zepterhealth.ru/
81.177.141.232301 Moved Permanently 194 B IP 81.177.141.232:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 70a3880d99376d6e2e9e59f6b4beade5
7fb4381456e2d4897f695c6547c8bb8373e68cf5
d6d682a808caff05028d54a2664bded592651db91854341af05d051cef705fcc
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 22:17:39 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 194
Connection: keep-alive
Server: Jino.ru/mod_pizza
Location: http://www.zepterhealth.ru/
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:39 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4844
Expires: Wed, 01 Feb 2023 23:38:23 GMT
Date: Wed, 01 Feb 2023 22:17:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5897
Expires: Wed, 01 Feb 2023 23:55:56 GMT
Date: Wed, 01 Feb 2023 22:17:39 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 21:36:02 GMT
content-type: application/json
age: 2498
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2765
Expires: Wed, 01 Feb 2023 23:03:45 GMT
Date: Wed, 01 Feb 2023 22:17:40 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JZU+nEWlGA4hkYJwUC/WxgSyLURrbxGJXlKBASa7k42H3/JBq+HVV/eSRVMwTOVXBm1/Ogheprk1JLQb2yN4XA==
x-amz-request-id: 2FB0T278PJHT4ZJ2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 21:22:49 GMT
age: 3291
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.zepterhealth.ru/
81.177.141.232200 OK 7.9 kB IP 81.177.141.232:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (1919), with CRLF, LF line terminators
Hash 7260e127e6b8b663fec8b42d65b891a0
6505b93ad5daa5cad01a0bfd53ee51248c977a6a
4838520c43793da0080c34e18d57acb69b69f1cba1c794244f8dbbdb8ee4a484
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 7867
Connection: keep-alive
Server: Jino.ru/mod_pizza
Set-Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0; expires=Thu, 02-Feb-2023 08:17:40 GMT; Max-Age=36000; path=/; domain=zepterhealth.ru
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Status: 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:17:40 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.zepterhealth.ru/css/site.css
81.177.141.232200 OK 4.4 kB URL HTTP/1.1 www.zepterhealth.ru/css/site.css
IP 81.177.141.232:0
Hash a7d06a7f9b1313a0b333f4ea6472a873
796936dad97c404628480b8cccf938cd7e587af0
cac1d645ae2bd66d67ff6fcbb9b1f58a6f658820c0c33d7fd537f48d2be89cdb
GET /css/site.css HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: text/css
Content-Length: 4430
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:05 GMT
ETag: "5f6d-503a935788340"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
www.zepterhealth.ru/js/jquery.sliderkit.1.9.2.pack.js
81.177.141.232200 OK 4.4 kB URL HTTP/1.1 www.zepterhealth.ru/js/jquery.sliderkit.1.9.2.pack.js
IP 81.177.141.232:0
File type ASCII text, with very long lines (9079)
Hash a1cabe7c15df9a1711f99069ac8f4338
e7a0ab252fb67b1eab604e91c511dc9856a905c0
54072c43081a2b224a7534d138685742f8e858c68bb74dad7b0ce37b02697c16
Analyzer Verdict Alert fortinet Malware
GET /js/jquery.sliderkit.1.9.2.pack.js HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: application/javascript
Content-Length: 4383
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:12 GMT
ETag: "2423-503a935e35300"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
www.zepterhealth.ru/js/site.js
81.177.141.232200 OK 5.6 kB URL HTTP/1.1 www.zepterhealth.ru/js/site.js
IP 81.177.141.232:0
Hash 1fd15cafa1130b46767d3e04d9440b0e
1d321c7c7a1a464cef327165b5bcb9b4235b11f4
203e503795ce49307318a8917f6dc5b21a8d554aa2c4e7fa69b322463c1cfc3c
Analyzer Verdict Alert fortinet Malware
GET /js/site.js HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: application/javascript
Content-Length: 5569
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:12 GMT
ETag: "6724-503a935e35300"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
www.zepterhealth.ru/css/sliderkit-core.css
81.177.141.232200 OK 795 B URL HTTP/1.1 www.zepterhealth.ru/css/sliderkit-core.css
IP 81.177.141.232:0
Hash 98b6938cc51a6dbe55f90a34a82b70b6
fb44d99272ac70ffd090e64b954480347e650f88
c2e1246cd8337ec52ac831929a99a458c73824def883d0667420cb8b538a4c0d
GET /css/sliderkit-core.css HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: text/css
Content-Length: 795
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:06 GMT
ETag: "deb-503a93587c580"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
www.zepterhealth.ru/res/images/banners_carousel/1-4.jpg
81.177.141.232200 OK 13 kB URL HTTP/1.1 www.zepterhealth.ru/res/images/banners_carousel/1-4.jpg
IP 81.177.141.232:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 160x168, components 3\012- data
Hash c3f11a00500e07bfa362412e53608165
4d0839341b9c29f4a2e7be98f9cd4b963ed0dd96
a81ab7e8b2cfc5398db1fc758e67c1ad53ee4223eee1916a290fc8971bc0d3c2
GET /res/images/banners_carousel/1-4.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 12965
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:30 GMT
ETag: "32a5-503a936f5fb80"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/res/images/banners_carousel/1-2.jpg
81.177.141.232200 OK 13 kB URL HTTP/1.1 www.zepterhealth.ru/res/images/banners_carousel/1-2.jpg
IP 81.177.141.232:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 160x168, components 3\012- data
Hash ded4cc0a620c7ea36223cfe0b9d8e574
20c79b4fcf117979881db15d2004657bc2850417
344fb685e430920059fdbe9954b746f07d8c99188e3fbd0d78f79fbf3b669eb2
GET /res/images/banners_carousel/1-2.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 12579
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:29 GMT
ETag: "3123-503a936e6b940"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/res/images/banners_carousel/1-6.jpg
81.177.141.232200 OK 13 kB URL HTTP/1.1 www.zepterhealth.ru/res/images/banners_carousel/1-6.jpg
IP 81.177.141.232:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 160x168, components 3\012- data
Hash 4f448ffc09c848ccebd15db78db087b7
8e88a7e0eaa0e7492298d9c6be01e2975ca6e133
12eb3d0546e971e636dc4f8ed0d7aadd8d54ab76f3b994ede8fd478d6e721514
GET /res/images/banners_carousel/1-6.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 12915
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:30 GMT
ETag: "3273-503a936f5fb80"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/res/images/banners_carousel/1-3.jpg
81.177.141.232200 OK 12 kB URL HTTP/1.1 www.zepterhealth.ru/res/images/banners_carousel/1-3.jpg
IP 81.177.141.232:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 160x168, components 3\012- data
Hash a5b22551e1bc9e9d3b05784b9f67e4fe
dd0d07efc729d375916e10495156b112bfabfc2f
3ed8e2260d95e7caad85fea179786eb4259c097145194724afc2d29beb8a14ae
GET /res/images/banners_carousel/1-3.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 11573
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:30 GMT
ETag: "2d35-503a936f5fb80"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/js/jquery-2.0.2.min.js
81.177.141.232200 OK 29 kB URL HTTP/1.1 www.zepterhealth.ru/js/jquery-2.0.2.min.js
IP 81.177.141.232:0
File type ASCII text, with very long lines (32253)
Hash 8b019a8e5e0db976087fc45fbc024c18
3a84270d19b0bf7920cebed550369a7a2a84ab2e
ec89f1234898c1c9692aad1dbdd8f23c89b0795daed631fdd44bc5f392e0f68e
Analyzer Verdict Alert fortinet Malware
GET /js/jquery-2.0.2.min.js HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: application/javascript
Content-Length: 29343
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:12 GMT
ETag: "1462d-503a935e35300"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
mc.yandex.ru/metrika/watch.js
87.250.251.119302 Moved temporarily 0 B URL HTTP/1.1 mc.yandex.ru/metrika/watch.js
IP 87.250.251.119:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
HTTP/1.1 302 Moved temporarily
Content-Length: 0
Location: https://mc.yandex.ru/metrika/watch.js
www.zepterhealth.ru/res/images/banners_carousel/1-5.jpg
81.177.141.232200 OK 14 kB URL HTTP/1.1 www.zepterhealth.ru/res/images/banners_carousel/1-5.jpg
IP 81.177.141.232:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 160x168, components 3\012- data
Hash 1d3cbbc3e4c733a61b41f5f56dbb4e61
0ae3d868c65bf692447403b8dd17b25bcf7a5883
d974285589a6696badd666a285233a4b93ed751ffb3f9726c660887e3f204a4e
GET /res/images/banners_carousel/1-5.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 13979
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:30 GMT
ETag: "369b-503a936f5fb80"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/res/images/banners/1-1.jpg
81.177.141.232200 OK 7.1 kB URL HTTP/1.1 www.zepterhealth.ru/res/images/banners/1-1.jpg
IP 81.177.141.232:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 160x84, components 3\012- data
Hash 528fdf0168e64d166329608f1a54d4ac
f4753e31d2705335162b2b6bb92b13afb7ff5a4c
e19a083448079e4cd3b384365821066d6d3aefca87dc1e277ff5ac4c0cf4d981
GET /res/images/banners/1-1.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 7115
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:29 GMT
ETag: "1bcb-503a936e6b940"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/res/images/banners2/1-1.jpg
81.177.141.232200 OK 21 kB URL HTTP/1.1 www.zepterhealth.ru/res/images/banners2/1-1.jpg
IP 81.177.141.232:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 420x180, components 3\012- data
Hash 57a315f12af9d30e298d71e820ef4362
1f8358b1055972647542aaf99a7d2d838ac2d5d3
433e2c0b24f2eee56291c68acb37ee90d556838d477b3e5f69627182c65c9051
GET /res/images/banners2/1-1.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 20857
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 23 Feb 2015 21:31:20 GMT
ETag: "5179-50fc81f815a00"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/res/images/banners_carousel/1-7.jpg
81.177.141.232200 OK 12 kB URL HTTP/1.1 www.zepterhealth.ru/res/images/banners_carousel/1-7.jpg
IP 81.177.141.232:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 160x168, components 3\012- data
Hash 0a23fa765b427285077077a5e87a49a4
8cf873fd5b89cd4943ffba93ddc53b9b65ea5088
25f80502a5406a248a655c765db827bfaa757c1aeadd93ced50331a24284586c
GET /res/images/banners_carousel/1-7.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 12395
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:30 GMT
ETag: "306b-503a936f5fb80"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/res/images/banners/1-4.jpg
81.177.141.232200 OK 13 kB URL HTTP/1.1 www.zepterhealth.ru/res/images/banners/1-4.jpg
IP 81.177.141.232:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 160x168, components 3\012- data
Hash c3f11a00500e07bfa362412e53608165
4d0839341b9c29f4a2e7be98f9cd4b963ed0dd96
a81ab7e8b2cfc5398db1fc758e67c1ad53ee4223eee1916a290fc8971bc0d3c2
GET /res/images/banners/1-4.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 12965
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:29 GMT
ETag: "32a5-503a936e6b940"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/res/images/banners/1-3.jpg
81.177.141.232200 OK 12 kB URL HTTP/1.1 www.zepterhealth.ru/res/images/banners/1-3.jpg
IP 81.177.141.232:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 160x168, components 3\012- data
Hash a5b22551e1bc9e9d3b05784b9f67e4fe
dd0d07efc729d375916e10495156b112bfabfc2f
3ed8e2260d95e7caad85fea179786eb4259c097145194724afc2d29beb8a14ae
GET /res/images/banners/1-3.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 11573
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:29 GMT
ETag: "2d35-503a936e6b940"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/res/images/banners/1-2.jpg
81.177.141.232200 OK 13 kB URL HTTP/1.1 www.zepterhealth.ru/res/images/banners/1-2.jpg
IP 81.177.141.232:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 160x168, components 3\012- data
Hash ded4cc0a620c7ea36223cfe0b9d8e574
20c79b4fcf117979881db15d2004657bc2850417
344fb685e430920059fdbe9954b746f07d8c99188e3fbd0d78f79fbf3b669eb2
GET /res/images/banners/1-2.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 12579
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:29 GMT
ETag: "3123-503a936e6b940"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/res/images/banners/1-5.jpg
81.177.141.232200 OK 14 kB URL HTTP/1.1 www.zepterhealth.ru/res/images/banners/1-5.jpg
IP 81.177.141.232:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 160x168, components 3\012- data
Hash 1d3cbbc3e4c733a61b41f5f56dbb4e61
0ae3d868c65bf692447403b8dd17b25bcf7a5883
d974285589a6696badd666a285233a4b93ed751ffb3f9726c660887e3f204a4e
GET /res/images/banners/1-5.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 13979
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:29 GMT
ETag: "369b-503a936e6b940"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/res/images/banners/1-7.jpg
81.177.141.232200 OK 12 kB URL HTTP/1.1 www.zepterhealth.ru/res/images/banners/1-7.jpg
IP 81.177.141.232:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 160x168, components 3\012- data
Hash 0a23fa765b427285077077a5e87a49a4
8cf873fd5b89cd4943ffba93ddc53b9b65ea5088
25f80502a5406a248a655c765db827bfaa757c1aeadd93ced50331a24284586c
GET /res/images/banners/1-7.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 12395
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:29 GMT
ETag: "306b-503a936e6b940"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/res/images/banners/1-6.jpg
81.177.141.232200 OK 13 kB URL HTTP/1.1 www.zepterhealth.ru/res/images/banners/1-6.jpg
IP 81.177.141.232:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 160x168, components 3\012- data
Hash 4f448ffc09c848ccebd15db78db087b7
8e88a7e0eaa0e7492298d9c6be01e2975ca6e133
12eb3d0546e971e636dc4f8ed0d7aadd8d54ab76f3b994ede8fd478d6e721514
GET /res/images/banners/1-6.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 12915
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:29 GMT
ETag: "3273-503a936e6b940"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/res/poisk_lupa.png
81.177.141.232200 OK 664 B URL HTTP/1.1 www.zepterhealth.ru/res/poisk_lupa.png
IP 81.177.141.232:0
File type PNG image data, 17 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 81a6bb7f69c9912b554b1b75260a297f
10a602f470757ad8afaf9fd6ad77c7ae71e5f7e5
0fc6dab484a923bf1d7816c305e9141653463b935e9d674adb9b96c8a13cf9af
