Report - www.samara-photo.ru/personal/user.394.html

Report Overview

Submitted URL
www.samara-photo.ru/personal/user.394.html
IP
188.127.230.8
ASN
#56694 LLC Smart Ape
Submitted
2023-02-04 18:16:56
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
3
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp2.globalsign.com	1544	2012-05-23T20:10:04Z	2023-03-13T05:14:17Z	2.5 kB	14 kB	151.101.194.133
cs.agency2.ru	unknown	2022-04-29T16:24:02Z	2023-03-13T08:33:52Z	413 B	721 B	23.111.107.44
sync.programmatica.com	unknown	2022-12-17T02:18:07Z	2023-03-13T08:33:52Z	887 B	713 B	167.235.117.41
ocsp.usertrust.com	899	2012-05-21T17:43:18Z	2023-03-13T08:38:38Z	342 B	1.0 kB	172.64.155.188
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	1.7 kB	4.8 kB	172.64.155.188
vk.com	2243	2012-05-21T17:01:19Z	2023-03-13T05:16:25Z	4.7 kB	182 kB	87.240.132.78
www.acint.net	29072	2014-02-14T22:23:16Z	2023-03-13T08:33:52Z	15 kB	28 kB	193.3.184.229
st.vk.com	41762	2020-12-10T13:09:45Z	2023-03-13T04:36:47Z	7.3 kB	966 kB	87.240.132.78
sync.adspend.space	unknown	2022-10-20T08:12:42Z	2023-03-13T08:33:52Z	954 B	993 B	212.76.129.183
uznay-prezidenta.ru	unknown	2014-03-11T16:17:59Z	2023-03-02T07:24:45Z	17 kB	1.3 MB	37.140.192.138
sun9-85.userapi.com	38660	2021-06-18T08:57:19Z	2023-03-02T14:22:48Z	396 B	2.9 kB	87.240.169.8
ssp.adriver.ru	12439	2014-01-10T14:39:33Z	2023-03-13T08:33:52Z	441 B	188 B	81.222.128.214
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	682 B	1.2 kB	93.184.220.29
pix.bumlam.com	92002	2022-03-29T11:19:43Z	2023-03-13T08:33:52Z	1.4 kB	2.1 kB	31.172.81.159
exchange.buzzoola.com	18389	2014-10-17T17:20:27Z	2023-03-13T08:33:52Z	483 B	382 B	144.76.119.17
sm.rtb.mts.ru	27154	2019-03-26T15:10:01Z	2023-03-13T08:33:52Z	838 B	1.0 kB	217.66.147.42
ad.mail.ru	7643	2012-06-22T21:38:09Z	2023-03-13T09:01:54Z	412 B	756 B	95.163.41.56
top-fwz1.mail.ru	8936	2013-04-18T13:48:22Z	2022-05-19T16:25:42Z	2.1 kB	3.6 kB	95.163.52.67
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	2.7 kB	48 kB	34.120.237.76
sync.upravel.com	28097	2017-05-29T11:13:46Z	2023-03-13T08:33:52Z	890 B	1.7 kB	176.9.8.252
s.uuidksinc.net	3423	2015-07-20T14:00:35Z	2023-03-13T05:57:41Z	424 B	322 B	31.220.27.135
acint.net	22962	2014-02-14T22:23:16Z	2023-03-13T08:33:52Z	2.4 kB	780 B	193.3.184.229
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.201.77.8
dm-eu.hybrid.ai	28847	2021-01-25T12:48:59Z	2023-03-13T06:16:11Z	419 B	528 B	37.18.103.21
ssp.bestssp.com	90974	2017-06-10T10:55:20Z	2023-03-13T06:54:27Z	438 B	361 B	185.147.80.35
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
mc.yandex.ru	2672	2012-05-21T11:38:30Z	2023-03-13T08:16:45Z	3.5 kB	4.5 kB	93.158.134.119
x01.aidata.io	12188	2016-03-31T17:36:46Z	2023-03-13T06:54:15Z	865 B	1.3 kB	89.108.119.43
sun9-82.userapi.com	36213	2021-06-18T09:05:14Z	2023-02-09T17:13:16Z	498 B	3.2 kB	87.240.169.5
sync.bumlam.com	3243	2015-08-10T23:04:25Z	2023-03-13T08:33:52Z	956 B	1.2 kB	31.172.81.159
dmp.gotechnology.io	48839	2019-06-17T18:08:58Z	2023-02-25T12:17:28Z	875 B	904 B	167.235.32.7
sun9-2.userapi.com	44074	2017-09-15T14:51:28Z	2023-03-13T05:50:47Z	395 B	3.0 kB	87.240.185.129
an.yandex.ru	2577	2017-01-30T06:11:51Z	2023-03-03T18:27:36Z	1.7 kB	2.2 kB	77.88.21.90
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
counter.yadro.ru	7275	2014-09-09T20:41:17Z	2023-03-13T07:26:53Z	454 B	514 B	88.212.201.204
px.adhigh.net	10272	2013-01-03T22:02:08Z	2023-03-13T06:54:23Z	848 B	1.0 kB	193.232.148.144
16404a4a-a4b8-11ed-a1c4-002590c82437.n2.sync.bumlam.com	unknown			488 B	165 B	80.87.198.111
ads.betweendigital.com	1571	2012-10-30T06:08:04Z	2023-03-13T06:54:29Z	1.9 kB	2.4 kB	188.42.196.115
ads.adlook.me	43352	2018-11-28T13:50:19Z	2023-03-13T08:33:52Z	442 B	368 B	5.200.43.131
sun9-67.userapi.com	43281	2019-09-12T23:36:21Z	2023-03-13T09:02:03Z	396 B	2.8 kB	87.240.185.166
sun9-77.userapi.com	44143	2021-06-16T18:09:15Z	2023-03-12T20:46:15Z	497 B	3.0 kB	87.240.169.0
sun9-70.userapi.com	41222	2019-09-12T22:58:22Z	2023-03-12T03:08:02Z	519 B	3.4 kB	87.240.185.169
dmg.digitaltarget.ru	21471	2015-04-23T16:50:51Z	2023-03-13T06:26:03Z	2.7 kB	3.2 kB	185.15.175.131
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	6.4 kB	17 kB	23.36.77.32
ssp-rtb.sape.ru	31166	2016-02-02T18:01:03Z	2023-03-13T08:33:52Z	447 B	773 B	193.3.184.212
sync.dmp.otm-r.com	19534	2017-02-03T08:19:51Z	2023-03-13T08:33:52Z	419 B	134 B	195.201.152.110
sync.1dmp.io	10017	2016-02-09T12:52:58Z	2023-03-13T08:33:52Z	502 B	230 B	87.242.89.90
nr.bidderstack.com	352019	2019-02-11T15:43:50Z	2023-03-13T08:33:52Z	421 B	222 B	23.88.12.13
sun9-45.userapi.com	42350	2019-08-08T06:37:56Z	2023-03-13T05:50:47Z	519 B	3.9 kB	87.240.185.148
tag.digitaltarget.ru	98193	2015-07-21T16:24:58Z	2023-03-13T08:33:52Z	745 B	19 kB	185.15.175.148
ad.adriver.ru	19548	2012-08-31T19:10:27Z	2023-03-13T06:54:23Z	875 B	1.4 kB	195.209.108.48
sync.adkernel.com	4993	2017-04-19T11:25:22Z	2023-03-13T05:36:44Z	469 B	190 B	77.245.57.72
www.samara-photo.ru	unknown	2014-04-29T06:35:29Z	2023-01-11T17:43:07Z	373 B	377 B	188.127.230.8
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-13T05:09:19Z	3.6 kB	18 kB	151.101.130.133
a.utraff.com	39874	2019-02-27T11:01:37Z	2023-03-13T08:33:52Z	380 B	1.1 kB	104.21.59.66
match.new-programmatic.com	33613	2020-02-18T21:50:06Z	2023-03-13T08:33:52Z	434 B	213 B	217.65.2.150

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-04 18:17:22	medium	Client IP	Internal IP	ET INFO URL Shortening Service Domain in DNS Lookup (vk .com)
2023-02-04 18:17:22	medium	Client IP	Internal IP	ET INFO URL Shortening Service Domain in DNS Lookup (vk .com)
2023-02-04 18:17:22	medium	Client IP	87.240.132.78	ET INFO Observed URL Shortening Service Domain (vk .com in TLS SNI)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-04	medium	uznay-prezidenta.ru/	Malware
2023-02-04	medium	uznay-prezidenta.ru/uploads/posts/2023-01/1672927653_93118633.jpeg	Malware
2023-02-04	medium	uznay-prezidenta.ru/templates/up-templ/js/navcontrol.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (31)

	URL	Size	First Seen	Last Seen
	st.vk.com/dist/react.6d787991b51243317269.js?cb151ae0d77e1fe8ca23	150 kB	2023-03-09	2023-05-22
Pretty URL st.vk.com/dist/react.6d787991b51243317269.js?cb151ae0d77e1fe8ca23 IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:20:22 Last Seen2023-05-22 12:23:54 Times Seen64 Hash 7e6c062f1f152ec863806147d0e9bfe1 285aaff4ff4914f5fd5792b5ee471e1fbcee91ff 6db8fba78b19521c3fd8d743d4a596beaa5deaa8d41df7b5a5a6ca7b14d27b59 Loading...

	st.vk.com/dist/state-management.cf1bf926d7c30fabcfb3.js?6cc8960af75d2d2cf820	50 kB	2023-03-13	2023-03-13
Pretty URL st.vk.com/dist/state-management.cf1bf926d7c30fabcfb3.js?6cc8960af75d2d2cf820 IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:03:46 Last Seen2023-03-13 23:20:23 Times Seen1 Hash ad1ce62c27511a0ac9074c0fa8658c2f cadcd8735234f143b8a23c1f0834e03376b05f76 76214ed2968cefc4637dbbf385f68867cc7a288d56e424bf9968acca42847f68 Loading...

	st.vk.com/dist/common.1cfe9ef5660190880ea1.js?3094df1778383cc73e82248	1.2 MB	2023-03-13	2023-03-13
Pretty URL st.vk.com/dist/common.1cfe9ef5660190880ea1.js?3094df1778383cc73e82248 IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:47:25 Last Seen2023-03-13 17:54:35 Times Seen1 Hash c048cb6e169cfa8cceb4797f8b358a34 b4ca1b66a566a507dac4ae835a90456cea1fbaf4 78006dda7414fe72ce09c2976f11a75a7cb7ec6792bc02a93e80db47558a155c Loading...

	st.vk.com/dist/web/ui_common.c932de453ebb5522ace5.js?b44e69867deb3b4ce7e51f288b3282a9	95 kB	2023-03-13	2023-03-13
Pretty URL st.vk.com/dist/web/ui_common.c932de453ebb5522ace5.js?b44e69867deb3b4ce7e51f288b3282a9 IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:39:52 Last Seen2023-03-13 19:34:08 Times Seen1 Hash d5e29d7dd45c3502d039fd0cf90d3f97 9f887c5cee52f5b67bd012dca7f49dccb1261806 b0bd8e9924e8f162eca341decb5209f4b1b798b26f96f0ffb6d49a0742515c3e Loading...

	vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39	7.8 kB	2023-03-13	2023-03-13
Pretty URL vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39 IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:56:49 Last Seen2023-03-13 16:56:49 Times Seen1 Hash 1d0048d60240c0115288f8afc86dbeb2 37a1eafd68050acf30ebfd4cb195599c31139741 4a924551fda571b5392c00b62d9d93a17b40f277aa4631b8b49df57136f1e463 Loading...

	www.acint.net/oci.js?t=1675534643206	32 kB	2023-03-12	2024-04-27
Pretty URL www.acint.net/oci.js?t=1675534643206 IP 193.3.184.229 ASN #50214 QWARTA LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:09:04 Last Seen2024-04-27 00:51:57 Times Seen2054 Hash c3fa5133b6899a2abb39fb79ed94300f dc1d5c75420b38cd7509a783ed09345d0ff78ac4 66b141eb9ae44c86efc510844a71cf208c02d02abe03af3a7d8cc26736d3e19c Loading...

	st.vk.com/js/api/xdm.js?9	11 kB	2023-03-07	2023-05-05
Pretty URL st.vk.com/js/api/xdm.js?9 IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:28 Last Seen2023-05-05 17:21:57 Times Seen530 Hash 6e1f8245e8ab9cd2aa06a95ffebddae4 1dadf7f2e458ae878758a362e504fdd6957e7f6f ed89697436c213e02c99f290a0f8a3d20c4bde9ccdb2ddf025b0849cdfe11347 Loading...

	st.vk.com/dist/audioplayer.0851881a4eef18ffc449.js?3096f39b0abb332841c54da	165 kB	2023-03-13	2023-03-13
Pretty URL st.vk.com/dist/audioplayer.0851881a4eef18ffc449.js?3096f39b0abb332841c54da IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:39:55 Last Seen2023-03-13 22:21:13 Times Seen1 Hash bb0d41642dc2c491fa11bfd105942268 bd690373c4bfc4b1ff7680d10478cc77645b0db0 c61d7ea7620d8906ad80eeb7738d669707006ea81818d15f6186eb3024d9ced0 Loading...

	www.acint.net/mc/?dp=10&tc=1	199 B	2023-03-13	2023-03-13
Pretty URL www.acint.net/mc/?dp=10&tc=1 IP 193.3.184.229 ASN #50214 QWARTA LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:56:49 Last Seen2023-03-13 16:56:49 Times Seen1 Hash cf5e23eb38ac909a892e269d548ec6e3 178163a0c12a442920e5c489fe6de56539f580bf 02274b7f4d3580d44bbad4461911de2c2880900df2d84d61a4de5aa7690a4043 Loading...

	www.acint.net/aci.js	24 kB	2023-03-13	2023-06-12
Pretty URL www.acint.net/aci.js IP 193.3.184.229 ASN #50214 QWARTA LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:07:36 Last Seen2023-06-12 02:52:48 Times Seen787 Hash 8b47c553b5db9d368cda764c4138ada8 e93b817a219fad2762ef75ad6051a4d82afc582b eaba4c606dbd8ce6ad26a8bb999d30e855f8c1c5e194dc675b459c60679e8cb0 Loading...

	st.vk.com/dist/web/likes.edf7c6de1ec6253b7cfc.js?795e261db986798394c6e0f0385ac3c7	19 kB	2023-03-13	2023-03-13
Pretty URL st.vk.com/dist/web/likes.edf7c6de1ec6253b7cfc.js?795e261db986798394c6e0f0385ac3c7 IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:39:52 Last Seen2023-03-13 19:34:08 Times Seen1 Hash 14865f6cfd43b2958729e7541becc7f0 022426d83f6428b25faef62ae2a4e015288b0a48 c9473d73f457aef9bf111ec94982850571be41365cb826780c4a3654f9fc5ec2 Loading...

	uznay-prezidenta.ru/	487 B	2023-03-07	2023-03-13
Pretty URL uznay-prezidenta.ru/ IP 37.140.192.138 ASN #197695 Domain names registrar REG.RU, Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:55 Last Seen2023-03-13 16:56:49 Times Seen1 Hash 133f45d0eef3026dd9738ad55c90fd82 c5e75201a8161111eb8a4dfc9975a3c2145c4cdb de7550113a703b8f2d9e7c9b559cfe9f7f46744e7bf0cebc8744f8a77d488757 Loading...

	uznay-prezidenta.ru/	1.6 kB	2023-03-07	2023-03-13
Pretty URL uznay-prezidenta.ru/ IP 37.140.192.138 ASN #197695 Domain names registrar REG.RU, Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:55 Last Seen2023-03-13 16:56:49 Times Seen1 Hash 16ca87beed39d9cbb8c12cee0bd1cf9c ef1fe74a20b1f19191d8e9c946885dabebeed69a 013eef2fe6e67c24b913d797e9bb075003df9897c767b03b67e176303ae84ee7 Loading...

	vk.com/js/api/openapi.js?127	106 kB	2023-03-08	2023-08-20
Pretty URL vk.com/js/api/openapi.js?127 IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:59:38 Last Seen2023-08-20 14:02:24 Times Seen109 Hash 46bc121894cf102274ec41b663432f0b 03d08435e1fe85469a7ea4c5e316f8202c1a23d0 3c42ae7e84132121c8b32b471556e9cce0bdb805921d7f4c9494dd061a234541 Loading...

	st.vk.com/dist/vkcom-kit.e219774a6d53f48889e4.js?	37 kB	2023-03-13	2023-03-13
Pretty URL st.vk.com/dist/vkcom-kit.e219774a6d53f48889e4.js? IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:39:52 Last Seen2023-03-13 21:21:31 Times Seen1 Hash 61f099dc15c079a9b441724c5b72bf80 d335871a9349257324d60581522653a7ae5dfa89 1dcefa03261217b64f8317097d01e3904c469e48b929df07d7c1edc19c31943a Loading...

	unknown	0 B	2023-03-07	2024-04-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 05:34:36 Times Seen37111631 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	st.vk.com/dist/vkui.9ce756e79bcf283a954f.js?1c1533386eeb375c81a5	324 kB	2023-03-12	2023-05-22
Pretty URL st.vk.com/dist/vkui.9ce756e79bcf283a954f.js?1c1533386eeb375c81a5 IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:34:37 Last Seen2023-05-22 12:23:54 Times Seen2 Hash c1383979eedf2bd937b92e252251cfa1 ad4be7d90189fb9eb797ccf7e5c5297393ce6b80 895ec112d93d396e97cab5372c8afa2092a7cdc2f9de4730dcd89a5d0d2ef42a Loading...

	vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39	22 kB	2023-03-13	2023-03-13
Pretty URL vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39 IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:56:49 Last Seen2023-03-13 16:56:49 Times Seen1 Hash fbe56546d25f06dd1c26d270f2de2102 8fe1689197c7911e16cc1834fe836b816cea7d9d 201147e9ba0d5e3e80616dce61151cb22c84ab56acfd6b1f92fb25b12cf1886a Loading...

	uznay-prezidenta.ru/	244 B	2023-03-07	2024-02-04
Pretty URL uznay-prezidenta.ru/ IP 37.140.192.138 ASN #197695 Domain names registrar REG.RU, Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:55 Last Seen2024-02-04 11:06:04 Times Seen66 Hash a566f333b6342699fac6069f8fb6715b aa54a1a11db6519d890757f535020c72f47d7f3f 810f8e599f0ac0c05c559d109171c1267d2d7c1ab2bdf67e8afb790644c4fe1f Loading...

	st.vk.com/dist/api/widgets/community.js?1	1.4 MB	2023-03-13	2023-03-13
Pretty URL st.vk.com/dist/api/widgets/community.js?1 IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:56:49 Last Seen2023-03-13 17:55:08 Times Seen1 Hash cca83ef536af46e9fb5464a38f1b90c3 3ba8dca4cf5530e4ea5c5f5d1635158b1ab45c45 bdd90b2e69c1af917ea86a4e8c60092d36c0bf1b6ba0e4ab80fa648bdfbf71c3 Loading...

	uznay-prezidenta.ru/	150 B	2023-03-07	2023-03-13
Pretty URL uznay-prezidenta.ru/ IP 37.140.192.138 ASN #197695 Domain names registrar REG.RU, Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:55 Last Seen2023-03-13 16:56:49 Times Seen1 Hash 5e9c64a5a929b6b745e11ddafeb1cd0d 520ee1aa2a755a4b6d22e39dd53a8cb8c0ab9235 64ea2c772baa14e05db0e25758aa971a6001bb48ad634ce482f1f123e0095bec Loading...

