2 uznay-prezidenta.ru/templates/up-templ/images/bg-footer1.png
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type PNG image data, 11 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash c855d9a7789003b6ec02046ef0afaec6
78389c95fd4564ad57630b9418fe5859927becda
6bc4d9fdeb4863506b99fb4ec0a47ed59b2f58e805531927f1388da6bd85c772
GET /templates/up-templ/images/bg-footer1.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 15439
last-modified: Tue, 31 Jan 2017 16:04:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/templates/up-templ/images/shelter.png
37.140.192.138200 OK 18 kB URL HTTP/2 uznay-prezidenta.ru/templates/up-templ/images/shelter.png
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type PNG image data, 5 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 6df8ecc94e822080513297cb8c73c953
4d5e1e6a902380722682111402f1b40bc11ea4c1
f1ad3ced70d9f3ea7f1b0533ceae7132906043bfd2761ba5cbe2cd0c6add12db
GET /templates/up-templ/images/shelter.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 17724
last-modified: Tue, 31 Jan 2017 16:04:19 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/templates/up-templ/images/line-topmenu.png
37.140.192.138200 OK 999 B URL HTTP/2 uznay-prezidenta.ru/templates/up-templ/images/line-topmenu.png
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type PNG image data, 11 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash ce42a393d1636b28a49ea95bea9e95ff
6e8263a9ece6bfd74b76c734384bad4a2cc46d7a
0f9856918451fc05cda9ee2b578dfb7981d49109939f596ccb3451372ff645e8
GET /templates/up-templ/images/line-topmenu.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 999
last-modified: Tue, 31 Jan 2017 16:04:03 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
uznay-prezidenta.ru/templates/up-templ/images/bg-menu-link.png
37.140.192.138200 OK 15 kB URL HTTP/2 uznay-prezidenta.ru/templates/up-templ/images/bg-menu-link.png
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type PNG image data, 3 x 26, 8-bit/color RGB, non-interlaced\012- data
Hash 70ff7e7d6ec189c31d1331f780b3827d
88e5f65b09358114a29d5d98c1b1c7f109ea98c7
23e918fa1cb67083ab512987f168ff28665d2aa6005dbf1083691a91eaa636d2
GET /templates/up-templ/images/bg-menu-link.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 15419
last-modified: Tue, 31 Jan 2017 16:04:02 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fed5e3aa743e52be88bbb859921e0f98
ee7eceb81c7a2c0843ef9b0e9468028e0fd4c746
4c94f1b5c922f8d834e52ce06e78bc14921943da3dc4130ab24d09aff638e772
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C94F1B5C922F8D834E52CE06E78BC14921943DA3DC4130AB24D09AFF638E772"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2674
Expires: Sat, 04 Feb 2023 19:01:20 GMT
Date: Sat, 04 Feb 2023 18:16:46 GMT
Connection: keep-alive
www.acint.net/aci.js
193.3.184.229200 OK 7.8 kB IP 193.3.184.229:0
File type ASCII text, with very long lines (1649)
Hash 777eef0db9280e74fe8d3e0e9561da9c
f8316623410b9735dd07b6e12a2f29352c0aa4cd
985dc8f4eb0a0b4629fa8e6d86f741ee8d22b7a0a1f64be2e9e9f2c96c9cf772
GET /aci.js HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 7784
last-modified: Thu, 02 Feb 2023 13:54:08 GMT
etag: "63dbc080-1e68"
content-encoding: gzip
expires: Sun, 05 Feb 2023 06:16:46 GMT
cache-control: max-age=43200
X-Firefox-Spdy: h2
uznay-prezidenta.ru/favicon.ico
37.140.192.138200 OK 500 B URL HTTP/2 uznay-prezidenta.ru/favicon.ico
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 2d8a4bcbf04957e4f0935b2442c65956
c61c2ddc533f83f90d718395de9a39d732657261
9a1b740bfc56385ac3c4bf225657e05261972e04cb3229e12d211fc2482ef7f5
GET /favicon.ico HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/x-icon
content-length: 500
last-modified: Tue, 31 Jan 2017 15:51:38 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39
87.240.132.78200 OK 13 kB URL HTTP/2 vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39
IP 87.240.132.78:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (19499)
Hash bf0f5d3fde2dc07de981ecd62c76c92b
bd78850f7409ad24dfd5ae9a313f688fe25b8dd3
eb0617c917e8e192f0b4615612a82d7c6fd937cb0d1f72e76d6fcf3354f2d98a
GET /widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/html; charset=windows-1251
content-length: 13009
x-powered-by: KPHP/7.4.113244
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Fri, 02 Feb 2024 04:48:16 GMT; path=/; domain=.vk.com
remixstlid=9114251829296510625_sHjtGyLZrIyN4HGud8gn4QDOFUdjSGul7Sw05SU5Znz; expires=Sun, 04 Feb 2024 18:16:46 GMT; path=/; domain=.vk.com; secure
remixstid=1577310460_6qVgs6zyAbpBwDYSPVnDBj3FKL14Z5cMjFzu8b1vQYD; expires=Sat, 03 Feb 2024 23:38:18 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-security-policy: default-src * data: blob: about: vkcalls:;script-src 'self' https://vk.com https://*.vk.com https://vk.ru https://*.vk.ru https://static.vk.me https://*.mail.ru https://r.mradx.net https://s.ytimg.com https://platform.twitter.com https://cdn.syndication.twimg.com https://www.instagram.com https://connect.facebook.net https://telegram.org https://*.yandex.ru https://*.google-analytics.com https://*.youtube.com https://maps.googleapis.com https://translate.googleapis.com https://*.google.com https://google.com https://*.vkpartner.ru https://*.moatads.com https://*.adlooxtracking.ru https://*.serving-sys.ru https://*.weborama-tech.ru https://*.gstatic.com https://*.google.ru https://securepubads.g.doubleclick.net https://cdn.ampproject.org https://www.googletagmanager.com https://googletagmanager.com https://*.vk-cdn.net https://*.hit.gemius.pl https://yastatic.net https://analytics.tiktok.com 'unsafe-inline' 'unsafe-eval' blob:;style-src https://vk.com https://*.vk.com https://vk.ru https://*.vk.ru https://static.vk.me https://r.mradx.net https://ton.twimg.com https://tagmanager.google.com https://platform.twitter.com https://*.googleapis.com 'self' 'unsafe-inline'
x-xss-protection: 1; report=/xss_reports
content-encoding: gzip
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
vk.com/images/upload.gif
87.240.132.78200 OK 230 B IP 87.240.132.78:0
File type GIF image data, version 89a, 32 x 8\012- data
Hash 59cd625f8c2ce03663123d59416378a1
b8d103133aadcdbe532e5642ddce9159b7385e4e
0d7e358637c1b1caa66949aefc529c1e4488923f99e499d6be09eb8cdd0b4202
GET /images/upload.gif HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/gif
content-length: 230
last-modified: Tue, 22 Sep 2020 20:30:00 GMT
etag: "5f6a5ec8-e6"
expires: Sat, 11 Feb 2023 18:16:46 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
151.101.194.133200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 151.101.194.133:0
Hash 9a8dc49ff28f822212f758110ff232d0
326adadf9f5ca919888ba747a2b5b95a1ce5c3a6
2a448bc5523d667ae57011823962c4aafcdd8a623f910a36d31563302c1b3bf8
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1423
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:06:25 GMT
ETag: "326adadf9f5ca919888ba747a2b5b95a1ce5c3a6"
Last-Modified: Sat, 04 Feb 2023 17:06:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:46 GMT
Age: 618
X-Served-By: cache-qpg1269-QPG, cache-bma1637-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 5, 6
X-Timer: S1675534607.595717,VS0,VE0
www.acint.net/mc/?dp=10
193.3.184.229302 Found 154 B IP 193.3.184.229:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=10&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Sat, 04-Feb-23 18:26:46 GMT
aid=CkIDFWPeoQ6coRRujynxAoUuzEilIY6X+TC76RS69DmuXm6Z; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/hit/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=82428510&u=https%3A%2F%2Fuznay-prezidenta.ru%2F&r=&rs=1280x1024&t=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&oE=1&oP=1&dT=2023-02-04T18%3A17%3A23.203&fu=0f355b99-0e23-4311-84c2-e6cf95b38815
193.3.184.229200 OK 43 B URL HTTP/2 www.acint.net/hit/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=82428510&u=https%3A%2F%2Fuznay-prezidenta.ru%2F&r=&rs=1280x1024&t=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&oE=1&oP=1&dT=2023-02-04T18%3A17%3A23.203&fu=0f355b99-0e23-4311-84c2-e6cf95b38815
IP 193.3.184.229:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hit/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=82428510&u=https%3A%2F%2Fuznay-prezidenta.ru%2F&r=&rs=1280x1024&t=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&oE=1&oP=1&dT=2023-02-04T18%3A17%3A23.203&fu=0f355b99-0e23-4311-84c2-e6cf95b38815 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
151.101.130.133200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 151.101.130.133:0
Hash 21d84c6d1b3193960b5d86ca536e310e
fa65cbb51166e473fce2e5adcc92223eebcb6659
63994747fbe9cdfebf76b58a8daa94c952d2d6fd49b1a5ec5bf21b9d6e1dc6c7
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 940
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:23:09 GMT
ETag: "fa65cbb51166e473fce2e5adcc92223eebcb6659"
Last-Modified: Sat, 04 Feb 2023 17:23:10 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:46 GMT
Age: 2778
X-Served-By: cache-qpg1244-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 4, 63
X-Timer: S1675534607.621821,VS0,VE0
counter.yadro.ru/hit?t14.12;r;s1280*1024*24;uhttps%3A//uznay-prezidenta.ru/;0.8355446904089558
88.212.201.204200 OK 211 B URL HTTP/1.1 counter.yadro.ru/hit?t14.12;r;s1280*1024*24;uhttps%3A//uznay-prezidenta.ru/;0.8355446904089558
IP 88.212.201.204:0
ASN #39134 United Network LLC
File type GIF image data, version 87a, 88 x 31\012- data
Hash e32eeccc240db292673e8cce71b0c71c
c81797b12034e57866843ab70604482558bdae95
08b73c529111c6700423e23eaa4f3d03cc55707c2e4b0d341136c2ebf00f7afa
GET /hit?t14.12;r;s1280*1024*24;uhttps%3A//uznay-prezidenta.ru/;0.8355446904089558 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sat, 04 Feb 2023 18:16:46 GMT
Content-Type: image/gif
Content-Length: 211
Connection: keep-alive
Expires: Thu, 03 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
vk.com/js/al/lite.js?107
87.240.132.78200 OK 62 kB IP 87.240.132.78:0
File type ISO-8859 text, with very long lines (2839)
Hash 67d884c7e4351d4ff01236e835307aa4
361ce908f5536e1c265fe6c212f4828be42f4b62
35f71d019676bd3297ac849176cf1330ac20a5ab842906c1dc6754b0466bdf79
GET /js/al/lite.js?107 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 61947
last-modified: Sun, 22 Jan 2023 13:13:14 GMT
etag: "63cd366a-f1fb"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
uznay-prezidenta.ru/templates/up-templ/js/navcontrol.js
37.140.192.138200 OK 58 kB URL HTTP/2 uznay-prezidenta.ru/templates/up-templ/js/navcontrol.js
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash 8ed220e0cf87f61ba8271ed1e9c2bac1
4d94a03142148b33b5828525df398788c27209c7
53fdcbb8cd387814836117ad18ee3372aefce2f96be0020ef2fc9ebbbda0da61
Analyzer Verdict Alert fortinet Malware
GET /templates/up-templ/js/navcontrol.js HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/javascript
last-modified: Tue, 31 Jan 2017 16:04:33 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
vk.com/js/lang3_0.js?27925576
87.240.132.78200 OK 24 kB URL HTTP/2 vk.com/js/lang3_0.js?27925576
IP 87.240.132.78:0
File type ISO-8859 text, with very long lines (56505), with LF, NEL line terminators
Hash b7ba0dbb78463f7cb6061119d7f2550d
8112beac1b1d37a2d73794f60e48aea2f51d8d9a
b7944d824554b607a58ac5fe07f36d5df326a9ec3cd0b68b5d70e85e21edaadd
GET /js/lang3_0.js?27925576 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/javascript; charset=windows-1251
content-length: 23724
x-powered-by: KPHP/7.4.113244
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Mon, 29 Jan 2024 00:22:24 GMT; path=/; domain=.vk.com
remixstlid=9099615130507725952_vTxzfY6FLTSPp2YUtzdxCMKUrdFaPKQcElZpkxf9gY4; expires=Sun, 04 Feb 2024 18:16:46 GMT; path=/; domain=.vk.com; secure
cache-control: max-age=345600
content-encoding: gzip
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