GET /res/poisk_lupa.png HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/png
Content-Length: 664
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:12 GMT
ETag: "298-503a935e35300"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/res/top_center.jpg
81.177.141.232200 OK 25 kB URL HTTP/1.1 www.zepterhealth.ru/res/top_center.jpg
IP 81.177.141.232:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1000x141, components 3\012- data
Hash 2ff50de9a2b55056defa033944b455c5
af53f582669b96b6b2ad9819bf15c56e86ec5af4
c1355f1c2660c8ddbd4406848080b5a1c6d0c458a09342b194bc1a951302b5fd
GET /res/top_center.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/css/site.css
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 25119
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:12 GMT
ETag: "621f-503a935e35300"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
www.zepterhealth.ru/res/gor_menu.jpg
81.177.141.232200 OK 2.2 kB URL HTTP/1.1 www.zepterhealth.ru/res/gor_menu.jpg
IP 81.177.141.232:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1000x31, components 3\012- data
Hash 9f323f0f341bb6375d3e5d0e5859cc02
6c714ecb51c0cfb070bbf2212f7a4afc9c806f87
74355fe8999d8ecae91fdd4df0d205d276df1fedfaa19ecf07f779e0c8cc9e6c
GET /res/gor_menu.jpg HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/css/site.css
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: image/jpeg
Content-Length: 2204
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:12 GMT
ETag: "89c-503a935e35300"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:40 GMT
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash a49861fbc4bc3e46fca238287116ecff
8455405459b068f15cf901c63416495870df0d88
c43c6bbefc79323158acf5ca798c5e481f3977f8d011ea0af0cf4b971ea3d244
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sun, 05 Feb 2023 21:10:10 GMT
ETag: "8455405459b068f15cf901c63416495870df0d88"
Last-Modified: Wed, 01 Feb 2023 21:10:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 622
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792e0efc19b3b4f9-OSL
mc.yandex.ru/metrika/watch.js
87.250.251.119200 OK 58 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP 87.250.251.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (554)
Hash 315a601116a9b3b0fbc85feb58375ba4
5d283ed923d0b3beb8a2ec4e80c2958d1d132fbf
251ba0fc04953e3615e7c19a9a10c5d6a4f25cc03bef190f8a5e7c6cd72a991a
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.zepterhealth.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 58140
date: Wed, 01 Feb 2023 22:17:40 GMT
access-control-allow-origin: *
etag: "63c93a4b-e31c"
expires: Wed, 01 Feb 2023 23:17:40 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 21:41:42 GMT
age: 2158
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.acint.net/aci.js
193.3.184.135200 OK 7.8 kB IP 193.3.184.135:0
File type ASCII text, with very long lines (1649)
Hash 23df47b4330754db70e9c1e32f0092d6
dea956b3a9dad9fa3cc352180be435943e8d0352
0056d5c8969a597094abb6cc9f3a383631ba9c0f13ac620d735f0788807fb4de
GET /aci.js HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:40 GMT
content-type: application/x-javascript
content-length: 7757
last-modified: Mon, 09 Jan 2023 08:01:12 GMT
etag: "63bbc9c8-1e4d"
content-encoding: gzip
expires: Thu, 02 Feb 2023 10:17:40 GMT
cache-control: max-age=43200
X-Firefox-Spdy: h2
www.zepterhealth.ru/ajax/korzina_stat.php
81.177.141.232200 OK 26 B URL HTTP/1.1 www.zepterhealth.ru/ajax/korzina_stat.php
IP 81.177.141.232:0
File type Unicode text, UTF-8 (with BOM) text, with no line terminators
Hash 44d073cdf297c0f29974ec9f4f96fd1d
6f599f1d53b344756bac822b079b12f64776ce62
3c326ffdeaa153d79a365bd5a0547da82e8f02756d4d7a13d742daaf6e20f8a5
Analyzer Verdict Alert fortinet Malware
POST /ajax/korzina_stat.php HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: application/x-www-form-urlencoded
Content-Length: 0
Origin: http://www.zepterhealth.ru
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0; _ym_uid=1675289884462392932; _ym_d=1675289884; hotlog=1; fid=751324dd-0138-4129-bd0b-639c753af02f
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 26
Connection: keep-alive
Server: Jino.ru/mod_pizza
Set-Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0; expires=Thu, 02-Feb-2023 08:17:40 GMT; Max-Age=36000; path=/; domain=zepterhealth.ru
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
www.acint.net/oci.js?t=1675289884199
193.3.184.135302 Moved Temporarily 142 B URL HTTP/1.1 www.acint.net/oci.js?t=1675289884199
IP 193.3.184.135:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /oci.js?t=1675289884199 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/oci.js?t=1675289884199
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2255
Expires: Wed, 01 Feb 2023 22:55:15 GMT
Date: Wed, 01 Feb 2023 22:17:40 GMT
Connection: keep-alive
www.acint.net/mc/?dp=10
193.3.184.135302 Moved Temporarily 142 B IP 193.3.184.135:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/mc/?dp=10
www.acint.net/hit/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=43635136&u=http%3A%2F%2Fwww.zepterhealth.ru%2F&r=&rs=1280x1024&t=%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%20%D0%A6%D0%B5%D0%BF%D1%82%D0%B5%D1%80%20%D0%B2%20%D0%9C%D0%BE%D1%81%D0%BA%D0%B2%D0%B5%20-%20%D0%BF%D0%BE%D1%81%D1%83%D0%B4%D0%B0%2C%20%D0%B1%D0%B8%D0%BE%D0%BF%D1%82%D1%80%D0%BE%D0%BD%2C%20%D1%84%D0%B8%D0%BB%D1%8C%D1%82%D1%80%20%D0%B4%D0%BB%D1%8F%20%D0%B2%D0%BE%D0%B4%D1%8B%20%D0%B0%D0%BA%D0%B2%D0%B8%D0%BD%D0%B0%20-%20ZepterHealth.ru&oE=1&oP=1&dT=2023-02-01T22%3A18%3A04.198&fu=751324dd-0138-4129-bd0b-639c753af02f
193.3.184.135302 Moved Temporarily 142 B URL HTTP/1.1 www.acint.net/hit/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=43635136&u=http%3A%2F%2Fwww.zepterhealth.ru%2F&r=&rs=1280x1024&t=%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%20%D0%A6%D0%B5%D0%BF%D1%82%D0%B5%D1%80%20%D0%B2%20%D0%9C%D0%BE%D1%81%D0%BA%D0%B2%D0%B5%20-%20%D0%BF%D0%BE%D1%81%D1%83%D0%B4%D0%B0%2C%20%D0%B1%D0%B8%D0%BE%D0%BF%D1%82%D1%80%D0%BE%D0%BD%2C%20%D1%84%D0%B8%D0%BB%D1%8C%D1%82%D1%80%20%D0%B4%D0%BB%D1%8F%20%D0%B2%D0%BE%D0%B4%D1%8B%20%D0%B0%D0%BA%D0%B2%D0%B8%D0%BD%D0%B0%20-%20ZepterHealth.ru&oE=1&oP=1&dT=2023-02-01T22%3A18%3A04.198&fu=751324dd-0138-4129-bd0b-639c753af02f
IP 193.3.184.135:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /hit/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=43635136&u=http%3A%2F%2Fwww.zepterhealth.ru%2F&r=&rs=1280x1024&t=%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%20%D0%A6%D0%B5%D0%BF%D1%82%D0%B5%D1%80%20%D0%B2%20%D0%9C%D0%BE%D1%81%D0%BA%D0%B2%D0%B5%20-%20%D0%BF%D0%BE%D1%81%D1%83%D0%B4%D0%B0%2C%20%D0%B1%D0%B8%D0%BE%D0%BF%D1%82%D1%80%D0%BE%D0%BD%2C%20%D1%84%D0%B8%D0%BB%D1%8C%D1%82%D1%80%20%D0%B4%D0%BB%D1%8F%20%D0%B2%D0%BE%D0%B4%D1%8B%20%D0%B0%D0%BA%D0%B2%D0%B8%D0%BD%D0%B0%20-%20ZepterHealth.ru&oE=1&oP=1&dT=2023-02-01T22%3A18%3A04.198&fu=751324dd-0138-4129-bd0b-639c753af02f HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Wed, 01 Feb 2023 22:17:40 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/hit/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=43635136&u=http%3A%2F%2Fwww.zepterhealth.ru%2F&r=&rs=1280x1024&t=%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%20%D0%A6%D0%B5%D0%BF%D1%82%D0%B5%D1%80%20%D0%B2%20%D0%9C%D0%BE%D1%81%D0%BA%D0%B2%D0%B5%20-%20%D0%BF%D0%BE%D1%81%D1%83%D0%B4%D0%B0%2C%20%D0%B1%D0%B8%D0%BE%D0%BF%D1%82%D1%80%D0%BE%D0%BD%2C%20%D1%84%D0%B8%D0%BB%D1%8C%D1%82%D1%80%20%D0%B4%D0%BB%D1%8F%20%D0%B2%D0%BE%D0%B4%D1%8B%20%D0%B0%D0%BA%D0%B2%D0%B8%D0%BD%D0%B0%20-%20ZepterHealth.ru&oE=1&oP=1&dT=2023-02-01T22%3A18%3A04.198&fu=751324dd-0138-4129-bd0b-639c753af02f
www.acint.net/mc/?dp=10
193.3.184.135302 Found 154 B IP 193.3.184.135:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.zepterhealth.ru/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=10&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Wed, 01-Feb-23 22:27:41 GMT
aid=fwAAAWPa5QUk2woDpMcwAinM5OMRm6BV1RgyfB1zR9XQ30c0; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/hit/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=43635136&u=http%3A%2F%2Fwww.zepterhealth.ru%2F&r=&rs=1280x1024&t=%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%20%D0%A6%D0%B5%D0%BF%D1%82%D0%B5%D1%80%20%D0%B2%20%D0%9C%D0%BE%D1%81%D0%BA%D0%B2%D0%B5%20-%20%D0%BF%D0%BE%D1%81%D1%83%D0%B4%D0%B0%2C%20%D0%B1%D0%B8%D0%BE%D0%BF%D1%82%D1%80%D0%BE%D0%BD%2C%20%D1%84%D0%B8%D0%BB%D1%8C%D1%82%D1%80%20%D0%B4%D0%BB%D1%8F%20%D0%B2%D0%BE%D0%B4%D1%8B%20%D0%B0%D0%BA%D0%B2%D0%B8%D0%BD%D0%B0%20-%20ZepterHealth.ru&oE=1&oP=1&dT=2023-02-01T22%3A18%3A04.198&fu=751324dd-0138-4129-bd0b-639c753af02f
193.3.184.135200 OK 43 B URL HTTP/2 www.acint.net/hit/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=43635136&u=http%3A%2F%2Fwww.zepterhealth.ru%2F&r=&rs=1280x1024&t=%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%20%D0%A6%D0%B5%D0%BF%D1%82%D0%B5%D1%80%20%D0%B2%20%D0%9C%D0%BE%D1%81%D0%BA%D0%B2%D0%B5%20-%20%D0%BF%D0%BE%D1%81%D1%83%D0%B4%D0%B0%2C%20%D0%B1%D0%B8%D0%BE%D0%BF%D1%82%D1%80%D0%BE%D0%BD%2C%20%D1%84%D0%B8%D0%BB%D1%8C%D1%82%D1%80%20%D0%B4%D0%BB%D1%8F%20%D0%B2%D0%BE%D0%B4%D1%8B%20%D0%B0%D0%BA%D0%B2%D0%B8%D0%BD%D0%B0%20-%20ZepterHealth.ru&oE=1&oP=1&dT=2023-02-01T22%3A18%3A04.198&fu=751324dd-0138-4129-bd0b-639c753af02f
IP 193.3.184.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hit/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=43635136&u=http%3A%2F%2Fwww.zepterhealth.ru%2F&r=&rs=1280x1024&t=%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%20%D0%A6%D0%B5%D0%BF%D1%82%D0%B5%D1%80%20%D0%B2%20%D0%9C%D0%BE%D1%81%D0%BA%D0%B2%D0%B5%20-%20%D0%BF%D0%BE%D1%81%D1%83%D0%B4%D0%B0%2C%20%D0%B1%D0%B8%D0%BE%D0%BF%D1%82%D1%80%D0%BE%D0%BD%2C%20%D1%84%D0%B8%D0%BB%D1%8C%D1%82%D1%80%20%D0%B4%D0%BB%D1%8F%20%D0%B2%D0%BE%D0%B4%D1%8B%20%D0%B0%D0%BA%D0%B2%D0%B8%D0%BD%D0%B0%20-%20ZepterHealth.ru&oE=1&oP=1&dT=2023-02-01T22%3A18%3A04.198&fu=751324dd-0138-4129-bd0b-639c753af02f HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.zepterhealth.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=fwAAAWPa5QUk2woDpMcxAs5lRvQl2wFwOnxgvDhg5Drqf4Mh; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 01 Feb 2023 22:17:41 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Wed, 01 Feb 2023 23:17:41 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.zepterhealth.ru/favicon.ico
81.177.141.232301 Moved Permanently 26 B URL HTTP/1.1 www.zepterhealth.ru/favicon.ico
IP 81.177.141.232:0
File type Unicode text, UTF-8 (with BOM) text, with no line terminators
Hash bf399df1137639fb28471f38a55688b2
fc75fd59e8d56e970e7aaae3bbe037c644f8adcb
0120fc118216f528cbab981a3ac256a8f8a29679d2de7563441f0b01b5b83c7a
GET /favicon.ico HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0; _ym_uid=1675289884462392932; _ym_d=1675289884; hotlog=1; fid=751324dd-0138-4129-bd0b-639c753af02f
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 26
Connection: keep-alive
Server: Jino.ru/mod_pizza
Set-Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0; expires=Thu, 02-Feb-2023 08:17:41 GMT; Max-Age=36000; path=/; domain=zepterhealth.ru
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: http://www.zepterhealth.ru
Vary: Accept-Encoding
Content-Encoding: gzip
www.acint.net/oci.js?t=1675289884199
193.3.184.135200 OK 15 kB URL HTTP/2 www.acint.net/oci.js?t=1675289884199
IP 193.3.184.135:0
Hash 830bdd00b6b07672370a951577d29d96
98b2a5352fd2680f1c716c06fe8fc93d308335ab
f909501d77342d53317c840fdc05f308194ef2b79418b1cb889e314f0b92d499
GET /oci.js?t=1675289884199 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.zepterhealth.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:40 GMT
content-type: application/x-javascript
last-modified: Mon, 09 Jan 2023 08:01:14 GMT
etag: W/"63bbc9ca-7dac"
content-encoding: gzip
X-Firefox-Spdy: h2
counter.yadro.ru/hit?t16.6;r;s1280*1024*24;uhttp%3A//www.zepterhealth.ru/;0.4586017761754825
88.212.201.204302 Moved Temporarily 32 B URL HTTP/1.1 counter.yadro.ru/hit?t16.6;r;s1280*1024*24;uhttp%3A//www.zepterhealth.ru/;0.4586017761754825
IP 88.212.201.204:0
ASN #39134 United Network LLC
File type HTML document, ASCII text
Hash 3e9c09a8c5a87f266e047a596f48578c
07d7b1940b7e3f9a3db43197458f9b8ef18a6bce
57fad7ae62012ff4a38ecb6045ac6e8e3a070a33bbd033b21ab6cad3566d9254
GET /hit?t16.6;r;s1280*1024*24;uhttp%3A//www.zepterhealth.ru/;0.4586017761754825 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
HTTP/1.1 302 Moved Temporarily
Date: Wed, 01 Feb 2023 22:17:41 GMT
Server: 0W/0.8c
Content-Type: text/html
Location: https://counter.yadro.ru/hit?t16.6;r;s1280*1024*24;uhttp%3A//www.zepterhealth.ru/;0.4586017761754825
Content-Length: 32
Expires: Tue, 01 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
www.yandex.ru/cycounter?www.zepterhealth.ru
77.88.55.88302 Moved temporarily 0 B URL HTTP/1.1 www.yandex.ru/cycounter?www.zepterhealth.ru
IP 77.88.55.88:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cycounter?www.zepterhealth.ru HTTP/1.1
Host: www.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
HTTP/1.1 302 Moved temporarily
Content-Length: 0
Location: https://www.yandex.ru/cycounter?www.zepterhealth.ru
NEL: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
Report-To: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Yandex-Req-Id: 1675289861095556-6677456560351710861-sas3-0995-c92-sas-l7-balancer-8080-BAL
set-cookie: is_gdpr=1; Path=/; Domain=.yandex.ru; Expires=Fri, 31 Jan 2025 22:17:41 GMT; SameSite=None; Secure
is_gdpr_b=CPvaURChpAEYAQ==; Path=/; Domain=.yandex.ru; Expires=Fri, 31 Jan 2025 22:17:41 GMT; SameSite=None; Secure
_yasc=ZSRHyNhGUBc+HuIER3fN4Nuyi7KdQo0QwmJPQ6KwJJKqSRwC99+JgL/4g6A=; domain=.yandex.ru; path=/; expires=Sat, 29-Jan-2033 22:17:41 GMT; secure
hit20.hotlog.ru/cgi-bin/hotlog/count?0.6043675156685164&s=283742&im=105&r=&pg=http%3A//www.zepterhealth.ru/&c=Y&j=N&wh=1280x1024&px=24&js=1.3&
89.208.236.251404 Not Found 19 B URL HTTP/1.1 hit20.hotlog.ru/cgi-bin/hotlog/count?0.6043675156685164&s=283742&im=105&r=&pg=http%3A//www.zepterhealth.ru/&c=Y&j=N&wh=1280x1024&px=24&js=1.3&
IP 89.208.236.251:0
ASN #12695 LLC Digital Network
Hash 595e88012a6521aae3e12cbebe76eb9e