	vk.com/js/al/lite.js?107	269 kB	2023-03-13	2023-03-14
Pretty URL vk.com/js/al/lite.js?107 IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 05:40:13 Last Seen2023-03-14 01:19:48 Times Seen1 Hash ad5ed6775564c5ecf6d16cf0ae9c4ed4 85c8d7a35970c39306bd7bbefc4b12d26ac0367c e21d2eb11f547c590d8d57018c6871a4a9ddfb2ffbdee8990da479a6c1589d07 Loading...

	st.vk.com/dist/palette.9ea530806c09cffdccbb.js?eb755f4c0ae2d4ccb762	103 kB	2023-03-13	2023-03-13
Pretty URL st.vk.com/dist/palette.9ea530806c09cffdccbb.js?eb755f4c0ae2d4ccb762 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:33:00 Last Seen2023-03-13 21:07:17 Times Seen1 Hash 50ea49d61962edf45723ed05de6101fe c6deb20059661b9790cafb3855563a984b541f68 6b8a14aa23d8ac6e2c5a62270963dc482f36c8c5ebc46000749eda2cefc75538 Loading...

	st.vk.com/dist/web/audioplayer.72b153b464881dbaaa68.js?54f795ea5ff22834931743396c52a7d9	4.6 kB	2023-03-13	2023-03-13
Pretty URL st.vk.com/dist/web/audioplayer.72b153b464881dbaaa68.js?54f795ea5ff22834931743396c52a7d9 IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 16:39:52 Last Seen2023-03-13 19:33:58 Times Seen1 Hash 5536c92aa2ef51b1e59d779ecc77fce8 1e7af21732b5ea4a4537ee016c5c43a4fa78f359 a1538946ccbe46d9070fe89809c7f4c5819c08463caf9733411122312bba0a56 Loading...

	top-fwz1.mail.ru/js/code.js	34 kB	2023-03-12	2023-11-12
Pretty URL top-fwz1.mail.ru/js/code.js IP 95.163.52.67 ASN #47764 Mail.Ru LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 20:29:26 Last Seen2023-11-12 15:57:24 Times Seen374 Hash 4f9e81bfc644d0c514afff102d2609b6 e2cf87aff5f1acf5fcf0b85fdc2dbf9da07e15df 86358469a3188d8dae051045546110638b6c55e8d4ff55859c381ac202ed4769 Loading...

	tag.digitaltarget.ru/adcm.js	3.1 kB	2023-03-07	2023-05-06
Pretty URL tag.digitaltarget.ru/adcm.js IP 185.15.175.148 ASN #43226 SafeData LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-05-06 00:46:41 Times Seen299 Hash e7097284185069f52fc736bcd50cda13 1cdfdf2d869841202079ddf91e0a00a8610812e6 40f2a96f78f4c8484e9da6e172f5ddd3e4d7786ca29e04b96e1067a365190e80 Loading...

	uznay-prezidenta.ru/	819 B	2023-03-07	2023-03-13
Pretty URL uznay-prezidenta.ru/ IP 37.140.192.138 ASN #197695 Domain names registrar REG.RU, Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:55 Last Seen2023-03-13 16:56:49 Times Seen1 Hash 5046281ab47f417d1ab40bf57f545491 a1fbb3702b531a82cff0523ff9eafe3749d00d29 ec707aa8d8805661ce51425af5672aaa27f05c3e06be01b490cbcbf204b489b7 Loading...

	vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39	13 B	2023-03-07	2024-04-18
Pretty URL vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39 IP 87.240.132.78 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:28 Last Seen2024-04-18 04:07:02 Times Seen468 Hash f77b94b5025fa1439bb08ad2e4499445 83388a461e9631b5193bae3dccda7713ff55bad3 54d9884f178a37601340ded9d32a59a5ee8715e13d742baf8cdf77361d679260 Loading...

	tag.digitaltarget.ru/processor.js?i=370771548788701	16 kB	2023-03-09	2023-05-06
Pretty URL tag.digitaltarget.ru/processor.js?i=370771548788701 IP 185.15.175.148 ASN #43226 SafeData LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:01:11 Last Seen2023-05-06 00:46:42 Times Seen346 Hash 736e2fb1da94f3277e3f931048c1b9f3 196387db95a17da825b629de3542eff901b09905 4569d4e1b0e52b6316681f7312674f43ecb2b72ea8ab4adb2375e3686862c7dc Loading...

	uznay-prezidenta.ru/templates/up-templ/js/navcontrol.js	1.9 kB	2023-03-07	2023-03-13
Pretty URL uznay-prezidenta.ru/templates/up-templ/js/navcontrol.js IP 37.140.192.138 ASN #197695 Domain names registrar REG.RU, Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:55 Last Seen2023-03-13 16:56:49 Times Seen1 Hash 82297dfb93c8535f89602d484d602c9b eb49fcbbc30bd8644df6bf6b33d36178c9d8fda2 398ad56da5347b4a330bab34321825b85bd3d10ca4918439faea2f588cd9c3da Loading...

		Size	First Seen	Last Seen
	#1 Write - a21069bd580d52edd975ae5dabf4d65d	301 B	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 16:56:49 Last Seen2023-03-13 16:56:49 Times Seen1 Hash a21069bd580d52edd975ae5dabf4d65d 951547c0d9c6319a15691cb08d2d7164d4a6c662 984b26b54ca7d0f44f5b93422be38bd54de832a8a106089b9038a145279e13fe Loading...

HTTP Transactions (196)

URL IP Response Size

www.samara-photo.ru/personal/user.394.html

188.127.230.8

301 Moved Permanently

169 B

URL HTTP/1.1
www.samara-photo.ru/personal/user.394.html
IP
188.127.230.8:0
ASN
#56694 LLC Smart Ape

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
9527755784f5014d2c94dcabdf6ae892
941126eba6b0b049b4a09fb846ebd943e894e068
5b111ef9f2dbaf8e8870567dc8e2302efe2b0feb9d4ba62ce74c1039ab663523

HTTP Headers

GET /personal/user.394.html HTTP/1.1
Host: www.samara-photo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.2
Date: Sat, 04 Feb 2023 18:16:44 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://uznay-prezidenta.ru/

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13121
Expires: Sat, 04 Feb 2023 21:55:25 GMT
Date: Sat, 04 Feb 2023 18:16:44 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16254
Expires: Sat, 04 Feb 2023 22:47:38 GMT
Date: Sat, 04 Feb 2023 18:16:44 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4408
Expires: Sat, 04 Feb 2023 19:30:12 GMT
Date: Sat, 04 Feb 2023 18:16:44 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 17:36:15 GMT
content-type: application/json
age: 2429
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: qG4MoFMVZPuLkuTnJDxnll3MuQkDqf0iflWdjcyjjx43WFlK26k6SmjTDm0HOuZtyUnl2eSLkrfzug7ppBDT+g==
x-amz-request-id: SWQSEM5NBVNJ51PG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 17:24:07 GMT
age: 3157
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:44 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ff290d4b87390ea01e9dbce61b227a9
f9234e197717862b8a5c72c222286b91baf555bf
2ba2c94120732845af4a6e122f4e350f3260b17458f26dd1d8082d9e196825ca

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2BA2C94120732845AF4A6E122F4E350F3260B17458F26DD1D8082D9E196825CA"
Last-Modified: Thu, 02 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21522
Expires: Sun, 05 Feb 2023 00:15:26 GMT
Date: Sat, 04 Feb 2023 18:16:44 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 17:49:07 GMT
age: 1658
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13283
Expires: Sat, 04 Feb 2023 21:58:08 GMT
Date: Sat, 04 Feb 2023 18:16:45 GMT
Connection: keep-alive

push.services.mozilla.com/

54.201.77.8

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.201.77.8:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Rw6BFRlgGNVpKQ+bRAe5Xw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: URclf4gThQA2IMKnG9+1KgT67Oo=

uznay-prezidenta.ru/

37.140.192.138

200 OK

9.0 kB

URL HTTP/2
uznay-prezidenta.ru/
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (575), with CRLF, LF line terminators
Size
9.0 kB (9011 bytes)
Hash
15e4269c73fc4ee4cb6dd9e5818ecc3b
0bcb3eda76b433eebae59f648cfaae7d4599c94b
f7518a3a1e786021c0b66c0244daf3fc69e024fa48f8c07bf021c670a1d459a3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:45 GMT
content-type: text/html; charset=windows-1251
content-length: 9011
x-powered-by: PHP/5.5.38
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-encoding: gzip
set-cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d; path=/; HttpOnly
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2023-02/1675425679_328974823472389472384723894444444444.jpg

37.140.192.138

200 OK

32 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2023-02/1675425679_328974823472389472384723894444444444.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 512x365, components 3\012- data
Size
32 kB (31616 bytes)
Hash
828029cbb35bc7ad071827c0152d6931
bf227394e92adab8a32d498b64cef3c9b3b7660f
ca92985340864460fb435390f3aeee3bc94897944a7156f70934e6e25f9d6cb3

HTTP Headers

GET /uploads/posts/2023-02/1675425679_328974823472389472384723894444444444.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 31616
last-modified: Fri, 03 Feb 2023 12:00:49 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp2.globalsign.com/gsorganizationvalsha2g2

151.101.194.133

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
151.101.194.133:0
ASN
#54113 FASTLY

File type
data
Size
1.5 kB (1459 bytes)
Hash
4ae23f232bcc8784ee623464fe3b91c8
ec84dc05668a08503c5c7b35eda9f27db24b7767
6acb9af5a8e2d54f97ceda0bdbef00a1c5992fa82d8594ec0bffd59fc03eed5c

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:05:13 GMT
ETag: "ec84dc05668a08503c5c7b35eda9f27db24b7767"
Last-Modified: Sat, 04 Feb 2023 17:05:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:46 GMT
Age: 3129
X-Served-By: cache-qpg1229-QPG, cache-bma1637-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 28
X-Timer: S1675534606.167491,VS0,VE0

uznay-prezidenta.ru/engine/classes/min/index.php?charset=windows-1251&g=general&20

37.140.192.138

200 OK

62 kB

URL HTTP/2
uznay-prezidenta.ru/engine/classes/min/index.php?charset=windows-1251&g=general&20
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
ASCII text, with very long lines (65470)
Size
62 kB (61902 bytes)
Hash
3d6a9b94b28ef1965f9280008fd12599
a874bead7c006f3f529d6452a8e06907888ff329
b837a978084738c199cba6a288a8f0cc2c02f03df3ac86e56ee1ba40efe933c8

HTTP Headers

GET /engine/classes/min/index.php?charset=windows-1251&g=general&20 HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript; charset=windows-1251
content-length: 61902
x-powered-by: PHP/5.5.38
expires: Sun, 04 Feb 2024 18:16:46 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
content-encoding: gzip
last-modified: Tue, 31 Jan 2017 15:58:54 GMT
etag: "pub1485878334;gz"
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-12/1672403619_23894723894723478238942742347911111111111.jpg

37.140.192.138

200 OK

42 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-12/1672403619_23894723894723478238942742347911111111111.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 574x393, components 3\012- data
Size
42 kB (42501 bytes)
Hash
0a00b9778e84c6e00ac6f1660c7e6a05
27979d60a043ff0a94cfeabd5caca70eda6c51d8
11d759db375cbee96f1937a3aac6447e7801e0c342469b9362169ce4139db2bf

HTTP Headers

GET /uploads/posts/2022-12/1672403619_23894723894723478238942742347911111111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 42501
last-modified: Fri, 30 Dec 2022 12:33:07 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2023-01/1672927653_93118633.jpeg

37.140.192.138

200 OK

155 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2023-01/1672927653_93118633.jpeg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 1200x800, components 3\012- data
Size
155 kB (154647 bytes)
Hash
92975dbaa8e4066715614de82c62cd35
332dfe5f6415b9305974083678ce4806c6d76fbd
bfce587dd9f91242ed19a067a70ef6e23e9cc8bb528806d68b131b63031e7acf

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /uploads/posts/2023-01/1672927653_93118633.jpeg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 154647
last-modified: Thu, 05 Jan 2023 14:05:53 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-12/1671875474_2387423789423742974247237498888888888.jpg

37.140.192.138

200 OK

52 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-12/1671875474_2387423789423742974247237498888888888.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 499x360, components 3\012- data
Size
52 kB (52514 bytes)
Hash
c5d7eec4a2ce05fb1d7deacd41941187
dcdcfb7a62ab205717a22edf029b48693c1a74b8
e664aeebb874dcafe47792515cccc5d0a8807d9a7867f2a57574fe44679cdcfe

HTTP Headers

GET /uploads/posts/2022-12/1671875474_2387423789423742974247237498888888888.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 52514
last-modified: Sat, 24 Dec 2022 09:49:58 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-12/1672047872_328947239874237849237472489273422222222222.jpg

37.140.192.138

200 OK

36 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-12/1672047872_328947239874237849237472489273422222222222.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 537x363, components 3\012- data
Size
36 kB (35917 bytes)
Hash
9db272848ac27d6b27d61c410f5c4f7c
9cc7a2bd46c0100ebaf623bea07b69413720879e
acd26c8effc710d6f99c36baf0d37a4d6f9cdae765ae589cedff0b62163155de

HTTP Headers

GET /uploads/posts/2022-12/1672047872_328947239874237849237472489273422222222222.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 35917
last-modified: Mon, 26 Dec 2022 09:44:18 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2023-01/1674137120_031100.jpg

37.140.192.138

200 OK

94 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2023-01/1674137120_031100.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, PhotometricIntepretation=RGB, orientation=upper-left, resolutionunit=2], baseline, precision 8, 659x400, components 3\012- data
Size
94 kB (94088 bytes)
Hash
aca70ecdfd29b0be95bcb9cf73639873
a80951434ae03d245bc09fbc74cddba350ada149
0a5e17d2b2c5bcf8c413385fd7e2dd680b82e0d3c68b98d41ceffcfa103736da

HTTP Headers

GET /uploads/posts/2023-01/1674137120_031100.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 94088
last-modified: Thu, 19 Jan 2023 14:04:36 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-12/1672218712_3247238947238472389742472391111111111111.jpg

37.140.192.138

200 OK

43 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-12/1672218712_3247238947238472389742472391111111111111.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 602x400, components 3\012- data
Size
43 kB (42597 bytes)
Hash
7ca3ea2424c7ea786b03e633e283d4d7
1acaa4f19e620c3ee65f66e944cafb439b29968d
fb8f481ea001d0a0a7ec0b26b1fa90c277b47d9764497bf5adc90efbacf02584

HTTP Headers

GET /uploads/posts/2022-12/1672218712_3247238947238472389742472391111111111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 42597
last-modified: Wed, 28 Dec 2022 09:11:11 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/kuban_info.png

37.140.192.138

200 OK

12 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/kuban_info.png
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
PNG image data, 190 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (11774 bytes)
Hash
6b70a59a3d2f6c8bd3f22e704edf5860
6a3b4891e806f67e34c3281eb94e81bca4bd0378
b8ef1f65611a931f7cb70c6d58ee294ca125be4587fb500b5b8d7f0eb8963eaf

HTTP Headers

GET /uploads/kuban_info.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 11774
last-modified: Tue, 31 Jan 2017 15:51:40 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-12/1670077019_2394782389472389472387482374111111111111.jpg

37.140.192.138

200 OK

30 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-12/1670077019_2394782389472389472387482374111111111111.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 581x385, components 3\012- data
Size
30 kB (30116 bytes)
Hash
83b0d2e35a5b8e00fc7b33317e103162
13747153d4fd2d07b49d9956bf8335b0635456d2
6fd82a386121c70822ef59785c45e02dac909a278e00d3d4c6eae556a9853791

HTTP Headers

GET /uploads/posts/2022-12/1670077019_2394782389472389472387482374111111111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 30116
last-modified: Sat, 03 Dec 2022 14:15:53 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-12/1671269745_238942874928374892374823479111111111111.jpg

37.140.192.138

200 OK

26 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-12/1671269745_238942874928374892374823479111111111111.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 636x433, components 3\012- data
Size
26 kB (25542 bytes)
Hash
4a507e39c1e23337abe9319145948e07
c1693b3a92d0d36d1f9d1f52147fe2e2eec63b60
a0fbce75b90b7bc31aee4ea6829c0493493a5e654d425b2db577aefacd9be88f

HTTP Headers

GET /uploads/posts/2022-12/1671269745_238942874928374892374823479111111111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 25542
last-modified: Sat, 17 Dec 2022 09:34:29 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-12/1670927292_324892374389274739274823974222222222221111111.jpg

37.140.192.138

200 OK

54 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-12/1670927292_324892374389274739274823974222222222221111111.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 556x407, components 3\012- data
Size
54 kB (54266 bytes)
Hash
16fb0600e3f81dadde102f8798b554c8
b44306ff302aa8d30b5861420897d2ffb832edfb
cbbf7515cdaea6e652e1ef96a4b830b00db023df3d7ce32b71712b390f08f263

HTTP Headers

GET /uploads/posts/2022-12/1670927292_324892374389274739274823974222222222221111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 54266
last-modified: Tue, 13 Dec 2022 10:26:50 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/logo_uvao8.png

37.140.192.138

200 OK

36 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/logo_uvao8.png
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
PNG image data, 330 x 111, 8-bit/color RGB, non-interlaced\012- data
Size
36 kB (35911 bytes)
Hash
820aff04adfdf8bf9e570fe3bca4d394
b31aefd5570d36e9db6a799f9137659e3fdc3fe9
905133f8e6ccb3c515e50d391e46e63556f96ebad15e126268221e856e443b8a

HTTP Headers

GET /uploads/logo_uvao8.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 35911
last-modified: Tue, 31 Jan 2017 15:51:41 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-12/1671098573_3289472389742374289379382475555555555555.jpg

37.140.192.138

200 OK

40 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-12/1671098573_3289472389742374289379382475555555555555.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 526x358, components 3\012- data
Size
40 kB (40443 bytes)
Hash
d005c519e676f4207394510ad4737d82
e2e08ee2d890323540f67bd5724efa7adbff132b
103346b8b77f8ee3479ba00c3d0e52eae935aa3814dd57290cd4f698b9b3d60c

HTTP Headers

GET /uploads/posts/2022-12/1671098573_3289472389742374289379382475555555555555.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 40443
last-modified: Thu, 15 Dec 2022 10:01:16 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-12/1671214409_5-.jpg

37.140.192.138

200 OK

16 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-12/1671214409_5-.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 320x240, components 3\012- data
Size
16 kB (16435 bytes)
Hash
9ee225bdde7d54b170510669f2c94e6a
2ee045be3620723cd0b9e52b24af282879bccfa1
5374e4054e85a1562fc87baecdbe42b17b29a2e272665a2655a21bd67563b82d

HTTP Headers

GET /uploads/posts/2022-12/1671214409_5-.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 16435
last-modified: Fri, 16 Dec 2022 18:13:13 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-12/1669890711_32489723784927384237942389472322222222222222.jpg

37.140.192.138

200 OK

66 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-12/1669890711_32489723784927384237942389472322222222222222.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 560x377, components 3\012- data
Size
66 kB (66010 bytes)
Hash
1149a111581691576240e4c10213fb91
09b9394004e1dd20227bb0af1bfa2ae87b3fb4dd
00289b29540f63c5553acaa944a3eaba0ac2ac51658823bedcd888186688a3d0