vk.com/js/loader_nav2063449849_3.js
87.240.132.78200 OK 54 kB URL HTTP/2 vk.com/js/loader_nav2063449849_3.js
IP 87.240.132.78:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 891f7b1a6cc1afe6d106227466ca59a5
397d82fb2266a6d051926879450689342e772945
2c55fdc57bd89da014af075278ff6cf0771d661003adc588f3a74fc56dd80d7d
GET /js/loader_nav2063449849_3.js HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/javascript; charset=windows-1251
content-length: 54159
x-powered-by: KPHP/7.4.113244
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Wed, 31 Jan 2024 17:08:21 GMT; path=/; domain=.vk.com
remixstlid=9060067896279866439_r3zOlzZ8ZHBxY0z33wtOdxTIZT6AawG9XumfXih8tJz; expires=Sun, 04 Feb 2024 18:16:46 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-encoding: gzip
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.vk.com/css/al/lite.985a2015d47e0dec1e7f.css
87.240.132.78200 OK 36 kB URL HTTP/2 st.vk.com/css/al/lite.985a2015d47e0dec1e7f.css
IP 87.240.132.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Hash 47efbae4b250dbe4ceed94c01b63fa22
873333ea58592ac962dc8afba6c5bd025200136d
9c85e36a0f00525c782b8363418fc91db68a084c1ee6eb15d545f20212a6f0b7
GET /css/al/lite.985a2015d47e0dec1e7f.css HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/css
content-length: 36047
last-modified: Thu, 02 Feb 2023 12:02:18 GMT
etag: "63dba64a-8ccf"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.vk.com/css/al/ui_common.52af22fe0da9c4f28b25.css
87.240.132.78200 OK 15 kB URL HTTP/2 st.vk.com/css/al/ui_common.52af22fe0da9c4f28b25.css
IP 87.240.132.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Hash baab7cd826aa190036af396edd0fb64f
f1a9c3b3e187d590afe1241d057fd4ec0885237c
6df23170d94200b9cda48b5f768de7ea01d7468823909557f05eb1fe8fa03137
GET /css/al/ui_common.52af22fe0da9c4f28b25.css HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/css
content-length: 14772
last-modified: Fri, 03 Feb 2023 20:59:38 GMT
etag: "63dd75ba-39b4"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.vk.com/dist/polyfills.1881adbf36454e07c9c6.js?a69ef34dc1979f8d5126
87.240.132.78200 OK 43 kB URL HTTP/2 st.vk.com/dist/polyfills.1881adbf36454e07c9c6.js?a69ef34dc1979f8d5126
IP 87.240.132.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65445)
Hash a7157352830b630af348ef2f636726ff
2ce0ffd5a605490beb2850292b992e692b6426a8
533603e49671677c00f98be4cc0ff463d36098512cda07761ea03747168b80e3
GET /dist/polyfills.1881adbf36454e07c9c6.js?a69ef34dc1979f8d5126 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 43415
last-modified: Thu, 02 Feb 2023 23:04:52 GMT
etag: "63dc4194-a997"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.vk.com/dist/react.6d787991b51243317269.js?cb151ae0d77e1fe8ca23
87.240.132.78200 OK 44 kB URL HTTP/2 st.vk.com/dist/react.6d787991b51243317269.js?cb151ae0d77e1fe8ca23
IP 87.240.132.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65449)
Hash 8d6ab054b91c1fdf73e251314677b689
40e5043d15cacc381cbae77ee0f22f94b562097a
fc97c0b1d58d2c32abacbd559120088ac47b59dcc218da80d28ee4814abb9cd7
GET /dist/react.6d787991b51243317269.js?cb151ae0d77e1fe8ca23 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 43811
last-modified: Tue, 29 Nov 2022 04:27:50 GMT
etag: "63858a46-ab23"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.vk.com/dist/vkcom-kit.72fe64a01981ddba762c.css
87.240.132.78200 OK 3.4 kB URL HTTP/2 st.vk.com/dist/vkcom-kit.72fe64a01981ddba762c.css
IP 87.240.132.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (3542)
Hash ec5e9651a45be188d921dd1b635e0c08
58ec92aaf4f72899d71c0130dfa36dda65d79a7e
4dc922e8d07f6aa6af4faab3ba339b2ccbb097b83cad41bf0e7d234056d5b129
GET /dist/vkcom-kit.72fe64a01981ddba762c.css HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/css
content-length: 3409
last-modified: Fri, 03 Feb 2023 22:27:11 GMT
etag: "63dd8a3f-d51"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.vk.com/dist/vkcom-kit.e219774a6d53f48889e4.js?
87.240.132.78200 OK 9.2 kB URL HTTP/2 st.vk.com/dist/vkcom-kit.e219774a6d53f48889e4.js?
IP 87.240.132.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (37238), with no line terminators
Hash 678f88b379dd7386726feb711b77c793
6485eb467c789dd4db64d97c12b28454601536a8
47d0558fc18d6774a14d98a527090821d38ac7fa40dd1a153c6e4bdb54321898
GET /dist/vkcom-kit.e219774a6d53f48889e4.js? HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 9159
last-modified: Fri, 03 Feb 2023 22:27:11 GMT
etag: "63dd8a3f-23c7"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.vk.com/dist/audioplayer.0851881a4eef18ffc449.js?3096f39b0abb332841c54da
87.240.132.78200 OK 41 kB URL HTTP/2 st.vk.com/dist/audioplayer.0851881a4eef18ffc449.js?3096f39b0abb332841c54da
IP 87.240.132.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Hash c082a2a39d1b6bd439fe65f79d52b821
b9762cac21bea4a2191c950009bdd97a08aecc80
5a679e1c161039f4488763e474d9a5ca902abfdfc24555eeeae5a60df1a06504
GET /dist/audioplayer.0851881a4eef18ffc449.js?3096f39b0abb332841c54da HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 41235
last-modified: Fri, 03 Feb 2023 22:27:11 GMT
etag: "63dd8a3f-a113"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.vk.com/dist/web/ui_common.c932de453ebb5522ace5.js?b44e69867deb3b4ce7e51f288b3282a9
87.240.132.78200 OK 22 kB URL HTTP/2 st.vk.com/dist/web/ui_common.c932de453ebb5522ace5.js?b44e69867deb3b4ce7e51f288b3282a9
IP 87.240.132.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Hash 0ed3f62fb42637cc259da142641c571c
eea921779d6b555486e6c0539d437e83f67199b0
a4341d11398f87d396c63865c5c425eeb049c674ab958f8052f05717082c0cbb
GET /dist/web/ui_common.c932de453ebb5522ace5.js?b44e69867deb3b4ce7e51f288b3282a9 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 21450
last-modified: Fri, 03 Feb 2023 22:27:10 GMT
etag: "63dd8a3e-53ca"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.vk.com/dist/web/audioplayer.72b153b464881dbaaa68.js?54f795ea5ff22834931743396c52a7d9
87.240.132.78200 OK 2.2 kB URL HTTP/2 st.vk.com/dist/web/audioplayer.72b153b464881dbaaa68.js?54f795ea5ff22834931743396c52a7d9
IP 87.240.132.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (4639), with no line terminators
Hash 16931b18f813273dfad750bd4e831512
6c4123faf17af3bc7c627d24bb0b1d66a80fea17
2b8593c5b6ab638d6b23975d92807386336d9916e3a5c445c3f67fd491d9f799
GET /dist/web/audioplayer.72b153b464881dbaaa68.js?54f795ea5ff22834931743396c52a7d9 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 2177
last-modified: Fri, 03 Feb 2023 22:27:10 GMT
etag: "63dd8a3e-881"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.vk.com/css/al/widget_community.461c04150f1c05e585d0.css
87.240.132.78200 OK 3.6 kB URL HTTP/2 st.vk.com/css/al/widget_community.461c04150f1c05e585d0.css
IP 87.240.132.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (21023)
Hash dff507c02dd746a677f8d6d2bd8be332
912c3ee8aacbb0424570d8cc22083ebc37783fb4
a5ed1a62890c57c8f427e46cfad13dd335b39a77b4629dd3bea3950d5aae23b3
GET /css/al/widget_community.461c04150f1c05e585d0.css HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/css
content-length: 3620
last-modified: Sat, 28 Jan 2023 10:21:26 GMT
etag: "63d4f726-e24"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.vk.com/dist/web/likes.edf7c6de1ec6253b7cfc.js?795e261db986798394c6e0f0385ac3c7
87.240.132.78200 OK 7.0 kB URL HTTP/2 st.vk.com/dist/web/likes.edf7c6de1ec6253b7cfc.js?795e261db986798394c6e0f0385ac3c7
IP 87.240.132.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (19104), with no line terminators
Hash 91d3b7d0160db7c16cee33c5709f1b6c
530922d5ef1052d96fc3de9945d99abe9ddb051a
44811b4af34fa64cde0978d2ebee2f0586a217fce34e971d9ba0cb33f896dddc
GET /dist/web/likes.edf7c6de1ec6253b7cfc.js?795e261db986798394c6e0f0385ac3c7 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 7011
last-modified: Fri, 03 Feb 2023 22:27:10 GMT
etag: "63dd8a3e-1b63"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.vk.com/css/al/base.fb1f9176f1f18f31fafa.css
87.240.132.78200 OK 19 kB URL HTTP/2 st.vk.com/css/al/base.fb1f9176f1f18f31fafa.css
IP 87.240.132.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Hash 5ed0f0f69967de459372a9a8a34a9ddb
06542df889bd0f87355ecaf8290f1c5b4c635c35
dd2d3c632f76c270e4236c942470ff0dd0ff5d97fbf978e646c91c5cb67deb8f
GET /css/al/base.fb1f9176f1f18f31fafa.css HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/css
content-length: 19321
last-modified: Wed, 01 Feb 2023 07:33:04 GMT
etag: "63da15b0-4b79"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.vk.com/dist/vkui.9ce756e79bcf283a954f.js?1c1533386eeb375c81a5
87.240.132.78200 OK 80 kB URL HTTP/2 st.vk.com/dist/vkui.9ce756e79bcf283a954f.js?1c1533386eeb375c81a5
IP 87.240.132.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65342), with no line terminators
Hash 6d17f0d8c1d02840b3d2c36119a8e201
829b78c970d90c80505337570a8ad00daea25015
fbae71c4ecd74b166120dbccea8e3b70bbec99833b9844d4f4741d0f595361e4
GET /dist/vkui.9ce756e79bcf283a954f.js?1c1533386eeb375c81a5 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 79714
last-modified: Wed, 11 Jan 2023 11:06:44 GMT
etag: "63be9844-13762"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.vk.com/css/al/fonts_cnt.7809321e6a2c5f3e361d.css
87.240.132.78200 OK 254 kB URL HTTP/2 st.vk.com/css/al/fonts_cnt.7809321e6a2c5f3e361d.css
IP 87.240.132.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Size 254 kB (254075 bytes)
Hash 67419045730311e4456af7b82d4b75b3
eaf5bcc40c7a55dfcf104cf7ead2cb7508d4b3bf
5c585b4675e44bbabb0922c0574c6bd142a169901681287c29e8be54f5f5949a
GET /css/al/fonts_cnt.7809321e6a2c5f3e361d.css HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/css
content-length: 254075
last-modified: Wed, 14 Dec 2022 10:58:48 GMT
etag: "6399ac68-3e07b"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
st.vk.com/dist/api/widgets/community.js?1
87.240.132.78200 OK 378 kB URL HTTP/2 st.vk.com/dist/api/widgets/community.js?1
IP 87.240.132.78:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65441)
Size 378 kB (378410 bytes)
Hash 8bc518c7677d09b5c0d5ccd73a54458b
9b5c835ce8d0d99203ba95a5a527a4cfc80d34e0
a8b17644644b08394e33a786724da63fd5f40b40e358722e9ac2c00c964e5bab
GET /dist/api/widgets/community.js?1 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 378410
last-modified: Sat, 04 Feb 2023 11:49:02 GMT
etag: "63de462e-5c62a"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11305
Expires: Sat, 04 Feb 2023 21:25:12 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsalphasha2g2
151.101.194.133200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 151.101.194.133:0
Hash d0b6637e35d830bd4e35a38a65d9e204
a781fca433bbcb586168be124b340990ccea5a89
3b4a973573ad4ff2082f647e9f971d97a42cbf731f1d2a0b0933d147a8ddcce0
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1423
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 16:47:02 GMT
ETag: "a781fca433bbcb586168be124b340990ccea5a89"
Last-Modified: Sat, 04 Feb 2023 16:47:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 3360
X-Served-By: cache-qpg1259-QPG, cache-bma1637-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 6
X-Timer: S1675534607.127510,VS0,VE0
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 49f1ab27692e68c8aa2bc15b76194d67
0654a4657001045c54ff8d1106959bf36fc0b798
37b372db10326f9b0e175b81b437e09930c87c06b700c23b341e822aac1b3ff6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "37B372DB10326F9B0E175B81B437E09930C87C06B700C23B341E822AAC1B3FF6"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7429
Expires: Sat, 04 Feb 2023 20:20:36 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: f95a2821-ae89-4ea9-93b2-43e570285df3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEC3FyboAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8078-7e2177f11d5715d4092cad2c;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dcFgY5x3Ef0J__7wGn3llTjZ9as5nX1H4HErIT3VlKfeQaQTjymW2g==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:33 GMT