da3968197e7bf67aa45a77515b52ba2710c5fc34
b16e15764b8bc06c5c3f9f19bc8b99fa48e7894aa5a6ccdad65da49bbf564793
GET /cgi-bin/hotlog/count?0.6043675156685164&s=283742&im=105&r=&pg=http%3A//www.zepterhealth.ru/&c=Y&j=N&wh=1280x1024&px=24&js=1.3& HTTP/1.1
Host: hit20.hotlog.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=utf-8
X-Content-Type-Options: nosniff
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Length: 19
mc.yandex.ru/watch/468128/1?wmode=7&page-url=http%3A%2F%2Fwww.zepterhealth.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A530%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1503509315040%3Ahid%3A782119369%3Az%3A0%3Ai%3A20230201221804%3Aet%3A1675289884%3Ac%3A1%3Arn%3A289396159%3Arqn%3A1%3Au%3A1675289884462392932%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A44%2C27%2C33%2C1%2C288%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Ans%3A1675289883006%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675289884%3At%3A%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%20%D0%A6%D0%B5%D0%BF%D1%82%D0%B5%D1%80%20%D0%B2%20%D0%9C%D0%BE%D1%81%D0%BA%D0%B2%D0%B5%20-%20%D0%BF%D0%BE%D1%81%D1%83%D0%B4%D0%B0%2C%20%D0%B1%D0%B8%D0%BE%D0%BF%D1%82%D1%80%D0%BE%D0%BD%2C%20%D1%84%D0%B8%D0%BB%D1%8C%D1%82%D1%80%20%D0%B4%D0%BB%D1%8F%20%D0%B2%D0%BE%D0%B4%D1%8B%20%D0%B0%D0%BA%D0%B2%D0%B8%D0%BD%D0%B0%20-%20ZepterHealth.ru&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
87.250.251.119200 OK 407 B URL HTTP/2 mc.yandex.ru/watch/468128/1?wmode=7&page-url=http%3A%2F%2Fwww.zepterhealth.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A530%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1503509315040%3Ahid%3A782119369%3Az%3A0%3Ai%3A20230201221804%3Aet%3A1675289884%3Ac%3A1%3Arn%3A289396159%3Arqn%3A1%3Au%3A1675289884462392932%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A44%2C27%2C33%2C1%2C288%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Ans%3A1675289883006%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675289884%3At%3A%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%20%D0%A6%D0%B5%D0%BF%D1%82%D0%B5%D1%80%20%D0%B2%20%D0%9C%D0%BE%D1%81%D0%BA%D0%B2%D0%B5%20-%20%D0%BF%D0%BE%D1%81%D1%83%D0%B4%D0%B0%2C%20%D0%B1%D0%B8%D0%BE%D0%BF%D1%82%D1%80%D0%BE%D0%BD%2C%20%D1%84%D0%B8%D0%BB%D1%8C%D1%82%D1%80%20%D0%B4%D0%BB%D1%8F%20%D0%B2%D0%BE%D0%B4%D1%8B%20%D0%B0%D0%BA%D0%B2%D0%B8%D0%BD%D0%B0%20-%20ZepterHealth.ru&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP 87.250.251.119:0
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash 759d6756060242ccfba0fa266cf77bab
9f9b3ab2b506dcf59ce319a8fa79d3d61717c4e3
15d7c206ea1572e6fcfa5ea1cf615ec85952b857967aa096e4368f7e01c640c0
GET /watch/468128/1?wmode=7&page-url=http%3A%2F%2Fwww.zepterhealth.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A530%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1503509315040%3Ahid%3A782119369%3Az%3A0%3Ai%3A20230201221804%3Aet%3A1675289884%3Ac%3A1%3Arn%3A289396159%3Arqn%3A1%3Au%3A1675289884462392932%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A44%2C27%2C33%2C1%2C288%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Ans%3A1675289883006%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675289884%3At%3A%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%20%D0%A6%D0%B5%D0%BF%D1%82%D0%B5%D1%80%20%D0%B2%20%D0%9C%D0%BE%D1%81%D0%BA%D0%B2%D0%B5%20-%20%D0%BF%D0%BE%D1%81%D1%83%D0%B4%D0%B0%2C%20%D0%B1%D0%B8%D0%BE%D0%BF%D1%82%D1%80%D0%BE%D0%BD%2C%20%D1%84%D0%B8%D0%BB%D1%8C%D1%82%D1%80%20%D0%B4%D0%BB%D1%8F%20%D0%B2%D0%BE%D0%B4%D1%8B%20%D0%B0%D0%BA%D0%B2%D0%B8%D0%BD%D0%B0%20-%20ZepterHealth.ru&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.zepterhealth.ru
Referer: http://www.zepterhealth.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 407
date: Wed, 01 Feb 2023 22:17:41 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://www.zepterhealth.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 01-Feb-2023 22:17:41 GMT
last-modified: Wed, 01-Feb-2023 22:17:41 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 6d6dd7c8f80c0f51f963036906e96d14
f5ed888b43f3d0d0faeec29d85e2447f0c691d1e
34ef0835874864bc4fac36213e602dca471cd60a9d3aa55f25066676126b8649
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 05 Feb 2023 20:26:25 GMT
ETag: "f5ed888b43f3d0d0faeec29d85e2447f0c691d1e"
Last-Modified: Wed, 01 Feb 2023 20:26:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 26
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792e0f00afe9b4f9-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash e8287252af97ebd20ef775156acd7c69
964db2c1527995b06e9be47b9b2a026b4f83e278
a120cf57bdd40e57fe30a73b5e6eab6fc1151d3cc0438378be24a47a16786f88
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sun, 05 Feb 2023 20:42:44 GMT
ETag: "964db2c1527995b06e9be47b9b2a026b4f83e278"
Last-Modified: Wed, 01 Feb 2023 20:42:45 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2697
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792e0f00d834b4f9-OSL
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash b09384687a73f14f093f2287f5c77c6e
b17f8d9fd129e9d678e4e5615f9663f45ddc892d
a0ce7f3cc1374c1955d10e3ea5e34af10cb23e83736383b9db33eb23d755adcb
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sun, 05 Feb 2023 19:48:30 GMT
ETag: "b17f8d9fd129e9d678e4e5615f9663f45ddc892d"
Last-Modified: Wed, 01 Feb 2023 19:48:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2253
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792e0f00e8c70b55-OSL
www.acint.net/mc/?dp=10&tc=1
193.3.184.135200 OK 1.9 kB URL HTTP/2 www.acint.net/mc/?dp=10&tc=1
IP 193.3.184.135:0
Hash c86be054a00c2c33f3bba47a10ce071a
b081dda917ef114a23e9bdbc6cf866baa047f45b
0b4f6ef65e0269dbf07f69c6ce7bde9d31c3a8e01ee2fb8e8d17fb6f9ce68d82
GET /mc/?dp=10&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.zepterhealth.ru/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPa5QUk2woDpMcxAs5lRvQl2wFwOnxgvDhg5Drqf4Mh
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: text/html
set-cookie: cSyncDp7v2=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp14v3=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp32=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v3=1675289861; expires=Thu, 02-Feb-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53v2=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v2=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v3=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp98v2=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp101=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1675289861; expires=Wed, 15-Feb-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v3=1675289861; expires=Thu, 16-Feb-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v2=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v2=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp178=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp221=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp235=1675289861; expires=Fri, 03-Mar-23 22:17:41 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.40.156.208101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.40.156.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: C5BV7LlzWr4KNg0QAcAUoQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ooRmMGMIKVs3jS7Otn3/b2VoaJE=
counter.yadro.ru/hit?t16.6;r;s1280*1024*24;uhttp%3A//www.zepterhealth.ru/;0.4586017761754825
88.212.201.204200 OK 203 B URL HTTP/1.1 counter.yadro.ru/hit?t16.6;r;s1280*1024*24;uhttp%3A//www.zepterhealth.ru/;0.4586017761754825
IP 88.212.201.204:0
ASN #39134 United Network LLC
File type GIF image data, version 87a, 88 x 31\012- data
Hash 9a52748ba47388292aa536a2e10d2f52
8cae873a981e3b44b6cd193f98043d40bbcd9ee7
14c0eee74c39c2fb672e43dbddff687a83d079911bb836a612e956ef1150a9e9
GET /hit?t16.6;r;s1280*1024*24;uhttp%3A//www.zepterhealth.ru/;0.4586017761754825 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.zepterhealth.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: image/gif
Content-Length: 203
Connection: keep-alive
Expires: Tue, 01 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
www.acint.net/oci/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=55157478&oid=39e8192718f4ed5a678fc273d654392b
193.3.184.135302 Moved Temporarily 142 B URL HTTP/1.1 www.acint.net/oci/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=55157478&oid=39e8192718f4ed5a678fc273d654392b
IP 193.3.184.135:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /oci/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=55157478&oid=39e8192718f4ed5a678fc273d654392b HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/oci/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=55157478&oid=39e8192718f4ed5a678fc273d654392b
www.yandex.ru/cycounter?www.zepterhealth.ru
77.88.55.88200 OK 1.6 kB URL HTTP/2 www.yandex.ru/cycounter?www.zepterhealth.ru
IP 77.88.55.88:0
File type PNG image data, 88 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 6a13c3436d1aa98b556ff348f982b5b1
9a7b1c6c39523f08247a97b92c2669c2a3fc3944
272fcf06cd0b8c47284fcfe559185fd2393a6083bdbe2f24bda7f4e87dd07d83
GET /cycounter?www.zepterhealth.ru HTTP/1.1
Host: www.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.zepterhealth.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
set-cookie: is_gdpr=1; Path=/; Domain=.yandex.ru; Expires=Fri, 31 Jan 2025 22:17:41 GMT; SameSite=None; Secure
is_gdpr_b=CPvaURChpAEYAQ==; Path=/; Domain=.yandex.ru; Expires=Fri, 31 Jan 2025 22:17:41 GMT; SameSite=None; Secure
_yasc=nmcPMO7RzRPZCd/gCX+Epp2NZAZl4cEFBx+fZ08Ua0vfZ5cWFY2ay65NUvZS; domain=.yandex.ru; path=/; expires=Sat, 29-Jan-2033 22:17:41 GMT; secure
i=CcAu7KjXVgBz1O7RrQbmNYEmerNDfXvWg+jhcEq3MkCT1o09ZmC3809kDhT12gRMzsv7qH6zyuwSrwROdkaIHjrnv0M=; Expires=Fri, 31-Jan-2025 22:17:41 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=3871734411675289861; Path=/; Domain=.yandex.ru; Expires=Thu, 01 Feb 2024 22:17:41 GMT; SameSite=None; Secure; HttpOnly
expires: Thu, 02 Feb 2023 08:55:32 GMT
x-xss-protection: 1; mode=block
x-yandex-req-id: 1675289861289086-2595098502135688152-sas2-0307-sas-l7-balancer-8080-BAL
last-modified: Thu, 19 Jan 2023 08:55:32 GMT
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
content-type: image/png
X-Firefox-Spdy: h2
dm-eu.hybrid.ai/match?id=106&vid=0100007F05E5DA63030ADB240231C7A4
37.18.103.21204 No Content 0 B URL HTTP/2 dm-eu.hybrid.ai/match?id=106&vid=0100007F05E5DA63030ADB240231C7A4
IP 37.18.103.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=106&vid=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 01 Feb 2023 22:17:41 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=1346b53b316717c5984c; Expires=Thu, 01 Feb 2024 22:17:40 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 529
x-xss-protection: 1; mode=block
access-control-allow-origin: https://www.acint.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
www.acint.net/oci/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=55157478&oid=39e8192718f4ed5a678fc273d654392b
193.3.184.135200 OK 43 B URL HTTP/2 www.acint.net/oci/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=55157478&oid=39e8192718f4ed5a678fc273d654392b
IP 193.3.184.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /oci/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=55157478&oid=39e8192718f4ed5a678fc273d654392b HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.zepterhealth.ru/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPa5QUk2woDpMcxAs5lRvQl2wFwOnxgvDhg5Drqf4Mh; cSyncDp7v2=1675289861; cSyncDp14v3=1675289861; cSyncDp17=1675289861; cSyncDp32=1675289861; cSyncDp45v3=1675289861; cSyncDp53v2=1675289861; cSyncDp62=1675289861; cSyncDp67v2=1675289861; cSyncDp68=1675289861; cSyncDp71=1675289861; cSyncDp85=1675289861; cSyncDp95v3=1675289861; cSyncDp98v2=1675289861; cSyncDp101=1675289861; cSyncDp104v2=1675289861; cSyncDp107=1675289861; cSyncDp110=1675289861; cSyncDp125v3=1675289861; cSyncDp126=1675289861; cSyncDp127=1675289861; cSyncDp129=1675289861; cSyncDp136v2=1675289861; cSyncDp146=1675289861; cSyncDp148=1675289861; cSyncDp149v2=1675289861; cSyncDp151=1675289861; cSyncDp178=1675289861; cSyncDp186=1675289861; cSyncDp221=1675289861; cSyncDp235=1675289861
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
a.utraff.com/sync?ssp=Sape
172.67.217.151204 No Content 0 B URL HTTP/2 a.utraff.com/sync?ssp=Sape
IP 172.67.217.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=Sape HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Sat, 04 Mar 2023 01:17:41 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Sat, 04 Mar 2023 01:17:41 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=evwtNTmZ46V5VSnAnrA1EYsH1TxwfRiLEg%2Bzo9IrIOyUNYaY39xkh%2FloohGqGedt9sWrQVZ%2Fo9j5ZYtYwHZKeq9ZpLDjmcyLFiiMGM7faIT3lYoxf5RjQik55RSEDXk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792e0f00dc4e0b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 59b8aa89e5e22582e40e32d167605c34
f91dcd506ba266e9691399c4e6eb1ee12ee679f8
6a639dd8dd0a8d8cfa8d924850d904056137ca264a8657da43db2db143a4ff5f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A639DD8DD0A8D8CFA8D924850D904056137CA264A8657DA43DB2DB143A4FF5F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17285
Expires: Thu, 02 Feb 2023 03:05:46 GMT
Date: Wed, 01 Feb 2023 22:17:41 GMT
Connection: keep-alive
ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
193.3.184.219302 Moved Temporarily 142 B URL HTTP/1.1 ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
IP 193.3.184.219:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=4402420A05E5DA634700860302F305CC
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=CkICRGPa5QUDhgBHzAXzArSyibU//egueCI5Zx0COhcxiCkS; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d70f1cb18a126c2e00820d9a4c3580d5
9bb09bc547b0c3133ded9285be6a3c1fbb9434f0
d6a83867bb58f8bc2e55f993a8d5e0747da1ead394b66e238de1c2a82730c722
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D6A83867BB58F8BC2E55F993A8D5E0747DA1EAD394B66E238DE1C2A82730C722"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7497
Expires: Thu, 02 Feb 2023 00:22:38 GMT
Date: Wed, 01 Feb 2023 22:17:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 51cfb5862bf78d09a0767f42c8ce6977