HTTP Headers

GET /uploads/posts/2022-12/1669890711_32489723784927384237942389472322222222222222.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 66010
last-modified: Thu, 01 Dec 2022 10:31:20 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-12/1670585031_238947238947234797234234971111111111111.jpg

37.140.192.138

200 OK

46 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-12/1670585031_238947238947234797234234971111111111111.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 598x404, components 3\012- data
Size
46 kB (45921 bytes)
Hash
aaf63dde81f0c831d30dc82d9864ccdb
8baac21510fa9542523d34b5342ccfc6ecf25a7d
3106154c5e87878de3d6193b05419432674ea1f40b0231835345656a598e972b

HTTP Headers

GET /uploads/posts/2022-12/1670585031_238947238947234797234234971111111111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 45921
last-modified: Fri, 09 Dec 2022 11:22:50 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-12/1670242020_2389742389472389742378942389741111111111111.jpg

37.140.192.138

200 OK

28 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-12/1670242020_2389742389472389742378942389741111111111111.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 599x432, components 3\012- data
Size
28 kB (27554 bytes)
Hash
3b4fc4b50a5369333acd552a4219c62f
900f51cf140ac802a74f740c781bd3cbdf872b4c
10bf2be191e2244297ddf1cd9c3748f2163d9dd320c6c43bff7fa4930e32e512

HTTP Headers

GET /uploads/posts/2022-12/1670242020_2389742389472389742378942389741111111111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 27554
last-modified: Mon, 05 Dec 2022 12:06:47 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-11/1669727418_3289423897427342734923784222222222222.jpg

37.140.192.138

200 OK

68 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-11/1669727418_3289423897427342734923784222222222222.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 583x393, components 3\012- data
Size
68 kB (67687 bytes)
Hash
a3b0702a91b06ff9c6836cb636151f42
7c2ab692e3dde8807d3dee9c4849889f9d8002e7
98e29c55b671ebe3b7cba419d364cfda15ed7c918133a6fa2ffd9af79a269597

HTTP Headers

GET /uploads/posts/2022-11/1669727418_3289423897427342734923784222222222222.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 67687
last-modified: Tue, 29 Nov 2022 13:09:57 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-12/1670754723_3289472398423748723984237411111111111.jpg

37.140.192.138

200 OK

46 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-12/1670754723_3289472398423748723984237411111111111.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 635x455, components 3\012- data
Size
46 kB (45694 bytes)
Hash
a5f33c73c0c8180393da76d783108e48
243c66e1f67c106c3fa97f4b8591937a7c53f109
22cfdc7de6d7f35ded8d39844e2b7e84dd3a72ace72abfa80eac2a56471b7fbf

HTTP Headers

GET /uploads/posts/2022-12/1670754723_3289472398423748723984237411111111111.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 45694
last-modified: Sun, 11 Dec 2022 10:31:31 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-12/1671718736_0984028098242842420942048333333333333333444444.jpg

37.140.192.138

200 OK

84 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-12/1671718736_0984028098242842420942048333333333333333444444.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 596x421, components 3\012- data
Size
84 kB (83461 bytes)
Hash
df7af6edb0adba13d0784132dedee2df
9d072936c6925d9cbb2917a570fabf5c3b7e1037
ad31ee2409cb4df4ca8fd926992d5af8e34b023abff2a9c41e2397c2a369ca42

HTTP Headers

GET /uploads/posts/2022-12/1671718736_0984028098242842420942048333333333333333444444.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 83461
last-modified: Thu, 22 Dec 2022 14:17:20 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/posts/2022-12/1670412496_238974823947239742389472387894222222222222.jpg

37.140.192.138

200 OK

79 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/posts/2022-12/1670412496_238974823947239742389472387894222222222222.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 529x354, components 3\012- data
Size
79 kB (78774 bytes)
Hash
33bfde29b4eb8e5df34a2ac002f2bd39
83b7d83da0fc5e640b7044e02e5b5533ea902a60
99bf06d96afc42649b4c12dc2cbbe1794148502227ca6d91f48ade19c2f215c5

HTTP Headers

GET /uploads/posts/2022-12/1670412496_238974823947239742389472387894222222222222.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 78774
last-modified: Wed, 07 Dec 2022 11:28:03 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

vk.com/js/api/openapi.js?127

87.240.132.78

200 OK

23 kB

URL HTTP/2
vk.com/js/api/openapi.js?127
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
ASCII text, with very long lines (3849)
Size
23 kB (23318 bytes)
Hash
6b56e2aa629cc5f334bba9e200af3bfe
1e99707868f45c499400d95e75348c3d7b7686f5
7cb4aa1277e9f29f5c6d21c642b7c08cfce199332e30395c20995847a0db3fab

HTTP Headers

GET /js/api/openapi.js?127 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 23318
last-modified: Fri, 02 Dec 2022 07:14:40 GMT
etag: "6389a5e0-5b16"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

uznay-prezidenta.ru/templates/up-templ/images/bg-header1.png

37.140.192.138

200 OK

15 kB

URL HTTP/2
uznay-prezidenta.ru/templates/up-templ/images/bg-header1.png
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
PNG image data, 5 x 89, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (14557 bytes)
Hash
bcca7ac8079639b2a30f5868d4dad3d9
bd94418a1af584109848ee38cd8cb272fb91258c
528564ed1cc27c3cc6ef85ade786d27c287e0d80996febb375279cb5af506c10

HTTP Headers

GET /templates/up-templ/images/bg-header1.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 14557
last-modified: Tue, 31 Jan 2017 16:04:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/templates/up-templ/images/menu-line.png

37.140.192.138

200 OK

938 B

URL HTTP/2
uznay-prezidenta.ru/templates/up-templ/images/menu-line.png
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
PNG image data, 1 x 15, 8-bit/color RGB, interlaced\012- data
Size
938 B (938 bytes)
Hash
b6db2ed6b8def2e4706038d3674b20a0
d891a0c929f730af8cfb8fb783fd931a5cc19a5b
488bc74716d7f2000caf0fb1da5b4a2cf572eda53cd57245d75b36e56a299d38

HTTP Headers

GET /templates/up-templ/images/menu-line.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 938
last-modified: Tue, 31 Jan 2017 16:04:18 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/uploads/up1.png

37.140.192.138

200 OK

48 kB

URL HTTP/2
uznay-prezidenta.ru/uploads/up1.png
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
PNG image data, 1000 x 224, 8-bit/color RGBA, non-interlaced\012- data
Size
48 kB (48350 bytes)
Hash
757c95c5a7f7cd0c5b495c986e0c4e60
68c96d95d17ab0ec56c54711935778fbb842bfe8
1da599db978f6d6d09a9ab01a8e59ced3b55872a4667de8b39028e1828476bd2

HTTP Headers

GET /uploads/up1.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 48350
last-modified: Tue, 31 Jan 2017 15:51:44 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/templates/up-templ/images/navigation.jpg

37.140.192.138

200 OK

1.3 kB

URL HTTP/2
uznay-prezidenta.ru/templates/up-templ/images/navigation.jpg
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 3x40, components 3\012- data
Size
1.3 kB (1255 bytes)
Hash
a459de1b805988a16393001e5ca7114d
e49ab19a3b0579952c9e30caabaa302a989143c1
81c2579982211df0351af6de596550de10515037683761dee93abfebc7b72ef8

HTTP Headers

GET /templates/up-templ/images/navigation.jpg HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/jpeg
content-length: 1255
last-modified: Tue, 31 Jan 2017 16:04:18 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/templates/up-templ/images/bg-footer1.png

37.140.192.138

200 OK

15 kB

URL HTTP/2
uznay-prezidenta.ru/templates/up-templ/images/bg-footer1.png
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
PNG image data, 11 x 75, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (15439 bytes)
Hash
c855d9a7789003b6ec02046ef0afaec6
78389c95fd4564ad57630b9418fe5859927becda
6bc4d9fdeb4863506b99fb4ec0a47ed59b2f58e805531927f1388da6bd85c772

HTTP Headers

GET /templates/up-templ/images/bg-footer1.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 15439
last-modified: Tue, 31 Jan 2017 16:04:00 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/templates/up-templ/images/shelter.png

37.140.192.138

200 OK

18 kB

URL HTTP/2
uznay-prezidenta.ru/templates/up-templ/images/shelter.png
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
PNG image data, 5 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
18 kB (17724 bytes)
Hash
6df8ecc94e822080513297cb8c73c953
4d5e1e6a902380722682111402f1b40bc11ea4c1
f1ad3ced70d9f3ea7f1b0533ceae7132906043bfd2761ba5cbe2cd0c6add12db

HTTP Headers

GET /templates/up-templ/images/shelter.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 17724
last-modified: Tue, 31 Jan 2017 16:04:19 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/templates/up-templ/images/line-topmenu.png

37.140.192.138

200 OK

999 B

URL HTTP/2
uznay-prezidenta.ru/templates/up-templ/images/line-topmenu.png
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
PNG image data, 11 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
999 B (999 bytes)
Hash
ce42a393d1636b28a49ea95bea9e95ff
6e8263a9ece6bfd74b76c734384bad4a2cc46d7a
0f9856918451fc05cda9ee2b578dfb7981d49109939f596ccb3451372ff645e8

HTTP Headers

GET /templates/up-templ/images/line-topmenu.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 999
last-modified: Tue, 31 Jan 2017 16:04:03 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

uznay-prezidenta.ru/templates/up-templ/images/bg-menu-link.png

37.140.192.138

200 OK

15 kB

URL HTTP/2
uznay-prezidenta.ru/templates/up-templ/images/bg-menu-link.png
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
PNG image data, 3 x 26, 8-bit/color RGB, non-interlaced\012- data
Size
15 kB (15419 bytes)
Hash
70ff7e7d6ec189c31d1331f780b3827d
88e5f65b09358114a29d5d98c1b1c7f109ea98c7
23e918fa1cb67083ab512987f168ff28665d2aa6005dbf1083691a91eaa636d2

HTTP Headers

GET /templates/up-templ/images/bg-menu-link.png HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/templates/up-templ/css/style.css
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/png
content-length: 15419
last-modified: Tue, 31 Jan 2017 16:04:02 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fed5e3aa743e52be88bbb859921e0f98
ee7eceb81c7a2c0843ef9b0e9468028e0fd4c746
4c94f1b5c922f8d834e52ce06e78bc14921943da3dc4130ab24d09aff638e772

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C94F1B5C922F8D834E52CE06E78BC14921943DA3DC4130AB24D09AFF638E772"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2674
Expires: Sat, 04 Feb 2023 19:01:20 GMT
Date: Sat, 04 Feb 2023 18:16:46 GMT
Connection: keep-alive

www.acint.net/aci.js

193.3.184.229

200 OK

7.8 kB

URL HTTP/2
www.acint.net/aci.js
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
ASCII text, with very long lines (1649)
Size
7.8 kB (7784 bytes)
Hash
777eef0db9280e74fe8d3e0e9561da9c
f8316623410b9735dd07b6e12a2f29352c0aa4cd
985dc8f4eb0a0b4629fa8e6d86f741ee8d22b7a0a1f64be2e9e9f2c96c9cf772

HTTP Headers

GET /aci.js HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 7784
last-modified: Thu, 02 Feb 2023 13:54:08 GMT
etag: "63dbc080-1e68"
content-encoding: gzip
expires: Sun, 05 Feb 2023 06:16:46 GMT
cache-control: max-age=43200
X-Firefox-Spdy: h2

uznay-prezidenta.ru/favicon.ico

37.140.192.138

200 OK

500 B

URL HTTP/2
uznay-prezidenta.ru/favicon.ico
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
500 B (500 bytes)
Hash
2d8a4bcbf04957e4f0935b2442c65956
c61c2ddc533f83f90d718395de9a39d732657261
9a1b740bfc56385ac3c4bf225657e05261972e04cb3229e12d211fc2482ef7f5

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/x-icon
content-length: 500
last-modified: Tue, 31 Jan 2017 15:51:38 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2

vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39

87.240.132.78

200 OK

13 kB

URL HTTP/2
vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (19499)
Size
13 kB (13009 bytes)
Hash
bf0f5d3fde2dc07de981ecd62c76c92b
bd78850f7409ad24dfd5ae9a313f688fe25b8dd3
eb0617c917e8e192f0b4615612a82d7c6fd937cb0d1f72e76d6fcf3354f2d98a

HTTP Headers

GET /widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/html; charset=windows-1251
content-length: 13009
x-powered-by: KPHP/7.4.113244
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Fri, 02 Feb 2024 04:48:16 GMT; path=/; domain=.vk.com
remixstlid=9114251829296510625_sHjtGyLZrIyN4HGud8gn4QDOFUdjSGul7Sw05SU5Znz; expires=Sun, 04 Feb 2024 18:16:46 GMT; path=/; domain=.vk.com; secure
remixstid=1577310460_6qVgs6zyAbpBwDYSPVnDBj3FKL14Z5cMjFzu8b1vQYD; expires=Sat, 03 Feb 2024 23:38:18 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-security-policy: default-src * data: blob: about: vkcalls:;script-src 'self' https://vk.com https://*.vk.com https://vk.ru https://*.vk.ru https://static.vk.me https://*.mail.ru https://r.mradx.net https://s.ytimg.com https://platform.twitter.com https://cdn.syndication.twimg.com https://www.instagram.com https://connect.facebook.net https://telegram.org https://*.yandex.ru https://*.google-analytics.com https://*.youtube.com https://maps.googleapis.com https://translate.googleapis.com https://*.google.com https://google.com https://*.vkpartner.ru https://*.moatads.com https://*.adlooxtracking.ru https://*.serving-sys.ru https://*.weborama-tech.ru https://*.gstatic.com https://*.google.ru https://securepubads.g.doubleclick.net https://cdn.ampproject.org https://www.googletagmanager.com https://googletagmanager.com https://*.vk-cdn.net https://*.hit.gemius.pl https://yastatic.net https://analytics.tiktok.com 'unsafe-inline' 'unsafe-eval' blob:;style-src https://vk.com https://*.vk.com https://vk.ru https://*.vk.ru https://static.vk.me https://r.mradx.net https://ton.twimg.com https://tagmanager.google.com https://platform.twitter.com https://*.googleapis.com 'self' 'unsafe-inline'
x-xss-protection: 1; report=/xss_reports
content-encoding: gzip
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

vk.com/images/upload.gif

87.240.132.78

200 OK

230 B

URL HTTP/2
vk.com/images/upload.gif
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
GIF image data, version 89a, 32 x 8\012- data
Size
230 B (230 bytes)
Hash
59cd625f8c2ce03663123d59416378a1
b8d103133aadcdbe532e5642ddce9159b7385e4e
0d7e358637c1b1caa66949aefc529c1e4488923f99e499d6be09eb8cdd0b4202

HTTP Headers

GET /images/upload.gif HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/gif
content-length: 230
last-modified: Tue, 22 Sep 2020 20:30:00 GMT
etag: "5f6a5ec8-e6"
expires: Sat, 11 Feb 2023 18:16:46 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp2.globalsign.com/gsalphasha2g2

151.101.194.133

200 OK

1.4 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsalphasha2g2
IP
151.101.194.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1423 bytes)
Hash
9a8dc49ff28f822212f758110ff232d0
326adadf9f5ca919888ba747a2b5b95a1ce5c3a6
2a448bc5523d667ae57011823962c4aafcdd8a623f910a36d31563302c1b3bf8

HTTP Headers

POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1423
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:06:25 GMT
ETag: "326adadf9f5ca919888ba747a2b5b95a1ce5c3a6"
Last-Modified: Sat, 04 Feb 2023 17:06:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:46 GMT
Age: 618
X-Served-By: cache-qpg1269-QPG, cache-bma1637-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 5, 6
X-Timer: S1675534607.595717,VS0,VE0

www.acint.net/mc/?dp=10

193.3.184.229

302 Found

154 B

URL HTTP/2
www.acint.net/mc/?dp=10
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

HTTP Headers

GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=10&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Sat, 04-Feb-23 18:26:46 GMT
aid=CkIDFWPeoQ6coRRujynxAoUuzEilIY6X+TC76RS69DmuXm6Z; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2

www.acint.net/hit/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=82428510&u=https%3A%2F%2Fuznay-prezidenta.ru%2F&r=&rs=1280x1024&t=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&oE=1&oP=1&dT=2023-02-04T18%3A17%3A23.203&fu=0f355b99-0e23-4311-84c2-e6cf95b38815

193.3.184.229

200 OK

43 B

URL HTTP/2
www.acint.net/hit/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=82428510&u=https%3A%2F%2Fuznay-prezidenta.ru%2F&r=&rs=1280x1024&t=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&oE=1&oP=1&dT=2023-02-04T18%3A17%3A23.203&fu=0f355b99-0e23-4311-84c2-e6cf95b38815
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hit/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=82428510&u=https%3A%2F%2Fuznay-prezidenta.ru%2F&r=&rs=1280x1024&t=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&oE=1&oP=1&dT=2023-02-04T18%3A17%3A23.203&fu=0f355b99-0e23-4311-84c2-e6cf95b38815 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2

ocsp.globalsign.com/gseccovsslca2018

151.101.130.133

200 OK

940 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
151.101.130.133:0
ASN
#54113 FASTLY

File type
data
Size
940 B (940 bytes)
Hash
21d84c6d1b3193960b5d86ca536e310e
fa65cbb51166e473fce2e5adcc92223eebcb6659
63994747fbe9cdfebf76b58a8daa94c952d2d6fd49b1a5ec5bf21b9d6e1dc6c7

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 940
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:23:09 GMT
ETag: "fa65cbb51166e473fce2e5adcc92223eebcb6659"
Last-Modified: Sat, 04 Feb 2023 17:23:10 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:46 GMT
Age: 2778
X-Served-By: cache-qpg1244-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 4, 63
X-Timer: S1675534607.621821,VS0,VE0

counter.yadro.ru/hit?t14.12;r;s1280*1024*24;uhttps%3A//uznay-prezidenta.ru/;0.8355446904089558

88.212.201.204

200 OK

211 B

URL HTTP/1.1
counter.yadro.ru/hit?t14.12;r;s1280*1024*24;uhttps%3A//uznay-prezidenta.ru/;0.8355446904089558
IP
88.212.201.204:0
ASN
#39134 United Network LLC

File type
GIF image data, version 87a, 88 x 31\012- data
Size
211 B (211 bytes)
Hash
e32eeccc240db292673e8cce71b0c71c
c81797b12034e57866843ab70604482558bdae95
08b73c529111c6700423e23eaa4f3d03cc55707c2e4b0d341136c2ebf00f7afa

HTTP Headers

GET /hit?t14.12;r;s1280*1024*24;uhttps%3A//uznay-prezidenta.ru/;0.8355446904089558 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sat, 04 Feb 2023 18:16:46 GMT
Content-Type: image/gif
Content-Length: 211
Connection: keep-alive
Expires: Thu, 03 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400

vk.com/js/al/lite.js?107

87.240.132.78

200 OK

62 kB

URL HTTP/2
vk.com/js/al/lite.js?107
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
ISO-8859 text, with very long lines (2839)
Size
62 kB (61947 bytes)
Hash
67d884c7e4351d4ff01236e835307aa4
361ce908f5536e1c265fe6c212f4828be42f4b62
35f71d019676bd3297ac849176cf1330ac20a5ab842906c1dc6754b0466bdf79