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
age: 72374
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dm-eu.hybrid.ai/match?id=106&vid=1303420A0EA1DE63850ACC760287A896
37.18.103.21204 No Content 0 B URL HTTP/2 dm-eu.hybrid.ai/match?id=106&vid=1303420A0EA1DE63850ACC760287A896
IP 37.18.103.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=106&vid=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 18:16:47 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=f3459586447f79792340; Expires=Sun, 04 Feb 2024 18:16:46 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 524
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 114e345e134986d7451148fcea31b29d
541e878afee68c8802bb52b0cbbe5a5a0a185392
5030244d4babd1023166f39c935029d789a91ba90aa3a44c6f4c88ddc947b678
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8211
x-amzn-requestid: 6a1fd567-b34d-4787-aa05-5b7db3fc51c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fflRBHU4IAMFnsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61c06-2d1ec3206d2ebeb4780a84b4;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:11:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUloQ6xaRWpnvMRh7kFvFIWhFotmILLZHfD_YK01RmrQ2vmYKVh46w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 03:08:59 GMT
age: 54468
etag: "541e878afee68c8802bb52b0cbbe5a5a0a185392"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2c26a5b2867f8f53d8b0c163fe24fdc9
a38fbf22fe7d65693c45ffd1f547871ba7321dd5
ecc618bb22bdf99f2c606fa48c65af2a2989141b4f9b7a6788bc4ccabdc04e49
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECC618BB22BDF99F2C606FA48C65AF2A2989141B4F9B7A6788BC4CCABDC04E49"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3404
Expires: Sat, 04 Feb 2023 19:13:31 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9eb9bf783fc88b84f333ff5329a11a61
7717ff74884ae148351efb3129c73f89cf38f160
74c8efdc4d58d26c28c950d103a1337f9bfabc46b10f278efcdc3fc44c90caac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "74C8EFDC4D58D26C28C950D103A1337F9BFABC46B10F278EFCDC3FC44C90CAAC"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12593
Expires: Sat, 04 Feb 2023 21:46:40 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive
st.vk.com/js/api/xdm.js?9
87.240.132.78200 OK 503 B URL HTTP/2 st.vk.com/js/api/xdm.js?9
IP 87.240.132.78:0
Hash aa462c0924ed4264cfec9c27f31963f0
5ac1625a35dcd44b33f94de25ea8fd069e3136de
6b0ada644929e561f608ed2bc8f8594dd112adc58441fdc3f697fe0fa15328bd
GET /js/api/xdm.js?9 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 2846
last-modified: Tue, 22 Sep 2020 20:30:00 GMT
etag: "5f6a5ec8-b1e"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 06326d175fe6b9f132cca262f6cfc83a
7cc59607986862d382ecac86a9cbac7de1452243
5b1e0928a61a4f7bcf77bfe8f253a84b92ff7b670287823243d0efdef3fb2929
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5B1E0928A61A4F7BCF77BFE8F253A84B92FF7B670287823243D0EFDEF3FB2929"
Last-Modified: Sat, 04 Feb 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7189
Expires: Sat, 04 Feb 2023 20:16:36 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b15864b681565c47016989bd0f3fa6ae
83bdb0c8554e6f239f9d29a5c0a810dc6d791fa1
8af0d0932fc09fa92c8f80f5e80e334573be021b84427dc03fc83bcacdd26ad7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6336
Cache-Control: max-age=169555
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 18:16:47 GMT
Etag: "63de7ba2-117"
Expires: Mon, 06 Feb 2023 17:22:42 GMT
Last-Modified: Sat, 04 Feb 2023 15:37:06 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5431f65b9752265c73dfc20feb11c708
a02c33915a5a1d746fe3f0a0110780a4ecf16cf5
1ab127bb9135946104c60ec117163be6987288b63a642decc67cdbf2274597e2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1AB127BB9135946104C60EC117163BE6987288B63A642DECC67CDBF2274597E2"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10672
Expires: Sat, 04 Feb 2023 21:14:39 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5bc2a9d5fd3216e47b405a4181397181
04cdb983fd69c0a4605ce3d4c6d8593222411571
e972de61d850dff6463b38f51a57ad3d5b28b0fef2f83b41daa1463270a7da2b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E972DE61D850DFF6463B38F51A57AD3D5B28B0FEF2F83B41DAA1463270A7DA2B"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13264
Expires: Sat, 04 Feb 2023 21:57:51 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 894948b5d268f1d2a21f7d915eb79138
5fe7d1a9c6301b317b73f4037b29856eac674931
cb23963aab51ebbb8c7626800a4b1df5222c068cecf4538511cb38dbbb0960d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB23963AAB51EBBB8C7626800A4B1DF5222C068CECF4538511CB38DBBB0960D5"
Last-Modified: Thu, 02 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3224
Expires: Sat, 04 Feb 2023 19:10:31 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive
ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
193.3.184.212302 Moved Temporarily 142 B URL HTTP/1.1 ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
IP 193.3.184.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=3303420A0FA1DE634D00C660025A4220
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkIDM2PeoQ9gxgBNIEJaAlKiGL3+jmAizTmiJajbVvD8Bum5; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3fd7da2b4e741b78de53d1c10701e627
2094d5dc57b8f3c5291eedf0fdf57ca5486b78e1
43d3642eab9b1aa4aa467075453a7eb84479425af207d9f1238951421f6cf0db
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "43D3642EAB9B1AA4AA467075453A7EB84479425AF207D9F1238951421F6CF0DB"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5948
Expires: Sat, 04 Feb 2023 19:55:55 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive
sync.upravel.com/sape/sync
176.9.8.252302 Found 0 B URL HTTP/2 sync.upravel.com/sape/sync
IP 176.9.8.252:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1675534607254;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1675534607254;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sap1&uid=1303420A0EA1DE63850ACC760287A896
31.172.81.159302 Moved Temporarily 0 B URL HTTP/1.1 sync.bumlam.com/?src=sap1&uid=1303420A0EA1DE63850ACC760287A896
IP 31.172.81.159:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQxNjQwNGE0YS1hNGI4LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Fri, 30 Jan 2043 18:16:47 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARiPwvqeBmIgMTMwMzQyMEEwRUExREU2Mzg1MEFDQzc2MDI4N0E4OTaiARAWQEpKpLgR7aHEACWQyCQ3
ETag: 16404a4a-a4b8-11ed-a1c4-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
185.147.80.35302 Found 74 B URL HTTP/1.1 ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
IP 185.147.80.35:0
File type HTML document, ASCII text
Hash ea9fe3479bfbea5ef9a0806e4684735e
d44cf62dbfbd1ecbdd6b30f4c553c81a5ca766ba
92f5de1247c13b1bfbb9dc97bb17552430f2b5984a317e4bf50c00852e5c8f22
GET /sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 74
Connection: keep-alive
Location: https://www.acint.net/match?dp=95&euid=HPDHGCUF
Set-Cookie: uid=HPDHGCUF; Expires=Tue, 01 Feb 2033 18:16:47 GMT
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7101f6e43855cb76ce48271a847ffbd
8e674830a97d8ce3818132fda197db4f0289d316
e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9141
x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD8zE5lIAMF1HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6kDIOqhM4aVL80sF02uFu2TuGbiBE7_L_S2W7x-P46hO5YZFmuL9nQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:13:30 GMT
age: 72197
etag: "8e674830a97d8ce3818132fda197db4f0289d316"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/alphasslcasha256g4
151.101.130.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/alphasslcasha256g4
IP 151.101.130.133:0
Hash f6308945e5f492f900eac31ec0c9d15b
e938d659a26ef7e91feac70e663d99dadd9f79bb
15e0fd422f1402004d40b9e0d383100a9ca5c3fd15e5cdf391471b247dfd3327
POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1437
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 15:56:08 GMT
ETag: "e938d659a26ef7e91feac70e663d99dadd9f79bb"
Last-Modified: Sat, 04 Feb 2023 15:56:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 1163
X-Served-By: cache-qpg1230-QPG, cache-bma1667-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 3
X-Timer: S1675534607.282067,VS0,VE0
s.uuidksinc.net/match/396/?remote_uid=1303420A0EA1DE63850ACC760287A896
31.220.27.135302 Found 0 B URL HTTP/2 s.uuidksinc.net/match/396/?remote_uid=1303420A0EA1DE63850ACC760287A896
IP 31.220.27.135:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.19.0
date: Sat, 04 Feb 2023 18:16:47 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=y5jVgTF8THVJTMd5IYQr
set-cookie: jcsuuid=y5jVgTF8THVJTMd5IYQr; expires=Sun, 04 Feb 2024 18:16:47 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 72386
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/check?sspuid=1303420A0EA1DE63850ACC760287A896
31.172.81.159302 Found 0 B URL HTTP/1.1 pix.bumlam.com/sync/sape/check?sspuid=1303420A0EA1DE63850ACC760287A896
IP 31.172.81.159:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/check?sspuid=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape
www.acint.net/oci.js?t=1675534643206
193.3.184.229200 OK 10 kB URL HTTP/2 www.acint.net/oci.js?t=1675534643206
IP 193.3.184.229:0
Hash 392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35
GET /oci.js?t=1675534643206 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
last-modified: Mon, 09 Jan 2023 08:01:14 GMT
etag: W/"63bbc9ca-7dac"
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:48:04 GMT
age: 73723
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
sync.dmp.otm-r.com/match/sape?id=1303420A0EA1DE63850ACC760287A896
195.201.152.110204 No Content 0 B URL HTTP/2 sync.dmp.otm-r.com/match/sape?id=1303420A0EA1DE63850ACC760287A896
IP 195.201.152.110:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.17.6
date: Sat, 04 Feb 2023 18:16:47 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
a.utraff.com/sync?ssp=Sape
104.21.59.66204 No Content 0 B URL HTTP/2 a.utraff.com/sync?ssp=Sape
IP 104.21.59.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=Sape HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Mon, 06 Mar 2023 21:16:47 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Mon, 06 Mar 2023 21:16:47 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L57uNClsqHPimFsJg002yFa0Jiei%2FGVuNmlb7qfPpo%2FFUedbjwIhNJJRWum5Rz3mfqh3GKmNJv2Av9hkT3CGehEeXdNh74J0%2BClbfddCuX%2Ba%2FXZxlYFH%2FU3hyPThTk0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7945663f6d72b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
match.new-programmatic.com/userbind?src=sape&id=1303420A0EA1DE63850ACC760287A896
217.65.2.150204 No Content 0 B URL HTTP/1.1 match.new-programmatic.com/userbind?src=sape&id=1303420A0EA1DE63850ACC760287A896
IP 217.65.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
nr.bidderstack.com/sape/cm?user_id=1303420A0EA1DE63850ACC760287A896
23.88.12.13200 OK 44 B URL HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=1303420A0EA1DE63850ACC760287A896
IP 23.88.12.13:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash f9d60352c70a2ba15616d1c9421f3844
e9abc8bea7721a4b6a50295850d13c515006a95c
82cb517a8f80c91dfcec543c6d140deb3baaf463ea9e77655475096eba7bc7d9
GET /sape/cm?user_id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: image/gif
Content-Length: 44
Connection: keep-alive
Access-Control-Allow-Credentials: true
sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1303420A0EA1DE63850ACC760287A896
87.242.89.90200 OK 12 B URL HTTP/2 sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1303420A0EA1DE63850ACC760287A896
IP 87.242.89.90:0
File type exported SGML document, ASCII text, with no line terminators
Hash d8932e1cb3ee147415fbf5591a7217ca
97da5b95fb7f60ecd8d9ed0e5a05d83ad5a9c070
c0327cbcde50f1ab8228334a550b947301123d6f6f7d625707cb6d08a1faec35
GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: text/html
content-length: 12
last-modified: Mon, 30 Jan 2023 18:57:34 GMT
etag: "63d8131e-c"
accept-ranges: bytes
server: elb
X-Firefox-Spdy: h2
cs.agency2.ru/p?ssp=sp&uid=1303420A0EA1DE63850ACC760287A896
23.111.107.44301 Moved Permanently 0 B URL HTTP/1.1 cs.agency2.ru/p?ssp=sp&uid=1303420A0EA1DE63850ACC760287A896
IP 23.111.107.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&uid=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=d9f2a9cc-77ea-436b-94b1-fdba0f38bf5e
Set-Cookie: uuid=d9f2a9cc-77ea-436b-94b1-fdba0f38bf5e; expires=Fri, 26 Jan 2024 18:16:47 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
sync.adspend.space/sape?uid=1303420A0EA1DE63850ACC760287A896
212.76.129.183302 Found 149 B URL HTTP/2 sync.adspend.space/sape?uid=1303420A0EA1DE63850ACC760287A896
IP 212.76.129.183:0
File type HTML document, ASCII text
Hash 1b6b0732d062675cdcc5e5259f02fd2e
9f2cb0ddd91d70f73145f46d8cfd9fd2f97f47d2
c8acf62b8c89df8fc07e547c86ea63bb43086e40d761ca86754cc48e99f0ab47
GET /sape?uid=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: text/html; charset=utf-8
content-length: 149
location: https://sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Ddd9070fb-f4b2-4be0-a432-6541edfe4c70
set-cookie: as-user=dd9070fb-f4b2-4be0-a432-6541edfe4c70; Path=/; Max-Age=31536000; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sap1&s_data=CAIQARiPwvqeBmIgMTMwMzQyMEEwRUExREU2Mzg1MEFDQzc2MDI4N0E4OTaiARAWQEpKpLgR7aHEACWQyCQ3
31.172.81.159200 OK 0 B URL HTTP/1.1 sync.bumlam.com/?src=sap1&s_data=CAIQARiPwvqeBmIgMTMwMzQyMEEwRUExREU2Mzg1MEFDQzc2MDI4N0E4OTaiARAWQEpKpLgR7aHEACWQyCQ3
IP 31.172.81.159:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&s_data=CAIQARiPwvqeBmIgMTMwMzQyMEEwRUExREU2Mzg1MEFDQzc2MDI4N0E4OTaiARAWQEpKpLgR7aHEACWQyCQ3 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQxNjQwNGE0YS1hNGI4LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQxNjQwNGE0YS1hNGI4LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Fri, 30 Jan 2043 18:16:47 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
mc.yandex.ru/watch/39365090/1?wmode=7&page-url=https%3A%2F%2Fuznay-prezidenta.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A2025%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1538901617343%3Ahid%3A837025276%3Az%3A0%3Ai%3A20230204181723%3Aet%3A1675534644%3Ac%3A1%3Arn%3A708722734%3Arqn%3A1%3Au%3A1675534644997442234%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A16%2C215%2C1088%2C0%2C361%2C0%2C%2C373%2C31%2C%2C%2C%2C2069%3Aco%3A0%3Ans%3A1675534640938%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675534644%3At%3A%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
93.158.134.119200 OK 426 B URL HTTP/2 mc.yandex.ru/watch/39365090/1?wmode=7&page-url=https%3A%2F%2Fuznay-prezidenta.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A2025%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1538901617343%3Ahid%3A837025276%3Az%3A0%3Ai%3A20230204181723%3Aet%3A1675534644%3Ac%3A1%3Arn%3A708722734%3Arqn%3A1%3Au%3A1675534644997442234%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A16%2C215%2C1088%2C0%2C361%2C0%2C%2C373%2C31%2C%2C%2C%2C2069%3Aco%3A0%3Ans%3A1675534640938%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675534644%3At%3A%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP 93.158.134.119:0
File type JSON data\012- , ASCII text, with very long lines (426), with no line terminators
Hash d4831965e1791b7c90767dd7e1ef5828
36cc414ffde72d3f34970038dce178adba55098b
ba84a3686f5f670c1e1e2dab4d7ea03ac755cd222dbd6adefd1e4be952c24476
GET /watch/39365090/1?wmode=7&page-url=https%3A%2F%2Fuznay-prezidenta.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A2025%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1538901617343%3Ahid%3A837025276%3Az%3A0%3Ai%3A20230204181723%3Aet%3A1675534644%3Ac%3A1%3Arn%3A708722734%3Arqn%3A1%3Au%3A1675534644997442234%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A16%2C215%2C1088%2C0%2C361%2C0%2C%2C373%2C31%2C%2C%2C%2C2069%3Aco%3A0%3Ans%3A1675534640938%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675534644%3At%3A%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uznay-prezidenta.ru
Referer: https://uznay-prezidenta.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 426
date: Sat, 04 Feb 2023 18:16:47 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://uznay-prezidenta.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 18:16:47 GMT
last-modified: Sat, 04-Feb-2023 18:16:47 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b15864b681565c47016989bd0f3fa6ae
83bdb0c8554e6f239f9d29a5c0a810dc6d791fa1
8af0d0932fc09fa92c8f80f5e80e334573be021b84427dc03fc83bcacdd26ad7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6336
Cache-Control: max-age=169555
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 18:16:47 GMT
Etag: "63de7ba2-117"
Expires: Mon, 06 Feb 2023 17:22:42 GMT
Last-Modified: Sat, 04 Feb 2023 15:37:06 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 1afd3517ebc844038700db8c82d69ae3
1327e511903b229cd36c1647fdb71c17d4ce7bdd
ff3430f1affa22881cd632c75d9f51cb97deb53a2cd76f3ee3be5e4b0518192a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 23:26:49 GMT
Expires: Wed, 08 Feb 2023 23:26:48 GMT
Etag: "1327e511903b229cd36c1647fdb71c17d4ce7bdd"
Cache-Control: max-age=363600,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945663f8b89b4ed-OSL
sync.programmatica.com/match/RTBSape?id=1303420A0EA1DE63850ACC760287A896
167.235.117.41302 Found 0 B URL HTTP/2 sync.programmatica.com/match/RTBSape?id=1303420A0EA1DE63850ACC760287A896
IP 167.235.117.41:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/RTBSape?id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-length: 0
location: https://sync.programmatica.com/match/RTBSape?id=1303420A0EA1DE63850ACC760287A896&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
176.9.8.252302 Found 0 B URL HTTP/2 sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP 176.9.8.252:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: session_tptc=1675534607254
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=5f8abbbc-6322-46c5-be68-ca8a5e7bce26;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=5f8abbbc-6322-46c5-be68-ca8a5e7bce26;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/match?dp=71&euid=5f8abbbc-6322-46c5-be68-ca8a5e7bce26
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
www.acint.net/match?dp=129&euid=812ow7lvm0
193.3.184.229200 OK 43 B URL HTTP/2 www.acint.net/match?dp=129&euid=812ow7lvm0
IP 193.3.184.229:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=129&euid=812ow7lvm0 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/mc/?dp=10&tc=1
193.3.184.229200 OK 1.3 kB URL HTTP/2 www.acint.net/mc/?dp=10&tc=1
IP 193.3.184.229:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 67b85d2793e5418b66bc26ffb10529ee
3d6f69b7b3b0475954f06f0e8905962d574566f7
6e5d6ea1c19eb85fedde0a643c3197a833a1ba040b345d16053f57c4ce38bb68
GET /mc/?dp=10&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uznay-prezidenta.ru/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/html
set-cookie: cSyncDp7v2=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp14v3=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp32=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v3=1675534606; expires=Sun, 05-Feb-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53v2=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v2=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v3=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp98v2=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp101=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1675534606; expires=Sat, 18-Feb-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v3=1675534606; expires=Sun, 19-Feb-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v2=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v2=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp178=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp221=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp235=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 04 Feb 2023 18:16:47 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Sat, 04 Feb 2023 19:16:47 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.acint.net/match?dp=95&euid=HPDHGCUF
193.3.184.229200 OK 43 B URL HTTP/2 www.acint.net/match?dp=95&euid=HPDHGCUF
IP 193.3.184.229:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=95&euid=HPDHGCUF HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
5.200.43.131302 Found 43 B URL HTTP/2 ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
IP 5.200.43.131:0
ASN #48096 Enterprise Cloud Ltd.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://acint.net/match?dp=110&euid=63c8c97b43994d079eefca0d3f7d7b27
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=63c8c97b43994d079eefca0d3f7d7b27; expires=Sat, 03 Feb 2024 21:00:00 GMT; path=/; SameSite=None; secure; samesite=lax
date: Sat, 04 Feb 2023 18:16:47 GMT
X-Firefox-Spdy: h2
dmp.gotechnology.io/match/sape?id=1303420A0EA1DE63850ACC760287A896
167.235.32.7302 Found 0 B URL HTTP/2 dmp.gotechnology.io/match/sape?id=1303420A0EA1DE63850ACC760287A896
IP 167.235.32.7:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-length: 0
location: https://dmp.gotechnology.io/match/sape?id=1303420A0EA1DE63850ACC760287A896&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
acint.net/match?dp=110&euid=63c8c97b43994d079eefca0d3f7d7b27
193.3.184.229200 OK 43 B URL HTTP/2 acint.net/match?dp=110&euid=63c8c97b43994d079eefca0d3f7d7b27
IP 193.3.184.229:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=110&euid=63c8c97b43994d079eefca0d3f7d7b27 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
acint.net/match?dp=14&euid=3303420A0FA1DE634D00C660025A4220
193.3.184.229200 OK 43 B URL HTTP/2 acint.net/match?dp=14&euid=3303420A0FA1DE634D00C660025A4220
IP 193.3.184.229:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=3303420A0FA1DE634D00C660025A4220 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash dbb3fe4d8642c214cf6c1f4523abff84
595c46af4c12a911a209b5d4c6f12b5834b4cbc1
2193d8508d4538173a02bca99856f53dc4b1e4ad0c2bbd057b20d76349f25435
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 03:41:04 GMT
Expires: Sat, 11 Feb 2023 03:41:03 GMT
Etag: "595c46af4c12a911a209b5d4c6f12b5834b4cbc1"
Cache-Control: max-age=551655,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945663f6ac70b31-OSL
exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
144.76.119.17301 Moved Permanently 115 B URL HTTP/2 exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
IP 144.76.119.17:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash 19316b20aab857b2b9e1db7dd5558b8f
6f61bb37f9f52040fb49dab6e9ff1f5a2efcc90a
b1e45def5a3cafee8979fc64df50a5e67aea75db5063e5e545c65ecce990f166
GET /cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: text/html; charset=utf-8
content-length: 115
location: https://www.acint.net/match?dp=126&euid=76f09a6a-8a20-4168-638c-4ad5beca9dc9
serverid: TODO
X-Firefox-Spdy: h2
www.acint.net/match?dp=186&euid=d9f2a9cc-77ea-436b-94b1-fdba0f38bf5e
193.3.184.229200 OK 43 B URL HTTP/2 www.acint.net/match?dp=186&euid=d9f2a9cc-77ea-436b-94b1-fdba0f38bf5e
IP 193.3.184.229:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=186&euid=d9f2a9cc-77ea-436b-94b1-fdba0f38bf5e HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/sync_ok?guid=16404a4a-a4b8-11ed-a1c4-002590c82437
31.172.81.159302 Found 0 B URL HTTP/1.1 pix.bumlam.com/sync/sape/sync_ok?guid=16404a4a-a4b8-11ed-a1c4-002590c82437
IP 31.172.81.159:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/sync_ok?guid=16404a4a-a4b8-11ed-a1c4-002590c82437 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQxNjQwNGE0YS1hNGI4LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://16404a4a-a4b8-11ed-a1c4-002590c82437.n2.sync.bumlam.com/?src=sape
sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Ddd9070fb-f4b2-4be0-a432-6541edfe4c70
212.76.129.183302 Found 102 B URL HTTP/2 sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Ddd9070fb-f4b2-4be0-a432-6541edfe4c70
IP 212.76.129.183:0
File type HTML document, ASCII text
Hash 2b3646ae5906991ee5384279be698bf2
7d813a8f802e901099ecc2b3948da5a1b1597dd9
64c85dfd04005503bc453b1c7600b86e8952c86909973decd7738de778daaf54
GET /check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Ddd9070fb-f4b2-4be0-a432-6541edfe4c70 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: as-user=dd9070fb-f4b2-4be0-a432-6541edfe4c70
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: text/html; charset=utf-8
content-length: 102
location: https://www.acint.net/match?dp=98&euid=dd9070fb-f4b2-4be0-a432-6541edfe4c70
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
sync.programmatica.com/match/RTBSape?id=1303420A0EA1DE63850ACC760287A896&chk=1
167.235.117.41200 OK 43 B URL HTTP/2 sync.programmatica.com/match/RTBSape?id=1303420A0EA1DE63850ACC760287A896&chk=1
IP 167.235.117.41:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/RTBSape?id=1303420A0EA1DE63850ACC760287A896&chk=1 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
set-cookie: pid=YzQ5Y2YwYzEzNjYyY2Fj; expires=Sun, 04 Aug 2024 18:16:47 GMT; domain=.programmatica.com; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
dmp.gotechnology.io/match/sape?id=1303420A0EA1DE63850ACC760287A896&chk=1
167.235.32.7302 Found 0 B URL HTTP/2 dmp.gotechnology.io/match/sape?id=1303420A0EA1DE63850ACC760287A896&chk=1
IP 167.235.32.7:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1303420A0EA1DE63850ACC760287A896&chk=1 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-length: 0
location: https://an.yandex.ru/mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw
set-cookie: pid=NGI1OWMzNzExNTcxY2U3Nw; expires=Sun, 04 Feb 2024 18:16:47 GMT; domain=.gotechnology.io; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
www.acint.net/match?dp=71&euid=5f8abbbc-6322-46c5-be68-ca8a5e7bce26
193.3.184.229200 OK 43 B URL HTTP/2 www.acint.net/match?dp=71&euid=5f8abbbc-6322-46c5-be68-ca8a5e7bce26
IP 193.3.184.229:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=71&euid=5f8abbbc-6322-46c5-be68-ca8a5e7bce26 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=126&euid=76f09a6a-8a20-4168-638c-4ad5beca9dc9
193.3.184.229200 OK 43 B URL HTTP/2 www.acint.net/match?dp=126&euid=76f09a6a-8a20-4168-638c-4ad5beca9dc9
IP 193.3.184.229:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=126&euid=76f09a6a-8a20-4168-638c-4ad5beca9dc9 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=98&euid=dd9070fb-f4b2-4be0-a432-6541edfe4c70
193.3.184.229200 OK 43 B URL HTTP/2 www.acint.net/match?dp=98&euid=dd9070fb-f4b2-4be0-a432-6541edfe4c70
IP 193.3.184.229:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=98&euid=dd9070fb-f4b2-4be0-a432-6541edfe4c70 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
vk.com/images/camera_50.png
87.240.132.78200 OK 570 B URL HTTP/2 vk.com/images/camera_50.png
IP 87.240.132.78:0
File type PNG image data, 50 x 50, 8-bit/color RGB, non-interlaced\012- data
Hash b17a9dcdcc1e5028061e3c769a736e0d
55a0cff39baf55044b77888f5503925319279b38
e3b9c102be54a21fc534271c42ff116be61325240fac9649023cc6adf41d8e72
GET /images/camera_50.png HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/png
content-length: 570
last-modified: Tue, 22 Sep 2020 20:29:55 GMT
etag: "5f6a5ec3-23a"
expires: Sat, 11 Feb 2023 18:16:47 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.194.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.194.133:0
Hash edc215d1648944fdde23bf44f3a13d65
874146e987640124e4319f59ceb41ebe1c6a5070
5f8789a58131789b5f6444266d098b6bade3357f3c0b2dd8439b539c8f319646
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 14:26:28 GMT
ETag: "874146e987640124e4319f59ceb41ebe1c6a5070"
Last-Modified: Sat, 04 Feb 2023 14:26:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 3512
X-Served-By: cache-qpg1271-QPG, cache-bma1637-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 20
X-Timer: S1675534608.678678,VS0,VE0
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.194.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.194.133:0
Hash edc215d1648944fdde23bf44f3a13d65
874146e987640124e4319f59ceb41ebe1c6a5070
5f8789a58131789b5f6444266d098b6bade3357f3c0b2dd8439b539c8f319646
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 14:26:28 GMT
ETag: "874146e987640124e4319f59ceb41ebe1c6a5070"
Last-Modified: Sat, 04 Feb 2023 14:26:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 3512
X-Served-By: cache-qpg1271-QPG, cache-bma1637-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 21
X-Timer: S1675534608.689005,VS0,VE0
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.194.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.194.133:0
Hash edc215d1648944fdde23bf44f3a13d65
874146e987640124e4319f59ceb41ebe1c6a5070
5f8789a58131789b5f6444266d098b6bade3357f3c0b2dd8439b539c8f319646
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 14:26:28 GMT
ETag: "874146e987640124e4319f59ceb41ebe1c6a5070"
Last-Modified: Sat, 04 Feb 2023 14:26:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 3512
X-Served-By: cache-qpg1271-QPG, cache-bma1646-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 26
X-Timer: S1675534608.689490,VS0,VE0
ocsp2.globalsign.com/gsorganizationvalsha2g2
151.101.194.133200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 151.101.194.133:0
Hash edc215d1648944fdde23bf44f3a13d65
874146e987640124e4319f59ceb41ebe1c6a5070
5f8789a58131789b5f6444266d098b6bade3357f3c0b2dd8439b539c8f319646
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 14:26:28 GMT
ETag: "874146e987640124e4319f59ceb41ebe1c6a5070"
Last-Modified: Sat, 04 Feb 2023 14:26:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 3512
X-Served-By: cache-qpg1271-QPG, cache-bma1651-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 18
X-Timer: S1675534608.693222,VS0,VE0
sun9-2.userapi.com/c1423/u2360911/e_fbeb72a0.jpg
87.240.185.129200 OK 2.5 kB URL HTTP/2 sun9-2.userapi.com/c1423/u2360911/e_fbeb72a0.jpg
IP 87.240.185.129:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 93", baseline, precision 8, 50x50, components 3\012- data
Hash 1615d4244b59f0ce2bcd8f9a409c0f14
6b818bc8f52f1d4ebdeef3081cd2da1ae09b89c7
f830d82182c0ae7a42a3659a26892a04fd34479f9b7495bfd9b47d085225a8d2
GET /c1423/u2360911/e_fbeb72a0.jpg HTTP/1.1
Host: sun9-2.userapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/jpeg
content-length: 2472
last-modified: Sun, 31 Oct 2010 15:03:26 GMT
etag: "4ccd853e-9a8"
expires: Mon, 06 Mar 2023 18:16:47 GMT
cache-control: max-age=2592000
x-frontend: front221101
access-control-expose-headers: X-Frontend
strict-transport-security: max-age=15768000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2
sun9-45.userapi.com/s/v1/if2/wl0Q0rvC4vaxmjTio3pqqCzDbW9dvpbYfjl-E09wMyFqPuCq1jmKstSWx9FgeGHka6JEwY__Tc1fCM51G0cSXZri.jpg?size=50x50&quality=96&crop=512,192,1536,1536&ava=1
87.240.185.148200 OK 3.3 kB URL HTTP/2 sun9-45.userapi.com/s/v1/if2/wl0Q0rvC4vaxmjTio3pqqCzDbW9dvpbYfjl-E09wMyFqPuCq1jmKstSWx9FgeGHka6JEwY__Tc1fCM51G0cSXZri.jpg?size=50x50&quality=96&crop=512,192,1536,1536&ava=1
IP 87.240.185.148:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 39591635ffddf2e2886bd4bc9a7b84d5
58e0f39c784fb60658f3ab7e755ba99309546c5e
560614ef2bd0047ce901b26ee28ab27dc98fff8cc96da74aac1c2d83b6494ee6
GET /s/v1/if2/wl0Q0rvC4vaxmjTio3pqqCzDbW9dvpbYfjl-E09wMyFqPuCq1jmKstSWx9FgeGHka6JEwY__Tc1fCM51G0cSXZri.jpg?size=50x50&quality=96&crop=512,192,1536,1536&ava=1 HTTP/1.1
Host: sun9-45.userapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/jpeg
content-length: 3330
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
x-imp: 525602
expires: Mon, 06 Mar 2023 18:16:47 GMT
cache-control: max-age=2592000
x-frontend: front225000
access-control-expose-headers: X-Frontend
strict-transport-security: max-age=15768000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2
sun9-77.userapi.com/s/v1/if1/QQ619YQWNwOXr82DyLnbKOwksBZ-hPVUFzK3FH_f9yghHdC_0fWVzxqRGarAAZEO5QpfWsNB.jpg?size=50x50&quality=96&crop=0,0,200,200&ava=1
87.240.169.0200 OK 2.5 kB URL HTTP/2 sun9-77.userapi.com/s/v1/if1/QQ619YQWNwOXr82DyLnbKOwksBZ-hPVUFzK3FH_f9yghHdC_0fWVzxqRGarAAZEO5QpfWsNB.jpg?size=50x50&quality=96&crop=0,0,200,200&ava=1
IP 87.240.169.0:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash c08d662ab54c7bf6e99c7d2ac3b8269c
79d58866a054d82abea57406606ffda65a9e9468
a545c1df2ea4cc6d757974856c318d52bd574ca84e45fcea2fc2f6aba57ac11c
GET /s/v1/if1/QQ619YQWNwOXr82DyLnbKOwksBZ-hPVUFzK3FH_f9yghHdC_0fWVzxqRGarAAZEO5QpfWsNB.jpg?size=50x50&quality=96&crop=0,0,200,200&ava=1 HTTP/1.1
Host: sun9-77.userapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/jpeg
content-length: 2461
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
x-imp: 525600
expires: Mon, 06 Mar 2023 18:16:47 GMT
cache-control: max-age=2592000
x-frontend: front806205
access-control-expose-headers: X-Frontend
strict-transport-security: max-age=15768000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2
sun9-67.userapi.com/c5568/u1043663/e_59a621d4.jpg
87.240.185.166200 OK 2.3 kB URL HTTP/2 sun9-67.userapi.com/c5568/u1043663/e_59a621d4.jpg
IP 87.240.185.166:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 93", baseline, precision 8, 50x50, components 3\012- data
Hash 52823376eaceb8f481cd0af31e777fa7
f5a33fd2820613b7b4208ca1c54aed20fed14611
998c2b3138137c55913223e75102d80089abaf1de5da612ac171b4f91071bfb4
GET /c5568/u1043663/e_59a621d4.jpg HTTP/1.1
Host: sun9-67.userapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/jpeg
content-length: 2276
last-modified: Sun, 05 Feb 2012 06:40:47 GMT
etag: "4f2e246f-8e4"
expires: Mon, 06 Mar 2023 18:16:47 GMT
cache-control: max-age=2592000
x-frontend: front226106
access-control-expose-headers: X-Frontend
strict-transport-security: max-age=15768000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2
sun9-82.userapi.com/s/v1/if1/nFLH9Z5xxoiG0nL3dLdgGxypWByD2xenwspka3R9Ut5KnHXumsgFrcJnKOZkjQztJ1PWNnXT.jpg?size=50x50&quality=96&crop=6,45,630,630&ava=1
87.240.169.5200 OK 2.6 kB URL HTTP/2 sun9-82.userapi.com/s/v1/if1/nFLH9Z5xxoiG0nL3dLdgGxypWByD2xenwspka3R9Ut5KnHXumsgFrcJnKOZkjQztJ1PWNnXT.jpg?size=50x50&quality=96&crop=6,45,630,630&ava=1
IP 87.240.169.5:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 6e71fd0cdb620dac283c722619006c86
d18e54e0398b6611c4ea9e17f51dacc1c5e3d129
f598cf758c120a4bf7a6c7d423c643f9bc16dcee6fe1b3e2d544aa8c333ccc86
GET /s/v1/if1/nFLH9Z5xxoiG0nL3dLdgGxypWByD2xenwspka3R9Ut5KnHXumsgFrcJnKOZkjQztJ1PWNnXT.jpg?size=50x50&quality=96&crop=6,45,630,630&ava=1 HTTP/1.1
Host: sun9-82.userapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/jpeg
content-length: 2637
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
x-imp: 527502
expires: Mon, 06 Mar 2023 18:16:47 GMT
cache-control: max-age=2592000
x-frontend: front806210
access-control-expose-headers: X-Frontend
strict-transport-security: max-age=15768000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2
www.acint.net/oci/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=68828067&oid=39e8192718f4ed5a678fc273d654392b
193.3.184.229200 OK 43 B URL HTTP/2 www.acint.net/oci/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=68828067&oid=39e8192718f4ed5a678fc273d654392b
IP 193.3.184.229:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /oci/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=68828067&oid=39e8192718f4ed5a678fc273d654392b HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sun9-70.userapi.com/s/v1/ig2/n5p8dBgSaSkJFQmIf4KD4uI9pcjfmrC6qLhOzmd4OzD8xQH_g8VVhlwcmnc4X_ROqzAQo0dhM30ia6rpE4GNKWbo.jpg?size=50x50&quality=95&crop=170,343,1750,1750&ava=1