343dd79322dd325633f06085c247e80f33672de7
1b42170b66a980e2318a0218e42e467044232be0254de130e4ac8594757f25e3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1B42170B66A980E2318A0218E42E467044232BE0254DE130E4AC8594757F25E3"
Last-Modified: Tue, 31 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4092
Expires: Wed, 01 Feb 2023 23:25:53 GMT
Date: Wed, 01 Feb 2023 22:17:41 GMT
Connection: keep-alive
sync.upravel.com/sape/sync
136.243.48.22302 Found 0 B URL HTTP/2 sync.upravel.com/sape/sync
IP 136.243.48.22:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1675289861386;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1675289861386;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
s.uuidksinc.net/match/396/?remote_uid=0100007F05E5DA63030ADB240231C7A4
185.196.197.130302 Found 0 B URL HTTP/2 s.uuidksinc.net/match/396/?remote_uid=0100007F05E5DA63030ADB240231C7A4
IP 185.196.197.130:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.19.0
date: Wed, 01 Feb 2023 22:17:41 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=OIACMZREEeGmTRLt3tFl
set-cookie: jcsuuid=OIACMZREEeGmTRLt3tFl; expires=Thu, 01 Feb 2024 22:17:41 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 594197b8439126d23e121f1ca0c13432
4f486347f2c158dd22320bf163d9021558df4d20
8f051c699a35cafa718c89fb163edb8d8869676ec77df84780b8ed83ad9e76ab
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8F051C699A35CAFA718C89FB163EDB8D8869676EC77DF84780B8ED83AD9E76AB"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3484
Expires: Wed, 01 Feb 2023 23:15:45 GMT
Date: Wed, 01 Feb 2023 22:17:41 GMT
Connection: keep-alive
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
136.243.48.22302 Found 0 B URL HTTP/2 sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP 136.243.48.22:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: session_tptc=1675289861386
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=00dc9438-cd10-4b69-b4cc-2c54b87b60ee;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=00dc9438-cd10-4b69-b4cc-2c54b87b60ee;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/match?dp=71&euid=00dc9438-cd10-4b69-b4cc-2c54b87b60ee
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
www.acint.net/match?dp=129&euid=uuf1ylj5w9
193.3.184.135200 OK 43 B URL HTTP/2 www.acint.net/match?dp=129&euid=uuf1ylj5w9
IP 193.3.184.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=129&euid=uuf1ylj5w9 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPa5QUk2woDpMcxAs5lRvQl2wFwOnxgvDhg5Drqf4Mh; cSyncDp7v2=1675289861; cSyncDp14v3=1675289861; cSyncDp17=1675289861; cSyncDp32=1675289861; cSyncDp45v3=1675289861; cSyncDp53v2=1675289861; cSyncDp62=1675289861; cSyncDp67v2=1675289861; cSyncDp68=1675289861; cSyncDp71=1675289861; cSyncDp85=1675289861; cSyncDp95v3=1675289861; cSyncDp98v2=1675289861; cSyncDp101=1675289861; cSyncDp104v2=1675289861; cSyncDp107=1675289861; cSyncDp110=1675289861; cSyncDp125v3=1675289861; cSyncDp126=1675289861; cSyncDp127=1675289861; cSyncDp129=1675289861; cSyncDp136v2=1675289861; cSyncDp146=1675289861; cSyncDp148=1675289861; cSyncDp149v2=1675289861; cSyncDp151=1675289861; cSyncDp178=1675289861; cSyncDp186=1675289861; cSyncDp221=1675289861; cSyncDp235=1675289861
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=127&euid=OIACMZREEeGmTRLt3tFl
193.3.184.135200 OK 43 B URL HTTP/2 www.acint.net/match?dp=127&euid=OIACMZREEeGmTRLt3tFl
IP 193.3.184.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=127&euid=OIACMZREEeGmTRLt3tFl HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPa5QUk2woDpMcxAs5lRvQl2wFwOnxgvDhg5Drqf4Mh; cSyncDp7v2=1675289861; cSyncDp14v3=1675289861; cSyncDp17=1675289861; cSyncDp32=1675289861; cSyncDp45v3=1675289861; cSyncDp53v2=1675289861; cSyncDp62=1675289861; cSyncDp67v2=1675289861; cSyncDp68=1675289861; cSyncDp71=1675289861; cSyncDp85=1675289861; cSyncDp95v3=1675289861; cSyncDp98v2=1675289861; cSyncDp101=1675289861; cSyncDp104v2=1675289861; cSyncDp107=1675289861; cSyncDp110=1675289861; cSyncDp125v3=1675289861; cSyncDp126=1675289861; cSyncDp127=1675289861; cSyncDp129=1675289861; cSyncDp136v2=1675289861; cSyncDp146=1675289861; cSyncDp148=1675289861; cSyncDp149v2=1675289861; cSyncDp151=1675289861; cSyncDp178=1675289861; cSyncDp186=1675289861; cSyncDp221=1675289861; cSyncDp235=1675289861
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 594197b8439126d23e121f1ca0c13432
4f486347f2c158dd22320bf163d9021558df4d20
8f051c699a35cafa718c89fb163edb8d8869676ec77df84780b8ed83ad9e76ab
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8F051C699A35CAFA718C89FB163EDB8D8869676EC77DF84780B8ED83AD9E76AB"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3484
Expires: Wed, 01 Feb 2023 23:15:45 GMT
Date: Wed, 01 Feb 2023 22:17:41 GMT
Connection: keep-alive
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 724c28d9d850ba4f1684b02462e0e77c
efc89a499ab34df394e6a841b9dab36882c749a1
778fa249353d2c4ed3a7b416b2c55c5a7abd9b240afc139bacc71218a455cd49
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sun, 05 Feb 2023 17:58:59 GMT
ETag: "efc89a499ab34df394e6a841b9dab36882c749a1"
Last-Modified: Wed, 01 Feb 2023 17:59:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3380
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792e0f022a280b55-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 213bf18096690cc57ffe2b030352f8ce
6d09271ba2e35da23eac601cccea7e3ec3b4a604
7969d8481f3db7aa880ccee7fee64582d724455df82d006481ec54816a726d9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7969D8481F3DB7AA880CCEE7FEE64582D724455DF82D006481EC54816A726D9F"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13127
Expires: Thu, 02 Feb 2023 01:56:28 GMT
Date: Wed, 01 Feb 2023 22:17:41 GMT
Connection: keep-alive
sync.bumlam.com/?src=sap1&uid=0100007F05E5DA63030ADB240231C7A4
31.172.81.172302 Moved Temporarily 0 B URL HTTP/1.1 sync.bumlam.com/?src=sap1&uid=0100007F05E5DA63030ADB240231C7A4
IP 31.172.81.172:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQzZTY0ZDIwYy1hMjdlLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Tue, 27 Jan 2043 22:17:41 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARiFyuueBmIgMDEwMDAwN0YwNUU1REE2MzAzMEFEQjI0MDIzMUM3QTSiARA-ZNIMon4R7aHEACWQyCQ3
ETag: 3e64d20c-a27e-11ed-a1c4-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=0100007F05E5DA63030ADB240231C7A4
87.242.89.90200 OK 12 B URL HTTP/2 sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=0100007F05E5DA63030ADB240231C7A4
IP 87.242.89.90:0
File type exported SGML document, ASCII text, with no line terminators
Hash d8932e1cb3ee147415fbf5591a7217ca
97da5b95fb7f60ecd8d9ed0e5a05d83ad5a9c070
c0327cbcde50f1ab8228334a550b947301123d6f6f7d625707cb6d08a1faec35
GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: text/html
content-length: 12
last-modified: Mon, 30 Jan 2023 18:57:34 GMT
etag: "63d8131e-c"
accept-ranges: bytes
server: elb
X-Firefox-Spdy: h2
acint.net/match?dp=110&euid=c77ea66150f64eb4ac6c79655cf5e531
193.3.184.135200 OK 43 B URL HTTP/2 acint.net/match?dp=110&euid=c77ea66150f64eb4ac6c79655cf5e531
IP 193.3.184.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=110&euid=c77ea66150f64eb4ac6c79655cf5e531 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPa5QUk2woDpMcxAs5lRvQl2wFwOnxgvDhg5Drqf4Mh; cSyncDp7v2=1675289861; cSyncDp14v3=1675289861; cSyncDp17=1675289861; cSyncDp32=1675289861; cSyncDp45v3=1675289861; cSyncDp53v2=1675289861; cSyncDp62=1675289861; cSyncDp67v2=1675289861; cSyncDp68=1675289861; cSyncDp71=1675289861; cSyncDp85=1675289861; cSyncDp95v3=1675289861; cSyncDp98v2=1675289861; cSyncDp101=1675289861; cSyncDp104v2=1675289861; cSyncDp107=1675289861; cSyncDp110=1675289861; cSyncDp125v3=1675289861; cSyncDp126=1675289861; cSyncDp127=1675289861; cSyncDp129=1675289861; cSyncDp136v2=1675289861; cSyncDp146=1675289861; cSyncDp148=1675289861; cSyncDp149v2=1675289861; cSyncDp151=1675289861; cSyncDp178=1675289861; cSyncDp186=1675289861; cSyncDp221=1675289861; cSyncDp235=1675289861
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
acint.net/match?dp=14&euid=4402420A05E5DA634700860302F305CC
193.3.184.135200 OK 43 B URL HTTP/2 acint.net/match?dp=14&euid=4402420A05E5DA634700860302F305CC
IP 193.3.184.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=4402420A05E5DA634700860302F305CC HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPa5QUk2woDpMcxAs5lRvQl2wFwOnxgvDhg5Drqf4Mh; cSyncDp7v2=1675289861; cSyncDp14v3=1675289861; cSyncDp17=1675289861; cSyncDp32=1675289861; cSyncDp45v3=1675289861; cSyncDp53v2=1675289861; cSyncDp62=1675289861; cSyncDp67v2=1675289861; cSyncDp68=1675289861; cSyncDp71=1675289861; cSyncDp85=1675289861; cSyncDp95v3=1675289861; cSyncDp98v2=1675289861; cSyncDp101=1675289861; cSyncDp104v2=1675289861; cSyncDp107=1675289861; cSyncDp110=1675289861; cSyncDp125v3=1675289861; cSyncDp126=1675289861; cSyncDp127=1675289861; cSyncDp129=1675289861; cSyncDp136v2=1675289861; cSyncDp146=1675289861; cSyncDp148=1675289861; cSyncDp149v2=1675289861; cSyncDp151=1675289861; cSyncDp178=1675289861; cSyncDp186=1675289861; cSyncDp221=1675289861; cSyncDp235=1675289861
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=71&euid=00dc9438-cd10-4b69-b4cc-2c54b87b60ee
193.3.184.135200 OK 43 B URL HTTP/2 www.acint.net/match?dp=71&euid=00dc9438-cd10-4b69-b4cc-2c54b87b60ee
IP 193.3.184.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=71&euid=00dc9438-cd10-4b69-b4cc-2c54b87b60ee HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPa5QUk2woDpMcxAs5lRvQl2wFwOnxgvDhg5Drqf4Mh; cSyncDp7v2=1675289861; cSyncDp14v3=1675289861; cSyncDp17=1675289861; cSyncDp32=1675289861; cSyncDp45v3=1675289861; cSyncDp53v2=1675289861; cSyncDp62=1675289861; cSyncDp67v2=1675289861; cSyncDp68=1675289861; cSyncDp71=1675289861; cSyncDp85=1675289861; cSyncDp95v3=1675289861; cSyncDp98v2=1675289861; cSyncDp101=1675289861; cSyncDp104v2=1675289861; cSyncDp107=1675289861; cSyncDp110=1675289861; cSyncDp125v3=1675289861; cSyncDp126=1675289861; cSyncDp127=1675289861; cSyncDp129=1675289861; cSyncDp136v2=1675289861; cSyncDp146=1675289861; cSyncDp148=1675289861; cSyncDp149v2=1675289861; cSyncDp151=1675289861; cSyncDp178=1675289861; cSyncDp186=1675289861; cSyncDp221=1675289861; cSyncDp235=1675289861
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29cbed0f6d8c99166782eb19e3b3b40a
a79f0c9f23b25cd341b7810ae7c65b4f2c606193
17b752520814b21a538551090467600dc8cefa1ca4da6f660c8046c729ccf316
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17B752520814B21A538551090467600DC8CEFA1CA4DA6F660C8046C729CCF316"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6224
Expires: Thu, 02 Feb 2023 00:01:25 GMT
Date: Wed, 01 Feb 2023 22:17:41 GMT
Connection: keep-alive
pix.bumlam.com/sync/sape/check?sspuid=0100007F05E5DA63030ADB240231C7A4
31.172.81.160302 Found 0 B URL HTTP/1.1 pix.bumlam.com/sync/sape/check?sspuid=0100007F05E5DA63030ADB240231C7A4
IP 31.172.81.160:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/check?sspuid=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
185.147.80.35302 Found 74 B URL HTTP/1.1 ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
IP 185.147.80.35:0
File type HTML document, ASCII text
Hash 5eb206b3662e22d0bebfc0b03c2c9119
9915c548422935d3b641459e0f20192918c920f7
5d2f668071a3437406c87a7efb47f6429adf2d04524c37089d9ff04249e3de00
GET /sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 74
Connection: keep-alive
Location: https://www.acint.net/match?dp=95&euid=WPSXJORI
Set-Cookie: uid=WPSXJORI; Expires=Sat, 29 Jan 2033 22:17:41 GMT
sync.dmp.otm-r.com/match/sape?id=0100007F05E5DA63030ADB240231C7A4
194.55.244.186204 No Content 0 B URL HTTP/2 sync.dmp.otm-r.com/match/sape?id=0100007F05E5DA63030ADB240231C7A4
IP 194.55.244.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.23.2
date: Wed, 01 Feb 2023 22:17:41 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.globalsign.com/alphasslcasha256g4
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/alphasslcasha256g4
IP 104.18.20.226:0
Hash f7a3a1e62c2d2b69a1c7453597faefd1
09c167d432ad8f47efd8f5c6aa31f8022cecd23b
b714b24523d8f64f150bbef2f76942ccf38d4473b3e9da610f328a980a116500
POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1437
Connection: keep-alive
Expires: Sun, 05 Feb 2023 21:28:20 GMT
ETag: "09c167d432ad8f47efd8f5c6aa31f8022cecd23b"
Last-Modified: Wed, 01 Feb 2023 21:28:21 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1317
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792e0f028a39b4f9-OSL
nr.bidderstack.com/sape/cm?user_id=0100007F05E5DA63030ADB240231C7A4
23.88.12.13200 OK 44 B URL HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=0100007F05E5DA63030ADB240231C7A4
IP 23.88.12.13:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash f9d60352c70a2ba15616d1c9421f3844
e9abc8bea7721a4b6a50295850d13c515006a95c
82cb517a8f80c91dfcec543c6d140deb3baaf463ea9e77655475096eba7bc7d9
GET /sape/cm?user_id=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: image/gif
Content-Length: 44
Connection: keep-alive
Access-Control-Allow-Credentials: true
www.acint.net/match?dp=95&euid=WPSXJORI
193.3.184.135200 OK 43 B URL HTTP/2 www.acint.net/match?dp=95&euid=WPSXJORI
IP 193.3.184.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=95&euid=WPSXJORI HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPa5QUk2woDpMcxAs5lRvQl2wFwOnxgvDhg5Drqf4Mh; cSyncDp7v2=1675289861; cSyncDp14v3=1675289861; cSyncDp17=1675289861; cSyncDp32=1675289861; cSyncDp45v3=1675289861; cSyncDp53v2=1675289861; cSyncDp62=1675289861; cSyncDp67v2=1675289861; cSyncDp68=1675289861; cSyncDp71=1675289861; cSyncDp85=1675289861; cSyncDp95v3=1675289861; cSyncDp98v2=1675289861; cSyncDp101=1675289861; cSyncDp104v2=1675289861; cSyncDp107=1675289861; cSyncDp110=1675289861; cSyncDp125v3=1675289861; cSyncDp126=1675289861; cSyncDp127=1675289861; cSyncDp129=1675289861; cSyncDp136v2=1675289861; cSyncDp146=1675289861; cSyncDp148=1675289861; cSyncDp149v2=1675289861; cSyncDp151=1675289861; cSyncDp178=1675289861; cSyncDp186=1675289861; cSyncDp221=1675289861; cSyncDp235=1675289861
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sap1&s_data=CAIQARiFyuueBmIgMDEwMDAwN0YwNUU1REE2MzAzMEFEQjI0MDIzMUM3QTSiARA-ZNIMon4R7aHEACWQyCQ3