HTTP Headers

GET /js/al/lite.js?107 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 61947
last-modified: Sun, 22 Jan 2023 13:13:14 GMT
etag: "63cd366a-f1fb"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

uznay-prezidenta.ru/templates/up-templ/js/navcontrol.js

37.140.192.138

200 OK

58 kB

URL HTTP/2
uznay-prezidenta.ru/templates/up-templ/js/navcontrol.js
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
data
Size
58 kB (58525 bytes)
Hash
8ed220e0cf87f61ba8271ed1e9c2bac1
4d94a03142148b33b5828525df398788c27209c7
53fdcbb8cd387814836117ad18ee3372aefce2f96be0020ef2fc9ebbbda0da61

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /templates/up-templ/js/navcontrol.js HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/javascript
last-modified: Tue, 31 Jan 2017 16:04:33 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

vk.com/js/lang3_0.js?27925576

87.240.132.78

200 OK

24 kB

URL HTTP/2
vk.com/js/lang3_0.js?27925576
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
ISO-8859 text, with very long lines (56505), with LF, NEL line terminators
Size
24 kB (23724 bytes)
Hash
b7ba0dbb78463f7cb6061119d7f2550d
8112beac1b1d37a2d73794f60e48aea2f51d8d9a
b7944d824554b607a58ac5fe07f36d5df326a9ec3cd0b68b5d70e85e21edaadd

HTTP Headers

GET /js/lang3_0.js?27925576 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/javascript; charset=windows-1251
content-length: 23724
x-powered-by: KPHP/7.4.113244
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Mon, 29 Jan 2024 00:22:24 GMT; path=/; domain=.vk.com
remixstlid=9099615130507725952_vTxzfY6FLTSPp2YUtzdxCMKUrdFaPKQcElZpkxf9gY4; expires=Sun, 04 Feb 2024 18:16:46 GMT; path=/; domain=.vk.com; secure
cache-control: max-age=345600
content-encoding: gzip
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

vk.com/js/loader_nav2063449849_3.js

87.240.132.78

200 OK

54 kB

URL HTTP/2
vk.com/js/loader_nav2063449849_3.js
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
ASCII text, with very long lines (65536), with no line terminators
Size
54 kB (54159 bytes)
Hash
891f7b1a6cc1afe6d106227466ca59a5
397d82fb2266a6d051926879450689342e772945
2c55fdc57bd89da014af075278ff6cf0771d661003adc588f3a74fc56dd80d7d

HTTP Headers

GET /js/loader_nav2063449849_3.js HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/javascript; charset=windows-1251
content-length: 54159
x-powered-by: KPHP/7.4.113244
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Wed, 31 Jan 2024 17:08:21 GMT; path=/; domain=.vk.com
remixstlid=9060067896279866439_r3zOlzZ8ZHBxY0z33wtOdxTIZT6AawG9XumfXih8tJz; expires=Sun, 04 Feb 2024 18:16:46 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-encoding: gzip
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

st.vk.com/css/al/lite.985a2015d47e0dec1e7f.css

87.240.132.78

200 OK

36 kB

URL HTTP/2
st.vk.com/css/al/lite.985a2015d47e0dec1e7f.css
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Size
36 kB (36047 bytes)
Hash
47efbae4b250dbe4ceed94c01b63fa22
873333ea58592ac962dc8afba6c5bd025200136d
9c85e36a0f00525c782b8363418fc91db68a084c1ee6eb15d545f20212a6f0b7

HTTP Headers

GET /css/al/lite.985a2015d47e0dec1e7f.css HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/css
content-length: 36047
last-modified: Thu, 02 Feb 2023 12:02:18 GMT
etag: "63dba64a-8ccf"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

st.vk.com/css/al/ui_common.52af22fe0da9c4f28b25.css

87.240.132.78

200 OK

15 kB

URL HTTP/2
st.vk.com/css/al/ui_common.52af22fe0da9c4f28b25.css
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Size
15 kB (14772 bytes)
Hash
baab7cd826aa190036af396edd0fb64f
f1a9c3b3e187d590afe1241d057fd4ec0885237c
6df23170d94200b9cda48b5f768de7ea01d7468823909557f05eb1fe8fa03137

HTTP Headers

GET /css/al/ui_common.52af22fe0da9c4f28b25.css HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/css
content-length: 14772
last-modified: Fri, 03 Feb 2023 20:59:38 GMT
etag: "63dd75ba-39b4"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

st.vk.com/dist/polyfills.1881adbf36454e07c9c6.js?a69ef34dc1979f8d5126

87.240.132.78

200 OK

43 kB

URL HTTP/2
st.vk.com/dist/polyfills.1881adbf36454e07c9c6.js?a69ef34dc1979f8d5126
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65445)
Size
43 kB (43415 bytes)
Hash
a7157352830b630af348ef2f636726ff
2ce0ffd5a605490beb2850292b992e692b6426a8
533603e49671677c00f98be4cc0ff463d36098512cda07761ea03747168b80e3

HTTP Headers

GET /dist/polyfills.1881adbf36454e07c9c6.js?a69ef34dc1979f8d5126 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 43415
last-modified: Thu, 02 Feb 2023 23:04:52 GMT
etag: "63dc4194-a997"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

st.vk.com/dist/react.6d787991b51243317269.js?cb151ae0d77e1fe8ca23

87.240.132.78

200 OK

44 kB

URL HTTP/2
st.vk.com/dist/react.6d787991b51243317269.js?cb151ae0d77e1fe8ca23
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65449)
Size
44 kB (43811 bytes)
Hash
8d6ab054b91c1fdf73e251314677b689
40e5043d15cacc381cbae77ee0f22f94b562097a
fc97c0b1d58d2c32abacbd559120088ac47b59dcc218da80d28ee4814abb9cd7

HTTP Headers

GET /dist/react.6d787991b51243317269.js?cb151ae0d77e1fe8ca23 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 43811
last-modified: Tue, 29 Nov 2022 04:27:50 GMT
etag: "63858a46-ab23"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

st.vk.com/dist/vkcom-kit.72fe64a01981ddba762c.css

87.240.132.78

200 OK

3.4 kB

URL HTTP/2
st.vk.com/dist/vkcom-kit.72fe64a01981ddba762c.css
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (3542)
Size
3.4 kB (3409 bytes)
Hash
ec5e9651a45be188d921dd1b635e0c08
58ec92aaf4f72899d71c0130dfa36dda65d79a7e
4dc922e8d07f6aa6af4faab3ba339b2ccbb097b83cad41bf0e7d234056d5b129

HTTP Headers

GET /dist/vkcom-kit.72fe64a01981ddba762c.css HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/css
content-length: 3409
last-modified: Fri, 03 Feb 2023 22:27:11 GMT
etag: "63dd8a3f-d51"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

st.vk.com/dist/vkcom-kit.e219774a6d53f48889e4.js?

87.240.132.78

200 OK

9.2 kB

URL HTTP/2
st.vk.com/dist/vkcom-kit.e219774a6d53f48889e4.js?
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (37238), with no line terminators
Size
9.2 kB (9159 bytes)
Hash
678f88b379dd7386726feb711b77c793
6485eb467c789dd4db64d97c12b28454601536a8
47d0558fc18d6774a14d98a527090821d38ac7fa40dd1a153c6e4bdb54321898

HTTP Headers

GET /dist/vkcom-kit.e219774a6d53f48889e4.js? HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 9159
last-modified: Fri, 03 Feb 2023 22:27:11 GMT
etag: "63dd8a3f-23c7"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

st.vk.com/dist/audioplayer.0851881a4eef18ffc449.js?3096f39b0abb332841c54da

87.240.132.78

200 OK

41 kB

URL HTTP/2
st.vk.com/dist/audioplayer.0851881a4eef18ffc449.js?3096f39b0abb332841c54da
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Size
41 kB (41235 bytes)
Hash
c082a2a39d1b6bd439fe65f79d52b821
b9762cac21bea4a2191c950009bdd97a08aecc80
5a679e1c161039f4488763e474d9a5ca902abfdfc24555eeeae5a60df1a06504

HTTP Headers

GET /dist/audioplayer.0851881a4eef18ffc449.js?3096f39b0abb332841c54da HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 41235
last-modified: Fri, 03 Feb 2023 22:27:11 GMT
etag: "63dd8a3f-a113"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

st.vk.com/dist/web/ui_common.c932de453ebb5522ace5.js?b44e69867deb3b4ce7e51f288b3282a9

87.240.132.78

200 OK

22 kB

URL HTTP/2
st.vk.com/dist/web/ui_common.c932de453ebb5522ace5.js?b44e69867deb3b4ce7e51f288b3282a9
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Size
22 kB (21450 bytes)
Hash
0ed3f62fb42637cc259da142641c571c
eea921779d6b555486e6c0539d437e83f67199b0
a4341d11398f87d396c63865c5c425eeb049c674ab958f8052f05717082c0cbb

HTTP Headers

GET /dist/web/ui_common.c932de453ebb5522ace5.js?b44e69867deb3b4ce7e51f288b3282a9 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 21450
last-modified: Fri, 03 Feb 2023 22:27:10 GMT
etag: "63dd8a3e-53ca"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

st.vk.com/dist/web/audioplayer.72b153b464881dbaaa68.js?54f795ea5ff22834931743396c52a7d9

87.240.132.78

200 OK

2.2 kB

URL HTTP/2
st.vk.com/dist/web/audioplayer.72b153b464881dbaaa68.js?54f795ea5ff22834931743396c52a7d9
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (4639), with no line terminators
Size
2.2 kB (2177 bytes)
Hash
16931b18f813273dfad750bd4e831512
6c4123faf17af3bc7c627d24bb0b1d66a80fea17
2b8593c5b6ab638d6b23975d92807386336d9916e3a5c445c3f67fd491d9f799

HTTP Headers

GET /dist/web/audioplayer.72b153b464881dbaaa68.js?54f795ea5ff22834931743396c52a7d9 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 2177
last-modified: Fri, 03 Feb 2023 22:27:10 GMT
etag: "63dd8a3e-881"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

st.vk.com/css/al/widget_community.461c04150f1c05e585d0.css

87.240.132.78

200 OK

3.6 kB

URL HTTP/2
st.vk.com/css/al/widget_community.461c04150f1c05e585d0.css
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (21023)
Size
3.6 kB (3620 bytes)
Hash
dff507c02dd746a677f8d6d2bd8be332
912c3ee8aacbb0424570d8cc22083ebc37783fb4
a5ed1a62890c57c8f427e46cfad13dd335b39a77b4629dd3bea3950d5aae23b3

HTTP Headers

GET /css/al/widget_community.461c04150f1c05e585d0.css HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/css
content-length: 3620
last-modified: Sat, 28 Jan 2023 10:21:26 GMT
etag: "63d4f726-e24"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

st.vk.com/dist/web/likes.edf7c6de1ec6253b7cfc.js?795e261db986798394c6e0f0385ac3c7

87.240.132.78

200 OK

7.0 kB

URL HTTP/2
st.vk.com/dist/web/likes.edf7c6de1ec6253b7cfc.js?795e261db986798394c6e0f0385ac3c7
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (19104), with no line terminators
Size
7.0 kB (7011 bytes)
Hash
91d3b7d0160db7c16cee33c5709f1b6c
530922d5ef1052d96fc3de9945d99abe9ddb051a
44811b4af34fa64cde0978d2ebee2f0586a217fce34e971d9ba0cb33f896dddc

HTTP Headers

GET /dist/web/likes.edf7c6de1ec6253b7cfc.js?795e261db986798394c6e0f0385ac3c7 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 7011
last-modified: Fri, 03 Feb 2023 22:27:10 GMT
etag: "63dd8a3e-1b63"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

st.vk.com/css/al/base.fb1f9176f1f18f31fafa.css

87.240.132.78

200 OK

19 kB

URL HTTP/2
st.vk.com/css/al/base.fb1f9176f1f18f31fafa.css
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Size
19 kB (19321 bytes)
Hash
5ed0f0f69967de459372a9a8a34a9ddb
06542df889bd0f87355ecaf8290f1c5b4c635c35
dd2d3c632f76c270e4236c942470ff0dd0ff5d97fbf978e646c91c5cb67deb8f

HTTP Headers

GET /css/al/base.fb1f9176f1f18f31fafa.css HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/css
content-length: 19321
last-modified: Wed, 01 Feb 2023 07:33:04 GMT
etag: "63da15b0-4b79"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

st.vk.com/dist/vkui.9ce756e79bcf283a954f.js?1c1533386eeb375c81a5

87.240.132.78

200 OK

80 kB

URL HTTP/2
st.vk.com/dist/vkui.9ce756e79bcf283a954f.js?1c1533386eeb375c81a5
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65342), with no line terminators
Size
80 kB (79714 bytes)
Hash
6d17f0d8c1d02840b3d2c36119a8e201
829b78c970d90c80505337570a8ad00daea25015
fbae71c4ecd74b166120dbccea8e3b70bbec99833b9844d4f4741d0f595361e4

HTTP Headers

GET /dist/vkui.9ce756e79bcf283a954f.js?1c1533386eeb375c81a5 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 79714
last-modified: Wed, 11 Jan 2023 11:06:44 GMT
etag: "63be9844-13762"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

st.vk.com/css/al/fonts_cnt.7809321e6a2c5f3e361d.css

87.240.132.78

200 OK

254 kB

URL HTTP/2
st.vk.com/css/al/fonts_cnt.7809321e6a2c5f3e361d.css
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Size
254 kB (254075 bytes)
Hash
67419045730311e4456af7b82d4b75b3
eaf5bcc40c7a55dfcf104cf7ead2cb7508d4b3bf
5c585b4675e44bbabb0922c0574c6bd142a169901681287c29e8be54f5f5949a

HTTP Headers

GET /css/al/fonts_cnt.7809321e6a2c5f3e361d.css HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/css
content-length: 254075
last-modified: Wed, 14 Dec 2022 10:58:48 GMT
etag: "6399ac68-3e07b"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

st.vk.com/dist/api/widgets/community.js?1

87.240.132.78

200 OK

378 kB

URL HTTP/2
st.vk.com/dist/api/widgets/community.js?1
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65441)
Size
378 kB (378410 bytes)
Hash
8bc518c7677d09b5c0d5ccd73a54458b
9b5c835ce8d0d99203ba95a5a527a4cfc80d34e0
a8b17644644b08394e33a786724da63fd5f40b40e358722e9ac2c00c964e5bab

HTTP Headers

GET /dist/api/widgets/community.js?1 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 378410
last-modified: Sat, 04 Feb 2023 11:49:02 GMT
etag: "63de462e-5c62a"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11305
Expires: Sat, 04 Feb 2023 21:25:12 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive

ocsp2.globalsign.com/gsalphasha2g2

151.101.194.133

200 OK

1.4 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsalphasha2g2
IP
151.101.194.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1423 bytes)
Hash
d0b6637e35d830bd4e35a38a65d9e204
a781fca433bbcb586168be124b340990ccea5a89
3b4a973573ad4ff2082f647e9f971d97a42cbf731f1d2a0b0933d147a8ddcce0

HTTP Headers

POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1423
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 16:47:02 GMT
ETag: "a781fca433bbcb586168be124b340990ccea5a89"
Last-Modified: Sat, 04 Feb 2023 16:47:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 3360
X-Served-By: cache-qpg1259-QPG, cache-bma1637-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 6
X-Timer: S1675534607.127510,VS0,VE0

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
49f1ab27692e68c8aa2bc15b76194d67
0654a4657001045c54ff8d1106959bf36fc0b798
37b372db10326f9b0e175b81b437e09930c87c06b700c23b341e822aac1b3ff6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "37B372DB10326F9B0E175B81B437E09930C87C06B700C23B341E822AAC1B3FF6"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7429
Expires: Sat, 04 Feb 2023 20:20:36 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8527 bytes)
Hash
6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: f95a2821-ae89-4ea9-93b2-43e570285df3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEC3FyboAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8078-7e2177f11d5715d4092cad2c;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dcFgY5x3Ef0J__7wGn3llTjZ9as5nX1H4HErIT3VlKfeQaQTjymW2g==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:33 GMT
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
age: 72374
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

dm-eu.hybrid.ai/match?id=106&vid=1303420A0EA1DE63850ACC760287A896

37.18.103.21

204 No Content

0 B

URL HTTP/2
dm-eu.hybrid.ai/match?id=106&vid=1303420A0EA1DE63850ACC760287A896
IP
37.18.103.21:0
ASN
#205675 Hybrid LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?id=106&vid=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Sat, 04 Feb 2023 18:16:47 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=f3459586447f79792340; Expires=Sun, 04 Feb 2024 18:16:46 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 524
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8211 bytes)
Hash
114e345e134986d7451148fcea31b29d
541e878afee68c8802bb52b0cbbe5a5a0a185392
5030244d4babd1023166f39c935029d789a91ba90aa3a44c6f4c88ddc947b678

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8211
x-amzn-requestid: 6a1fd567-b34d-4787-aa05-5b7db3fc51c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fflRBHU4IAMFnsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61c06-2d1ec3206d2ebeb4780a84b4;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:11:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUloQ6xaRWpnvMRh7kFvFIWhFotmILLZHfD_YK01RmrQ2vmYKVh46w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 03:08:59 GMT
age: 54468
etag: "541e878afee68c8802bb52b0cbbe5a5a0a185392"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2c26a5b2867f8f53d8b0c163fe24fdc9
a38fbf22fe7d65693c45ffd1f547871ba7321dd5
ecc618bb22bdf99f2c606fa48c65af2a2989141b4f9b7a6788bc4ccabdc04e49

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECC618BB22BDF99F2C606FA48C65AF2A2989141B4F9B7A6788BC4CCABDC04E49"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3404
Expires: Sat, 04 Feb 2023 19:13:31 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9eb9bf783fc88b84f333ff5329a11a61
7717ff74884ae148351efb3129c73f89cf38f160
74c8efdc4d58d26c28c950d103a1337f9bfabc46b10f278efcdc3fc44c90caac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "74C8EFDC4D58D26C28C950D103A1337F9BFABC46B10F278EFCDC3FC44C90CAAC"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12593
Expires: Sat, 04 Feb 2023 21:46:40 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive

st.vk.com/js/api/xdm.js?9

87.240.132.78

200 OK

503 B

URL HTTP/2
st.vk.com/js/api/xdm.js?9
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
data
Size
503 B (503 bytes)
Hash
aa462c0924ed4264cfec9c27f31963f0
5ac1625a35dcd44b33f94de25ea8fd069e3136de
6b0ada644929e561f608ed2bc8f8594dd112adc58441fdc3f697fe0fa15328bd

HTTP Headers

GET /js/api/xdm.js?9 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 2846
last-modified: Tue, 22 Sep 2020 20:30:00 GMT
etag: "5f6a5ec8-b1e"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
06326d175fe6b9f132cca262f6cfc83a
7cc59607986862d382ecac86a9cbac7de1452243
5b1e0928a61a4f7bcf77bfe8f253a84b92ff7b670287823243d0efdef3fb2929