87.240.185.169200 OK 2.9 kB URL HTTP/2 sun9-70.userapi.com/s/v1/ig2/n5p8dBgSaSkJFQmIf4KD4uI9pcjfmrC6qLhOzmd4OzD8xQH_g8VVhlwcmnc4X_ROqzAQo0dhM30ia6rpE4GNKWbo.jpg?size=50x50&quality=95&crop=170,343,1750,1750&ava=1
IP 87.240.185.169:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 78baf266f79f4cdc8806bda0b716d6be
e4eabe7909edce9d007408ba964c250534e50d47
86ae1fc9da1b698f573ecb60672afb0547cf276cac047683e35320ea15dd95a1
GET /s/v1/ig2/n5p8dBgSaSkJFQmIf4KD4uI9pcjfmrC6qLhOzmd4OzD8xQH_g8VVhlwcmnc4X_ROqzAQo0dhM30ia6rpE4GNKWbo.jpg?size=50x50&quality=95&crop=170,343,1750,1750&ava=1 HTTP/1.1
Host: sun9-70.userapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/jpeg
content-length: 2910
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
x-imp: 825007
expires: Mon, 06 Mar 2023 18:16:47 GMT
cache-control: max-age=2592000
x-frontend: front220305
access-control-expose-headers: X-Frontend
strict-transport-security: max-age=15768000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2
sun9-85.userapi.com/c1263/u2482983/e_0d9497bb.jpg
87.240.169.8200 OK 2.4 kB URL HTTP/2 sun9-85.userapi.com/c1263/u2482983/e_0d9497bb.jpg
IP 87.240.169.8:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 93", baseline, precision 8, 50x50, components 3\012- data
Hash e25b4e5397f767b0851a959025a79193
4a2e3cfc7169d1203b23cd88048cf127783863af
efcfc2ac2414856fc3d7ced35ec2971b3fc7eb45364aac5ee901959d641bf7ee
GET /c1263/u2482983/e_0d9497bb.jpg HTTP/1.1
Host: sun9-85.userapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/jpeg
content-length: 2412
last-modified: Sun, 31 Oct 2010 15:08:17 GMT
etag: "4ccd8661-96c"
expires: Mon, 06 Mar 2023 18:16:47 GMT
cache-control: max-age=2592000
x-frontend: front831002
access-control-expose-headers: X-Frontend
strict-transport-security: max-age=15768000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
151.101.130.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 151.101.130.133:0
Hash ba25d43611a06ac77b0d419fd31efcf0
7273bba852551a7f126379761004733a9b7b4483
f021cb5fdacbea6d909ce6e060e04a922ae072423f3e641c0a479c577a75d092
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:27:19 GMT
ETag: "7273bba852551a7f126379761004733a9b7b4483"
Last-Modified: Sat, 04 Feb 2023 17:27:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 2780
X-Served-By: cache-qpg1268-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 4, 13
X-Timer: S1675534608.798946,VS0,VE0
ocsp.globalsign.com/gsgccr3dvtlsca2020
151.101.130.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 151.101.130.133:0
Hash ba25d43611a06ac77b0d419fd31efcf0
7273bba852551a7f126379761004733a9b7b4483
f021cb5fdacbea6d909ce6e060e04a922ae072423f3e641c0a479c577a75d092
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:27:19 GMT
ETag: "7273bba852551a7f126379761004733a9b7b4483"
Last-Modified: Sat, 04 Feb 2023 17:27:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 2780
X-Served-By: cache-qpg1268-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 4, 14
X-Timer: S1675534608.824426,VS0,VE0
ocsp.globalsign.com/alphasslcasha256g4
151.101.130.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/alphasslcasha256g4
IP 151.101.130.133:0
Hash 09fc226e5db2029fcc5862b2fe7d2e0d
b1484481d4570724e589bfa7756aac8219aec248
586cc355af53755cc596bcc074031a212fc1902643ba764b7e6a2d0bb5c3ad1f
POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1437
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 16:12:31 GMT
ETag: "b1484481d4570724e589bfa7756aac8219aec248"
Last-Modified: Sat, 04 Feb 2023 16:12:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 477
X-Served-By: cache-qpg1236-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 2
X-Timer: S1675534608.833398,VS0,VE0
ocsp.globalsign.com/gseccovsslca2018
151.101.130.133200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 151.101.130.133:0
Hash 7985c1b7d0a2e86d9c2ba80871715546
9713d50290bddc8c867c48aebf537af082009a00
22c92e48114bd68c985de1d7a1637f600f594962eaeb0a11f8bda546be27db88
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 940
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 15:16:52 GMT
ETag: "9713d50290bddc8c867c48aebf537af082009a00"
Last-Modified: Sat, 04 Feb 2023 15:16:53 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 3594
X-Served-By: cache-qpg1272-QPG, cache-bma1644-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 43
X-Timer: S1675534608.835462,VS0,VE0
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
195.209.108.48302 Moved Temporarily 0 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
IP 195.209.108.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-5621884220; expires=Mon, 03 Feb 2025 18:16:47 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5621884220
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1303420A0EA1DE63850ACC760287A896
81.222.128.214200 OK 42 B URL HTTP/1.1 ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1303420A0EA1DE63850ACC760287A896
IP 81.222.128.214:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cgi-bin/sync.cgi?dsp_id=153&external_id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ocsp.usertrust.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 51ab5a8626b70c7594e57366f659f93d
b306da2759928ddd7895083be1196fae9f634197
2eb603282049d073ffcd2928301736eb6d72e02c0ea9e4a884e103c73debd5de
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 16:18:21 GMT
Expires: Thu, 09 Feb 2023 16:18:20 GMT
Etag: "b306da2759928ddd7895083be1196fae9f634197"
Cache-Control: max-age=604041,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1523
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794566431832b4f3-OSL
sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
77.245.57.72400 Bad Request 22 B URL HTTP/1.1 sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
IP 77.245.57.72:0
ASN #36057 WEBAIR-INTERNET-MTL
File type ASCII text, with no line terminators
Hash b0b11e1c78b526b61477f8e9ee540be0
d5e73002987ff54626542b116d98a8f4aa9ee2eb
4ca18c247df52dd22650bd7f72f71d7c98102243b0ec474f683c6a279ad3a668
GET /user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D HTTP/1.1
Host: sync.adkernel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 400 Bad Request
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Length: 22
Connection: close
Cache-Control: no-store
Age: 0
Pragma: no-cache
ocsp.globalsign.com/gseccovsslca2018
151.101.130.133200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 151.101.130.133:0
Hash edeef4bb3e82d8d141d40905a394b3c2
54c628428e63fb7debb20b830b6c7d0c780a6374
1d7ab0179e1e64e439778b57e074a2df62caefc88ab02c95b40e1a631a3a2503
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 938
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:00:53 GMT
ETag: "54c628428e63fb7debb20b830b6c7d0c780a6374"
Last-Modified: Sat, 04 Feb 2023 17:00:54 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 2714
X-Served-By: cache-qpg1232-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 30
X-Timer: S1675534608.884902,VS0,VE0
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash d28ed3e080cbd1ec203a146092a4fbcb
9a6603e8c7baf71763e6580ed393eac576aea446
67055b2b4523563bf69bdfdd432a16bf6b9521ef296694c57bd4e8dce105e429
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 14:03:24 GMT
Expires: Sat, 11 Feb 2023 14:03:23 GMT
Etag: "9a6603e8c7baf71763e6580ed393eac576aea446"
Cache-Control: max-age=588995,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794566430847b4ed-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash d28ed3e080cbd1ec203a146092a4fbcb
9a6603e8c7baf71763e6580ed393eac576aea446
67055b2b4523563bf69bdfdd432a16bf6b9521ef296694c57bd4e8dce105e429
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 14:03:24 GMT
Expires: Sat, 11 Feb 2023 14:03:23 GMT
Etag: "9a6603e8c7baf71763e6580ed393eac576aea446"
Cache-Control: max-age=588995,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794566433e0d0b31-OSL
ocsp.globalsign.com/gseccovsslca2018
151.101.130.133200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 151.101.130.133:0
Hash edeef4bb3e82d8d141d40905a394b3c2
54c628428e63fb7debb20b830b6c7d0c780a6374
1d7ab0179e1e64e439778b57e074a2df62caefc88ab02c95b40e1a631a3a2503
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 938
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:00:53 GMT
ETag: "54c628428e63fb7debb20b830b6c7d0c780a6374"
Last-Modified: Sat, 04 Feb 2023 17:00:54 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 2714
X-Served-By: cache-qpg1232-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 31
X-Timer: S1675534608.911647,VS0,VE0
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5621884220
195.209.108.48302 Moved Temporarily 40 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5621884220
IP 195.209.108.48:0
File type ASCII text, with CRLF line terminators
Hash 251630b588179b239e8fab1ac9ef6d3a
91b91a97bc481dd2bbd5e0f3fea6ba1c4e843882
c95661e0ef6975b1df5361695a439f71a021d72c345023c3e668e84f35b3c38b
GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5621884220 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="//adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Mon, 03 Feb 2025 18:16:47 GMT; path=/; domain=.adriver.ru;
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
Location: https://www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
st.vk.com/dist/state-management.cf1bf926d7c30fabcfb3.js?6cc8960af75d2d2cf820
87.240.132.78200 OK 0 B URL HTTP/2 st.vk.com/dist/state-management.cf1bf926d7c30fabcfb3.js?6cc8960af75d2d2cf820
IP 87.240.132.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dist/state-management.cf1bf926d7c30fabcfb3.js?6cc8960af75d2d2cf820 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 17525
last-modified: Thu, 02 Feb 2023 09:33:07 GMT
etag: "63db8353-4475"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7031537895a86addfa0ebd90f333c9c2
2943bb337f5faed6c27c640dc88d00fb3983d5c2
fa494f1d700b1fb320cb4a4640c3fb1c82819836bfa124f232aa47eeede30677
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FA494F1D700B1FB320CB4A4640C3FB1C82819836BFA124F232AA47EEEDE30677"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16155
Expires: Sat, 04 Feb 2023 22:46:02 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
188.42.196.115302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
IP 188.42.196.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
tuuid=732da821-7a62-5223-9fff-b755fc21165a; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
ut=Y96hDwAOCcDRoe8Xv1543vfEYLT4GLFAT-PpfA==; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
151.101.130.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 151.101.130.133:0
Hash a0a03159afb9dac7b31cbfa0dbdaff4e
f33733644f1a17d408a45a966cb17bcaa7ad332d
ca291de2a4903ab2beebd2753c4e40b43340e07e34ead47e8be641a356560810
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:16:04 GMT
ETag: "f33733644f1a17d408a45a966cb17bcaa7ad332d"
Last-Modified: Sat, 04 Feb 2023 17:16:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 37
X-Served-By: cache-qpg1234-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1675534608.937368,VS0,VE1
ocsp.globalsign.com/gsrsaovsslca2018
151.101.130.133200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 151.101.130.133:0
Hash 7216838d664b16a346cba785217d7934
448fa170806d67d8dac9a78b8cbd8fe6276ef548
ceb21d1a7fc15da13dbd3e1469f30fba263e9d00b8df1164b03ffcba30d5e693
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 15:12:21 GMT
ETag: "448fa170806d67d8dac9a78b8cbd8fe6276ef548"
Last-Modified: Sat, 04 Feb 2023 15:12:22 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 737
X-Served-By: cache-qpg1221-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1675534608.946668,VS0,VE1
ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420A0EA1DE63850ACC760287A896
188.42.196.115302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420A0EA1DE63850ACC760287A896
IP 188.42.196.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=73&external_user_id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=73&external_user_id=1303420A0EA1DE63850ACC760287A896&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
tuuid=b78b7df1-6013-5223-bde4-b11ade3a1015; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
ut=Y96hDwAOPIgjnu01P3hGl7UPqFkUz9jb-M3r-w==; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 84dec2e77380df6c2188d61f7295f4e7
e9cca558c93123a36d158e131c0222d8d797735d
9b80df42a016c949bb06cc49c21b12fa88a110001c7c13daa0dd7f2c4ec2f69a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 02:18:44 GMT
Expires: Sat, 11 Feb 2023 02:18:43 GMT
Etag: "e9cca558c93123a36d158e131c0222d8d797735d"
Cache-Control: max-age=546715,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945664378d0b4ed-OSL
ad.mail.ru/cm.gif?p=48&id=1303420A0EA1DE63850ACC760287A896
95.163.41.56200 OK 43 B URL HTTP/2 ad.mail.ru/cm.gif?p=48&id=1303420A0EA1DE63850ACC760287A896
IP 95.163.41.56:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cm.gif?p=48&id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
set-cookie: VID=1XaK8106RIYF0027J62AmOoF:::0-0-0-8f8f9cf:CAASEJKIG8eVVg0nP2Dc46w1SnsaYIl_95FiX1y2Kwo5Vb2HXUFYC4YExSnNaK_UUiOAoygICeC6zYLOhsjvu-iduvkfe6LDgeplF2MZc6w9EOnH75MLgx7C-UHFmPmg_O394eINOXvSPhFsFoayTg8oEbwyJg; path=/; expires=Mon, 05-Feb-24 18:16:47 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
expires: Sun, 05 Feb 2023 00:16:47 GMT
cache-control: max-age=21600
last-modified: Sat, 04 Feb 2023 18:16:47 GMT
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
188.42.196.115200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
IP 188.42.196.115:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
tuuid=24d98995-e4bd-5223-b286-22abd15883a4; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
ut=Y96hDwAOohgr8nUbM1zaA40oIVoUr1V6dP9Dcw==; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
193.3.184.229302 Found 154 B URL HTTP/2 www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
IP 193.3.184.229:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: text/html
content-length: 154
location: https://ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1303420A0EA1DE63850ACC760287A896
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=104&euid=CtDKCVOGV-5A
193.3.184.229200 OK 43 B URL HTTP/2 www.acint.net/match?dp=104&euid=CtDKCVOGV-5A
IP 193.3.184.229:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=104&euid=CtDKCVOGV-5A HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
tag.digitaltarget.ru/adcm.js
185.15.175.148200 OK 3.1 kB URL HTTP/1.1 tag.digitaltarget.ru/adcm.js
IP 185.15.175.148:0
File type ASCII text, with very long lines (3051), with no line terminators
Hash e7097284185069f52fc736bcd50cda13
1cdfdf2d869841202079ddf91e0a00a8610812e6
40f2a96f78f4c8484e9da6e172f5ddd3e4d7786ca29e04b96e1067a365190e80
GET /adcm.js HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: application/javascript
Content-Length: 3051
Last-Modified: Sat, 04 Feb 2023 18:04:32 GMT
Connection: keep-alive
ETag: "63de9e30-beb"
Accept-Ranges: bytes
ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420A0EA1DE63850ACC760287A896&crf=1
188.42.196.115200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420A0EA1DE63850ACC760287A896&crf=1
IP 188.42.196.115:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=73&external_user_id=1303420A0EA1DE63850ACC760287A896&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
tuuid=c6b5f255-600a-5223-93a1-c2c6f07f63c9; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
ut=Y96hDwAO2MgCWy3Ep0xDztuxDuKSV6wpD4VTpw==; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
x01.aidata.io/0.gif?pid=9401454&id=1303420A0EA1DE63850ACC760287A896
89.108.119.43302 Found 0 B URL HTTP/2 x01.aidata.io/0.gif?pid=9401454&id=1303420A0EA1DE63850ACC760287A896
IP 89.108.119.43:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=9401454&id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=9401454&id=1303420A0EA1DE63850ACC760287A896&bounce=1
expires: Sat, 04 Feb 2023 18:16:46 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 04 Feb 2023 18:16:46 GMT
set-cookie: __upin=ZOci5DxIbc9fs3GeF6SKag;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1675534607;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw?redir-setuniq=1
77.88.21.90200 OK 92 B URL HTTP/2 an.yandex.ru/mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw?redir-setuniq=1
IP 77.88.21.90:0
Hash 32dc91aa5e5be7a85228811d496edc1d
1b2558db24575ae602cc57f361118b1172b74fe9
32c4b4fd4cd3b0db30793f29472d2c0b804cfe89fb13f299261b322ae4a78052
GET /mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Sat, 04 Feb 2023 18:16:47 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04 Feb 2023 18:16:47 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 04 Feb 2023 18:16:47 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
sm.rtb.mts.ru/p?ssp=sape&id=1303420A0EA1DE63850ACC760287A896
217.66.147.42301 Moved Permanently 0 B URL HTTP/1.1 sm.rtb.mts.ru/p?ssp=sape&id=1303420A0EA1DE63850ACC760287A896
IP 217.66.147.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sape&id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://sm.rtb.mts.ru/match/second?ssp=30&exu=1303420A0EA1DE63850ACC760287A896
Set-Cookie: dspid=8e686c33-c251-4c51-8280-dee5778ef1a0; expires=Fri, 26 Jan 2024 18:16:47 GMT; domain=.mts.ru; path=/; secure; SameSite=None
px.adhigh.net/p/cm/sape?u=1303420A0EA1DE63850ACC760287A896
193.232.148.144302 Found 0 B URL HTTP/2 px.adhigh.net/p/cm/sape?u=1303420A0EA1DE63850ACC760287A896
IP 193.232.148.144:0
ASN #48061 Limited Liability Company GPM Digital Technologies
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/cm/sape?u=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-length: 0
x-backend-id: f5-ru
access-control-allow-origin: *
access-control-allow-credentials: true
set-cookie: gi_u=uPH4pQXrDaXn.AikABlGGHaUmfw;Path=/;Domain=.adhigh.net;Expires=Sun, 04-Feb-2024 18:16:47 GMT;Secure;SameSite=None
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
location: https://px.adhigh.net/p/cm/sape?u=1303420A0EA1DE63850ACC760287A896&bounced=1
X-Firefox-Spdy: h2
top-fwz1.mail.ru/counter?js=13;id=2685520;u=https%3A//uznay-prezidenta.ru/;st=1675534644267;pid=0;title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru;s=1280*1024;vp=260*185;touch=0;hds=1;frame=1;flash=;sid=5a77f5fe9dc04b9b;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675534644630%3A1675534644633%3A0%3A8772a352725e7e49dfee845f47360f75;visible=true;_=0.45020360900265977
95.163.52.67302 Found 0 B URL HTTP/2 top-fwz1.mail.ru/counter?js=13;id=2685520;u=https%3A//uznay-prezidenta.ru/;st=1675534644267;pid=0;title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru;s=1280*1024;vp=260*185;touch=0;hds=1;frame=1;flash=;sid=5a77f5fe9dc04b9b;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675534644630%3A1675534644633%3A0%3A8772a352725e7e49dfee845f47360f75;visible=true;_=0.45020360900265977
IP 95.163.52.67:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /counter?js=13;id=2685520;u=https%3A//uznay-prezidenta.ru/;st=1675534644267;pid=0;title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru;s=1280*1024;vp=260*185;touch=0;hds=1;frame=1;flash=;sid=5a77f5fe9dc04b9b;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675534644630%3A1675534644633%3A0%3A8772a352725e7e49dfee845f47360f75;visible=true;_=0.45020360900265977 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:48 GMT
content-length: 0
location: https://top-fwz1.mail.ru/counter2?js=13;id=2685520;u=https%3A//uznay-prezidenta.ru/;st=1675534644267;pid=0;title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru;s=1280*1024;vp=260*185;touch=0;hds=1;frame=1;flash=;sid=5a77f5fe9dc04b9b;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675534644630%3A1675534644633%3A0%3A8772a352725e7e49dfee845f47360f75;visible=true;_=0.45020360900265977
set-cookie: FTID=1RMYgQ0tkIIF:1675534608:2685520:::; path=/; expires=Mon, 05-Feb-24 18:16:48 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
x01.aidata.io/0.gif?pid=9401454&id=1303420A0EA1DE63850ACC760287A896&bounce=1
89.108.119.43204 No Content 0 B URL HTTP/2 x01.aidata.io/0.gif?pid=9401454&id=1303420A0EA1DE63850ACC760287A896&bounce=1
IP 89.108.119.43:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=9401454&id=1303420A0EA1DE63850ACC760287A896&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 04 Feb 2023 18:16:48 GMT
expires: Sat, 04 Feb 2023 18:16:47 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 04 Feb 2023 18:16:47 GMT
set-cookie: __upin=1K1cpwJOt+7kez6dNC4xTg;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1675534608;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
sm.rtb.mts.ru/match/second?ssp=30&exu=1303420A0EA1DE63850ACC760287A896
217.66.147.42200 OK 0 B URL HTTP/1.1 sm.rtb.mts.ru/match/second?ssp=30&exu=1303420A0EA1DE63850ACC760287A896
IP 217.66.147.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/second?ssp=30&exu=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:48 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
top-fwz1.mail.ru/counter2?js=13;id=2685520;u=https%3A//uznay-prezidenta.ru/;st=1675534644267;pid=0;title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru;s=1280*1024;vp=260*185;touch=0;hds=1;frame=1;flash=;sid=5a77f5fe9dc04b9b;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675534644630%3A1675534644633%3A0%3A8772a352725e7e49dfee845f47360f75;visible=true;_=0.45020360900265977
95.163.52.67200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/counter2?js=13;id=2685520;u=https%3A//uznay-prezidenta.ru/;st=1675534644267;pid=0;title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru;s=1280*1024;vp=260*185;touch=0;hds=1;frame=1;flash=;sid=5a77f5fe9dc04b9b;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675534644630%3A1675534644633%3A0%3A8772a352725e7e49dfee845f47360f75;visible=true;_=0.45020360900265977
IP 95.163.52.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /counter2?js=13;id=2685520;u=https%3A//uznay-prezidenta.ru/;st=1675534644267;pid=0;title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru;s=1280*1024;vp=260*185;touch=0;hds=1;frame=1;flash=;sid=5a77f5fe9dc04b9b;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675534644630%3A1675534644633%3A0%3A8772a352725e7e49dfee845f47360f75;visible=true;_=0.45020360900265977 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vk.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:48 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIF:1675534608:2685520:::; path=/; expires=Mon, 05-Feb-24 18:16:48 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b5a591a5a59f755b2cfab9d8ab808510
58b162a51016d848c054b4b617fe1e7590bf6665
b4191606814a95b06ddff0e610b5add15219a13c552b4497705b58f5f1f2e7fe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B4191606814A95B06DDFF0E610B5ADD15219A13C552B4497705B58F5F1F2E7FE"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9136
Expires: Sat, 04 Feb 2023 20:49:04 GMT
Date: Sat, 04 Feb 2023 18:16:48 GMT
Connection: keep-alive
px.adhigh.net/p/cm/sape?u=1303420A0EA1DE63850ACC760287A896&bounced=1
193.232.148.144200 OK 49 B URL HTTP/2 px.adhigh.net/p/cm/sape?u=1303420A0EA1DE63850ACC760287A896&bounced=1
IP 193.232.148.144:0
ASN #48061 Limited Liability Company GPM Digital Technologies
File type GIF image data, version 89a, 1 x 1\012- data
Hash 889bc1fffc025af4685839fb516a0b8b
7f105137a4eafe93213ecd8cc34dd907c340467c
d0409a1b73dab4e29dc40f92fb431fa9133baa23b4a1ffae4897f39068110e32
GET /p/cm/sape?u=1303420A0EA1DE63850ACC760287A896&bounced=1 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:48 GMT
content-type: image/gif
content-length: 49
x-backend-id: f5-ru
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
tag.digitaltarget.ru/processor.js?i=370771548788701
185.15.175.148200 OK 16 kB URL HTTP/1.1 tag.digitaltarget.ru/processor.js?i=370771548788701
IP 185.15.175.148:0
File type ASCII text, with very long lines (15892), with no line terminators
Hash 736e2fb1da94f3277e3f931048c1b9f3
196387db95a17da825b629de3542eff901b09905
4569d4e1b0e52b6316681f7312674f43ecb2b72ea8ab4adb2375e3686862c7dc
GET /processor.js?i=370771548788701 HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:48 GMT
Content-Type: application/javascript
Content-Length: 15892
Last-Modified: Sat, 04 Feb 2023 18:04:33 GMT
Connection: keep-alive
ETag: "63de9e31-3e14"
Accept-Ranges: bytes
16404a4a-a4b8-11ed-a1c4-002590c82437.n2.sync.bumlam.com/?src=sape
80.87.198.111302 Found 0 B URL HTTP/2 16404a4a-a4b8-11ed-a1c4-002590c82437.n2.sync.bumlam.com/?src=sape
IP 80.87.198.111:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: 16404a4a-a4b8-11ed-a1c4-002590c82437.n2.sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQxNjQwNGE0YS1hNGI4LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.22.1
date: Sat, 04 Feb 2023 18:16:48 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/done
31.172.81.159200 OK 43 B URL HTTP/1.1 pix.bumlam.com/sync/sape/done
IP 31.172.81.159:0
ASN #44066 diva-e Datacenters GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQxNjQwNGE0YS1hNGI4LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:48 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 73c9e0d8e81f245ac31e859c9cdf9443
74c1b10801851ce6eedb12ddc3e2e402cbddf793
a8e0a4345196be76e20cf7308884eb7c5ca66cdf2c7edf841edc7244e7f5243b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E0A4345196BE76E20CF7308884EB7C5CA66CDF2C7EDF841EDC7244E7F5243B"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9645
Expires: Sat, 04 Feb 2023 20:57:33 GMT
Date: Sat, 04 Feb 2023 18:16:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 73c9e0d8e81f245ac31e859c9cdf9443
74c1b10801851ce6eedb12ddc3e2e402cbddf793
a8e0a4345196be76e20cf7308884eb7c5ca66cdf2c7edf841edc7244e7f5243b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E0A4345196BE76E20CF7308884EB7C5CA66CDF2C7EDF841EDC7244E7F5243B"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9645
Expires: Sat, 04 Feb 2023 20:57:33 GMT
Date: Sat, 04 Feb 2023 18:16:48 GMT
Connection: keep-alive
dmg.digitaltarget.ru/1/1093/i/i?i=959539327307354.165134900516209&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_noorient
185.15.175.131307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/1093/i/i?i=959539327307354.165134900516209&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP 185.15.175.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/1093/i/i?i=959539327307354.165134900516209&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 04 Feb 2023 18:16:48 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.165134900516209&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_noorient
Set-Cookie: viuserid=xeMRiC.bX.POOrk7Kfu1; Max-Age=93312000; Expires=Mon, 19 Jan 2026 18:16:48 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/1/1093/i/i?i=959539327307354.757742717183007&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
185.15.175.131307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/1093/i/i?i=959539327307354.757742717183007&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP 185.15.175.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/1093/i/i?i=959539327307354.757742717183007&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 04 Feb 2023 18:16:48 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.757742717183007&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
Set-Cookie: viuserid=mzTbkYdbXzWsgP775wHA; Max-Age=93312000; Expires=Mon, 19 Jan 2026 18:16:48 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.757742717183007&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
185.15.175.131200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.757742717183007&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP 185.15.175.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.757742717183007&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:48 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 4
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.165134900516209&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_noorient
185.15.175.131200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.165134900516209&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP 185.15.175.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.165134900516209&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:48 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 36
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
www.acint.net/ping/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=18578943&dT=2023-02-04T18%3A17%3A26.206
193.3.184.229200 OK 43 B URL HTTP/2 www.acint.net/ping/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=18578943&dT=2023-02-04T18%3A17%3A26.206
IP 193.3.184.229:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /ping/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=18578943&dT=2023-02-04T18%3A17%3A26.206 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:49 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/sapeis/1303420A0EA1DE63850ACC760287A896
77.88.21.90302 Found 0 B URL HTTP/2 an.yandex.ru/mapuid/sapeis/1303420A0EA1DE63850ACC760287A896
IP 77.88.21.90:0
GET /mapuid/sapeis/1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/sapeis/1303420A0EA1DE63850ACC760287A896?redir-setuniq=1
date: Sat, 04 Feb 2023 18:16:47 GMT
set-cookie: yandexuid=2713569911675534607; domain=.yandex.ru; path=/; expires=Tue, 01-Feb-2033 18:16:47 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04 Feb 2023 18:16:47 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 04 Feb 2023 18:16:47 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
st.vk.com/dist/common.1cfe9ef5660190880ea1.js?3094df1778383cc73e82248
87.240.132.78200 OK 0 B URL HTTP/2 st.vk.com/dist/common.1cfe9ef5660190880ea1.js?3094df1778383cc73e82248
IP 87.240.132.78:0
GET /dist/common.1cfe9ef5660190880ea1.js?3094df1778383cc73e82248 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 317085
last-modified: Sat, 04 Feb 2023 11:25:43 GMT
etag: "63de40b7-4d69d"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw
77.88.21.90302 Found 0 B URL HTTP/2 an.yandex.ru/mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw
IP 77.88.21.90:0
GET /mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw?redir-setuniq=1
date: Sat, 04 Feb 2023 18:16:47 GMT
set-cookie: yandexuid=1775824161675534607; domain=.yandex.ru; path=/; expires=Tue, 01-Feb-2033 18:16:47 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04 Feb 2023 18:16:47 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 04 Feb 2023 18:16:47 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
uznay-prezidenta.ru/templates/up-templ/css/style.css
37.140.192.138200 OK 0 B URL HTTP/2 uznay-prezidenta.ru/templates/up-templ/css/style.css
IP 37.140.192.138:0
ASN #197695 Domain names registrar REG.RU, Ltd
GET /templates/up-templ/css/style.css HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/css
last-modified: Sat, 09 Jul 2022 14:48:51 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
top-fwz1.mail.ru/js/code.js
95.163.52.67200 OK 0 B URL HTTP/2 top-fwz1.mail.ru/js/code.js
IP 95.163.52.67:0
GET /js/code.js HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2023 13:29:54 GMT
set-cookie: FTID=1RMYgQ0tkIIF:1675534607:0:::; path=/; expires=Mon, 05-Feb-24 18:16:47 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
etag: W/"63beb9d2-85cc"
expires: Sat, 04 Feb 2023 19:16:47 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: max-age=3600, private
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/watch/39365090?wmode=7&page-url=https%3A%2F%2Fuznay-prezidenta.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A2025%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1538901617343%3Ahid%3A837025276%3Az%3A0%3Ai%3A20230204181723%3Aet%3A1675534644%3Ac%3A1%3Arn%3A708722734%3Arqn%3A1%3Au%3A1675534644997442234%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A16%2C215%2C1088%2C0%2C361%2C0%2C%2C373%2C31%2C%2C%2C%2C2069%3Aco%3A0%3Ans%3A1675534640938%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675534644%3At%3A%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
93.158.134.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/39365090?wmode=7&page-url=https%3A%2F%2Fuznay-prezidenta.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A2025%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1538901617343%3Ahid%3A837025276%3Az%3A0%3Ai%3A20230204181723%3Aet%3A1675534644%3Ac%3A1%3Arn%3A708722734%3Arqn%3A1%3Au%3A1675534644997442234%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A16%2C215%2C1088%2C0%2C361%2C0%2C%2C373%2C31%2C%2C%2C%2C2069%3Aco%3A0%3Ans%3A1675534640938%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675534644%3At%3A%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 93.158.134.119:0
GET /watch/39365090?wmode=7&page-url=https%3A%2F%2Fuznay-prezidenta.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A2025%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1538901617343%3Ahid%3A837025276%3Az%3A0%3Ai%3A20230204181723%3Aet%3A1675534644%3Ac%3A1%3Arn%3A708722734%3Arqn%3A1%3Au%3A1675534644997442234%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A16%2C215%2C1088%2C0%2C361%2C0%2C%2C373%2C31%2C%2C%2C%2C2069%3Aco%3A0%3Ans%3A1675534640938%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675534644%3At%3A%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uznay-prezidenta.ru
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/39365090/1?wmode=7&page-url=https%3A%2F%2Fuznay-prezidenta.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A2025%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1538901617343%3Ahid%3A837025276%3Az%3A0%3Ai%3A20230204181723%3Aet%3A1675534644%3Ac%3A1%3Arn%3A708722734%3Arqn%3A1%3Au%3A1675534644997442234%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A16%2C215%2C1088%2C0%2C361%2C0%2C%2C373%2C31%2C%2C%2C%2C2069%3Aco%3A0%3Ans%3A1675534640938%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675534644%3At%3A%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 04 Feb 2023 18:16:47 GMT
access-control-allow-origin: https://uznay-prezidenta.ru
set-cookie: yabs-sid=252754831675534607; Path=/; SameSite=None; Secure
i=b4Wczx4mt/+B/YM1EoWkOdLA5Rck6MgyOQHMapv621tw5Wz5bcInKi7gzq4AGs3YdHeUcaNcvnB96reWvhw6EzDgOTo=; Expires=Tue, 01-Feb-2033 18:16:47 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=1326936811675534607; Expires=Sun, 04-Feb-2024 18:16:47 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=1326936811675534607; Expires=Sun, 04-Feb-2024 18:16:47 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1707070607.yc.1675534607#1707070607.yrts.1675534607#1707070607.yrtsi.1675534607; Expires=Sun, 04-Feb-2024 18:16:47 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 18:16:47 GMT
last-modified: Sat, 04-Feb-2023 18:16:47 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/sapeis/1303420A0EA1DE63850ACC760287A896?redir-setuniq=1
77.88.21.90200 OK 0 B URL HTTP/2 an.yandex.ru/mapuid/sapeis/1303420A0EA1DE63850ACC760287A896?redir-setuniq=1
IP 77.88.21.90:0
GET /mapuid/sapeis/1303420A0EA1DE63850ACC760287A896?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Sat, 04 Feb 2023 18:16:48 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04 Feb 2023 18:16:48 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 04 Feb 2023 18:16:48 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2