31.172.81.172200 OK 0 B URL HTTP/1.1 sync.bumlam.com/?src=sap1&s_data=CAIQARiFyuueBmIgMDEwMDAwN0YwNUU1REE2MzAzMEFEQjI0MDIzMUM3QTSiARA-ZNIMon4R7aHEACWQyCQ3
IP 31.172.81.172:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&s_data=CAIQARiFyuueBmIgMDEwMDAwN0YwNUU1REE2MzAzMEFEQjI0MDIzMUM3QTSiARA-ZNIMon4R7aHEACWQyCQ3 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQzZTY0ZDIwYy1hMjdlLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQzZTY0ZDIwYy1hMjdlLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Tue, 27 Jan 2043 22:17:41 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e3595065f25083f2b4c55154068885ce
9af7c3d86002a14164329afdc1be25c2c056afc7
c31e3eb579748a17da2ef0e534be0a9a6992735ce9f4cb6183355b015024532f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 11:26:44 GMT
Expires: Sun, 05 Feb 2023 11:26:43 GMT
Etag: "9af7c3d86002a14164329afdc1be25c2c056afc7"
Cache-Control: max-age=305941,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e0f025efdb4f1-OSL
cs.agency2.ru/p?ssp=sp&uid=0100007F05E5DA63030ADB240231C7A4
23.111.107.44301 Moved Permanently 0 B URL HTTP/1.1 cs.agency2.ru/p?ssp=sp&uid=0100007F05E5DA63030ADB240231C7A4
IP 23.111.107.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&uid=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=1279e15c-7eeb-4b6b-9d7f-0d7a945ea88e
Set-Cookie: uuid=1279e15c-7eeb-4b6b-9d7f-0d7a945ea88e; expires=Tue, 23 Jan 2024 22:17:41 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bac30724b4d5e7813c3f649da4c1be81
68709ea92544ba83880208fb1a9923010a97652d
319df7ec746969bf3e8b84e1a846d2bb09f3e9f6fd2ef0887989698357ed245f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "319DF7EC746969BF3E8B84E1A846D2BB09F3E9F6FD2EF0887989698357ED245F"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9493
Expires: Thu, 02 Feb 2023 00:55:54 GMT
Date: Wed, 01 Feb 2023 22:17:41 GMT
Connection: keep-alive
sync.bumlam.com/?src=sape
31.172.81.172302 Moved Temporarily 0 B URL HTTP/1.1 sync.bumlam.com/?src=sape
IP 31.172.81.172:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQzZTY0ZDIwYy1hMjdlLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQzZTY0ZDIwYy1hMjdlLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Tue, 27 Jan 2043 22:17:41 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://pix.bumlam.com/sync/sape/sync_ok?guid=3e64d20c-a27e-11ed-a1c4-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true
sync.programmatica.com/match/RTBSape?id=0100007F05E5DA63030ADB240231C7A4
167.235.117.41302 Found 0 B URL HTTP/2 sync.programmatica.com/match/RTBSape?id=0100007F05E5DA63030ADB240231C7A4
IP 167.235.117.41:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/RTBSape?id=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 01 Feb 2023 22:17:41 GMT
content-length: 0
location: https://sync.programmatica.com/match/RTBSape?id=0100007F05E5DA63030ADB240231C7A4&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
dmp.gotechnology.io/match/sape?id=0100007F05E5DA63030ADB240231C7A4
142.132.209.138302 Found 0 B URL HTTP/2 dmp.gotechnology.io/match/sape?id=0100007F05E5DA63030ADB240231C7A4
IP 142.132.209.138:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 01 Feb 2023 22:17:41 GMT
content-length: 0
location: https://dmp.gotechnology.io/match/sape?id=0100007F05E5DA63030ADB240231C7A4&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
www.acint.net/match?dp=186&euid=1279e15c-7eeb-4b6b-9d7f-0d7a945ea88e
193.3.184.135200 OK 43 B URL HTTP/2 www.acint.net/match?dp=186&euid=1279e15c-7eeb-4b6b-9d7f-0d7a945ea88e
IP 193.3.184.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=186&euid=1279e15c-7eeb-4b6b-9d7f-0d7a945ea88e HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPa5QUk2woDpMcxAs5lRvQl2wFwOnxgvDhg5Drqf4Mh; cSyncDp7v2=1675289861; cSyncDp14v3=1675289861; cSyncDp17=1675289861; cSyncDp32=1675289861; cSyncDp45v3=1675289861; cSyncDp53v2=1675289861; cSyncDp62=1675289861; cSyncDp67v2=1675289861; cSyncDp68=1675289861; cSyncDp71=1675289861; cSyncDp85=1675289861; cSyncDp95v3=1675289861; cSyncDp98v2=1675289861; cSyncDp101=1675289861; cSyncDp104v2=1675289861; cSyncDp107=1675289861; cSyncDp110=1675289861; cSyncDp125v3=1675289861; cSyncDp126=1675289861; cSyncDp127=1675289861; cSyncDp129=1675289861; cSyncDp136v2=1675289861; cSyncDp146=1675289861; cSyncDp148=1675289861; cSyncDp149v2=1675289861; cSyncDp151=1675289861; cSyncDp178=1675289861; cSyncDp186=1675289861; cSyncDp221=1675289861; cSyncDp235=1675289861
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/sync_ok?guid=3e64d20c-a27e-11ed-a1c4-002590c82437
31.172.81.160302 Found 0 B URL HTTP/1.1 pix.bumlam.com/sync/sape/sync_ok?guid=3e64d20c-a27e-11ed-a1c4-002590c82437
IP 31.172.81.160:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/sync_ok?guid=3e64d20c-a27e-11ed-a1c4-002590c82437 HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQzZTY0ZDIwYy1hMjdlLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://3e64d20c-a27e-11ed-a1c4-002590c82437.n3.sync.bumlam.com/?src=sape
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash ad50fd429d43590d1ef8635ee01498ea
f0917fd3a14ea4f5b1e97dcd534338c5ff06c8af
50edbb5e017eb9381fccaf770b4fc5dc94e970ea2631eec51e180ac69d59a70b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 15:41:07 GMT
Expires: Tue, 07 Feb 2023 15:41:06 GMT
Etag: "f0917fd3a14ea4f5b1e97dcd534338c5ff06c8af"
Cache-Control: max-age=494004,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e0f01ecd7fab4-OSL
sync.programmatica.com/match/RTBSape?id=0100007F05E5DA63030ADB240231C7A4&chk=1
167.235.117.41200 OK 43 B URL HTTP/2 sync.programmatica.com/match/RTBSape?id=0100007F05E5DA63030ADB240231C7A4&chk=1
IP 167.235.117.41:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/RTBSape?id=0100007F05E5DA63030ADB240231C7A4&chk=1 HTTP/1.1
Host: sync.programmatica.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: image/gif
content-length: 43
set-cookie: pid=NjU0ZGI5OWJmNzIxODU4ZA; expires=Thu, 01 Aug 2024 22:17:41 GMT; domain=.programmatica.com; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 26896c6042f71e76e9612b93ced1f1dc
fd7a548019cc4e48be4129f578c0579e8d127269
fa16e2e7e3c433eb56017508ed7cb011bd0a94e5ca51e5bc20cd87c8ba3ab024
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FA16E2E7E3C433EB56017508ED7CB011BD0A94E5CA51E5BC20CD87C8BA3AB024"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7525
Expires: Thu, 02 Feb 2023 00:23:06 GMT
Date: Wed, 01 Feb 2023 22:17:41 GMT
Connection: keep-alive
dmp.gotechnology.io/match/sape?id=0100007F05E5DA63030ADB240231C7A4&chk=1
142.132.209.138302 Found 0 B URL HTTP/2 dmp.gotechnology.io/match/sape?id=0100007F05E5DA63030ADB240231C7A4&chk=1
IP 142.132.209.138:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=0100007F05E5DA63030ADB240231C7A4&chk=1 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 01 Feb 2023 22:17:41 GMT
content-length: 0
location: https://ads.betweendigital.com/match?bidder_id=98&external_user_id=OTI4MzE4MjA2MmQzN2U2
set-cookie: pid=OTI4MzE4MjA2MmQzN2U2; expires=Thu, 01 Feb 2024 22:17:41 GMT; domain=.gotechnology.io; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
sync.adspend.space/sape?uid=0100007F05E5DA63030ADB240231C7A4
212.76.129.182302 Found 149 B URL HTTP/2 sync.adspend.space/sape?uid=0100007F05E5DA63030ADB240231C7A4
IP 212.76.129.182:0
File type HTML document, ASCII text
Hash dabd409759ae2ce45b8d59c2bf4eef47
9e455d85ce0edd09d6ce025dcfe600a18480ac88
2dd09674509085d1622aee408aa59c04da345d308a375c25c58df1632d93de15
GET /sape?uid=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: text/html; charset=utf-8
content-length: 149
location: https://sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Dd9fd9c83-d037-4496-9a9a-8f7c77967984
set-cookie: as-user=d9fd9c83-d037-4496-9a9a-8f7c77967984; Path=/; Max-Age=31536000; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
144.76.118.233301 Moved Permanently 115 B URL HTTP/2 exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
IP 144.76.118.233:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash 85fce7514a3f33c9def429a512c275ef
0370e07dab621464e329c28a756bebf53e2f16c8
88797ad374a256152f64b6bdd5df0ce6a1f95398e46d5801da2db1ca6eb91f69
GET /cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 01 Feb 2023 22:17:43 GMT
content-type: text/html; charset=utf-8
content-length: 115
location: https://www.acint.net/match?dp=126&euid=462c0c34-d3b9-4e4f-67ac-9108463054ce
serverid: TODO
X-Firefox-Spdy: h2
www.acint.net/match?dp=126&euid=462c0c34-d3b9-4e4f-67ac-9108463054ce
193.3.184.135200 OK 43 B URL HTTP/2 www.acint.net/match?dp=126&euid=462c0c34-d3b9-4e4f-67ac-9108463054ce
IP 193.3.184.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=126&euid=462c0c34-d3b9-4e4f-67ac-9108463054ce HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPa5QUk2woDpMcxAs5lRvQl2wFwOnxgvDhg5Drqf4Mh; cSyncDp7v2=1675289861; cSyncDp14v3=1675289861; cSyncDp17=1675289861; cSyncDp32=1675289861; cSyncDp45v3=1675289861; cSyncDp53v2=1675289861; cSyncDp62=1675289861; cSyncDp67v2=1675289861; cSyncDp68=1675289861; cSyncDp71=1675289861; cSyncDp85=1675289861; cSyncDp95v3=1675289861; cSyncDp98v2=1675289861; cSyncDp101=1675289861; cSyncDp104v2=1675289861; cSyncDp107=1675289861; cSyncDp110=1675289861; cSyncDp125v3=1675289861; cSyncDp126=1675289861; cSyncDp127=1675289861; cSyncDp129=1675289861; cSyncDp136v2=1675289861; cSyncDp146=1675289861; cSyncDp148=1675289861; cSyncDp149v2=1675289861; cSyncDp151=1675289861; cSyncDp178=1675289861; cSyncDp186=1675289861; cSyncDp221=1675289861; cSyncDp235=1675289861
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Dd9fd9c83-d037-4496-9a9a-8f7c77967984
212.76.129.182302 Found 102 B URL HTTP/2 sync.adspend.space/check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Dd9fd9c83-d037-4496-9a9a-8f7c77967984
IP 212.76.129.182:0
File type HTML document, ASCII text
Hash 7af424f711adf30d43d2cd98ac7fa76e
a643d6f5cb1c1b72344ec828161d58eb79da5da6
6897704aca3934d8b84d618893bef9587bddef1dd4db59d8654d22a3d2283a0a
GET /check?r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D98%26euid%3Dd9fd9c83-d037-4496-9a9a-8f7c77967984 HTTP/1.1
Host: sync.adspend.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: as-user=d9fd9c83-d037-4496-9a9a-8f7c77967984
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: text/html; charset=utf-8
content-length: 102
location: https://www.acint.net/match?dp=98&euid=d9fd9c83-d037-4496-9a9a-8f7c77967984
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
match.new-programmatic.com/userbind?src=sape&id=0100007F05E5DA63030ADB240231C7A4
217.65.2.150204 No Content 0 B URL HTTP/1.1 match.new-programmatic.com/userbind?src=sape&id=0100007F05E5DA63030ADB240231C7A4
IP 217.65.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash db7e0be65c783c07cac86e8e9e040ddb
917c3c0c522f73baf8f2f5715d3325598dbb939a
7b9f9540b486e157a1eb57236f3e8ffe5f279bed4c28e5da356147de7bf9f726
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7B9F9540B486E157A1EB57236F3E8FFE5F279BED4C28E5DA356147DE7BF9F726"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=169
Expires: Wed, 01 Feb 2023 22:20:30 GMT
Date: Wed, 01 Feb 2023 22:17:41 GMT
Connection: keep-alive
www.acint.net/match?dp=98&euid=d9fd9c83-d037-4496-9a9a-8f7c77967984
193.3.184.135200 OK 43 B URL HTTP/2 www.acint.net/match?dp=98&euid=d9fd9c83-d037-4496-9a9a-8f7c77967984
IP 193.3.184.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=98&euid=d9fd9c83-d037-4496-9a9a-8f7c77967984 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPa5QUk2woDpMcxAs5lRvQl2wFwOnxgvDhg5Drqf4Mh; cSyncDp7v2=1675289861; cSyncDp14v3=1675289861; cSyncDp17=1675289861; cSyncDp32=1675289861; cSyncDp45v3=1675289861; cSyncDp53v2=1675289861; cSyncDp62=1675289861; cSyncDp67v2=1675289861; cSyncDp68=1675289861; cSyncDp71=1675289861; cSyncDp85=1675289861; cSyncDp95v3=1675289861; cSyncDp98v2=1675289861; cSyncDp101=1675289861; cSyncDp104v2=1675289861; cSyncDp107=1675289861; cSyncDp110=1675289861; cSyncDp125v3=1675289861; cSyncDp126=1675289861; cSyncDp127=1675289861; cSyncDp129=1675289861; cSyncDp136v2=1675289861; cSyncDp146=1675289861; cSyncDp148=1675289861; cSyncDp149v2=1675289861; cSyncDp151=1675289861; cSyncDp178=1675289861; cSyncDp186=1675289861; cSyncDp221=1675289861; cSyncDp235=1675289861
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:41 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
3e64d20c-a27e-11ed-a1c4-002590c82437.n3.sync.bumlam.com/?src=sape
188.120.241.50302 Found 0 B URL HTTP/2 3e64d20c-a27e-11ed-a1c4-002590c82437.n3.sync.bumlam.com/?src=sape
IP 188.120.241.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: 3e64d20c-a27e-11ed-a1c4-002590c82437.n3.sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQzZTY0ZDIwYy1hMjdlLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.22.1
date: Wed, 01 Feb 2023 22:17:41 GMT
content-length: 0
location: https://pix.bumlam.com/sync/sape/done
X-Firefox-Spdy: h2
pix.bumlam.com/sync/sape/done
31.172.81.160200 OK 43 B URL HTTP/1.1 pix.bumlam.com/sync/sape/done
IP 31.172.81.160:0
ASN #44066 diva-e Datacenters GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQzZTY0ZDIwYy1hMjdlLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 549d342ec2964aba49d29dc17394a0f7
ca07b136667d8475d2ab6b39ead61f0d77d3e4a1
02e9962f0a34d532fb71c3d53e4da0915b40cfe91a4f26a2390fcb155dd0eaa0
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 05 Feb 2023 18:07:47 GMT
ETag: "ca07b136667d8475d2ab6b39ead61f0d77d3e4a1"
Last-Modified: Wed, 01 Feb 2023 18:07:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2259
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792e0f04fca0b4f9-OSL
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 549d342ec2964aba49d29dc17394a0f7
ca07b136667d8475d2ab6b39ead61f0d77d3e4a1
02e9962f0a34d532fb71c3d53e4da0915b40cfe91a4f26a2390fcb155dd0eaa0
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 05 Feb 2023 18:07:47 GMT
ETag: "ca07b136667d8475d2ab6b39ead61f0d77d3e4a1"
Last-Modified: Wed, 01 Feb 2023 18:07:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2259
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792e0f051cb2b4f9-OSL
ocsp.globalsign.com/alphasslcasha256g4
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/alphasslcasha256g4
IP 104.18.20.226:0
Hash 99d386fcdde70acdfb381c553bef4800
84049719f297e7523065f606a77522a36dcdf3b7
a10f5161dbe6388a3c2998f148ee8b4b9831b4f9ebb5c3d4e7d2a9c03184fa20
POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1437
Connection: keep-alive
Expires: Sun, 05 Feb 2023 21:20:01 GMT
ETag: "84049719f297e7523065f606a77522a36dcdf3b7"
Last-Modified: Wed, 01 Feb 2023 21:20:02 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 421
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792e0f052cbfb4f9-OSL
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
195.209.108.45302 Moved Temporarily 0 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
IP 195.209.108.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-5067333351; expires=Fri, 31 Jan 2025 22:17:41 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5067333351
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 6f2fb269043b374f5397abe780e252a2
887979b11979eb557f6502f28a5780b72d26adee
8343c474023c7c28ff6ff3fa118f982bb31728d21079164e7a874fea940b2479
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sun, 05 Feb 2023 19:31:35 GMT
ETag: "887979b11979eb557f6502f28a5780b72d26adee"
Last-Modified: Wed, 01 Feb 2023 19:31:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 470
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792e0f053cd1b4f9-OSL
ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=0100007F05E5DA63030ADB240231C7A4
81.222.128.215200 OK 42 B URL HTTP/1.1 ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=0100007F05E5DA63030ADB240231C7A4
IP 81.222.128.215:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cgi-bin/sync.cgi?dsp_id=153&external_id=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
77.245.57.72400 Bad Request 22 B URL HTTP/1.1 sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
IP 77.245.57.72:0
ASN #36057 WEBAIR-INTERNET-MTL
File type ASCII text, with no line terminators
Hash b0b11e1c78b526b61477f8e9ee540be0
d5e73002987ff54626542b116d98a8f4aa9ee2eb
4ca18c247df52dd22650bd7f72f71d7c98102243b0ec474f683c6a279ad3a668
GET /user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D HTTP/1.1
Host: sync.adkernel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 400 Bad Request
Server: nginx
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Length: 22
Connection: close
Cache-Control: no-store
Age: 0
Pragma: no-cache
ssp.bidvol.com/usersync?dspcsid=8&redirect=1
65.109.23.99302 Found 472 B URL HTTP/2 ssp.bidvol.com/usersync?dspcsid=8&redirect=1
IP 65.109.23.99:0
ASN #24940 Hetzner Online GmbH
Hash c60ca4b761622aee6dac8fcd5a7b47bb
bf27b8a42a03073eb548b79b3adfc1c4a09921ba
55e4d169563b096866bbab23531097fd09fa620a64f56261165cf190aa90aaa7
GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.22.0
date: Wed, 01 Feb 2023 22:17:41 GMT
x-request-id: 7ca58005-d3fb-4c06-bead-07bc0a25d589
set-cookie: bvuid=uuf1ylj5w9; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=uuf1ylj5w9; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
location: https://www.acint.net/match?dp=129&euid=uuf1ylj5w9
X-Firefox-Spdy: h2
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5067333351
195.209.108.45302 Moved Temporarily 40 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5067333351
IP 195.209.108.45:0
File type ASCII text, with CRLF line terminators
Hash 251630b588179b239e8fab1ac9ef6d3a
91b91a97bc481dd2bbd5e0f3fea6ba1c4e843882
c95661e0ef6975b1df5361695a439f71a021d72c345023c3e668e84f35b3c38b
GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-5067333351 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="//adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Fri, 31 Jan 2025 22:17:42 GMT; path=/; domain=.adriver.ru;
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
Location: https://www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 2f59b9826b587ec88c538c4e0fdda68f
a9569ad568776c896099e2e7b4291dbe7101cb9b
76812d4ae48f41904eb3722fb49c463d4287d81fa7a9ea5d28687ddb3a546931
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:42 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 02:03:25 GMT
Expires: Wed, 08 Feb 2023 02:03:24 GMT
Etag: "a9569ad568776c896099e2e7b4291dbe7101cb9b"
Cache-Control: max-age=531341,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e0f056c7ffac0-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 0d116c98feaa10fdbf2b92467f6c2bcc
c54e56565f32c0eabf8759d1f45b7d72e5122655
ac89b39371fd36f7aa991940ed24053a3592c270b634b9999ea1723c995f0b6a
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:42 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sun, 05 Feb 2023 18:07:10 GMT
ETag: "c54e56565f32c0eabf8759d1f45b7d72e5122655"
Last-Modified: Wed, 01 Feb 2023 18:07:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3020
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792e0f059d25b4f9-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9bfb439fb08a32861d09348061be89b1
7c8e9f24fa24ae6a5860bf9b7cc96377089f727b
418cb2a96b67658132868ef799dbe9b55ebe9ca82d9a18d1a06c6868ef8cc54e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "418CB2A96B67658132868EF799DBE9B55EBE9CA82D9A18D1A06C6868EF8CC54E"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=619
Expires: Wed, 01 Feb 2023 22:28:01 GMT
Date: Wed, 01 Feb 2023 22:17:42 GMT
Connection: keep-alive
sape-sync.rutarget.ru/sync
87.242.93.185302 Moved Temporarily 0 B URL HTTP/1.1 sape-sync.rutarget.ru/sync
IP 87.242.93.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync HTTP/1.1
Host: sape-sync.rutarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Wed, 01 Feb 2023 22:17:42 GMT
Content-Length: 0
Connection: close
Location: https://www.acint.net/match?dp=104&euid=EQgLEdoajKy1
P3P: CP="This is not a P3P policy. Please visit http://rutarget.ru/p3p/ to get more information."
Set-Cookie: userId=EQgLEdoajKy1; Path=/; Domain=.rutarget.ru; Expires=Mon, 31 Jul 2023 22:17:42 GMT; SameSite=None; Secure
www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
193.3.184.135302 Found 154 B URL HTTP/2 www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
IP 193.3.184.135:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPa5QUk2woDpMcxAs5lRvQl2wFwOnxgvDhg5Drqf4Mh; cSyncDp7v2=1675289861; cSyncDp14v3=1675289861; cSyncDp17=1675289861; cSyncDp32=1675289861; cSyncDp45v3=1675289861; cSyncDp53v2=1675289861; cSyncDp62=1675289861; cSyncDp67v2=1675289861; cSyncDp68=1675289861; cSyncDp71=1675289861; cSyncDp85=1675289861; cSyncDp95v3=1675289861; cSyncDp98v2=1675289861; cSyncDp101=1675289861; cSyncDp104v2=1675289861; cSyncDp107=1675289861; cSyncDp110=1675289861; cSyncDp125v3=1675289861; cSyncDp126=1675289861; cSyncDp127=1675289861; cSyncDp129=1675289861; cSyncDp136v2=1675289861; cSyncDp146=1675289861; cSyncDp148=1675289861; cSyncDp149v2=1675289861; cSyncDp151=1675289861; cSyncDp178=1675289861; cSyncDp186=1675289861; cSyncDp221=1675289861; cSyncDp235=1675289861
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Wed, 01 Feb 2023 22:17:42 GMT
content-type: text/html
content-length: 154
location: https://ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=0100007F05E5DA63030ADB240231C7A4
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
188.42.34.64302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
IP 188.42.34.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
tuuid=5bf6254c-73df-5221-b45c-0076d786e570; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
ut=Y9rlBgAAq-B4UjnouQvlC1VqTFIsUZapsJrNOQ==; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 644c3e64cdd109aa728cf55cab9bb553
f96f5e73566fb8d4649ceac84801bdfd4f6d449d
a24579c46a1f51e77ff445643cc74d56252319824ed3d73e12fba11088826aa7
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 05 Feb 2023 18:38:23 GMT
ETag: "f96f5e73566fb8d4649ceac84801bdfd4f6d449d"
Last-Modified: Wed, 01 Feb 2023 18:38:24 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2020
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792e0f05dd5ab4f9-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 64c57636c0eed3dc8eda24c880aba356
de53eb795970816e93f91a9f78e8842be946ad04
c0d0ef51b997a90d2ed33265687f14716988f3af52ab99b8808ab195aea2ffe1
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 05 Feb 2023 20:24:53 GMT
ETag: "de53eb795970816e93f91a9f78e8842be946ad04"
Last-Modified: Wed, 01 Feb 2023 20:24:54 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1632
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792e0f05edb9b4f3-OSL
www.acint.net/match?dp=104&euid=EQgLEdoajKy1
193.3.184.135200 OK 43 B URL HTTP/2 www.acint.net/match?dp=104&euid=EQgLEdoajKy1
IP 193.3.184.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=104&euid=EQgLEdoajKy1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPa5QUk2woDpMcxAs5lRvQl2wFwOnxgvDhg5Drqf4Mh; cSyncDp7v2=1675289861; cSyncDp14v3=1675289861; cSyncDp17=1675289861; cSyncDp32=1675289861; cSyncDp45v3=1675289861; cSyncDp53v2=1675289861; cSyncDp62=1675289861; cSyncDp67v2=1675289861; cSyncDp68=1675289861; cSyncDp71=1675289861; cSyncDp85=1675289861; cSyncDp95v3=1675289861; cSyncDp98v2=1675289861; cSyncDp101=1675289861; cSyncDp104v2=1675289861; cSyncDp107=1675289861; cSyncDp110=1675289861; cSyncDp125v3=1675289861; cSyncDp126=1675289861; cSyncDp127=1675289861; cSyncDp129=1675289861; cSyncDp136v2=1675289861; cSyncDp146=1675289861; cSyncDp148=1675289861; cSyncDp149v2=1675289861; cSyncDp151=1675289861; cSyncDp178=1675289861; cSyncDp186=1675289861; cSyncDp221=1675289861; cSyncDp235=1675289861
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:42 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ad.mail.ru/cm.gif?p=48&id=0100007F05E5DA63030ADB240231C7A4
95.163.41.56200 OK 43 B URL HTTP/2 ad.mail.ru/cm.gif?p=48&id=0100007F05E5DA63030ADB240231C7A4
IP 95.163.41.56:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cm.gif?p=48&id=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:17:42 GMT
content-type: image/gif
content-length: 43
set-cookie: VID=3jA2dI2d8dIF0029Zk3KKS2F:::0-0-0-8f53dc6:CAASED0J3Mqo7E1gdr2kIgnVS_4aYPQ_Q2AQ1m-t0ceVX2oZgYUVpue70ZUIVjEMFQQQYlFEzEuIcjGUeDg9QBKocs0myRq2Uu44EG_Sv0kKf0swapUHVztD_P_g0Qn5-5b2W7_HVWmKGHLk5d6u3nOK9_nYrQ; path=/; expires=Fri, 02-Feb-24 22:17:42 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
expires: Thu, 02 Feb 2023 04:17:42 GMT
cache-control: max-age=21600
last-modified: Wed, 01 Feb 2023 22:17:42 GMT
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
X-Firefox-Spdy: h2
tag.digitaltarget.ru/adcm.js
185.15.175.157200 OK 3.1 kB URL HTTP/1.1 tag.digitaltarget.ru/adcm.js
IP 185.15.175.157:0
File type ASCII text, with very long lines (3051), with no line terminators
Hash e7097284185069f52fc736bcd50cda13
1cdfdf2d869841202079ddf91e0a00a8610812e6
40f2a96f78f4c8484e9da6e172f5ddd3e4d7786ca29e04b96e1067a365190e80
GET /adcm.js HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 22:17:42 GMT
Content-Type: application/javascript
Content-Length: 3051
Last-Modified: Wed, 01 Feb 2023 22:04:23 GMT
Connection: keep-alive
ETag: "63dae1e7-beb"
Accept-Ranges: bytes
ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=0100007F05E5DA63030ADB240231C7A4
81.222.128.215200 OK 42 B URL HTTP/1.1 ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=0100007F05E5DA63030ADB240231C7A4
IP 81.222.128.215:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cgi-bin/sync.cgi?ssp_id=43&external_id=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 22:17:41 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
188.42.34.64200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
IP 188.42.34.64:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
tuuid=be6f110f-a059-5221-965f-e0edf58505eb; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
ut=Y9rlBgABSCAlnKZfqeqDjiuYVtjpSWw8il4ZQQ==; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
sm.rtb.mts.ru/p?ssp=sape&id=0100007F05E5DA63030ADB240231C7A4
217.66.147.40301 Moved Permanently 0 B URL HTTP/1.1 sm.rtb.mts.ru/p?ssp=sape&id=0100007F05E5DA63030ADB240231C7A4
IP 217.66.147.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sape&id=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 01 Feb 2023 22:27:19 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://sm.rtb.mts.ru/match/second?ssp=30&exu=0100007F05E5DA63030ADB240231C7A4
Set-Cookie: dspid=490ad427-d439-4eb5-9ecf-ce33815f1a24; expires=Tue, 23 Jan 2024 22:17:42 GMT; domain=.mts.ru; path=/; secure; SameSite=None
px.adhigh.net/p/cm/sape?u=0100007F05E5DA63030ADB240231C7A4
193.232.150.61302 Found 0 B URL HTTP/2 px.adhigh.net/p/cm/sape?u=0100007F05E5DA63030ADB240231C7A4
IP 193.232.150.61:0
ASN #48061 Limited Liability Company GPM Digital Technologies
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/cm/sape?u=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 01 Feb 2023 22:17:42 GMT
content-length: 0
x-backend-id: f21-ru
access-control-allow-origin: *
access-control-allow-credentials: true
set-cookie: gi_u=uLIdYydFRStF.AikABlGGDw6f3g;Path=/;Domain=.adhigh.net;Expires=Thu, 01-Feb-2024 22:17:42 GMT;Secure;SameSite=None
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
location: https://px.adhigh.net/p/cm/sape?u=0100007F05E5DA63030ADB240231C7A4&bounced=1
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 2f59b9826b587ec88c538c4e0fdda68f
a9569ad568776c896099e2e7b4291dbe7101cb9b
76812d4ae48f41904eb3722fb49c463d4287d81fa7a9ea5d28687ddb3a546931
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:42 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 02:03:25 GMT
Expires: Wed, 08 Feb 2023 02:03:24 GMT
Etag: "a9569ad568776c896099e2e7b4291dbe7101cb9b"
Cache-Control: max-age=531341,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e0f054eecfab4-OSL
sm.rtb.mts.ru/match/second?ssp=30&exu=0100007F05E5DA63030ADB240231C7A4
217.66.147.40200 OK 0 B URL HTTP/1.1 sm.rtb.mts.ru/match/second?ssp=30&exu=0100007F05E5DA63030ADB240231C7A4
IP 217.66.147.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/second?ssp=30&exu=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 22:27:19 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
ads.betweendigital.com/match?bidder_id=98&external_user_id=OTI4MzE4MjA2MmQzN2U2
188.42.34.64302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=98&external_user_id=OTI4MzE4MjA2MmQzN2U2
IP 188.42.34.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=98&external_user_id=OTI4MzE4MjA2MmQzN2U2 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=98&external_user_id=OTI4MzE4MjA2MmQzN2U2&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
tuuid=c2620aa6-8eb8-5221-b5f2-2a2dd628cf2b; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
ut=Y9rlBgACxvB9LeKzeAMGjV20iGwARdURhP5lIQ==; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
tag.digitaltarget.ru/processor.js?i=776922078792224
185.15.175.157200 OK 16 kB URL HTTP/1.1 tag.digitaltarget.ru/processor.js?i=776922078792224
IP 185.15.175.157:0
File type ASCII text, with very long lines (15892), with no line terminators
Hash 736e2fb1da94f3277e3f931048c1b9f3
196387db95a17da825b629de3542eff901b09905
4569d4e1b0e52b6316681f7312674f43ecb2b72ea8ab4adb2375e3686862c7dc
GET /processor.js?i=776922078792224 HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 22:17:42 GMT
Content-Type: application/javascript
Content-Length: 15892
Last-Modified: Wed, 01 Feb 2023 22:04:24 GMT
Connection: keep-alive
ETag: "63dae1e8-3e14"
Accept-Ranges: bytes
px.adhigh.net/p/cm/sape?u=0100007F05E5DA63030ADB240231C7A4&bounced=1
193.232.150.61200 OK 49 B URL HTTP/2 px.adhigh.net/p/cm/sape?u=0100007F05E5DA63030ADB240231C7A4&bounced=1
IP 193.232.150.61:0
ASN #48061 Limited Liability Company GPM Digital Technologies
File type GIF image data, version 89a, 1 x 1\012- data
Hash 889bc1fffc025af4685839fb516a0b8b
7f105137a4eafe93213ecd8cc34dd907c340467c
d0409a1b73dab4e29dc40f92fb431fa9133baa23b4a1ffae4897f39068110e32
GET /p/cm/sape?u=0100007F05E5DA63030ADB240231C7A4&bounced=1 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 22:17:42 GMT
content-type: image/gif
content-length: 49
x-backend-id: f21-ru
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 47104af366e237afec3af30f37af7dba
b24492f724ba1d4395df66bc2e0de1bdabc4264d
59c7255b4bd417487377052a2b4ec75029319525bad73a5ef43dce28d79efbbb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:42 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 14:18:45 GMT
Expires: Tue, 07 Feb 2023 14:18:44 GMT
Etag: "b24492f724ba1d4395df66bc2e0de1bdabc4264d"
Cache-Control: max-age=489061,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e0f05bcc9fac0-OSL
ads.betweendigital.com/match?bidder_id=98&external_user_id=OTI4MzE4MjA2MmQzN2U2&crf=1
188.42.34.64200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=98&external_user_id=OTI4MzE4MjA2MmQzN2U2&crf=1
IP 188.42.34.64:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=98&external_user_id=OTI4MzE4MjA2MmQzN2U2&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
tuuid=822ab051-f2fb-5221-871f-95eee4c570e8; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
ut=Y9rlBgADV3jDMTMUPLsW09C2oNn1YBdbvW5YUQ==; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
x01.aidata.io/0.gif?pid=9401454&id=0100007F05E5DA63030ADB240231C7A4
89.108.120.68302 Found 0 B URL HTTP/2 x01.aidata.io/0.gif?pid=9401454&id=0100007F05E5DA63030ADB240231C7A4
IP 89.108.120.68:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=9401454&id=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 01 Feb 2023 22:17:42 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=9401454&id=0100007F05E5DA63030ADB240231C7A4&bounce=1
expires: Wed, 01 Feb 2023 22:17:41 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Wed, 01 Feb 2023 22:17:41 GMT
set-cookie: __upin=p7DKkaZGKvf70CC/Zv85eA;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1675289862;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
x01.aidata.io/0.gif?pid=9401454&id=0100007F05E5DA63030ADB240231C7A4&bounce=1
89.108.120.68204 No Content 0 B URL HTTP/2 x01.aidata.io/0.gif?pid=9401454&id=0100007F05E5DA63030ADB240231C7A4&bounce=1
IP 89.108.120.68:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=9401454&id=0100007F05E5DA63030ADB240231C7A4&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 01 Feb 2023 22:17:42 GMT
expires: Wed, 01 Feb 2023 22:17:41 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Wed, 01 Feb 2023 22:17:41 GMT
set-cookie: __upin=sN4jtldH1W7FYPOZPqOk7A;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1675289862;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fc797e4e4215c50a42918f78bf25dd9b
3a9d446065eb8b0d530dab59538a290125b4647b
9fe7badd15d6591176c688dafa284fdf9d8f991109e0c3a9e56a17d8c61efd2e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9FE7BADD15D6591176C688DAFA284FDF9D8F991109E0C3A9E56A17D8C61EFD2E"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3483
Expires: Wed, 01 Feb 2023 23:15:45 GMT
Date: Wed, 01 Feb 2023 22:17:42 GMT
Connection: keep-alive
dmg.digitaltarget.ru/1/1093/i/i?i=188231875016062.260014077884855&a=77&e=0100007F05E5DA63030ADB240231C7A4&pref=http%3A%2F%2Fwww.zepterhealth.ru%2F&c=ss:77.up:0100007F05E5DA63030ADB240231C7A4.sync:up.xdua:duY_cHkQssdsTIjF8X4boYOh.xps:xpsJiycvGUUYKX0p02wmiOQVx.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
185.15.175.174307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/1093/i/i?i=188231875016062.260014077884855&a=77&e=0100007F05E5DA63030ADB240231C7A4&pref=http%3A%2F%2Fwww.zepterhealth.ru%2F&c=ss:77.up:0100007F05E5DA63030ADB240231C7A4.sync:up.xdua:duY_cHkQssdsTIjF8X4boYOh.xps:xpsJiycvGUUYKX0p02wmiOQVx.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP 185.15.175.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/1093/i/i?i=188231875016062.260014077884855&a=77&e=0100007F05E5DA63030ADB240231C7A4&pref=http%3A%2F%2Fwww.zepterhealth.ru%2F&c=ss:77.up:0100007F05E5DA63030ADB240231C7A4.sync:up.xdua:duY_cHkQssdsTIjF8X4boYOh.xps:xpsJiycvGUUYKX0p02wmiOQVx.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Wed, 01 Feb 2023 22:17:42 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675289862358&i=188231875016062.260014077884855&a=77&e=0100007F05E5DA63030ADB240231C7A4&pref=http%3A%2F%2Fwww.zepterhealth.ru%2F&c=ss:77.up:0100007F05E5DA63030ADB240231C7A4.sync:up.xdua:duY_cHkQssdsTIjF8X4boYOh.xps:xpsJiycvGUUYKX0p02wmiOQVx.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
Set-Cookie: viuserid=4FUhCa2bGyY1Hrx72LuI; Max-Age=93312000; Expires=Fri, 16 Jan 2026 22:17:42 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/1/1093/i/i?i=188231875016062.260886728923555&a=77&e=0100007F05E5DA63030ADB240231C7A4&pref=http%3A%2F%2Fwww.zepterhealth.ru%2F&c=ss:77.up:0100007F05E5DA63030ADB240231C7A4.sync:up.xdua:duY_cHkQssdsTIjF8X4boYOh.xps:xpsJiycvGUUYKX0p02wmiOQVx.dn:acint__net.adcm:hit.tg:adcmjs_noorient
185.15.175.174307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/1093/i/i?i=188231875016062.260886728923555&a=77&e=0100007F05E5DA63030ADB240231C7A4&pref=http%3A%2F%2Fwww.zepterhealth.ru%2F&c=ss:77.up:0100007F05E5DA63030ADB240231C7A4.sync:up.xdua:duY_cHkQssdsTIjF8X4boYOh.xps:xpsJiycvGUUYKX0p02wmiOQVx.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP 185.15.175.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/1093/i/i?i=188231875016062.260886728923555&a=77&e=0100007F05E5DA63030ADB240231C7A4&pref=http%3A%2F%2Fwww.zepterhealth.ru%2F&c=ss:77.up:0100007F05E5DA63030ADB240231C7A4.sync:up.xdua:duY_cHkQssdsTIjF8X4boYOh.xps:xpsJiycvGUUYKX0p02wmiOQVx.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Wed, 01 Feb 2023 22:17:42 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675289862361&i=188231875016062.260886728923555&a=77&e=0100007F05E5DA63030ADB240231C7A4&pref=http%3A%2F%2Fwww.zepterhealth.ru%2F&c=ss:77.up:0100007F05E5DA63030ADB240231C7A4.sync:up.xdua:duY_cHkQssdsTIjF8X4boYOh.xps:xpsJiycvGUUYKX0p02wmiOQVx.dn:acint__net.adcm:hit.tg:adcmjs_noorient
Set-Cookie: viuserid=2DIwQlPL.BnHNfT7bV09; Max-Age=93312000; Expires=Fri, 16 Jan 2026 22:17:42 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675289862358&i=188231875016062.260014077884855&a=77&e=0100007F05E5DA63030ADB240231C7A4&pref=http%3A%2F%2Fwww.zepterhealth.ru%2F&c=ss:77.up:0100007F05E5DA63030ADB240231C7A4.sync:up.xdua:duY_cHkQssdsTIjF8X4boYOh.xps:xpsJiycvGUUYKX0p02wmiOQVx.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
185.15.175.174200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675289862358&i=188231875016062.260014077884855&a=77&e=0100007F05E5DA63030ADB240231C7A4&pref=http%3A%2F%2Fwww.zepterhealth.ru%2F&c=ss:77.up:0100007F05E5DA63030ADB240231C7A4.sync:up.xdua:duY_cHkQssdsTIjF8X4boYOh.xps:xpsJiycvGUUYKX0p02wmiOQVx.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP 185.15.175.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/1093/i/i?call_source=awg&ts=1675289862358&i=188231875016062.260014077884855&a=77&e=0100007F05E5DA63030ADB240231C7A4&pref=http%3A%2F%2Fwww.zepterhealth.ru%2F&c=ss:77.up:0100007F05E5DA63030ADB240231C7A4.sync:up.xdua:duY_cHkQssdsTIjF8X4boYOh.xps:xpsJiycvGUUYKX0p02wmiOQVx.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 22:17:42 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 3
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675289862361&i=188231875016062.260886728923555&a=77&e=0100007F05E5DA63030ADB240231C7A4&pref=http%3A%2F%2Fwww.zepterhealth.ru%2F&c=ss:77.up:0100007F05E5DA63030ADB240231C7A4.sync:up.xdua:duY_cHkQssdsTIjF8X4boYOh.xps:xpsJiycvGUUYKX0p02wmiOQVx.dn:acint__net.adcm:hit.tg:adcmjs_noorient
185.15.175.174200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1675289862361&i=188231875016062.260886728923555&a=77&e=0100007F05E5DA63030ADB240231C7A4&pref=http%3A%2F%2Fwww.zepterhealth.ru%2F&c=ss:77.up:0100007F05E5DA63030ADB240231C7A4.sync:up.xdua:duY_cHkQssdsTIjF8X4boYOh.xps:xpsJiycvGUUYKX0p02wmiOQVx.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP 185.15.175.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/1093/i/i?call_source=awg&ts=1675289862361&i=188231875016062.260886728923555&a=77&e=0100007F05E5DA63030ADB240231C7A4&pref=http%3A%2F%2Fwww.zepterhealth.ru%2F&c=ss:77.up:0100007F05E5DA63030ADB240231C7A4.sync:up.xdua:duY_cHkQssdsTIjF8X4boYOh.xps:xpsJiycvGUUYKX0p02wmiOQVx.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 01 Feb 2023 22:17:42 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 2f59b9826b587ec88c538c4e0fdda68f
a9569ad568776c896099e2e7b4291dbe7101cb9b
76812d4ae48f41904eb3722fb49c463d4287d81fa7a9ea5d28687ddb3a546931
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:42 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 02:03:25 GMT
Expires: Wed, 08 Feb 2023 02:03:24 GMT
Etag: "a9569ad568776c896099e2e7b4291dbe7101cb9b"
Cache-Control: max-age=531341,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792e0f0519abb4f1-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5170
Expires: Wed, 01 Feb 2023 23:43:52 GMT
Date: Wed, 01 Feb 2023 22:17:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5143
Expires: Wed, 01 Feb 2023 23:43:25 GMT
Date: Wed, 01 Feb 2023 22:17:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5170
Expires: Wed, 01 Feb 2023 23:43:52 GMT
Date: Wed, 01 Feb 2023 22:17:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5143
Expires: Wed, 01 Feb 2023 23:43:25 GMT
Date: Wed, 01 Feb 2023 22:17:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5170
Expires: Wed, 01 Feb 2023 23:43:52 GMT
Date: Wed, 01 Feb 2023 22:17:42 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 91987222-d376-4099-a4e9-5f877b5212be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLzO2FSDIAMFktg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce325e-281a7e062ee3039d42ae8f83;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:08:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: SEH32iK4aCkxhxQyu3fSlW8uVM1Oj5hwnl2U09k_THEOdAqdEeVMJw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:03:43 GMT
age: 839
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 86664b4d1fc27ba7b5bff8a245604326
b8c7ef73101a497b6c78ad59aafe66a391fdc3fa
e4596faadf14051299036a79632951d90183dd0635293687edef11985799a752
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4814
x-amzn-requestid: 90da23ab-2c54-40ec-8e26-bdf4eeb1e27b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKWFpvoAMFyPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-70c4cb89413ed6bd44731d76;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: axFfTgcGtvqt1RcbyLpovD5Fr7J2Wx9pNwb92m2rwTdj-sGp0bIq-Q==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:10 GMT
age: 1112
etag: "b8c7ef73101a497b6c78ad59aafe66a391fdc3fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: e0zaXjoBKOmsY4fPEbl1SWCBxetMssmszZug0-epLq-X5rGb5zKHZw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:36 GMT
age: 1086
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=73&external_user_id=0100007F05E5DA63030ADB240231C7A4
188.42.34.64302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=73&external_user_id=0100007F05E5DA63030ADB240231C7A4
IP 188.42.34.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=73&external_user_id=0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=73&external_user_id=0100007F05E5DA63030ADB240231C7A4&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
tuuid=6310fda7-34bc-5221-807c-8c81e3a66987; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
ut=Y9rlBgAHoSCrx06lndDTY3QAwhLZ6Ma2YjpijA==; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ceb09fa3caa0fcda4a6314141e2d019
d08f43956f6859e4c2385231bb5506262257445f
a2100701c69f86920b14714b19ec14db9ebfd91000f0ec2397b8f27d981bc1ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14593
x-amzn-requestid: 796fc590-5a08-4765-b861-e5f707e4d7f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdLoFHQoAMFaAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbe3-3f93635c337e77e453bba394;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gYo5IyA5mM2B5nw6O2QkkZ6-go2CzG8Nwb_pWSixGplAl7LsbmWUiQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:55:43 GMT
age: 1319
etag: "d08f43956f6859e4c2385231bb5506262257445f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79ec7db4-9aef-4e9e-a8d9-431c9085df2a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79ec7db4-9aef-4e9e-a8d9-431c9085df2a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b0ca0ccee69fbee57aac373f94120bb4
5d6309502ffd0c33f6199d46f0d14d0a22e3c752
bed9d4689ff57fa636ee08dab3eef3cdf6c4e0a7103e5185151afe8ddfb755f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79ec7db4-9aef-4e9e-a8d9-431c9085df2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11552
x-amzn-requestid: 611f63cb-f058-493b-ac86-7e268b866fd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTvG9VIAMFgPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc17-78de7563537b111924100346;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lHLm3IkJRn59US_8SXKXQnNDUiCLIWnQ7QN-DWB3jkot9Ub3b6FUgA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:35 GMT
age: 1087
etag: "5d6309502ffd0c33f6199d46f0d14d0a22e3c752"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3c56d08c13f357f91a14309b48d75e88
739ff0319e25b99fbf69b6a1c12159d4dda7549b
7f2a2004b2b587a18e99bae5ef216de0a0a12f4ab8e7c817df8eb8aa41f4be73
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4f8260f-0039-4dd4-be49-93afef573ecb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5011
x-amzn-requestid: 0760d4c6-1e6b-4e68-8c90-37229f8110e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5JE0AIAMFn8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6d-43fb25a727dd969b6219bd6f;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zQlfIcpWrJw9N6I7WNmV5feaR9QNy3FUSCOJQeyAnYS0oEH12dtzqg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:35 GMT
age: 1087
etag: "739ff0319e25b99fbf69b6a1c12159d4dda7549b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=73&external_user_id=0100007F05E5DA63030ADB240231C7A4&crf=1
188.42.34.64200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=73&external_user_id=0100007F05E5DA63030ADB240231C7A4&crf=1
IP 188.42.34.64:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=73&external_user_id=0100007F05E5DA63030ADB240231C7A4&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
tuuid=0933c3be-9542-5221-b670-53bdd5aab6bb; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
ut=Y9rlBgAIUOj7eMtcij5L-kD6WlICZSA1_0IVbA==; Max-Age=31536000; Expires=Thu, 01 Feb 2024 22:17:42 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
www.zepterhealth.ru/res/slider2_arrows.png
81.177.141.232200 OK 4.6 kB URL HTTP/1.1 www.zepterhealth.ru/res/slider2_arrows.png
IP 81.177.141.232:0
File type PNG image data, 120 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash a1ed7019e180f8da0ee19147099a9c26
0cf6a7c1ce1511c4a1ce14a2d5f3d4d4ded92fdb
8cd653f2a6585960201b604a667b368ceb83643700ba169eb14bbe0f2af49aa4
GET /res/slider2_arrows.png HTTP/1.1
Host: www.zepterhealth.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/css/site.css
Cookie: zepterhealth_ru_session=7fd9aa9cf70cb4929c38ca456bfc35e0; _ym_uid=1675289884462392932; _ym_d=1675289884; hotlog=1; fid=751324dd-0138-4129-bd0b-639c753af02f; _ym_isad=2; _ac_oid=39e8192718f4ed5a678fc273d654392b%3A1675293484601; _ym_visorc=w
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 22:17:42 GMT
Content-Type: image/png
Content-Length: 4608
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Mon, 22 Sep 2014 15:36:12 GMT
ETag: "1200-503a935e35300"
Accept-Ranges: bytes
Cache-Control: max-age=86400
Expires: Thu, 02 Feb 2023 22:17:42 GMT
www.acint.net/ping/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=76922521&dT=2023-02-01T22%3A18%3A07.199
193.3.184.135302 Moved Temporarily 142 B URL HTTP/1.1 www.acint.net/ping/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=76922521&dT=2023-02-01T22%3A18%3A07.199
IP 193.3.184.135:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /ping/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=76922521&dT=2023-02-01T22%3A18%3A07.199 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Wed, 01 Feb 2023 22:17:43 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/ping/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=76922521&dT=2023-02-01T22%3A18%3A07.199
www.acint.net/ping/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=76922521&dT=2023-02-01T22%3A18%3A07.199
193.3.184.135200 OK 43 B URL HTTP/2 www.acint.net/ping/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=76922521&dT=2023-02-01T22%3A18%3A07.199
IP 193.3.184.135:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /ping/?v=0.5.0&uid=bb6256f7-9718-4dd9-aed0-9caa5fbe7dda&dp=10&tz=%2B00%3A00&nc=76922521&dT=2023-02-01T22%3A18%3A07.199 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.zepterhealth.ru/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWPa5QUk2woDpMcxAs5lRvQl2wFwOnxgvDhg5Drqf4Mh; cSyncDp7v2=1675289861; cSyncDp14v3=1675289861; cSyncDp17=1675289861; cSyncDp32=1675289861; cSyncDp45v3=1675289861; cSyncDp53v2=1675289861; cSyncDp62=1675289861; cSyncDp67v2=1675289861; cSyncDp68=1675289861; cSyncDp71=1675289861; cSyncDp85=1675289861; cSyncDp95v3=1675289861; cSyncDp98v2=1675289861; cSyncDp101=1675289861; cSyncDp104v2=1675289861; cSyncDp107=1675289861; cSyncDp110=1675289861; cSyncDp125v3=1675289861; cSyncDp126=1675289861; cSyncDp127=1675289861; cSyncDp129=1675289861; cSyncDp136v2=1675289861; cSyncDp146=1675289861; cSyncDp148=1675289861; cSyncDp149v2=1675289861; cSyncDp151=1675289861; cSyncDp178=1675289861; cSyncDp186=1675289861; cSyncDp221=1675289861; cSyncDp235=1675289861
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 01 Feb 2023 22:17:43 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/468128?wv-check=34208&wv-type=0&wmode=0&wv-part=1&wv-hit=782119369&page-url=http%3A%2F%2Fwww.zepterhealth.ru%2F&rn=734897202&browser-info=et%3A1675289892%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230201221812%3Au%3A1675289884462392932%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Ast%3A1675289892&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/468128?wv-check=34208&wv-type=0&wmode=0&wv-part=1&wv-hit=782119369&page-url=http%3A%2F%2Fwww.zepterhealth.ru%2F&rn=734897202&browser-info=et%3A1675289892%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230201221812%3Au%3A1675289884462392932%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Ast%3A1675289892&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/468128?wv-check=34208&wv-type=0&wmode=0&wv-part=1&wv-hit=782119369&page-url=http%3A%2F%2Fwww.zepterhealth.ru%2F&rn=734897202&browser-info=et%3A1675289892%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230201221812%3Au%3A1675289884462392932%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Ast%3A1675289892&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: http://www.zepterhealth.ru
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 01 Feb 2023 22:17:48 GMT
access-control-allow-origin: http://www.zepterhealth.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 01-Feb-2023 22:17:48 GMT
last-modified: Wed, 01-Feb-2023 22:17:48 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/468128?wv-check=3341&wv-type=0&wmode=0&wv-part=2&wv-hit=782119369&page-url=http%3A%2F%2Fwww.zepterhealth.ru%2F&rn=1132899&browser-info=et%3A1675289892%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230201221812%3Au%3A1675289884462392932%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Ast%3A1675289892&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/468128?wv-check=3341&wv-type=0&wmode=0&wv-part=2&wv-hit=782119369&page-url=http%3A%2F%2Fwww.zepterhealth.ru%2F&rn=1132899&browser-info=et%3A1675289892%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230201221812%3Au%3A1675289884462392932%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Ast%3A1675289892&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/468128?wv-check=3341&wv-type=0&wmode=0&wv-part=2&wv-hit=782119369&page-url=http%3A%2F%2Fwww.zepterhealth.ru%2F&rn=1132899&browser-info=et%3A1675289892%3Aw%3A1268x939%3Av%3A960%3Az%3A0%3Ai%3A20230201221812%3Au%3A1675289884462392932%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Ast%3A1675289892&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 12
Origin: http://www.zepterhealth.ru
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 01 Feb 2023 22:17:48 GMT
access-control-allow-origin: http://www.zepterhealth.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 01-Feb-2023 22:17:48 GMT
last-modified: Wed, 01-Feb-2023 22:17:48 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
212.116.120.34302 Found 0 B URL HTTP/2 ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
IP 212.116.120.34:0
ASN #48096 Enterprise Cloud Ltd.
GET /csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://acint.net/match?dp=110&euid=c77ea66150f64eb4ac6c79655cf5e531
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=c77ea66150f64eb4ac6c79655cf5e531; expires=Thu, 01 Feb 2024 21:00:00 GMT; path=/; SameSite=None; secure; samesite=lax
date: Wed, 01 Feb 2023 22:17:40 GMT
X-Firefox-Spdy: h2
mc.yandex.ru/watch/468128?wmode=7&page-url=http%3A%2F%2Fwww.zepterhealth.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A530%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1503509315040%3Ahid%3A782119369%3Az%3A0%3Ai%3A20230201221804%3Aet%3A1675289884%3Ac%3A1%3Arn%3A289396159%3Arqn%3A1%3Au%3A1675289884462392932%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A44%2C27%2C33%2C1%2C288%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Ans%3A1675289883006%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675289884%3At%3A%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%20%D0%A6%D0%B5%D0%BF%D1%82%D0%B5%D1%80%20%D0%B2%20%D0%9C%D0%BE%D1%81%D0%BA%D0%B2%D0%B5%20-%20%D0%BF%D0%BE%D1%81%D1%83%D0%B4%D0%B0%2C%20%D0%B1%D0%B8%D0%BE%D0%BF%D1%82%D1%80%D0%BE%D0%BD%2C%20%D1%84%D0%B8%D0%BB%D1%8C%D1%82%D1%80%20%D0%B4%D0%BB%D1%8F%20%D0%B2%D0%BE%D0%B4%D1%8B%20%D0%B0%D0%BA%D0%B2%D0%B8%D0%BD%D0%B0%20-%20ZepterHealth.ru&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
87.250.251.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/468128?wmode=7&page-url=http%3A%2F%2Fwww.zepterhealth.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A530%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1503509315040%3Ahid%3A782119369%3Az%3A0%3Ai%3A20230201221804%3Aet%3A1675289884%3Ac%3A1%3Arn%3A289396159%3Arqn%3A1%3Au%3A1675289884462392932%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A44%2C27%2C33%2C1%2C288%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Ans%3A1675289883006%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675289884%3At%3A%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%20%D0%A6%D0%B5%D0%BF%D1%82%D0%B5%D1%80%20%D0%B2%20%D0%9C%D0%BE%D1%81%D0%BA%D0%B2%D0%B5%20-%20%D0%BF%D0%BE%D1%81%D1%83%D0%B4%D0%B0%2C%20%D0%B1%D0%B8%D0%BE%D0%BF%D1%82%D1%80%D0%BE%D0%BD%2C%20%D1%84%D0%B8%D0%BB%D1%8C%D1%82%D1%80%20%D0%B4%D0%BB%D1%8F%20%D0%B2%D0%BE%D0%B4%D1%8B%20%D0%B0%D0%BA%D0%B2%D0%B8%D0%BD%D0%B0%20-%20ZepterHealth.ru&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 87.250.251.119:0
GET /watch/468128?wmode=7&page-url=http%3A%2F%2Fwww.zepterhealth.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A530%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1503509315040%3Ahid%3A782119369%3Az%3A0%3Ai%3A20230201221804%3Aet%3A1675289884%3Ac%3A1%3Arn%3A289396159%3Arqn%3A1%3Au%3A1675289884462392932%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A44%2C27%2C33%2C1%2C288%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Ans%3A1675289883006%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675289884%3At%3A%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%20%D0%A6%D0%B5%D0%BF%D1%82%D0%B5%D1%80%20%D0%B2%20%D0%9C%D0%BE%D1%81%D0%BA%D0%B2%D0%B5%20-%20%D0%BF%D0%BE%D1%81%D1%83%D0%B4%D0%B0%2C%20%D0%B1%D0%B8%D0%BE%D0%BF%D1%82%D1%80%D0%BE%D0%BD%2C%20%D1%84%D0%B8%D0%BB%D1%8C%D1%82%D1%80%20%D0%B4%D0%BB%D1%8F%20%D0%B2%D0%BE%D0%B4%D1%8B%20%D0%B0%D0%BA%D0%B2%D0%B8%D0%BD%D0%B0%20-%20ZepterHealth.ru&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.zepterhealth.ru
Connection: keep-alive
Referer: http://www.zepterhealth.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/468128/1?wmode=7&page-url=http%3A%2F%2Fwww.zepterhealth.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afp%3A530%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1503509315040%3Ahid%3A782119369%3Az%3A0%3Ai%3A20230201221804%3Aet%3A1675289884%3Ac%3A1%3Arn%3A289396159%3Arqn%3A1%3Au%3A1675289884462392932%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A44%2C27%2C33%2C1%2C288%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Ans%3A1675289883006%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675289884%3At%3A%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%20%D0%A6%D0%B5%D0%BF%D1%82%D0%B5%D1%80%20%D0%B2%20%D0%9C%D0%BE%D1%81%D0%BA%D0%B2%D0%B5%20-%20%D0%BF%D0%BE%D1%81%D1%83%D0%B4%D0%B0%2C%20%D0%B1%D0%B8%D0%BE%D0%BF%D1%82%D1%80%D0%BE%D0%BD%2C%20%D1%84%D0%B8%D0%BB%D1%8C%D1%82%D1%80%20%D0%B4%D0%BB%D1%8F%20%D0%B2%D0%BE%D0%B4%D1%8B%20%D0%B0%D0%BA%D0%B2%D0%B8%D0%BD%D0%B0%20-%20ZepterHealth.ru&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Wed, 01 Feb 2023 22:17:41 GMT
access-control-allow-origin: http://www.zepterhealth.ru
set-cookie: yabs-sid=2573732921675289861; Path=/; SameSite=None; Secure
i=n/ImgErTRCQyX5M5lYzgk5cjzXeEDAtjJrgr+S6yLn9zkNQso4FaCyU7+e16xXJ1Mkw94qHSeBErt8ELr2cJwGHUSTo=; Expires=Sat, 29-Jan-2033 22:17:35 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=9609533951675289861; Expires=Thu, 01-Feb-2024 22:17:41 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=9609533951675289861; Expires=Thu, 01-Feb-2024 22:17:41 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706825861.yc.1675289861#1706825861.yrts.1675289861#1706825861.yrtsi.1675289861; Expires=Thu, 01-Feb-2024 22:17:41 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 01-Feb-2023 22:17:41 GMT
last-modified: Wed, 01-Feb-2023 22:17:41 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/sapeis/0100007F05E5DA63030ADB240231C7A4
87.250.250.90302 Found 0 B URL HTTP/2 an.yandex.ru/mapuid/sapeis/0100007F05E5DA63030ADB240231C7A4
IP 87.250.250.90:0
GET /mapuid/sapeis/0100007F05E5DA63030ADB240231C7A4 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/sapeis/0100007F05E5DA63030ADB240231C7A4?redir-setuniq=1
date: Wed, 01 Feb 2023 22:17:41 GMT
set-cookie: yandexuid=3864974471675289861; domain=.yandex.ru; path=/; expires=Sat, 29-Jan-2033 22:17:41 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 01 Feb 2023 22:17:41 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Wed, 01 Feb 2023 22:17:41 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2