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5B1E0928A61A4F7BCF77BFE8F253A84B92FF7B670287823243D0EFDEF3FB2929"
Last-Modified: Sat, 04 Feb 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7189
Expires: Sat, 04 Feb 2023 20:16:36 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
b15864b681565c47016989bd0f3fa6ae
83bdb0c8554e6f239f9d29a5c0a810dc6d791fa1
8af0d0932fc09fa92c8f80f5e80e334573be021b84427dc03fc83bcacdd26ad7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6336
Cache-Control: max-age=169555
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 18:16:47 GMT
Etag: "63de7ba2-117"
Expires: Mon, 06 Feb 2023 17:22:42 GMT
Last-Modified: Sat, 04 Feb 2023 15:37:06 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5431f65b9752265c73dfc20feb11c708
a02c33915a5a1d746fe3f0a0110780a4ecf16cf5
1ab127bb9135946104c60ec117163be6987288b63a642decc67cdbf2274597e2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1AB127BB9135946104C60EC117163BE6987288B63A642DECC67CDBF2274597E2"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10672
Expires: Sat, 04 Feb 2023 21:14:39 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5bc2a9d5fd3216e47b405a4181397181
04cdb983fd69c0a4605ce3d4c6d8593222411571
e972de61d850dff6463b38f51a57ad3d5b28b0fef2f83b41daa1463270a7da2b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E972DE61D850DFF6463B38F51A57AD3D5B28B0FEF2F83B41DAA1463270A7DA2B"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13264
Expires: Sat, 04 Feb 2023 21:57:51 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
894948b5d268f1d2a21f7d915eb79138
5fe7d1a9c6301b317b73f4037b29856eac674931
cb23963aab51ebbb8c7626800a4b1df5222c068cecf4538511cb38dbbb0960d5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB23963AAB51EBBB8C7626800A4B1DF5222C068CECF4538511CB38DBBB0960D5"
Last-Modified: Thu, 02 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3224
Expires: Sat, 04 Feb 2023 19:10:31 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive

ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D

193.3.184.212

302 Moved Temporarily

142 B

URL HTTP/1.1
ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
IP
193.3.184.212:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=3303420A0FA1DE634D00C660025A4220
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkIDM2PeoQ9gxgBNIEJaAlKiGL3+jmAizTmiJajbVvD8Bum5; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3fd7da2b4e741b78de53d1c10701e627
2094d5dc57b8f3c5291eedf0fdf57ca5486b78e1
43d3642eab9b1aa4aa467075453a7eb84479425af207d9f1238951421f6cf0db

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "43D3642EAB9B1AA4AA467075453A7EB84479425AF207D9F1238951421F6CF0DB"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5948
Expires: Sat, 04 Feb 2023 19:55:55 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive

sync.upravel.com/sape/sync

176.9.8.252

302 Found

0 B

URL HTTP/2
sync.upravel.com/sape/sync
IP
176.9.8.252:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1675534607254;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1675534607254;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2

sync.bumlam.com/?src=sap1&uid=1303420A0EA1DE63850ACC760287A896

31.172.81.159

302 Moved Temporarily

0 B

URL HTTP/1.1
sync.bumlam.com/?src=sap1&uid=1303420A0EA1DE63850ACC760287A896
IP
31.172.81.159:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sap1&uid=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQxNjQwNGE0YS1hNGI4LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Fri, 30 Jan 2043 18:16:47 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARiPwvqeBmIgMTMwMzQyMEEwRUExREU2Mzg1MEFDQzc2MDI4N0E4OTaiARAWQEpKpLgR7aHEACWQyCQ3
ETag: 16404a4a-a4b8-11ed-a1c4-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0

ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D

185.147.80.35

302 Found

74 B

URL HTTP/1.1
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
IP
185.147.80.35:0
ASN
#41722 Miran Ltd.

File type
HTML document, ASCII text
Size
74 B (74 bytes)
Hash
ea9fe3479bfbea5ef9a0806e4684735e
d44cf62dbfbd1ecbdd6b30f4c553c81a5ca766ba
92f5de1247c13b1bfbb9dc97bb17552430f2b5984a317e4bf50c00852e5c8f22

HTTP Headers

GET /sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 74
Connection: keep-alive
Location: https://www.acint.net/match?dp=95&euid=HPDHGCUF
Set-Cookie: uid=HPDHGCUF; Expires=Tue, 01 Feb 2033 18:16:47 GMT

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9141 bytes)
Hash
f7101f6e43855cb76ce48271a847ffbd
8e674830a97d8ce3818132fda197db4f0289d316
e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9141
x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD8zE5lIAMF1HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6kDIOqhM4aVL80sF02uFu2TuGbiBE7_L_S2W7x-P46hO5YZFmuL9nQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:13:30 GMT
age: 72197
etag: "8e674830a97d8ce3818132fda197db4f0289d316"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.globalsign.com/alphasslcasha256g4

151.101.130.133

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/alphasslcasha256g4
IP
151.101.130.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1437 bytes)
Hash
f6308945e5f492f900eac31ec0c9d15b
e938d659a26ef7e91feac70e663d99dadd9f79bb
15e0fd422f1402004d40b9e0d383100a9ca5c3fd15e5cdf391471b247dfd3327

HTTP Headers

POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1437
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 15:56:08 GMT
ETag: "e938d659a26ef7e91feac70e663d99dadd9f79bb"
Last-Modified: Sat, 04 Feb 2023 15:56:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 1163
X-Served-By: cache-qpg1230-QPG, cache-bma1667-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 3
X-Timer: S1675534607.282067,VS0,VE0

s.uuidksinc.net/match/396/?remote_uid=1303420A0EA1DE63850ACC760287A896

31.220.27.135

302 Found

0 B

URL HTTP/2
s.uuidksinc.net/match/396/?remote_uid=1303420A0EA1DE63850ACC760287A896
IP
31.220.27.135:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/396/?remote_uid=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx/1.19.0
date: Sat, 04 Feb 2023 18:16:47 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=y5jVgTF8THVJTMd5IYQr
set-cookie: jcsuuid=y5jVgTF8THVJTMd5IYQr; expires=Sun, 04 Feb 2024 18:16:47 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5174 bytes)
Hash
e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
age: 72386
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

pix.bumlam.com/sync/sape/check?sspuid=1303420A0EA1DE63850ACC760287A896

31.172.81.159

302 Found

0 B

URL HTTP/1.1
pix.bumlam.com/sync/sape/check?sspuid=1303420A0EA1DE63850ACC760287A896
IP
31.172.81.159:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync/sape/check?sspuid=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape

www.acint.net/oci.js?t=1675534643206

193.3.184.229

200 OK

10 kB

URL HTTP/2
www.acint.net/oci.js?t=1675534643206
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
data
Size
10 kB (10253 bytes)
Hash
392b61306c346508d3ac4a2f28218f9c
d2de32b52e0d3f4fc6acaf687b3521294b01dc03
018712a4d6734b84ac1777124f97dae4d93b1e5b297a5dcfe0955b52710b8a35

HTTP Headers

GET /oci.js?t=1675534643206 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
last-modified: Mon, 09 Jan 2023 08:01:14 GMT
etag: W/"63bbc9ca-7dac"
content-encoding: gzip
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11565 bytes)
Hash
e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:48:04 GMT
age: 73723
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

sync.dmp.otm-r.com/match/sape?id=1303420A0EA1DE63850ACC760287A896

195.201.152.110

204 No Content

0 B

URL HTTP/2
sync.dmp.otm-r.com/match/sape?id=1303420A0EA1DE63850ACC760287A896
IP
195.201.152.110:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/sape?id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx/1.17.6
date: Sat, 04 Feb 2023 18:16:47 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2

a.utraff.com/sync?ssp=Sape

104.21.59.66

204 No Content

0 B

URL HTTP/2
a.utraff.com/sync?ssp=Sape
IP
104.21.59.66:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?ssp=Sape HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Mon, 06 Mar 2023 21:16:47 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Mon, 06 Mar 2023 21:16:47 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L57uNClsqHPimFsJg002yFa0Jiei%2FGVuNmlb7qfPpo%2FFUedbjwIhNJJRWum5Rz3mfqh3GKmNJv2Av9hkT3CGehEeXdNh74J0%2BClbfddCuX%2Ba%2FXZxlYFH%2FU3hyPThTk0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7945663f6d72b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

match.new-programmatic.com/userbind?src=sape&id=1303420A0EA1DE63850ACC760287A896

217.65.2.150

204 No Content

0 B

URL HTTP/1.1
match.new-programmatic.com/userbind?src=sape&id=1303420A0EA1DE63850ACC760287A896
IP
217.65.2.150:0
ASN
#3175 Filanco LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /userbind?src=sape&id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin

nr.bidderstack.com/sape/cm?user_id=1303420A0EA1DE63850ACC760287A896

23.88.12.13

200 OK

44 B

URL HTTP/1.1
nr.bidderstack.com/sape/cm?user_id=1303420A0EA1DE63850ACC760287A896
IP
23.88.12.13:0
ASN
#24940 Hetzner Online GmbH

File type
GIF image data, version 89a, 1 x 1\012- data
Size
44 B (44 bytes)
Hash
f9d60352c70a2ba15616d1c9421f3844
e9abc8bea7721a4b6a50295850d13c515006a95c
82cb517a8f80c91dfcec543c6d140deb3baaf463ea9e77655475096eba7bc7d9

HTTP Headers

GET /sape/cm?user_id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: image/gif
Content-Length: 44
Connection: keep-alive
Access-Control-Allow-Credentials: true

sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1303420A0EA1DE63850ACC760287A896

87.242.89.90

200 OK

12 B

URL HTTP/2
sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1303420A0EA1DE63850ACC760287A896
IP
87.242.89.90:0
ASN
#25532 LLC masterhost

File type
exported SGML document, ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
d8932e1cb3ee147415fbf5591a7217ca
97da5b95fb7f60ecd8d9ed0e5a05d83ad5a9c070
c0327cbcde50f1ab8228334a550b947301123d6f6f7d625707cb6d08a1faec35

HTTP Headers

GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: text/html
content-length: 12
last-modified: Mon, 30 Jan 2023 18:57:34 GMT
etag: "63d8131e-c"
accept-ranges: bytes
server: elb
X-Firefox-Spdy: h2

cs.agency2.ru/p?ssp=sp&uid=1303420A0EA1DE63850ACC760287A896

23.111.107.44

301 Moved Permanently

0 B

URL HTTP/1.1
cs.agency2.ru/p?ssp=sp&uid=1303420A0EA1DE63850ACC760287A896
IP
23.111.107.44:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p?ssp=sp&uid=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=d9f2a9cc-77ea-436b-94b1-fdba0f38bf5e
Set-Cookie: uuid=d9f2a9cc-77ea-436b-94b1-fdba0f38bf5e; expires=Fri, 26 Jan 2024 18:16:47 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44

sync.adspend.space/sape?uid=1303420A0EA1DE63850ACC760287A896

212.76.129.183

302 Found

149 B

URL HTTP/2
sync.adspend.space/sape?uid=1303420A0EA1DE63850ACC760287A896
IP
212.76.129.183:0
ASN
#42632 MnogoByte LLC

File type
HTML document, ASCII text
Size
149 B (149 bytes)
Hash
1b6b0732d062675cdcc5e5259f02fd2e
9f2cb0ddd91d70f73145f46d8cfd9fd2f97f47d2
c8acf62b8c89df8fc07e547c86ea63bb43086e40d761ca86754cc48e99f0ab47

HTTP Headers

GET /sape?uid=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: text/html; charset=utf-8
content-length: 149
location: https://sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Ddd9070fb-f4b2-4be0-a432-6541edfe4c70
set-cookie: as-user=dd9070fb-f4b2-4be0-a432-6541edfe4c70; Path=/; Max-Age=31536000; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

sync.bumlam.com/?src=sap1&s_data=CAIQARiPwvqeBmIgMTMwMzQyMEEwRUExREU2Mzg1MEFDQzc2MDI4N0E4OTaiARAWQEpKpLgR7aHEACWQyCQ3

31.172.81.159

200 OK

0 B

URL HTTP/1.1
sync.bumlam.com/?src=sap1&s_data=CAIQARiPwvqeBmIgMTMwMzQyMEEwRUExREU2Mzg1MEFDQzc2MDI4N0E4OTaiARAWQEpKpLgR7aHEACWQyCQ3
IP
31.172.81.159:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sap1&s_data=CAIQARiPwvqeBmIgMTMwMzQyMEEwRUExREU2Mzg1MEFDQzc2MDI4N0E4OTaiARAWQEpKpLgR7aHEACWQyCQ3 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQxNjQwNGE0YS1hNGI4LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQxNjQwNGE0YS1hNGI4LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Fri, 30 Jan 2043 18:16:47 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0

mc.yandex.ru/watch/39365090/1?wmode=7&page-url=https%3A%2F%2Fuznay-prezidenta.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A2025%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1538901617343%3Ahid%3A837025276%3Az%3A0%3Ai%3A20230204181723%3Aet%3A1675534644%3Ac%3A1%3Arn%3A708722734%3Arqn%3A1%3Au%3A1675534644997442234%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A16%2C215%2C1088%2C0%2C361%2C0%2C%2C373%2C31%2C%2C%2C%2C2069%3Aco%3A0%3Ans%3A1675534640938%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675534644%3At%3A%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29

93.158.134.119

200 OK

426 B

URL HTTP/2
mc.yandex.ru/watch/39365090/1?wmode=7&page-url=https%3A%2F%2Fuznay-prezidenta.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A2025%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1538901617343%3Ahid%3A837025276%3Az%3A0%3Ai%3A20230204181723%3Aet%3A1675534644%3Ac%3A1%3Arn%3A708722734%3Arqn%3A1%3Au%3A1675534644997442234%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A16%2C215%2C1088%2C0%2C361%2C0%2C%2C373%2C31%2C%2C%2C%2C2069%3Aco%3A0%3Ans%3A1675534640938%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675534644%3At%3A%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
JSON data\012- , ASCII text, with very long lines (426), with no line terminators
Size
426 B (426 bytes)
Hash
d4831965e1791b7c90767dd7e1ef5828
36cc414ffde72d3f34970038dce178adba55098b
ba84a3686f5f670c1e1e2dab4d7ea03ac755cd222dbd6adefd1e4be952c24476

HTTP Headers

GET /watch/39365090/1?wmode=7&page-url=https%3A%2F%2Fuznay-prezidenta.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A2025%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1538901617343%3Ahid%3A837025276%3Az%3A0%3Ai%3A20230204181723%3Aet%3A1675534644%3Ac%3A1%3Arn%3A708722734%3Arqn%3A1%3Au%3A1675534644997442234%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A16%2C215%2C1088%2C0%2C361%2C0%2C%2C373%2C31%2C%2C%2C%2C2069%3Aco%3A0%3Ans%3A1675534640938%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675534644%3At%3A%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uznay-prezidenta.ru
Referer: https://uznay-prezidenta.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 426
date: Sat, 04 Feb 2023 18:16:47 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://uznay-prezidenta.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 18:16:47 GMT
last-modified: Sat, 04-Feb-2023 18:16:47 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
b15864b681565c47016989bd0f3fa6ae
83bdb0c8554e6f239f9d29a5c0a810dc6d791fa1
8af0d0932fc09fa92c8f80f5e80e334573be021b84427dc03fc83bcacdd26ad7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6336
Cache-Control: max-age=169555
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 18:16:47 GMT
Etag: "63de7ba2-117"
Expires: Mon, 06 Feb 2023 17:22:42 GMT
Last-Modified: Sat, 04 Feb 2023 15:37:06 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
1afd3517ebc844038700db8c82d69ae3
1327e511903b229cd36c1647fdb71c17d4ce7bdd
ff3430f1affa22881cd632c75d9f51cb97deb53a2cd76f3ee3be5e4b0518192a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 23:26:49 GMT
Expires: Wed, 08 Feb 2023 23:26:48 GMT
Etag: "1327e511903b229cd36c1647fdb71c17d4ce7bdd"
Cache-Control: max-age=363600,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945663f8b89b4ed-OSL

sync.programmatica.com/match/RTBSape?id=1303420A0EA1DE63850ACC760287A896

167.235.117.41

302 Found

0 B

URL HTTP/2
sync.programmatica.com/match/RTBSape?id=1303420A0EA1DE63850ACC760287A896
IP
167.235.117.41:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/RTBSape?id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-length: 0
location: https://sync.programmatica.com/match/RTBSape?id=1303420A0EA1DE63850ACC760287A896&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0

176.9.8.252

302 Found

0 B

URL HTTP/2
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP
176.9.8.252:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: session_tptc=1675534607254
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=5f8abbbc-6322-46c5-be68-ca8a5e7bce26;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=5f8abbbc-6322-46c5-be68-ca8a5e7bce26;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/match?dp=71&euid=5f8abbbc-6322-46c5-be68-ca8a5e7bce26
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2

www.acint.net/match?dp=129&euid=812ow7lvm0

193.3.184.229

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=129&euid=812ow7lvm0
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=129&euid=812ow7lvm0 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.acint.net/mc/?dp=10&tc=1

193.3.184.229

200 OK

1.3 kB

URL HTTP/2
www.acint.net/mc/?dp=10&tc=1
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
1.3 kB (1282 bytes)
Hash
67b85d2793e5418b66bc26ffb10529ee
3d6f69b7b3b0475954f06f0e8905962d574566f7
6e5d6ea1c19eb85fedde0a643c3197a833a1ba040b345d16053f57c4ce38bb68

HTTP Headers

GET /mc/?dp=10&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uznay-prezidenta.ru/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/html
set-cookie: cSyncDp7v2=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp14v3=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp32=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v3=1675534606; expires=Sun, 05-Feb-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53v2=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v2=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v3=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp98v2=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp101=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1675534606; expires=Sat, 18-Feb-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v3=1675534606; expires=Sun, 19-Feb-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v2=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v2=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp178=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp221=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp235=1675534606; expires=Mon, 06-Mar-23 18:16:46 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2

mc.yandex.ru/metrika/advert.gif

93.158.134.119

200 OK

43 B

URL HTTP/2
mc.yandex.ru/metrika/advert.gif
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 43
date: Sat, 04 Feb 2023 18:16:47 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Sat, 04 Feb 2023 19:16:47 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

www.acint.net/match?dp=95&euid=HPDHGCUF

193.3.184.229

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=95&euid=HPDHGCUF
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=95&euid=HPDHGCUF HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D

5.200.43.131

302 Found

43 B

URL HTTP/2
ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
IP
5.200.43.131:0
ASN
#48096 Enterprise Cloud Ltd.

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: https://acint.net/match?dp=110&euid=63c8c97b43994d079eefca0d3f7d7b27
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=63c8c97b43994d079eefca0d3f7d7b27; expires=Sat, 03 Feb 2024 21:00:00 GMT; path=/; SameSite=None; secure; samesite=lax
date: Sat, 04 Feb 2023 18:16:47 GMT
X-Firefox-Spdy: h2

dmp.gotechnology.io/match/sape?id=1303420A0EA1DE63850ACC760287A896

167.235.32.7

302 Found

0 B

URL HTTP/2
dmp.gotechnology.io/match/sape?id=1303420A0EA1DE63850ACC760287A896
IP
167.235.32.7:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/sape?id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-length: 0
location: https://dmp.gotechnology.io/match/sape?id=1303420A0EA1DE63850ACC760287A896&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

acint.net/match?dp=110&euid=63c8c97b43994d079eefca0d3f7d7b27

193.3.184.229

200 OK

43 B

URL HTTP/2
acint.net/match?dp=110&euid=63c8c97b43994d079eefca0d3f7d7b27
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=110&euid=63c8c97b43994d079eefca0d3f7d7b27 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

acint.net/match?dp=14&euid=3303420A0FA1DE634D00C660025A4220

193.3.184.229

200 OK

43 B

URL HTTP/2
acint.net/match?dp=14&euid=3303420A0FA1DE634D00C660025A4220
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=14&euid=3303420A0FA1DE634D00C660025A4220 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
dbb3fe4d8642c214cf6c1f4523abff84
595c46af4c12a911a209b5d4c6f12b5834b4cbc1
2193d8508d4538173a02bca99856f53dc4b1e4ad0c2bbd057b20d76349f25435

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 03:41:04 GMT
Expires: Sat, 11 Feb 2023 03:41:03 GMT
Etag: "595c46af4c12a911a209b5d4c6f12b5834b4cbc1"
Cache-Control: max-age=551655,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945663f6ac70b31-OSL

exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D

144.76.119.17

301 Moved Permanently

115 B

URL HTTP/2
exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
IP
144.76.119.17:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document, ASCII text
Size
115 B (115 bytes)
Hash
19316b20aab857b2b9e1db7dd5558b8f
6f61bb37f9f52040fb49dab6e9ff1f5a2efcc90a
b1e45def5a3cafee8979fc64df50a5e67aea75db5063e5e545c65ecce990f166

HTTP Headers

GET /cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: text/html; charset=utf-8
content-length: 115
location: https://www.acint.net/match?dp=126&euid=76f09a6a-8a20-4168-638c-4ad5beca9dc9
serverid: TODO
X-Firefox-Spdy: h2

www.acint.net/match?dp=186&euid=d9f2a9cc-77ea-436b-94b1-fdba0f38bf5e

193.3.184.229

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=186&euid=d9f2a9cc-77ea-436b-94b1-fdba0f38bf5e
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=186&euid=d9f2a9cc-77ea-436b-94b1-fdba0f38bf5e HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

pix.bumlam.com/sync/sape/sync_ok?guid=16404a4a-a4b8-11ed-a1c4-002590c82437

31.172.81.159

302 Found

0 B

URL HTTP/1.1
pix.bumlam.com/sync/sape/sync_ok?guid=16404a4a-a4b8-11ed-a1c4-002590c82437
IP
31.172.81.159:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync/sape/sync_ok?guid=16404a4a-a4b8-11ed-a1c4-002590c82437 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQxNjQwNGE0YS1hNGI4LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://16404a4a-a4b8-11ed-a1c4-002590c82437.n2.sync.bumlam.com/?src=sape

sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Ddd9070fb-f4b2-4be0-a432-6541edfe4c70

212.76.129.183

302 Found

102 B

URL HTTP/2
sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Ddd9070fb-f4b2-4be0-a432-6541edfe4c70
IP
212.76.129.183:0
ASN
#42632 MnogoByte LLC

File type
HTML document, ASCII text
Size
102 B (102 bytes)
Hash
2b3646ae5906991ee5384279be698bf2
7d813a8f802e901099ecc2b3948da5a1b1597dd9
64c85dfd04005503bc453b1c7600b86e8952c86909973decd7738de778daaf54

HTTP Headers

GET /check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Ddd9070fb-f4b2-4be0-a432-6541edfe4c70 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: as-user=dd9070fb-f4b2-4be0-a432-6541edfe4c70
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: text/html; charset=utf-8
content-length: 102
location: https://www.acint.net/match?dp=98&euid=dd9070fb-f4b2-4be0-a432-6541edfe4c70
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

sync.programmatica.com/match/RTBSape?id=1303420A0EA1DE63850ACC760287A896&chk=1

167.235.117.41

200 OK

43 B

URL HTTP/2
sync.programmatica.com/match/RTBSape?id=1303420A0EA1DE63850ACC760287A896&chk=1
IP
167.235.117.41:0
ASN
#24940 Hetzner Online GmbH

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7

HTTP Headers

GET /match/RTBSape?id=1303420A0EA1DE63850ACC760287A896&chk=1 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
set-cookie: pid=YzQ5Y2YwYzEzNjYyY2Fj; expires=Sun, 04 Aug 2024 18:16:47 GMT; domain=.programmatica.com; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

dmp.gotechnology.io/match/sape?id=1303420A0EA1DE63850ACC760287A896&chk=1

167.235.32.7

302 Found

0 B

URL HTTP/2
dmp.gotechnology.io/match/sape?id=1303420A0EA1DE63850ACC760287A896&chk=1
IP
167.235.32.7:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/sape?id=1303420A0EA1DE63850ACC760287A896&chk=1 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-length: 0
location: https://an.yandex.ru/mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw
set-cookie: pid=NGI1OWMzNzExNTcxY2U3Nw; expires=Sun, 04 Feb 2024 18:16:47 GMT; domain=.gotechnology.io; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2

www.acint.net/match?dp=71&euid=5f8abbbc-6322-46c5-be68-ca8a5e7bce26

193.3.184.229

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=71&euid=5f8abbbc-6322-46c5-be68-ca8a5e7bce26
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=71&euid=5f8abbbc-6322-46c5-be68-ca8a5e7bce26 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.acint.net/match?dp=126&euid=76f09a6a-8a20-4168-638c-4ad5beca9dc9

193.3.184.229

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=126&euid=76f09a6a-8a20-4168-638c-4ad5beca9dc9
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=126&euid=76f09a6a-8a20-4168-638c-4ad5beca9dc9 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.acint.net/match?dp=98&euid=dd9070fb-f4b2-4be0-a432-6541edfe4c70

193.3.184.229

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=98&euid=dd9070fb-f4b2-4be0-a432-6541edfe4c70
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=98&euid=dd9070fb-f4b2-4be0-a432-6541edfe4c70 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

vk.com/images/camera_50.png

87.240.132.78

200 OK

570 B

URL HTTP/2
vk.com/images/camera_50.png
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type
PNG image data, 50 x 50, 8-bit/color RGB, non-interlaced\012- data
Size
570 B (570 bytes)
Hash
b17a9dcdcc1e5028061e3c769a736e0d
55a0cff39baf55044b77888f5503925319279b38
e3b9c102be54a21fc534271c42ff116be61325240fac9649023cc6adf41d8e72

HTTP Headers

GET /images/camera_50.png HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/widget_community.php?app=0&width=260px&_ver=1&gid=127951671&mode=3&color1=FFFFFF&color2=000000&color3=5E81A8&class_name=&height=400&url=https%3A%2F%2Fuznay-prezidenta.ru%2F&referrer=&title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&1861da5af39
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/png
content-length: 570
last-modified: Tue, 22 Sep 2020 20:29:55 GMT
etag: "5f6a5ec3-23a"
expires: Sat, 11 Feb 2023 18:16:47 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp2.globalsign.com/gsorganizationvalsha2g2

151.101.194.133

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
151.101.194.133:0
ASN
#54113 FASTLY

File type
data
Size
1.5 kB (1459 bytes)
Hash
edc215d1648944fdde23bf44f3a13d65
874146e987640124e4319f59ceb41ebe1c6a5070
5f8789a58131789b5f6444266d098b6bade3357f3c0b2dd8439b539c8f319646

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 14:26:28 GMT
ETag: "874146e987640124e4319f59ceb41ebe1c6a5070"
Last-Modified: Sat, 04 Feb 2023 14:26:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 3512
X-Served-By: cache-qpg1271-QPG, cache-bma1637-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 20
X-Timer: S1675534608.678678,VS0,VE0

ocsp2.globalsign.com/gsorganizationvalsha2g2

151.101.194.133

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
151.101.194.133:0
ASN
#54113 FASTLY

File type
data
Size
1.5 kB (1459 bytes)
Hash
edc215d1648944fdde23bf44f3a13d65
874146e987640124e4319f59ceb41ebe1c6a5070
5f8789a58131789b5f6444266d098b6bade3357f3c0b2dd8439b539c8f319646

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 14:26:28 GMT
ETag: "874146e987640124e4319f59ceb41ebe1c6a5070"
Last-Modified: Sat, 04 Feb 2023 14:26:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 3512
X-Served-By: cache-qpg1271-QPG, cache-bma1637-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 21
X-Timer: S1675534608.689005,VS0,VE0

ocsp2.globalsign.com/gsorganizationvalsha2g2

151.101.194.133

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
151.101.194.133:0
ASN
#54113 FASTLY

File type
data
Size
1.5 kB (1459 bytes)
Hash
edc215d1648944fdde23bf44f3a13d65
874146e987640124e4319f59ceb41ebe1c6a5070
5f8789a58131789b5f6444266d098b6bade3357f3c0b2dd8439b539c8f319646

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 14:26:28 GMT
ETag: "874146e987640124e4319f59ceb41ebe1c6a5070"
Last-Modified: Sat, 04 Feb 2023 14:26:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 3512
X-Served-By: cache-qpg1271-QPG, cache-bma1646-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 26
X-Timer: S1675534608.689490,VS0,VE0

ocsp2.globalsign.com/gsorganizationvalsha2g2

151.101.194.133

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
151.101.194.133:0
ASN
#54113 FASTLY

File type
data
Size
1.5 kB (1459 bytes)
Hash
edc215d1648944fdde23bf44f3a13d65
874146e987640124e4319f59ceb41ebe1c6a5070
5f8789a58131789b5f6444266d098b6bade3357f3c0b2dd8439b539c8f319646

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1459
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 14:26:28 GMT
ETag: "874146e987640124e4319f59ceb41ebe1c6a5070"
Last-Modified: Sat, 04 Feb 2023 14:26:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 3512
X-Served-By: cache-qpg1271-QPG, cache-bma1651-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 18
X-Timer: S1675534608.693222,VS0,VE0

sun9-2.userapi.com/c1423/u2360911/e_fbeb72a0.jpg

87.240.185.129

200 OK

2.5 kB

URL HTTP/2
sun9-2.userapi.com/c1423/u2360911/e_fbeb72a0.jpg
IP
87.240.185.129:0
ASN
#47541 VKontakte Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 93", baseline, precision 8, 50x50, components 3\012- data
Size
2.5 kB (2472 bytes)
Hash
1615d4244b59f0ce2bcd8f9a409c0f14
6b818bc8f52f1d4ebdeef3081cd2da1ae09b89c7
f830d82182c0ae7a42a3659a26892a04fd34479f9b7495bfd9b47d085225a8d2

HTTP Headers

GET /c1423/u2360911/e_fbeb72a0.jpg HTTP/1.1
Host: sun9-2.userapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/jpeg
content-length: 2472
last-modified: Sun, 31 Oct 2010 15:03:26 GMT
etag: "4ccd853e-9a8"
expires: Mon, 06 Mar 2023 18:16:47 GMT
cache-control: max-age=2592000
x-frontend: front221101
access-control-expose-headers: X-Frontend
strict-transport-security: max-age=15768000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2

sun9-45.userapi.com/s/v1/if2/wl0Q0rvC4vaxmjTio3pqqCzDbW9dvpbYfjl-E09wMyFqPuCq1jmKstSWx9FgeGHka6JEwY__Tc1fCM51G0cSXZri.jpg?size=50x50&quality=96&crop=512,192,1536,1536&ava=1

87.240.185.148

200 OK

3.3 kB

URL HTTP/2
sun9-45.userapi.com/s/v1/if2/wl0Q0rvC4vaxmjTio3pqqCzDbW9dvpbYfjl-E09wMyFqPuCq1jmKstSWx9FgeGHka6JEwY__Tc1fCM51G0cSXZri.jpg?size=50x50&quality=96&crop=512,192,1536,1536&ava=1
IP
87.240.185.148:0
ASN
#47541 VKontakte Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size
3.3 kB (3330 bytes)
Hash
39591635ffddf2e2886bd4bc9a7b84d5
58e0f39c784fb60658f3ab7e755ba99309546c5e
560614ef2bd0047ce901b26ee28ab27dc98fff8cc96da74aac1c2d83b6494ee6

HTTP Headers

GET /s/v1/if2/wl0Q0rvC4vaxmjTio3pqqCzDbW9dvpbYfjl-E09wMyFqPuCq1jmKstSWx9FgeGHka6JEwY__Tc1fCM51G0cSXZri.jpg?size=50x50&quality=96&crop=512,192,1536,1536&ava=1 HTTP/1.1
Host: sun9-45.userapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/jpeg
content-length: 3330
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
x-imp: 525602
expires: Mon, 06 Mar 2023 18:16:47 GMT
cache-control: max-age=2592000
x-frontend: front225000
access-control-expose-headers: X-Frontend
strict-transport-security: max-age=15768000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2

sun9-77.userapi.com/s/v1/if1/QQ619YQWNwOXr82DyLnbKOwksBZ-hPVUFzK3FH_f9yghHdC_0fWVzxqRGarAAZEO5QpfWsNB.jpg?size=50x50&quality=96&crop=0,0,200,200&ava=1

87.240.169.0

200 OK

2.5 kB

URL HTTP/2
sun9-77.userapi.com/s/v1/if1/QQ619YQWNwOXr82DyLnbKOwksBZ-hPVUFzK3FH_f9yghHdC_0fWVzxqRGarAAZEO5QpfWsNB.jpg?size=50x50&quality=96&crop=0,0,200,200&ava=1
IP
87.240.169.0:0
ASN
#47541 VKontakte Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size
2.5 kB (2461 bytes)
Hash
c08d662ab54c7bf6e99c7d2ac3b8269c
79d58866a054d82abea57406606ffda65a9e9468
a545c1df2ea4cc6d757974856c318d52bd574ca84e45fcea2fc2f6aba57ac11c

HTTP Headers

GET /s/v1/if1/QQ619YQWNwOXr82DyLnbKOwksBZ-hPVUFzK3FH_f9yghHdC_0fWVzxqRGarAAZEO5QpfWsNB.jpg?size=50x50&quality=96&crop=0,0,200,200&ava=1 HTTP/1.1
Host: sun9-77.userapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/jpeg
content-length: 2461
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
x-imp: 525600
expires: Mon, 06 Mar 2023 18:16:47 GMT
cache-control: max-age=2592000
x-frontend: front806205
access-control-expose-headers: X-Frontend
strict-transport-security: max-age=15768000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2

sun9-67.userapi.com/c5568/u1043663/e_59a621d4.jpg

87.240.185.166

200 OK

2.3 kB

URL HTTP/2
sun9-67.userapi.com/c5568/u1043663/e_59a621d4.jpg
IP
87.240.185.166:0
ASN
#47541 VKontakte Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 93", baseline, precision 8, 50x50, components 3\012- data
Size
2.3 kB (2276 bytes)
Hash
52823376eaceb8f481cd0af31e777fa7
f5a33fd2820613b7b4208ca1c54aed20fed14611
998c2b3138137c55913223e75102d80089abaf1de5da612ac171b4f91071bfb4

HTTP Headers

GET /c5568/u1043663/e_59a621d4.jpg HTTP/1.1
Host: sun9-67.userapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/jpeg
content-length: 2276
last-modified: Sun, 05 Feb 2012 06:40:47 GMT
etag: "4f2e246f-8e4"
expires: Mon, 06 Mar 2023 18:16:47 GMT
cache-control: max-age=2592000
x-frontend: front226106
access-control-expose-headers: X-Frontend
strict-transport-security: max-age=15768000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2

sun9-82.userapi.com/s/v1/if1/nFLH9Z5xxoiG0nL3dLdgGxypWByD2xenwspka3R9Ut5KnHXumsgFrcJnKOZkjQztJ1PWNnXT.jpg?size=50x50&quality=96&crop=6,45,630,630&ava=1

87.240.169.5

200 OK

2.6 kB

URL HTTP/2
sun9-82.userapi.com/s/v1/if1/nFLH9Z5xxoiG0nL3dLdgGxypWByD2xenwspka3R9Ut5KnHXumsgFrcJnKOZkjQztJ1PWNnXT.jpg?size=50x50&quality=96&crop=6,45,630,630&ava=1
IP
87.240.169.5:0
ASN
#47541 VKontakte Ltd

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size
2.6 kB (2637 bytes)
Hash
6e71fd0cdb620dac283c722619006c86
d18e54e0398b6611c4ea9e17f51dacc1c5e3d129
f598cf758c120a4bf7a6c7d423c643f9bc16dcee6fe1b3e2d544aa8c333ccc86

HTTP Headers

GET /s/v1/if1/nFLH9Z5xxoiG0nL3dLdgGxypWByD2xenwspka3R9Ut5KnHXumsgFrcJnKOZkjQztJ1PWNnXT.jpg?size=50x50&quality=96&crop=6,45,630,630&ava=1 HTTP/1.1
Host: sun9-82.userapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/jpeg
content-length: 2637
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
x-imp: 527502
expires: Mon, 06 Mar 2023 18:16:47 GMT
cache-control: max-age=2592000
x-frontend: front806210
access-control-expose-headers: X-Frontend
strict-transport-security: max-age=15768000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2

www.acint.net/oci/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=68828067&oid=39e8192718f4ed5a678fc273d654392b

193.3.184.229

200 OK

43 B

URL HTTP/2
www.acint.net/oci/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=68828067&oid=39e8192718f4ed5a678fc273d654392b
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /oci/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=68828067&oid=39e8192718f4ed5a678fc273d654392b HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

sun9-70.userapi.com/s/v1/ig2/n5p8dBgSaSkJFQmIf4KD4uI9pcjfmrC6qLhOzmd4OzD8xQH_g8VVhlwcmnc4X_ROqzAQo0dhM30ia6rpE4GNKWbo.jpg?size=50x50&quality=95&crop=170,343,1750,1750&ava=1

87.240.185.169

200 OK

2.9 kB

URL HTTP/2
sun9-70.userapi.com/s/v1/ig2/n5p8dBgSaSkJFQmIf4KD4uI9pcjfmrC6qLhOzmd4OzD8xQH_g8VVhlwcmnc4X_ROqzAQo0dhM30ia6rpE4GNKWbo.jpg?size=50x50&quality=95&crop=170,343,1750,1750&ava=1
IP
87.240.185.169:0
ASN
#47541 VKontakte Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size
2.9 kB (2910 bytes)
Hash
78baf266f79f4cdc8806bda0b716d6be
e4eabe7909edce9d007408ba964c250534e50d47
86ae1fc9da1b698f573ecb60672afb0547cf276cac047683e35320ea15dd95a1

HTTP Headers

GET /s/v1/ig2/n5p8dBgSaSkJFQmIf4KD4uI9pcjfmrC6qLhOzmd4OzD8xQH_g8VVhlwcmnc4X_ROqzAQo0dhM30ia6rpE4GNKWbo.jpg?size=50x50&quality=95&crop=170,343,1750,1750&ava=1 HTTP/1.1
Host: sun9-70.userapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/jpeg
content-length: 2910
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
x-imp: 825007
expires: Mon, 06 Mar 2023 18:16:47 GMT
cache-control: max-age=2592000
x-frontend: front220305
access-control-expose-headers: X-Frontend
strict-transport-security: max-age=15768000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2

sun9-85.userapi.com/c1263/u2482983/e_0d9497bb.jpg

87.240.169.8

200 OK

2.4 kB

URL HTTP/2
sun9-85.userapi.com/c1263/u2482983/e_0d9497bb.jpg
IP
87.240.169.8:0
ASN
#47541 VKontakte Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 93", baseline, precision 8, 50x50, components 3\012- data
Size
2.4 kB (2412 bytes)
Hash
e25b4e5397f767b0851a959025a79193
4a2e3cfc7169d1203b23cd88048cf127783863af
efcfc2ac2414856fc3d7ced35ec2971b3fc7eb45364aac5ee901959d641bf7ee

HTTP Headers

GET /c1263/u2482983/e_0d9497bb.jpg HTTP/1.1
Host: sun9-85.userapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/jpeg
content-length: 2412
last-modified: Sun, 31 Oct 2010 15:08:17 GMT
etag: "4ccd8661-96c"
expires: Mon, 06 Mar 2023 18:16:47 GMT
cache-control: max-age=2592000
x-frontend: front831002
access-control-expose-headers: X-Frontend
strict-transport-security: max-age=15768000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.globalsign.com/gsgccr3dvtlsca2020

151.101.130.133

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
151.101.130.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1414 bytes)
Hash
ba25d43611a06ac77b0d419fd31efcf0
7273bba852551a7f126379761004733a9b7b4483
f021cb5fdacbea6d909ce6e060e04a922ae072423f3e641c0a479c577a75d092

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:27:19 GMT
ETag: "7273bba852551a7f126379761004733a9b7b4483"
Last-Modified: Sat, 04 Feb 2023 17:27:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 2780
X-Served-By: cache-qpg1268-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 4, 13
X-Timer: S1675534608.798946,VS0,VE0

ocsp.globalsign.com/gsgccr3dvtlsca2020

151.101.130.133

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
151.101.130.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1414 bytes)
Hash
ba25d43611a06ac77b0d419fd31efcf0
7273bba852551a7f126379761004733a9b7b4483
f021cb5fdacbea6d909ce6e060e04a922ae072423f3e641c0a479c577a75d092

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1414
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:27:19 GMT
ETag: "7273bba852551a7f126379761004733a9b7b4483"
Last-Modified: Sat, 04 Feb 2023 17:27:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 2780
X-Served-By: cache-qpg1268-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 4, 14
X-Timer: S1675534608.824426,VS0,VE0

ocsp.globalsign.com/alphasslcasha256g4

151.101.130.133

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/alphasslcasha256g4
IP
151.101.130.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1437 bytes)
Hash
09fc226e5db2029fcc5862b2fe7d2e0d
b1484481d4570724e589bfa7756aac8219aec248
586cc355af53755cc596bcc074031a212fc1902643ba764b7e6a2d0bb5c3ad1f

HTTP Headers

POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1437
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 16:12:31 GMT
ETag: "b1484481d4570724e589bfa7756aac8219aec248"
Last-Modified: Sat, 04 Feb 2023 16:12:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 477
X-Served-By: cache-qpg1236-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 2
X-Timer: S1675534608.833398,VS0,VE0

ocsp.globalsign.com/gseccovsslca2018

151.101.130.133

200 OK

940 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
151.101.130.133:0
ASN
#54113 FASTLY

File type
data
Size
940 B (940 bytes)
Hash
7985c1b7d0a2e86d9c2ba80871715546
9713d50290bddc8c867c48aebf537af082009a00
22c92e48114bd68c985de1d7a1637f600f594962eaeb0a11f8bda546be27db88

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 940
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 15:16:52 GMT
ETag: "9713d50290bddc8c867c48aebf537af082009a00"
Last-Modified: Sat, 04 Feb 2023 15:16:53 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 3594
X-Served-By: cache-qpg1272-QPG, cache-bma1644-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 43
X-Timer: S1675534608.835462,VS0,VE0

ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691

195.209.108.48

302 Moved Temporarily

0 B

URL HTTP/1.1
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
IP
195.209.108.48:0
ASN
#52007 LLC AdRiver

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-5621884220; expires=Mon, 03 Feb 2025 18:16:47 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5621884220
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true

ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1303420A0EA1DE63850ACC760287A896

81.222.128.214

200 OK

42 B

URL HTTP/1.1
ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1303420A0EA1DE63850ACC760287A896
IP
81.222.128.214:0
ASN
#20597 PVimpelCom

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /cgi-bin/sync.cgi?dsp_id=153&external_id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive

ocsp.usertrust.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.usertrust.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
51ab5a8626b70c7594e57366f659f93d
b306da2759928ddd7895083be1196fae9f634197
2eb603282049d073ffcd2928301736eb6d72e02c0ea9e4a884e103c73debd5de

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 02 Feb 2023 16:18:21 GMT
Expires: Thu, 09 Feb 2023 16:18:20 GMT
Etag: "b306da2759928ddd7895083be1196fae9f634197"
Cache-Control: max-age=604041,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1523
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794566431832b4f3-OSL

sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D

77.245.57.72

400 Bad Request

22 B

URL HTTP/1.1
sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
IP
77.245.57.72:0
ASN
#36057 WEBAIR-INTERNET-MTL

File type
ASCII text, with no line terminators
Size
22 B (22 bytes)
Hash
b0b11e1c78b526b61477f8e9ee540be0
d5e73002987ff54626542b116d98a8f4aa9ee2eb
4ca18c247df52dd22650bd7f72f71d7c98102243b0ec474f683c6a279ad3a668

HTTP Headers

GET /user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D HTTP/1.1
Host: sync.adkernel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 400 Bad Request
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Length: 22
Connection: close
Cache-Control: no-store
Age: 0
Pragma: no-cache

ocsp.globalsign.com/gseccovsslca2018

151.101.130.133

200 OK

938 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
151.101.130.133:0
ASN
#54113 FASTLY

File type
data
Size
938 B (938 bytes)
Hash
edeef4bb3e82d8d141d40905a394b3c2
54c628428e63fb7debb20b830b6c7d0c780a6374
1d7ab0179e1e64e439778b57e074a2df62caefc88ab02c95b40e1a631a3a2503

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 938
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:00:53 GMT
ETag: "54c628428e63fb7debb20b830b6c7d0c780a6374"
Last-Modified: Sat, 04 Feb 2023 17:00:54 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 2714
X-Served-By: cache-qpg1232-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 30
X-Timer: S1675534608.884902,VS0,VE0

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
d28ed3e080cbd1ec203a146092a4fbcb
9a6603e8c7baf71763e6580ed393eac576aea446
67055b2b4523563bf69bdfdd432a16bf6b9521ef296694c57bd4e8dce105e429

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 14:03:24 GMT
Expires: Sat, 11 Feb 2023 14:03:23 GMT
Etag: "9a6603e8c7baf71763e6580ed393eac576aea446"
Cache-Control: max-age=588995,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794566430847b4ed-OSL

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
d28ed3e080cbd1ec203a146092a4fbcb
9a6603e8c7baf71763e6580ed393eac576aea446
67055b2b4523563bf69bdfdd432a16bf6b9521ef296694c57bd4e8dce105e429

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 14:03:24 GMT
Expires: Sat, 11 Feb 2023 14:03:23 GMT
Etag: "9a6603e8c7baf71763e6580ed393eac576aea446"
Cache-Control: max-age=588995,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 794566433e0d0b31-OSL

ocsp.globalsign.com/gseccovsslca2018

151.101.130.133

200 OK

938 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
151.101.130.133:0
ASN
#54113 FASTLY

File type
data
Size
938 B (938 bytes)
Hash
edeef4bb3e82d8d141d40905a394b3c2
54c628428e63fb7debb20b830b6c7d0c780a6374
1d7ab0179e1e64e439778b57e074a2df62caefc88ab02c95b40e1a631a3a2503

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 938
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:00:53 GMT
ETag: "54c628428e63fb7debb20b830b6c7d0c780a6374"
Last-Modified: Sat, 04 Feb 2023 17:00:54 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 2714
X-Served-By: cache-qpg1232-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 31
X-Timer: S1675534608.911647,VS0,VE0

ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5621884220

195.209.108.48

302 Moved Temporarily

40 B

URL HTTP/1.1
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5621884220
IP
195.209.108.48:0
ASN
#52007 LLC AdRiver

File type
ASCII text, with CRLF line terminators
Size
40 B (40 bytes)
Hash
251630b588179b239e8fab1ac9ef6d3a
91b91a97bc481dd2bbd5e0f3fea6ba1c4e843882
c95661e0ef6975b1df5361695a439f71a021d72c345023c3e668e84f35b3c38b

HTTP Headers

GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5621884220 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="//adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Mon, 03 Feb 2025 18:16:47 GMT; path=/; domain=.adriver.ru;
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
Location: https://www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D

st.vk.com/dist/state-management.cf1bf926d7c30fabcfb3.js?6cc8960af75d2d2cf820

87.240.132.78

200 OK

0 B

URL HTTP/2
st.vk.com/dist/state-management.cf1bf926d7c30fabcfb3.js?6cc8960af75d2d2cf820
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /dist/state-management.cf1bf926d7c30fabcfb3.js?6cc8960af75d2d2cf820 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 17525
last-modified: Thu, 02 Feb 2023 09:33:07 GMT
etag: "63db8353-4475"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7031537895a86addfa0ebd90f333c9c2
2943bb337f5faed6c27c640dc88d00fb3983d5c2
fa494f1d700b1fb320cb4a4640c3fb1c82819836bfa124f232aa47eeede30677

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FA494F1D700B1FB320CB4A4640C3FB1C82819836BFA124F232AA47EEEDE30677"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16155
Expires: Sat, 04 Feb 2023 22:46:02 GMT
Date: Sat, 04 Feb 2023 18:16:47 GMT
Connection: keep-alive

ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D

188.42.196.115

302 Found

0 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
IP
188.42.196.115:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
tuuid=732da821-7a62-5223-9fff-b755fc21165a; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
ut=Y96hDwAOCcDRoe8Xv1543vfEYLT4GLFAT-PpfA==; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2

ocsp.globalsign.com/gsrsaovsslca2018

151.101.130.133

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
151.101.130.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1432 bytes)
Hash
a0a03159afb9dac7b31cbfa0dbdaff4e
f33733644f1a17d408a45a966cb17bcaa7ad332d
ca291de2a4903ab2beebd2753c4e40b43340e07e34ead47e8be641a356560810

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 17:16:04 GMT
ETag: "f33733644f1a17d408a45a966cb17bcaa7ad332d"
Last-Modified: Sat, 04 Feb 2023 17:16:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 37
X-Served-By: cache-qpg1234-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1675534608.937368,VS0,VE1

ocsp.globalsign.com/gsrsaovsslca2018

151.101.130.133

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
151.101.130.133:0
ASN
#54113 FASTLY

File type
data
Size
1.4 kB (1432 bytes)
Hash
7216838d664b16a346cba785217d7934
448fa170806d67d8dac9a78b8cbd8fe6276ef548
ceb21d1a7fc15da13dbd3e1469f30fba263e9d00b8df1164b03ffcba30d5e693

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1432
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 08 Feb 2023 15:12:21 GMT
ETag: "448fa170806d67d8dac9a78b8cbd8fe6276ef548"
Last-Modified: Sat, 04 Feb 2023 15:12:22 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 04 Feb 2023 18:16:47 GMT
Age: 737
X-Served-By: cache-qpg1221-QPG, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1675534608.946668,VS0,VE1

ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420A0EA1DE63850ACC760287A896

188.42.196.115

302 Found

0 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420A0EA1DE63850ACC760287A896
IP
188.42.196.115:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?bidder_id=73&external_user_id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: /match?bidder_id=73&external_user_id=1303420A0EA1DE63850ACC760287A896&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
tuuid=b78b7df1-6013-5223-bde4-b11ade3a1015; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
ut=Y96hDwAOPIgjnu01P3hGl7UPqFkUz9jb-M3r-w==; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
84dec2e77380df6c2188d61f7295f4e7
e9cca558c93123a36d158e131c0222d8d797735d
9b80df42a016c949bb06cc49c21b12fa88a110001c7c13daa0dd7f2c4ec2f69a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 02:18:44 GMT
Expires: Sat, 11 Feb 2023 02:18:43 GMT
Etag: "e9cca558c93123a36d158e131c0222d8d797735d"
Cache-Control: max-age=546715,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7945664378d0b4ed-OSL

ad.mail.ru/cm.gif?p=48&id=1303420A0EA1DE63850ACC760287A896

95.163.41.56

200 OK

43 B

URL HTTP/2
ad.mail.ru/cm.gif?p=48&id=1303420A0EA1DE63850ACC760287A896
IP
95.163.41.56:0
ASN
#47764 Mail.Ru LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /cm.gif?p=48&id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
set-cookie: VID=1XaK8106RIYF0027J62AmOoF:::0-0-0-8f8f9cf:CAASEJKIG8eVVg0nP2Dc46w1SnsaYIl_95FiX1y2Kwo5Vb2HXUFYC4YExSnNaK_UUiOAoygICeC6zYLOhsjvu-iduvkfe6LDgeplF2MZc6w9EOnH75MLgx7C-UHFmPmg_O394eINOXvSPhFsFoayTg8oEbwyJg; path=/; expires=Mon, 05-Feb-24 18:16:47 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
expires: Sun, 05 Feb 2023 00:16:47 GMT
cache-control: max-age=21600
last-modified: Sat, 04 Feb 2023 18:16:47 GMT
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
X-Firefox-Spdy: h2

ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1

188.42.196.115

200 OK

68 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
IP
188.42.196.115:0
ASN
#7979 SERVERS-COM

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11

HTTP Headers

GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
tuuid=24d98995-e4bd-5223-b286-22abd15883a4; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
ut=Y96hDwAOohgr8nUbM1zaA40oIVoUr1V6dP9Dcw==; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2

www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D

193.3.184.229

302 Found

154 B

URL HTTP/2
www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

HTTP Headers

GET /rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: text/html
content-length: 154
location: https://ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1303420A0EA1DE63850ACC760287A896
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.acint.net/match?dp=104&euid=CtDKCVOGV-5A

193.3.184.229

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=104&euid=CtDKCVOGV-5A
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=104&euid=CtDKCVOGV-5A HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

tag.digitaltarget.ru/adcm.js

185.15.175.148

200 OK

3.1 kB

URL HTTP/1.1
tag.digitaltarget.ru/adcm.js
IP
185.15.175.148:0
ASN
#43226 SafeData LLC

File type
ASCII text, with very long lines (3051), with no line terminators
Size
3.1 kB (3051 bytes)
Hash
e7097284185069f52fc736bcd50cda13
1cdfdf2d869841202079ddf91e0a00a8610812e6
40f2a96f78f4c8484e9da6e172f5ddd3e4d7786ca29e04b96e1067a365190e80

HTTP Headers

GET /adcm.js HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Type: application/javascript
Content-Length: 3051
Last-Modified: Sat, 04 Feb 2023 18:04:32 GMT
Connection: keep-alive
ETag: "63de9e30-beb"
Accept-Ranges: bytes

ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420A0EA1DE63850ACC760287A896&crf=1

188.42.196.115

200 OK

68 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=73&external_user_id=1303420A0EA1DE63850ACC760287A896&crf=1
IP
188.42.196.115:0
ASN
#7979 SERVERS-COM

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11

HTTP Headers

GET /match?bidder_id=73&external_user_id=1303420A0EA1DE63850ACC760287A896&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
tuuid=c6b5f255-600a-5223-93a1-c2c6f07f63c9; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
ut=Y96hDwAO2MgCWy3Ep0xDztuxDuKSV6wpD4VTpw==; Max-Age=31536000; Expires=Sun, 04 Feb 2024 18:16:47 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2

x01.aidata.io/0.gif?pid=9401454&id=1303420A0EA1DE63850ACC760287A896

89.108.119.43

302 Found

0 B

URL HTTP/2
x01.aidata.io/0.gif?pid=9401454&id=1303420A0EA1DE63850ACC760287A896
IP
89.108.119.43:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /0.gif?pid=9401454&id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=9401454&id=1303420A0EA1DE63850ACC760287A896&bounce=1
expires: Sat, 04 Feb 2023 18:16:46 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 04 Feb 2023 18:16:46 GMT
set-cookie: __upin=ZOci5DxIbc9fs3GeF6SKag;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1675534607;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2

an.yandex.ru/mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw?redir-setuniq=1

77.88.21.90

200 OK

92 B

URL HTTP/2
an.yandex.ru/mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw?redir-setuniq=1
IP
77.88.21.90:0
ASN
#13238 YANDEX LLC

File type
data
Size
92 B (92 bytes)
Hash
32dc91aa5e5be7a85228811d496edc1d
1b2558db24575ae602cc57f361118b1172b74fe9
32c4b4fd4cd3b0db30793f29472d2c0b804cfe89fb13f299261b322ae4a78052

HTTP Headers

GET /mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
date: Sat, 04 Feb 2023 18:16:47 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04 Feb 2023 18:16:47 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 04 Feb 2023 18:16:47 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

sm.rtb.mts.ru/p?ssp=sape&id=1303420A0EA1DE63850ACC760287A896

217.66.147.42

301 Moved Permanently

0 B

URL HTTP/1.1
sm.rtb.mts.ru/p?ssp=sape&id=1303420A0EA1DE63850ACC760287A896
IP
217.66.147.42:0
ASN
#29209 MTS PJSC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p?ssp=sape&id=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 04 Feb 2023 18:16:47 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://sm.rtb.mts.ru/match/second?ssp=30&exu=1303420A0EA1DE63850ACC760287A896
Set-Cookie: dspid=8e686c33-c251-4c51-8280-dee5778ef1a0; expires=Fri, 26 Jan 2024 18:16:47 GMT; domain=.mts.ru; path=/; secure; SameSite=None

px.adhigh.net/p/cm/sape?u=1303420A0EA1DE63850ACC760287A896

193.232.148.144

302 Found

0 B

URL HTTP/2
px.adhigh.net/p/cm/sape?u=1303420A0EA1DE63850ACC760287A896
IP
193.232.148.144:0
ASN
#48061 Limited Liability Company GPM Digital Technologies

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/cm/sape?u=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-length: 0
x-backend-id: f5-ru
access-control-allow-origin: *
access-control-allow-credentials: true
set-cookie: gi_u=uPH4pQXrDaXn.AikABlGGHaUmfw;Path=/;Domain=.adhigh.net;Expires=Sun, 04-Feb-2024 18:16:47 GMT;Secure;SameSite=None
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
location: https://px.adhigh.net/p/cm/sape?u=1303420A0EA1DE63850ACC760287A896&bounced=1
X-Firefox-Spdy: h2

top-fwz1.mail.ru/counter?js=13;id=2685520;u=https%3A//uznay-prezidenta.ru/;st=1675534644267;pid=0;title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru;s=1280*1024;vp=260*185;touch=0;hds=1;frame=1;flash=;sid=5a77f5fe9dc04b9b;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675534644630%3A1675534644633%3A0%3A8772a352725e7e49dfee845f47360f75;visible=true;_=0.45020360900265977

95.163.52.67

302 Found

0 B

URL HTTP/2
top-fwz1.mail.ru/counter?js=13;id=2685520;u=https%3A//uznay-prezidenta.ru/;st=1675534644267;pid=0;title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru;s=1280*1024;vp=260*185;touch=0;hds=1;frame=1;flash=;sid=5a77f5fe9dc04b9b;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675534644630%3A1675534644633%3A0%3A8772a352725e7e49dfee845f47360f75;visible=true;_=0.45020360900265977
IP
95.163.52.67:0
ASN
#47764 Mail.Ru LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /counter?js=13;id=2685520;u=https%3A//uznay-prezidenta.ru/;st=1675534644267;pid=0;title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru;s=1280*1024;vp=260*185;touch=0;hds=1;frame=1;flash=;sid=5a77f5fe9dc04b9b;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675534644630%3A1675534644633%3A0%3A8772a352725e7e49dfee845f47360f75;visible=true;_=0.45020360900265977 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: nginx
date: Sat, 04 Feb 2023 18:16:48 GMT
content-length: 0
location: https://top-fwz1.mail.ru/counter2?js=13;id=2685520;u=https%3A//uznay-prezidenta.ru/;st=1675534644267;pid=0;title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru;s=1280*1024;vp=260*185;touch=0;hds=1;frame=1;flash=;sid=5a77f5fe9dc04b9b;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675534644630%3A1675534644633%3A0%3A8772a352725e7e49dfee845f47360f75;visible=true;_=0.45020360900265977
set-cookie: FTID=1RMYgQ0tkIIF:1675534608:2685520:::; path=/; expires=Mon, 05-Feb-24 18:16:48 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2

x01.aidata.io/0.gif?pid=9401454&id=1303420A0EA1DE63850ACC760287A896&bounce=1

89.108.119.43

204 No Content

0 B

URL HTTP/2
x01.aidata.io/0.gif?pid=9401454&id=1303420A0EA1DE63850ACC760287A896&bounce=1
IP
89.108.119.43:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /0.gif?pid=9401454&id=1303420A0EA1DE63850ACC760287A896&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Sat, 04 Feb 2023 18:16:48 GMT
expires: Sat, 04 Feb 2023 18:16:47 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Sat, 04 Feb 2023 18:16:47 GMT
set-cookie: __upin=1K1cpwJOt+7kez6dNC4xTg;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1675534608;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2

sm.rtb.mts.ru/match/second?ssp=30&exu=1303420A0EA1DE63850ACC760287A896

217.66.147.42

200 OK

0 B

URL HTTP/1.1
sm.rtb.mts.ru/match/second?ssp=30&exu=1303420A0EA1DE63850ACC760287A896
IP
217.66.147.42:0
ASN
#29209 MTS PJSC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/second?ssp=30&exu=1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:48 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT

top-fwz1.mail.ru/counter2?js=13;id=2685520;u=https%3A//uznay-prezidenta.ru/;st=1675534644267;pid=0;title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru;s=1280*1024;vp=260*185;touch=0;hds=1;frame=1;flash=;sid=5a77f5fe9dc04b9b;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675534644630%3A1675534644633%3A0%3A8772a352725e7e49dfee845f47360f75;visible=true;_=0.45020360900265977

95.163.52.67

200 OK

43 B

URL HTTP/2
top-fwz1.mail.ru/counter2?js=13;id=2685520;u=https%3A//uznay-prezidenta.ru/;st=1675534644267;pid=0;title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru;s=1280*1024;vp=260*185;touch=0;hds=1;frame=1;flash=;sid=5a77f5fe9dc04b9b;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675534644630%3A1675534644633%3A0%3A8772a352725e7e49dfee845f47360f75;visible=true;_=0.45020360900265977
IP
95.163.52.67:0
ASN
#47764 Mail.Ru LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db

HTTP Headers

GET /counter2?js=13;id=2685520;u=https%3A//uznay-prezidenta.ru/;st=1675534644267;pid=0;title=%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru;s=1280*1024;vp=260*185;touch=0;hds=1;frame=1;flash=;sid=5a77f5fe9dc04b9b;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675534644630%3A1675534644633%3A0%3A8772a352725e7e49dfee845f47360f75;visible=true;_=0.45020360900265977 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vk.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:48 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIF:1675534608:2685520:::; path=/; expires=Mon, 05-Feb-24 18:16:48 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b5a591a5a59f755b2cfab9d8ab808510
58b162a51016d848c054b4b617fe1e7590bf6665
b4191606814a95b06ddff0e610b5add15219a13c552b4497705b58f5f1f2e7fe

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B4191606814A95B06DDFF0E610B5ADD15219A13C552B4497705B58F5F1F2E7FE"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9136
Expires: Sat, 04 Feb 2023 20:49:04 GMT
Date: Sat, 04 Feb 2023 18:16:48 GMT
Connection: keep-alive

px.adhigh.net/p/cm/sape?u=1303420A0EA1DE63850ACC760287A896&bounced=1

193.232.148.144

200 OK

49 B

URL HTTP/2
px.adhigh.net/p/cm/sape?u=1303420A0EA1DE63850ACC760287A896&bounced=1
IP
193.232.148.144:0
ASN
#48061 Limited Liability Company GPM Digital Technologies

File type
GIF image data, version 89a, 1 x 1\012- data
Size
49 B (49 bytes)
Hash
889bc1fffc025af4685839fb516a0b8b
7f105137a4eafe93213ecd8cc34dd907c340467c
d0409a1b73dab4e29dc40f92fb431fa9133baa23b4a1ffae4897f39068110e32

HTTP Headers

GET /p/cm/sape?u=1303420A0EA1DE63850ACC760287A896&bounced=1 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:48 GMT
content-type: image/gif
content-length: 49
x-backend-id: f5-ru
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2

tag.digitaltarget.ru/processor.js?i=370771548788701

185.15.175.148

200 OK

16 kB

URL HTTP/1.1
tag.digitaltarget.ru/processor.js?i=370771548788701
IP
185.15.175.148:0
ASN
#43226 SafeData LLC

File type
ASCII text, with very long lines (15892), with no line terminators
Size
16 kB (15892 bytes)
Hash
736e2fb1da94f3277e3f931048c1b9f3
196387db95a17da825b629de3542eff901b09905
4569d4e1b0e52b6316681f7312674f43ecb2b72ea8ab4adb2375e3686862c7dc

HTTP Headers

GET /processor.js?i=370771548788701 HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:48 GMT
Content-Type: application/javascript
Content-Length: 15892
Last-Modified: Sat, 04 Feb 2023 18:04:33 GMT
Connection: keep-alive
ETag: "63de9e31-3e14"
Accept-Ranges: bytes

16404a4a-a4b8-11ed-a1c4-002590c82437.n2.sync.bumlam.com/?src=sape

80.87.198.111

302 Found

0 B

URL HTTP/2
16404a4a-a4b8-11ed-a1c4-002590c82437.n2.sync.bumlam.com/?src=sape
IP
80.87.198.111:0
ASN
#29182 JSC IOT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sape HTTP/1.1
Host: 16404a4a-a4b8-11ed-a1c4-002590c82437.n2.sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQxNjQwNGE0YS1hNGI4LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx/1.22.1
date: Sat, 04 Feb 2023 18:16:48 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
X-Firefox-Spdy: h2

pix.bumlam.com/sync/sape/done

31.172.81.159

200 OK

43 B

URL HTTP/1.1
pix.bumlam.com/sync/sape/done
IP
31.172.81.159:0
ASN
#44066 diva-e Datacenters GmbH

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQxNjQwNGE0YS1hNGI4LTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:48 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
73c9e0d8e81f245ac31e859c9cdf9443
74c1b10801851ce6eedb12ddc3e2e402cbddf793
a8e0a4345196be76e20cf7308884eb7c5ca66cdf2c7edf841edc7244e7f5243b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E0A4345196BE76E20CF7308884EB7C5CA66CDF2C7EDF841EDC7244E7F5243B"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9645
Expires: Sat, 04 Feb 2023 20:57:33 GMT
Date: Sat, 04 Feb 2023 18:16:48 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
73c9e0d8e81f245ac31e859c9cdf9443
74c1b10801851ce6eedb12ddc3e2e402cbddf793
a8e0a4345196be76e20cf7308884eb7c5ca66cdf2c7edf841edc7244e7f5243b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E0A4345196BE76E20CF7308884EB7C5CA66CDF2C7EDF841EDC7244E7F5243B"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9645
Expires: Sat, 04 Feb 2023 20:57:33 GMT
Date: Sat, 04 Feb 2023 18:16:48 GMT
Connection: keep-alive

dmg.digitaltarget.ru/1/1093/i/i?i=959539327307354.165134900516209&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_noorient

185.15.175.131

307 Temporary Redirect

0 B

URL HTTP/1.1
dmg.digitaltarget.ru/1/1093/i/i?i=959539327307354.165134900516209&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP
185.15.175.131:0
ASN
#43226 SafeData LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1/1093/i/i?i=959539327307354.165134900516209&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 04 Feb 2023 18:16:48 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.165134900516209&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_noorient
Set-Cookie: viuserid=xeMRiC.bX.POOrk7Kfu1; Max-Age=93312000; Expires=Mon, 19 Jan 2026 18:16:48 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

dmg.digitaltarget.ru/1/1093/i/i?i=959539327307354.757742717183007&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient

185.15.175.131

307 Temporary Redirect

0 B

URL HTTP/1.1
dmg.digitaltarget.ru/1/1093/i/i?i=959539327307354.757742717183007&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP
185.15.175.131:0
ASN
#43226 SafeData LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1/1093/i/i?i=959539327307354.757742717183007&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Sat, 04 Feb 2023 18:16:48 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.757742717183007&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
Set-Cookie: viuserid=mzTbkYdbXzWsgP775wHA; Max-Age=93312000; Expires=Mon, 19 Jan 2026 18:16:48 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.757742717183007&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient

185.15.175.131

200 OK

64 B

URL HTTP/1.1
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.757742717183007&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP
185.15.175.131:0
ASN
#43226 SafeData LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
64 B (64 bytes)
Hash
ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8

HTTP Headers

GET /awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.757742717183007&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:48 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 4
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.165134900516209&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_noorient

185.15.175.131

200 OK

64 B

URL HTTP/1.1
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.165134900516209&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP
185.15.175.131:0
ASN
#43226 SafeData LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
64 B (64 bytes)
Hash
ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8

HTTP Headers

GET /awg/custom/1093/i/i?call_source=awg&ts=1675534608491&i=959539327307354.165134900516209&a=77&e=1303420A0EA1DE63850ACC760287A896&pref=https%3A%2F%2Fuznay-prezidenta.ru%2F&c=ss:77.up:1303420A0EA1DE63850ACC760287A896.sync:up.xdua:du1IhIlKrpO25mk1R_GcJKN7.xps:xpsYQ532X7A3AdmGxoLC5uugq.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 18:16:48 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 36
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

www.acint.net/ping/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=18578943&dT=2023-02-04T18%3A17%3A26.206

193.3.184.229

200 OK

43 B

URL HTTP/2
www.acint.net/ping/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=18578943&dT=2023-02-04T18%3A17%3A26.206
IP
193.3.184.229:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /ping/?v=0.5.1&uid=6e50cd56-d769-4523-ae58-7ad90731642b&dp=10&tz=%2B00%3A00&nc=18578943&dT=2023-02-04T18%3A17%3A26.206 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: test_cookie=CheckForPermission; aid=CkIDE2PeoQ52zAqFlqiHAmT/2d4Iu8RXfsXTOLshSWdZQM95; cSyncDp7v2=1675534606; cSyncDp14v3=1675534606; cSyncDp17=1675534606; cSyncDp32=1675534606; cSyncDp45v3=1675534606; cSyncDp53v2=1675534606; cSyncDp62=1675534606; cSyncDp67v2=1675534606; cSyncDp68=1675534606; cSyncDp71=1675534606; cSyncDp85=1675534606; cSyncDp95v3=1675534606; cSyncDp98v2=1675534606; cSyncDp101=1675534606; cSyncDp104v2=1675534606; cSyncDp107=1675534606; cSyncDp110=1675534606; cSyncDp125v3=1675534606; cSyncDp126=1675534606; cSyncDp127=1675534606; cSyncDp129=1675534606; cSyncDp136v2=1675534606; cSyncDp146=1675534606; cSyncDp148=1675534606; cSyncDp149v2=1675534606; cSyncDp151=1675534606; cSyncDp178=1675534606; cSyncDp186=1675534606; cSyncDp221=1675534606; cSyncDp235=1675534606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Sat, 04 Feb 2023 18:16:49 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

an.yandex.ru/mapuid/sapeis/1303420A0EA1DE63850ACC760287A896

77.88.21.90

302 Found

0 B

URL HTTP/2
an.yandex.ru/mapuid/sapeis/1303420A0EA1DE63850ACC760287A896
IP
77.88.21.90:0
ASN
#13238 YANDEX LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mapuid/sapeis/1303420A0EA1DE63850ACC760287A896 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/sapeis/1303420A0EA1DE63850ACC760287A896?redir-setuniq=1
date: Sat, 04 Feb 2023 18:16:47 GMT
set-cookie: yandexuid=2713569911675534607; domain=.yandex.ru; path=/; expires=Tue, 01-Feb-2033 18:16:47 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04 Feb 2023 18:16:47 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 04 Feb 2023 18:16:47 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

st.vk.com/dist/common.1cfe9ef5660190880ea1.js?3094df1778383cc73e82248

87.240.132.78

200 OK

0 B

URL HTTP/2
st.vk.com/dist/common.1cfe9ef5660190880ea1.js?3094df1778383cc73e82248
IP
87.240.132.78:0
ASN
#47541 VKontakte Ltd

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /dist/common.1cfe9ef5660190880ea1.js?3094df1778383cc73e82248 HTTP/1.1
Host: st.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: application/x-javascript
content-length: 317085
last-modified: Sat, 04 Feb 2023 11:25:43 GMT
etag: "63de40b7-4d69d"
content-encoding: br
expires: Wed, 08 Feb 2023 18:16:46 GMT
cache-control: max-age=345600
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

an.yandex.ru/mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw

77.88.21.90

302 Found

0 B

URL HTTP/2
an.yandex.ru/mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw
IP
77.88.21.90:0
ASN
#13238 YANDEX LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/gonetdspis/NGI1OWMzNzExNTcxY2U3Nw?redir-setuniq=1
date: Sat, 04 Feb 2023 18:16:47 GMT
set-cookie: yandexuid=1775824161675534607; domain=.yandex.ru; path=/; expires=Tue, 01-Feb-2033 18:16:47 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04 Feb 2023 18:16:47 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 04 Feb 2023 18:16:47 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

uznay-prezidenta.ru/templates/up-templ/css/style.css

37.140.192.138

200 OK

0 B

URL HTTP/2
uznay-prezidenta.ru/templates/up-templ/css/style.css
IP
37.140.192.138:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /templates/up-templ/css/style.css HTTP/1.1
Host: uznay-prezidenta.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Cookie: PHPSESSID=0cf41b1308155811b0cf532003f56f8d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:46 GMT
content-type: text/css
last-modified: Sat, 09 Jul 2022 14:48:51 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

top-fwz1.mail.ru/js/code.js

95.163.52.67

200 OK

0 B

URL HTTP/2
top-fwz1.mail.ru/js/code.js
IP
95.163.52.67:0
ASN
#47764 Mail.Ru LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/code.js HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 18:16:47 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2023 13:29:54 GMT
set-cookie: FTID=1RMYgQ0tkIIF:1675534607:0:::; path=/; expires=Mon, 05-Feb-24 18:16:47 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
etag: W/"63beb9d2-85cc"
expires: Sat, 04 Feb 2023 19:16:47 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: max-age=3600, private
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
content-encoding: gzip
X-Firefox-Spdy: h2

mc.yandex.ru/watch/39365090?wmode=7&page-url=https%3A%2F%2Fuznay-prezidenta.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A2025%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1538901617343%3Ahid%3A837025276%3Az%3A0%3Ai%3A20230204181723%3Aet%3A1675534644%3Ac%3A1%3Arn%3A708722734%3Arqn%3A1%3Au%3A1675534644997442234%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A16%2C215%2C1088%2C0%2C361%2C0%2C%2C373%2C31%2C%2C%2C%2C2069%3Aco%3A0%3Ans%3A1675534640938%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675534644%3At%3A%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)

93.158.134.119

302 Found

0 B

URL HTTP/2
mc.yandex.ru/watch/39365090?wmode=7&page-url=https%3A%2F%2Fuznay-prezidenta.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A2025%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1538901617343%3Ahid%3A837025276%3Az%3A0%3Ai%3A20230204181723%3Aet%3A1675534644%3Ac%3A1%3Arn%3A708722734%3Arqn%3A1%3Au%3A1675534644997442234%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A16%2C215%2C1088%2C0%2C361%2C0%2C%2C373%2C31%2C%2C%2C%2C2069%3Aco%3A0%3Ans%3A1675534640938%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675534644%3At%3A%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP
93.158.134.119:0
ASN
#13238 YANDEX LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /watch/39365090?wmode=7&page-url=https%3A%2F%2Fuznay-prezidenta.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A2025%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1538901617343%3Ahid%3A837025276%3Az%3A0%3Ai%3A20230204181723%3Aet%3A1675534644%3Ac%3A1%3Arn%3A708722734%3Arqn%3A1%3Au%3A1675534644997442234%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A16%2C215%2C1088%2C0%2C361%2C0%2C%2C373%2C31%2C%2C%2C%2C2069%3Aco%3A0%3Ans%3A1675534640938%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675534644%3At%3A%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uznay-prezidenta.ru
Connection: keep-alive
Referer: https://uznay-prezidenta.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: /watch/39365090/1?wmode=7&page-url=https%3A%2F%2Fuznay-prezidenta.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A2025%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1538901617343%3Ahid%3A837025276%3Az%3A0%3Ai%3A20230204181723%3Aet%3A1675534644%3Ac%3A1%3Arn%3A708722734%3Arqn%3A1%3Au%3A1675534644997442234%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A16%2C215%2C1088%2C0%2C361%2C0%2C%2C373%2C31%2C%2C%2C%2C2069%3Aco%3A0%3Ans%3A1675534640938%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675534644%3At%3A%D0%A4%D0%B8%D0%BD%D0%B0%D0%BD%D1%81%D0%BE%D0%B2%D0%BE-%D0%B8%D0%BD%D0%B2%D0%B5%D1%81%D1%82%D0%B8%D1%86%D0%B8%D0%BE%D0%BD%D0%BD%D1%8B%D0%B9%20%D0%BF%D0%BE%D1%80%D1%82%D0%B0%D0%BB%20Uznay-Prezidenta.ru&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 04 Feb 2023 18:16:47 GMT
access-control-allow-origin: https://uznay-prezidenta.ru
set-cookie: yabs-sid=252754831675534607; Path=/; SameSite=None; Secure
i=b4Wczx4mt/+B/YM1EoWkOdLA5Rck6MgyOQHMapv621tw5Wz5bcInKi7gzq4AGs3YdHeUcaNcvnB96reWvhw6EzDgOTo=; Expires=Tue, 01-Feb-2033 18:16:47 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=1326936811675534607; Expires=Sun, 04-Feb-2024 18:16:47 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=1326936811675534607; Expires=Sun, 04-Feb-2024 18:16:47 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1707070607.yc.1675534607#1707070607.yrts.1675534607#1707070607.yrtsi.1675534607; Expires=Sun, 04-Feb-2024 18:16:47 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04-Feb-2023 18:16:47 GMT
last-modified: Sat, 04-Feb-2023 18:16:47 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

an.yandex.ru/mapuid/sapeis/1303420A0EA1DE63850ACC760287A896?redir-setuniq=1

77.88.21.90

200 OK

0 B

URL HTTP/2
an.yandex.ru/mapuid/sapeis/1303420A0EA1DE63850ACC760287A896?redir-setuniq=1
IP
77.88.21.90:0
ASN
#13238 YANDEX LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mapuid/sapeis/1303420A0EA1DE63850ACC760287A896?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
date: Sat, 04 Feb 2023 18:16:48 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 04 Feb 2023 18:16:48 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Sat, 04 Feb 2023 18:16:48 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (31)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML