www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
104.18.3.230301 Moved Permanently 0 B URL HTTP/1.1 www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
IP 104.18.3.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 04:27:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 28 Jan 2023 05:27:45 GMT
Location: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Set-Cookie: __cf_bm=Gm1fYRaAYFbfXEpTMOyCuQ.ch2.We9UD0Xb4QHI4NsU-1674880065-0-AYZLCa/drcJ5eoUEnsFoTihA2WhrgysM9Y7Rm8sYmstSLT4lcDJ/t2GsfXYXAvZP3gzzHdQLt0uw7WJjybDlDZo=; path=/; expires=Sat, 28-Jan-23 04:57:45 GMT; domain=.5.ua; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7906fa3c6ea20b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12162
Expires: Sat, 28 Jan 2023 07:50:28 GMT
Date: Sat, 28 Jan 2023 04:27:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5810
Expires: Sat, 28 Jan 2023 06:04:36 GMT
Date: Sat, 28 Jan 2023 04:27:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 03:43:03 GMT
content-type: application/json
age: 2683
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3126
Expires: Sat, 28 Jan 2023 05:19:52 GMT
Date: Sat, 28 Jan 2023 04:27:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: a/X8kVGMfk7AzpRpg1Wl0Hg1XnIk0lyOQVYmyxbk4j0kK+h7ibi53tfsnautEALqqBpEjrcwjwOoSnRDeiQpFg==
x-amz-request-id: 482Q1BKYCBTTKM3W
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 03:49:40 GMT
age: 2286
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4fbfcc549f1eb8392cce3de851c87adc
4c5be23fda3c0c2c2a69f9c8ce87f46085f1bd1c
5320809ed5aebbe1577e9fadd7ae23a8521404f90fa33c741fdab6b5b3f42316
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:27:46 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 07:02:59 GMT
Expires: Fri, 03 Feb 2023 07:02:58 GMT
Etag: "4c5be23fda3c0c2c2a69f9c8ce87f46085f1bd1c"
Cache-Control: max-age=527111,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7906fa3d8deeb51b-OSL
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 03:49:03 GMT
age: 2323
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.5.ua/fonts/roboto/roboto-regular-webfont.woff2
104.18.3.230200 OK 63 kB URL HTTP/2 www.5.ua/fonts/roboto/roboto-regular-webfont.woff2
IP 104.18.3.230:0
File type Web Open Font Format (Version 2), TrueType, length 63412, version 2.0\012- data
Hash bde1ca6a5d7cefc8108c75fdaad29ed6
1e042848a06b43a9369952c636bca41f95cfc316
cc7b26ac53700f78f8a452be6d14f14943e88dceb14edf64cddceba6e66f3f5e
GET /fonts/roboto/roboto-regular-webfont.woff2 HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; __cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: font/woff2
content-length: 63412
last-modified: Wed, 08 Sep 2021 15:13:15 GMT
vary: Accept-Encoding
etag: "6138d30b-f7b4"
expires: Sun, 28 Jan 2024 04:27:46 GMT
cache-control: public, max-age=31536000
cf-cache-status: HIT
age: 60528
accept-ranges: bytes
server: cloudflare
cf-ray: 7906fa413a89b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.5.ua/fonts/roboto/roboto-bold-webfont.woff2
104.18.3.230200 OK 63 kB URL HTTP/2 www.5.ua/fonts/roboto/roboto-bold-webfont.woff2
IP 104.18.3.230:0
File type Web Open Font Format (Version 2), TrueType, length 63320, version 2.0\012- data
Hash 7a7f7b407423d5fb3c16b26231e11619
cf974b72c694b8ceb310d1aef6f36b2711705d99
761c95dd192a81733d024d9f644d9b531c358f0f0ea83e9fd6211b6bd424873d
GET /fonts/roboto/roboto-bold-webfont.woff2 HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; __cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: font/woff2
content-length: 63320
last-modified: Wed, 08 Sep 2021 15:13:15 GMT
vary: Accept-Encoding
etag: "6138d30b-f758"
expires: Sun, 28 Jan 2024 04:27:46 GMT
cache-control: public, max-age=31536000
cf-cache-status: HIT
age: 1111031
accept-ranges: bytes
server: cloudflare
cf-ray: 7906fa413a88b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.5.ua/fonts/helioscond/helioscond-bold-webfont.woff2
104.18.3.230200 OK 17 kB URL HTTP/2 www.5.ua/fonts/helioscond/helioscond-bold-webfont.woff2
IP 104.18.3.230:0
File type Web Open Font Format (Version 2), TrueType, length 17264, version 1.0\012- data
Hash de6733bc7bdb982995dbf81b4b1db724
038420515bc64d7dafe1685c37a84102e15fe2ee
d568f192c576f136afeeb596dce1070cfd9bea7dcb1ea7b591da7ba4ff6b127f
GET /fonts/helioscond/helioscond-bold-webfont.woff2 HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; __cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: font/woff2
content-length: 17264
last-modified: Wed, 11 Jan 2017 15:03:15 GMT
vary: Accept-Encoding
etag: "58764933-4370"
expires: Sun, 28 Jan 2024 04:27:46 GMT
cache-control: public, max-age=31536000
cf-cache-status: HIT
age: 60528
accept-ranges: bytes
server: cloudflare
cf-ray: 7906fa413a8ab4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4fbfcc549f1eb8392cce3de851c87adc
4c5be23fda3c0c2c2a69f9c8ce87f46085f1bd1c
5320809ed5aebbe1577e9fadd7ae23a8521404f90fa33c741fdab6b5b3f42316
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:27:46 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 07:02:59 GMT
Expires: Fri, 03 Feb 2023 07:02:58 GMT
Etag: "4c5be23fda3c0c2c2a69f9c8ce87f46085f1bd1c"
Cache-Control: max-age=527111,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7906fa404edbb51b-OSL
www.5.ua/media/pictures/400x266/241373.jpg?t=1643638582
104.18.3.230200 OK 21 kB URL HTTP/2 www.5.ua/media/pictures/400x266/241373.jpg?t=1643638582
IP 104.18.3.230:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 400x266, components 3\012- data
Hash cdeb885abcca7af905946e1ea2e90d0d
208522feff447eadbd2ec7652dcf7570b83b3fca
3fc3dd203ed18fcbf8447c449907961f28e353484992db3df14d230b04b53c09
GET /media/pictures/400x266/241373.jpg?t=1643638582 HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; __cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: image/jpeg
content-length: 20596
cache-control: public, max-age=31536000
cf-bgj: h2pri
etag: "61f7ef3a-5074"
expires: Sun, 28 Jan 2024 04:27:46 GMT
last-modified: Mon, 31 Jan 2022 14:16:26 GMT
strict-transport-security: max-age=15768000
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7906fa414a96b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.5.ua/js/plugins/jquery.plugins.min.js?v=1593676928
104.18.3.230200 OK 20 kB URL HTTP/2 www.5.ua/js/plugins/jquery.plugins.min.js?v=1593676928
IP 104.18.3.230:0
File type exported SGML document, ASCII text, with very long lines (65536), with no line terminators
Hash d7ab3692e469eb1c856b90da23bb120b
2cd7da09b614e85308b5535df7336cf083e776c1
2c7860bb2a22462f71f6e02efa9df3f47621b0ef351aa41bec42b3c540c714df
GET /js/plugins/jquery.plugins.min.js?v=1593676928 HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; __cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: application/javascript
last-modified: Thu, 02 Jul 2020 08:02:08 GMT
vary: Accept-Encoding
etag: W/"5efd9480-1209f"
expires: Sun, 28 Jan 2024 04:27:46 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 7234
server: cloudflare
cf-ray: 7906fa416aa6b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.shareaholic.net/assets/pub/shareaholic.js
151.139.128.10200 OK 4.3 kB URL HTTP/2 cdn.shareaholic.net/assets/pub/shareaholic.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (10540), with no line terminators
Hash e33511561808ca812c76b301b406d103
94e974603a6d772f66614045d19f0e3e18ccae6e
a61f812802a68805c57d74929ca078ac0ce1e6cec9685d5280a9f3d02d27050e
GET /assets/pub/shareaholic.js HTTP/1.1
Host: cdn.shareaholic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-encoding: gzip
content-length: 4285
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 19 Dec 2022 20:20:18 GMT
accept-ranges: bytes
server: nginx
x-amz-id-2: eqRoj7HtU5fIvOeBL4yckGJKQ0wPVNmM+YAogC+KBsxLnjc/57mhG85LjvlusEvZFL1Nt9g6gKA=
x-amz-request-id: THAYRRM45PG4C2SY
etag: "e33511561808ca812c76b301b406d103"
cache-control: max-age=1200, public
access-control-allow-origin: *
x-hello-human: Join the fun! Apply at www.shareaholic.com/jobs
x-hw: 1674880066.cds239.sk1.hn,1674880066.cds201.sk1.c
X-Firefox-Spdy: h2
www.5.ua/css/styles.min.css?v=1627989472
104.18.3.230200 OK 44 kB URL HTTP/2 www.5.ua/css/styles.min.css?v=1627989472
IP 104.18.3.230:0
File type ASCII text, with very long lines (65431)
Hash 618ffa5ca6368a8dff365070a50e375a
4d2733490eb9c9e660e562d2e19eccd2b1e72173
bf04875296e95c78fbf138ff1e34d1e753c1111e4ce872693ca3af7e5e884f2f
GET /css/styles.min.css?v=1627989472 HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; __cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: text/css
last-modified: Tue, 03 Aug 2021 11:17:52 GMT
vary: Accept-Encoding
etag: W/"610925e0-337b1"
expires: Sun, 28 Jan 2024 04:27:46 GMT
cache-control: public, max-age=31536000
cf-cache-status: HIT
age: 7234
server: cloudflare
cf-ray: 7906fa413a85b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.1.4/jquery.min.js
216.58.207.234200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.4/jquery.min.js
IP 216.58.207.234:0
File type ASCII text, with very long lines (32025)
Hash 83b3b5729cdff3976db52c51831e96b8
d23dc823e37f58e5366340be755730f3fa9a850d
675fa88b39008a09994460a93b310a7d4593735009a9b24b6f176c347ad12421
GET /ajax/libs/jquery/2.1.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29725
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 10:14:16 GMT
expires: Sat, 27 Jan 2024 10:14:16 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 65610
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash d66bc4ab2a1aab92265bddd7dee05447
8e0918134554c68865a29f8d0b3dc1d92b9ae56a
30921e6ef4983a2ae6c0ed4063a419a13804ba0c941c01f846c782083d786544
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:27:46 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Wed, 01 Feb 2023 02:27:57 GMT
ETag: "8e0918134554c68865a29f8d0b3dc1d92b9ae56a"
Last-Modified: Sat, 28 Jan 2023 02:27:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 402
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7906fa423f42b4ee-OSL
www.5.ua/components/lightgallery/skins/default/style.min.css?v=1484146995
104.18.3.230200 OK 55 kB URL HTTP/2 www.5.ua/components/lightgallery/skins/default/style.min.css?v=1484146995
IP 104.18.3.230:0
File type ASCII text, with very long lines (1766), with no line terminators
Hash 9fc956aa0309987908a7944cefb9566f
f3191c9462dd218ce0bd198dc43fe420d1e309b9
11140bce4959d596e60714d86bee02433eef8f71a25ab97f9675a0900bca6231
GET /components/lightgallery/skins/default/style.min.css?v=1484146995 HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; __cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: text/css
last-modified: Wed, 11 Jan 2017 15:03:15 GMT
vary: Accept-Encoding
etag: W/"58764933-6e6"
expires: Sun, 28 Jan 2024 04:27:46 GMT
cache-control: public, max-age=31536000
cf-cache-status: HIT
age: 7064
server: cloudflare
cf-ray: 7906fa413a7fb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 36147c185553851c38547798733a9fb2
912ec40237eae2ed558d09103c86c41f87896eca
a4fd9090983c75e1b7faf5ea9439532f51d747faf1853138ac13bdaafa490246
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.5.ua/assets/913ab605/yii.js?v=1628513928
104.18.3.230200 OK 6.0 kB URL HTTP/2 www.5.ua/assets/913ab605/yii.js?v=1628513928
IP 104.18.3.230:0
Hash 245c4a29980d18aac6979b6d02bcde71
431d1509b8c407f3bb1fde5ec71396ff94302bc3
bec3a86da5aed8b7a7045326a714580bda77ff9c1ee6102331a57c5dfe9d2eeb
GET /assets/913ab605/yii.js?v=1628513928 HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; __cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: application/javascript
last-modified: Mon, 09 Aug 2021 12:58:48 GMT
vary: Accept-Encoding
etag: W/"61112688-51c6"
cf-cache-status: HIT
age: 6262
expires: Sun, 28 Jan 2024 04:27:46 GMT
cache-control: public, max-age=31536000
server: cloudflare
cf-ray: 7906fa415aa1b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.42.157.160101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.157.160:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: va61jhRiv+J8cjsu0N799g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1NmG2xHb8cJTd81dTqSHWDR3YLI=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7ebbff54ced2c07469b302fc6d44078
f59983c844c398bd37705051ca685b2d07d85726
04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.gravitec.net/sdk/web/configs?appKey=fc1fa553ef40bf21c0a94cc43f686f04
45.133.44.4200 OK 28 kB URL HTTP/2 cdn.gravitec.net/sdk/web/configs?appKey=fc1fa553ef40bf21c0a94cc43f686f04
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (36796)
Hash 0c11d3abc05b80a9dae42df974611c92
5570d25a045165398705df572a127b6e954a8c0e
02e3b069e9660c06a1e425d110aa31cbe6886b3a6e1cc0702ff409c3909904f3
GET /sdk/web/configs?appKey=fc1fa553ef40bf21c0a94cc43f686f04 HTTP/1.1
Host: cdn.gravitec.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.5.ua/
Origin: https://www.5.ua
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:47 GMT
content-type: application/json
server: nginx
x-correlation-id: f7e3dd4d0e558ffe8239eec90a2db510
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-proxy-cache: MISS
X-Firefox-Spdy: h2
player.adtcdn.com/prebidlink/465244/wrapper_hb_313501_8344.js
172.67.160.101200 OK 1.9 kB URL HTTP/2 player.adtcdn.com/prebidlink/465244/wrapper_hb_313501_8344.js
IP 172.67.160.101:0
File type ASCII text, with very long lines (1664)
Hash c15422e876b3fcb676f3b5137a004178
6db6506cf955c5bea731d6ed0067dcb5e6b5e67c
ef9ba6ac09a791977d569b1f34b9d518e55e70e0de2c1972fb1119b3872e7831
GET /prebidlink/465244/wrapper_hb_313501_8344.js HTTP/1.1
Host: player.adtcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:47 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 11:56:05 GMT
etag: W/"63d26a55-681"
expires: Sat, 28 Jan 2023 04:42:47 GMT
cache-control: max-age=345600
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hTfnaWCPKUE1YQHDtoUHf5qoTipKAa%2FrHkJu5WvqPVhqAD8Iu9hDjmaoMHUS%2FocnhDjHgYqiyRnAEfgJCu8XcOOLs6g15cVu7x0i7ICdjjfaYtTBfbqSQXP%2FOBFn%2B68JanUcgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7906fa423a28b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7ebbff54ced2c07469b302fc6d44078
f59983c844c398bd37705051ca685b2d07d85726
04eb3bd7658c1112bfc1d0098e8d7f5fafdb10459e3290c0d4e6a17e65a5494f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
m9m6e2w5.stackpathcdn.com/v2/bec87dbf/main.js
151.139.128.10200 OK 42 kB URL HTTP/2 m9m6e2w5.stackpathcdn.com/v2/bec87dbf/main.js
IP 151.139.128.10:0
File type C source, ASCII text, with very long lines (65536), with no line terminators
Hash bfbe20460e43896d158d4b21e5c02ca8
12ec31148e52a5a0861d63e98344f45bba7523dc
bc9563b66fafb04f290b402270af0cf8ac5349619ccdf556103024652198f87a
GET /v2/bec87dbf/main.js HTTP/1.1
Host: m9m6e2w5.stackpathcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:47 GMT
content-encoding: gzip
content-length: 41854
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 19 Dec 2022 20:19:59 GMT
accept-ranges: bytes
server: nginx
x-amz-id-2: UfjmZKB7E9YUrY0vXGV2Q4QFmkUFf7Rkudm6LThhwpl7+eRxcirLt8dDB2kADGk4IpJE000Z+08=
x-amz-request-id: PAKD9GVGPTREG1NW
etag: "bfbe20460e43896d158d4b21e5c02ca8"
cache-control: max-age=31536000, public
access-control-allow-origin: *
x-hello-human: Join the fun! Apply at www.shareaholic.com/jobs
x-hw: 1674880067.cds213.sk1.hn,1674880067.cds230.sk1.c
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 63c6a744500663126b78f2aa28a1cdd2
46d9f9359d02e4cb4270e14e82b47498fc10c4e6
7f3e22a984f6b57036aa06b6ad0a9d7735ede817494b34746fc7fca57fd8453d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7F3E22A984F6B57036AA06B6AD0A9D7735EDE817494B34746FC7FCA57FD8453D"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5258
Expires: Sat, 28 Jan 2023 05:55:25 GMT
Date: Sat, 28 Jan 2023 04:27:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 63c6a744500663126b78f2aa28a1cdd2
46d9f9359d02e4cb4270e14e82b47498fc10c4e6
7f3e22a984f6b57036aa06b6ad0a9d7735ede817494b34746fc7fca57fd8453d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7F3E22A984F6B57036AA06B6AD0A9D7735EDE817494B34746FC7FCA57FD8453D"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5258
Expires: Sat, 28 Jan 2023 05:55:25 GMT
Date: Sat, 28 Jan 2023 04:27:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 492ff8489b691cb1bce800a56ecbe286
902a7abe425c040dd753f48068705e5c229e9e14
956b0cf0adede8be0b985b610751076a78f1057651a2b9f23fff4ad7d0702dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "956B0CF0ADEDE8BE0B985B610751076A78F1057651A2B9F23FFF4AD7D0702DAC"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5854
Expires: Sat, 28 Jan 2023 06:05:21 GMT
Date: Sat, 28 Jan 2023 04:27:47 GMT
Connection: keep-alive
www.shareaholic.net/config/f5e21cfdc4ccca93c6b092dfd5a87724.json
54.197.98.98200 OK 1.4 kB URL HTTP/2 www.shareaholic.net/config/f5e21cfdc4ccca93c6b092dfd5a87724.json
IP 54.197.98.98:0
File type JSON data\012- , ASCII text, with very long lines (4664), with no line terminators
Hash 415e2101f44c79a7301d31134020ebf7
4ff10f39de6feb162a3830657481d89529378676
a67ae89925b2c0ab48831797a22b415e13ae9d23ceccf163ef877eeb7a8773d3
GET /config/f5e21cfdc4ccca93c6b092dfd5a87724.json HTTP/1.1
Host: www.shareaholic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 19:55:50 GMT
etag: W/"e13061977991d82074e14df47e7e097a"
vary: Accept-Encoding
content-encoding: gzip
content-type: application/json
cache-control: max-age=3, public, must-revalidate
x-varnish: 533631105 526951181
via: 1.1 varnish (Varnish/6.0)
access-control-allow-methods: GET, HEAD
access-control-allow-headers: *
access-control-allow-origin: *
access-control-expose-headers: Etag, Access-Control-Allow-Origin, x-client-geo-latlong, x-client-geo-country, x-client-geo-city, x-client-geo-zip, x-client-geo-region, x-client-geo-metrocode
access-control-max-age: 2000
x-client-geo-latlong: 59.945200,10.755900
x-client-geo-country: NO,Norway
x-client-geo-city:
x-client-geo-region:
x-client-geo-metrocode:
x-client-geo-zip:
accept-ranges: bytes
content-length: 1388
X-Firefox-Spdy: h2
player.adtelligent.com/prebidlink/19385/hb_313501_8344.js
45.133.44.4200 OK 106 kB URL HTTP/2 player.adtelligent.com/prebidlink/19385/hb_313501_8344.js
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
Size 106 kB (106094 bytes)
Hash 339184420dd447a2f8d8a60aaee5c7d7
3baaa575a55b9c29294437bae55cdcb01fb6ca38
d1a281c439630fe8e11c0b558d7ba48b75519fa21de7e961c24fcbc41eadb0be
GET /prebidlink/19385/hb_313501_8344.js HTTP/1.1
Host: player.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:47 GMT
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Wed, 11 Jan 2023 08:20:56 GMT
etag: W/"63be7168-53c95"
cache-control: max-age=172800
content-encoding: gzip
expires: Mon, 30 Jan 2023 04:27:47 GMT
access-control-allow-origin: *
x-proxy-cache: HIT
X-Firefox-Spdy: h2
ghb.adtelligent.com/geo/
62.149.23.112200 OK 140 B IP 62.149.23.112:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d2adcd2efec13b041df1b20127c50f5c
e8843dc16f06aaba1ddef63cdbf0907854a3347e
a2d808adba6c3641f0cda955271b939e41450381ca78249cbe9aad9fd196e28d
GET /geo/ HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Adtelligent
Date: Sat, 28 Jan 2023 04:27:47 GMT
Content-Type: application/json
Content-Length: 140
Access-Control-Allow-Origin: https://www.5.ua
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
X-Robots-Tag: noindex
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 315 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash cdaa51f6adeac697d477ee0272d7e5c5
00bfe7b9599975097ead77eb9a9b950bde80bb0d
08b19b142b84eb4ebd1607c3e2013d613ddede849eac84257d5c0c9cff5acc2a
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:27:48 GMT
Content-Type: application/ocsp-response
Content-Length: 315
Connection: keep-alive
Last-Modified: Tue, 24 Jan 2023 20:00:29 GMT
Expires: Tue, 31 Jan 2023 20:00:28 GMT
Etag: "00bfe7b9599975097ead77eb9a9b950bde80bb0d"
Cache-Control: max-age=314559,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7906fa485ab90b45-OSL
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 28 Jan 2023 03:45:20 GMT
expires: Sat, 28 Jan 2023 05:45:20 GMT
cache-control: public, max-age=7200
age: 2548
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c083fb68af37d6c700a3fa4eb04a29cb
9b3ff3c9c0bd7dc448eb18e74ddc029f7c18dc9a
3ea0d4252ad90ee13a6b23ebd1144639f7bb73e4d96ef2590b21a155809e65e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b10c572a58f34d8fb28433f25bb9c885
8bc11baa4e367bfcf8738f28000a3befc9866cc8
678014c585151112a3bd14158afd8509eeec3d4bad3117d6ccd9ecaa109107bc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1669
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:48 GMT
Last-Modified: Sat, 28 Jan 2023 03:59:59 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
ghb.adtelligent.com/adunit/tracking?event=11&type=0&client_id=313501&site_id=8344&full_page_url=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&adid=fgck0l.9i&features=147488&vpbv=N117&tte=334&lifecycle_tte=1812
62.149.23.112200 OK 43 B URL HTTP/1.1 ghb.adtelligent.com/adunit/tracking?event=11&type=0&client_id=313501&site_id=8344&full_page_url=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&adid=fgck0l.9i&features=147488&vpbv=N117&tte=334&lifecycle_tte=1812
IP 62.149.23.112:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /adunit/tracking?event=11&type=0&client_id=313501&site_id=8344&full_page_url=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&adid=fgck0l.9i&features=147488&vpbv=N117&tte=334&lifecycle_tte=1812 HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Adtelligent
Date: Sat, 28 Jan 2023 04:27:47 GMT
Content-Type: image/gif
Content-Length: 43
Access-Control-Allow-Origin: https://www.5.ua
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
X-Robots-Tag: noindex
Set-Cookie: vmuid=0eb8fd1498c46636; expires=Mon, 01 May 2023 04:27:48 GMT; domain=.adtelligent.com; path=/; secure; SameSite
connect.facebook.net/uk_UA/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/uk_UA/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash d04339a8abd0be27cedc10a325a721ae
6e51ef8739c1c0c94e4c5d3cf5c05b7103f6ba61
6b1ebfe4341585623392b3fc15c47fbff9c45ccd50967af049df835e7d343a9b
GET /uk_UA/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 6b4458d9f51f09f766df4db627e34489
etag: "c600e1fe25b3e8e544e20004475e1ea2"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 28 Jan 2023 04:44:45 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 0EM5qKvQvifO3BCjJachrg==
x-fb-debug: BTiMgRbsV1emyEJJI1AigdQpLegRxWhSa2qjnvzoUjmuAZpZT+iP1DaxuarTFMkC+V9zlS5mqpnTFKMOgLSvtQ==
content-length: 1687
x-fb-trip-id: 1904183273
date: Sat, 28 Jan 2023 04:27:48 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
player.adtelligent.com/prebidlink/19385/hbw_master_313501_8344.js
45.133.44.4200 OK 34 kB URL HTTP/2 player.adtelligent.com/prebidlink/19385/hbw_master_313501_8344.js
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
Hash 1a230b0d2f730650fe15d2f9d438dcdb
ae6c6def324532a5cd15b944bfdd17cbc182b913
07f6642507ef7acdb3cfdb25f9db9dcee9a71adf0c781507068f63b2213147d0
GET /prebidlink/19385/hbw_master_313501_8344.js HTTP/1.1
Host: player.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:47 GMT
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Thu, 26 Jan 2023 11:56:05 GMT
etag: W/"63d26a55-1f34e"
cache-control: max-age=172800
content-encoding: gzip
expires: Mon, 30 Jan 2023 04:27:47 GMT
access-control-allow-origin: *
x-proxy-cache: HIT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b10c572a58f34d8fb28433f25bb9c885
8bc11baa4e367bfcf8738f28000a3befc9866cc8
678014c585151112a3bd14158afd8509eeec3d4bad3117d6ccd9ecaa109107bc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1669
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:48 GMT
Last-Modified: Sat, 28 Jan 2023 03:59:59 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
region1.analytics.google.com/g/collect?v=2&tid=G-VM275ZDL21>m=2oe1p0&_p=511066106&_gaz=1&cid=1175364795.1674880069&ul=en-us&sr=1280x1024&ir=1&uaW=1&_eu=EA&_s=1&sid=1674880068&sct=1&seg=0&dl=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&dt=%D0%A0%D0%B5%D0%B7%D0%BD%D1%96%D0%BA%D0%BE%D0%B2%3A%20%D0%92%D0%BE%D1%80%D0%BE%D0%B3%20%D0%BF%D0%BE%D1%87%D0%B0%D0%B2%20%D1%96%D0%BD%D1%82%D0%B5%D0%BD%D1%81%D0%B8%D0%B2%D0%BD%D1%96%20%D0%BE%D0%B1%D1%81%D1%82%D1%80%D1%96%D0%BB%D0%B8%20%D0%BF%D1%96%D0%B4%D1%80%D0%BE%D0%B7%D0%B4%D1%96%D0%BB%D1%96%D0%B2%20%D0%97%D0%A1%D0%A3%20%D0%BD%D0%B0%20%D1%81%D1%85%D0%BE%D0%B4%D1%96%20%E2%80%93%20%D1%83%D0%BA%D1%80%D0%B0%D1%97%D0%BD%D1%81%D1%8C%D0%BA%D0%B0%20%D0%B0%D1%80%D0%BC%D1%96%D1%8F%20%D0%B4%D0%B0%D1%94%20%D0%B2%D1%96%D0%B4%D1%81%D1%96%D1%87%20%D1%80%D0%BE%D1%81%D1%96%D0%B9%D1%81%D1%8C%D0%BA%D0%B8%D0%BC%20%D0%B2%D1%96%D0%B9%D1%81%D1%8C%D0%BA%D0%B0%D0%BC&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-VM275ZDL21>m=2oe1p0&_p=511066106&_gaz=1&cid=1175364795.1674880069&ul=en-us&sr=1280x1024&ir=1&uaW=1&_eu=EA&_s=1&sid=1674880068&sct=1&seg=0&dl=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&dt=%D0%A0%D0%B5%D0%B7%D0%BD%D1%96%D0%BA%D0%BE%D0%B2%3A%20%D0%92%D0%BE%D1%80%D0%BE%D0%B3%20%D0%BF%D0%BE%D1%87%D0%B0%D0%B2%20%D1%96%D0%BD%D1%82%D0%B5%D0%BD%D1%81%D0%B8%D0%B2%D0%BD%D1%96%20%D0%BE%D0%B1%D1%81%D1%82%D1%80%D1%96%D0%BB%D0%B8%20%D0%BF%D1%96%D0%B4%D1%80%D0%BE%D0%B7%D0%B4%D1%96%D0%BB%D1%96%D0%B2%20%D0%97%D0%A1%D0%A3%20%D0%BD%D0%B0%20%D1%81%D1%85%D0%BE%D0%B4%D1%96%20%E2%80%93%20%D1%83%D0%BA%D1%80%D0%B0%D1%97%D0%BD%D1%81%D1%8C%D0%BA%D0%B0%20%D0%B0%D1%80%D0%BC%D1%96%D1%8F%20%D0%B4%D0%B0%D1%94%20%D0%B2%D1%96%D0%B4%D1%81%D1%96%D1%87%20%D1%80%D0%BE%D1%81%D1%96%D0%B9%D1%81%D1%8C%D0%BA%D0%B8%D0%BC%20%D0%B2%D1%96%D0%B9%D1%81%D1%8C%D0%BA%D0%B0%D0%BC&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-VM275ZDL21>m=2oe1p0&_p=511066106&_gaz=1&cid=1175364795.1674880069&ul=en-us&sr=1280x1024&ir=1&uaW=1&_eu=EA&_s=1&sid=1674880068&sct=1&seg=0&dl=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&dt=%D0%A0%D0%B5%D0%B7%D0%BD%D1%96%D0%BA%D0%BE%D0%B2%3A%20%D0%92%D0%BE%D1%80%D0%BE%D0%B3%20%D0%BF%D0%BE%D1%87%D0%B0%D0%B2%20%D1%96%D0%BD%D1%82%D0%B5%D0%BD%D1%81%D0%B8%D0%B2%D0%BD%D1%96%20%D0%BE%D0%B1%D1%81%D1%82%D1%80%D1%96%D0%BB%D0%B8%20%D0%BF%D1%96%D0%B4%D1%80%D0%BE%D0%B7%D0%B4%D1%96%D0%BB%D1%96%D0%B2%20%D0%97%D0%A1%D0%A3%20%D0%BD%D0%B0%20%D1%81%D1%85%D0%BE%D0%B4%D1%96%20%E2%80%93%20%D1%83%D0%BA%D1%80%D0%B0%D1%97%D0%BD%D1%81%D1%8C%D0%BA%D0%B0%20%D0%B0%D1%80%D0%BC%D1%96%D1%8F%20%D0%B4%D0%B0%D1%94%20%D0%B2%D1%96%D0%B4%D1%81%D1%96%D1%87%20%D1%80%D0%BE%D1%81%D1%96%D0%B9%D1%81%D1%8C%D0%BA%D0%B8%D0%BC%20%D0%B2%D1%96%D0%B9%D1%81%D1%8C%D0%BA%D0%B0%D0%BC&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.5.ua
date: Sat, 28 Jan 2023 04:27:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c083fb68af37d6c700a3fa4eb04a29cb
9b3ff3c9c0bd7dc448eb18e74ddc029f7c18dc9a
3ea0d4252ad90ee13a6b23ebd1144639f7bb73e4d96ef2590b21a155809e65e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-VM275ZDL21&cid=1175364795.1674880069>m=2oe1p0&aip=1
64.233.165.156204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-VM275ZDL21&cid=1175364795.1674880069>m=2oe1p0&aip=1
IP 64.233.165.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-VM275ZDL21&cid=1175364795.1674880069>m=2oe1p0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.5.ua
date: Sat, 28 Jan 2023 04:27:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/uk_UA/sdk.js?hash=af28d55b3b8a7c8e9307386c18f1a8f1
31.13.72.12200 OK 87 kB URL HTTP/2 connect.facebook.net/uk_UA/sdk.js?hash=af28d55b3b8a7c8e9307386c18f1a8f1
IP 31.13.72.12:0
File type ASCII text, with very long lines (13192)
Hash 39b96c2d2abb814c2086501819384c8c
ff4011d03f1a21482f155621d438ef3b9a7d20d3
a428ab01dc8fcf08b5f753bc8003261dc89b676a476ec9467bb1148d67ba703d
GET /uk_UA/sdk.js?hash=af28d55b3b8a7c8e9307386c18f1a8f1 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: d6414dab00deb07a56594ad54adc584f
etag: "847046758696cc25793197bb62479460"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 28 Jan 2024 03:24:43 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: OblsLSq7gUwghlAYGThMjA==
x-fb-debug: VPbJgboDNeySMcWS260k1JNqWMPR9kYQ8WtGjMg4fXGsHklWatC0hozUcHsenKucalbq6GOJUXWPCEOkJ0i2nQ==
priority: u=3,i
content-length: 87131
x-fb-trip-id: 1904183273
date: Sat, 28 Jan 2023 04:27:48 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ampcid.google.com/v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM
142.250.74.14200 OK 94 B URL HTTP/2 ampcid.google.com/v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM
IP 142.250.74.14:0
File type JSON data\012- , ASCII text
Hash c2144a6b5539facf69724cd8b26dcd81
4893942b88fdcc2e7c9ae52ecc1da5774855b27f
b293ac83010e12a3b2c3efc7185fb005ab4c64c1fa023747a3cb05d53b772115
POST /v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM HTTP/1.1
Host: ampcid.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 33
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 28 Jan 2023 04:27:48 GMT
server: ESF
cache-control: private
content-length: 94
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.5.ua
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash c00ced9bdce981b362102950441a543a
72ecea4afce13d0f54755bd79b95cbafd3d0cb47
d1408fe27ce2562398c163045d3e8c2c56efe05614080ef0e7a4d5f53ddc0d80
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=122192
Date: Sat, 28 Jan 2023 04:27:48 GMT
Etag: "63d3cc54-1d7"
Expires: Sun, 29 Jan 2023 14:24:20 GMT
Last-Modified: Fri, 27 Jan 2023 13:06:28 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: l48ms2ZtFw8lxYjbHliMElFHjChm_Swad2fWu48NnRx8TJYJc_prIA==
Age: 4672
m9m6e2w5.stackpathcdn.com/v2/bec87dbf/buttons.js
151.139.128.10200 OK 38 kB URL HTTP/2 m9m6e2w5.stackpathcdn.com/v2/bec87dbf/buttons.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2f2ba10bfc6e4ae6b4574df0f3eab8a7
7b833f2ec275dc92534bf2674451361f53a9675c
9fa4bc10d2a6d2fc0c498e80b5547cafcd786d463e0110495fc395ed42b7323a
GET /v2/bec87dbf/buttons.js HTTP/1.1
Host: m9m6e2w5.stackpathcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:48 GMT
content-encoding: gzip
content-length: 37578
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 19 Dec 2022 20:19:59 GMT
accept-ranges: bytes
server: nginx
x-amz-id-2: JQ0KwwFS7MyaQEyc1gJGUjBdzZCH1yFLL5B/f6VYj2aBBpu4YSwHXr6Zb2oHaGZ8b6rdWZTRVlk=
x-amz-request-id: PAK4VC291KA6JH05
etag: "2f2ba10bfc6e4ae6b4574df0f3eab8a7"
cache-control: max-age=31536000, public
access-control-allow-origin: *
x-hello-human: Join the fun! Apply at www.shareaholic.com/jobs
x-hw: 1674880068.cds213.sk1.hn,1674880068.cds249.sk1.c
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.5.ua
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.5.ua
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.5.ua HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 28 Jan 2023 04:27:48 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.5.ua
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.5.ua
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.5.ua HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 28 Jan 2023 04:27:48 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=565719666894730&ev=fb_page_view&dl=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&rl=&if=false&ts=1674880069389&sw=1280&sh=1024&at=
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=565719666894730&ev=fb_page_view&dl=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&rl=&if=false&ts=1674880069389&sw=1280&sh=1024&at=
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=565719666894730&ev=fb_page_view&dl=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&rl=&if=false&ts=1674880069389&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 28 Jan 2023 04:27:48 GMT
X-Firefox-Spdy: h2
ghb.adtelligent.com/csyncs?aid1=575121
62.149.23.112200 OK 409 B URL HTTP/1.1 ghb.adtelligent.com/csyncs?aid1=575121
IP 62.149.23.112:0
File type JSON data\012- , ASCII text, with very long lines (710)
Hash df70f4d46a70d70ca8807f39a7249530
6d883b5f4245a6238e0fe190711adbf84dc4a751
fe8e10eb7870162ad583edd14ebd12fc5e3690603cff7610d603a6ef237a6e8f
GET /csyncs?aid1=575121 HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Adtelligent
Date: Sat, 28 Jan 2023 04:27:47 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 409
Access-Control-Allow-Origin: https://www.5.ua
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
X-Robots-Tag: noindex
Content-Encoding: gzip
analytics.shareaholic.com/e
52.6.7.247200 OK 43 B URL HTTP/2 analytics.shareaholic.com/e
IP 52.6.7.247:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
POST /e HTTP/1.1
Host: analytics.shareaholic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 285
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:48 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: https://www.5.ua
vary: Origin
access-control-allow-credentials: true
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
p3p: CP="OTI DSP COR DEVo ADMa OUR CONo IND COM INT ONL PUR STA OTC"
expires: Thu, 01 Jan 1970 00:00:00 GMT
referer-policy: unsafe-url
content-security-policy: referrer always
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2500
Expires: Sat, 28 Jan 2023 05:09:28 GMT
Date: Sat, 28 Jan 2023 04:27:48 GMT
Connection: keep-alive
ghb.adtelligent.com/v2/auction/
62.149.23.112200 OK 485 B URL HTTP/1.1 ghb.adtelligent.com/v2/auction/
IP 62.149.23.112:0
File type JSON data\012- , ASCII text, with very long lines (3996), with no line terminators
Hash c68a9db25500502b08152ed289d809d9
7eb01c3c027ca8ef881de01804d75f26fbfba0bb
5c37e26d34e1d25b5e2861fb574d301d42aea89769de6be7b9536f4209956bfd
POST /v2/auction/ HTTP/1.1
Host: ghb.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2231
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Adtelligent
Date: Sat, 28 Jan 2023 04:27:47 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 485
Access-Control-Allow-Origin: https://www.5.ua
Access-Control-Allow-Credentials: true
Connection: Keep-Alive
X-Robots-Tag: noindex
Content-Encoding: gzip
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0413594-1aeb-47e8-8448-af5800cfa30e.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0413594-1aeb-47e8-8448-af5800cfa30e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d1a1e953f3f857726f15465313d082e5
1962e632f29d87d4f5455a29aa096eea057e15c0
a5b193f6de91c69c9e554f75dfa4a00f9cb8c47a26fdca61ed03ffe1dce7cc87
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0413594-1aeb-47e8-8448-af5800cfa30e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7637
x-amzn-requestid: f22c88bd-1eb9-47fa-aab1-95108b540f35
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-D3HN1oAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b2-05068ae37469a90c2355b4ec;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 03aXePxD_sCOwoLYYvykhq0YDOjyTtuoljGYXU_7Wsue1dO-b7gnuw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:55:43 GMT
age: 23525
etag: "1962e632f29d87d4f5455a29aa096eea057e15c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2500
Expires: Sat, 28 Jan 2023 05:09:28 GMT
Date: Sat, 28 Jan 2023 04:27:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 23462
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2500
Expires: Sat, 28 Jan 2023 05:09:28 GMT
Date: Sat, 28 Jan 2023 04:27:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c808e0-eda9-4074-b1ed-65637dbd4ba9.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c808e0-eda9-4074-b1ed-65637dbd4ba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 940946e65210c717266c3a64751f1b72
f0e66aeef0c72865d565f48b563f66a184b758a9
1d031b8a530a1e6d84d79fae891f023e1ab7646596c00c57d83cfffce1f6fdf5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F25c808e0-eda9-4074-b1ed-65637dbd4ba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5742
x-amzn-requestid: b22fd8a5-eefc-494e-a304-75b69eef069d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPFr2GsdoAMFpqw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8318-69b5e7c726fa92134d08c775;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:04:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xBpEdVPmvtXlsyGTvZCkIahK7_Ivhq4yswhw23ixIOH1zlgWPyLH9Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 01:14:42 GMT
age: 11586
etag: "f0e66aeef0c72865d565f48b563f66a184b758a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6946776e652785bf384db6df7a79b598
1027b0848c3def2f33c368316f2e6ea883efc2e3
1569f11bca5b42d40585adc66b47d91d709b8d46250367f2506d99450bfe7ea7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6512
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:48 GMT
Last-Modified: Sat, 28 Jan 2023 02:39:16 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2500
Expires: Sat, 28 Jan 2023 05:09:28 GMT
Date: Sat, 28 Jan 2023 04:27:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4cb7be12333fa7ea3353901b4b3215af
4b758cc432874384f330568177eef5a328d7e69a
d6f86c0ddbabd5c4fd7cee72ce4da62ccddd9d29139c9ab033bb1ab8425bae22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11918
x-amzn-requestid: baf2eddf-03cc-4af7-b799-c2c68b90d7a3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUf4sFUYoAMFg6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1ad04-696c5dd015428f7429a5ccec;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 22:28:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dI2BG_eOmY3zIev7w_cnkk-Cy3nkXPmxA2o6htVQzaFGJfl0g6Q_iw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 16:14:27 GMT
age: 44001
etag: "4b758cc432874384f330568177eef5a328d7e69a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ampcid.google.no/v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM
142.250.74.46200 OK 23 B URL HTTP/2 ampcid.google.no/v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM
IP 142.250.74.46:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
POST /v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM HTTP/1.1
Host: ampcid.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 33
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 28 Jan 2023 04:27:48 GMT
server: ESF
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.5.ua
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2500
Expires: Sat, 28 Jan 2023 05:09:28 GMT
Date: Sat, 28 Jan 2023 04:27:48 GMT
Connection: keep-alive
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0588027ad1bfcdae1b70e2be8566e26a
6ffc24587880aa49d20c39863bbd743f499c1079
c1a3744a3accd3c65196e8f9be47c3f5562d5763d30745cc549e5e73cab6a1c1
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2545
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:48 GMT
Last-Modified: Sat, 28 Jan 2023 03:45:23 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d04b173ecc22c619998bda87a8f9ce70
9e3c3ac1b5a8a5fcee6d1b0db1a61b71948d5fe5
c30fbd2807e36b637bd1382a955c34abb4fe88b99173692530d288fff0986896
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b9e50f-b1f6-4665-acd6-9532ce741c2f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8739
x-amzn-requestid: 77241ca1-d7d1-4133-bc06-e89a8db93aef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbANlFiSoAMFrcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44723-0b07156624f03d47665f2d4f;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:50:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9ZePVrD3oL-ImiMCCYYfuUbQ8l09Q-9F91cFRgSgFG2poVC5Ww4JaQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:57:22 GMT
age: 23426
etag: "9e3c3ac1b5a8a5fcee6d1b0db1a61b71948d5fe5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d2acaec4c6b70ea8d213d307c762f1a3
9d1758fcb02319b83a67807f02f2851bfbde4ac9
ce832d5b57b7f04dcbbabff10a462d647618bc1f706118bbf3c564a9e0cce6ac
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5374
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:48 GMT
Last-Modified: Sat, 28 Jan 2023 02:58:15 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2881cea3ae511d3dfd2f6b7cd598a4e
105d8d675aaafce5602e4015aee2d1659553d1b1
0993ef71c2af9e07ed09e0e2ba40a4d9fdd01444154c2f39f8fc48a4dfef1730
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a2033b2-0708-4731-82a4-5bbc9f000ae2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10863
x-amzn-requestid: db873091-be76-4276-aa3e-f9bd44051508
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbAMbHCMoAMFsYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4471c-57f14d6a3ebcc8a1788bae80;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:50:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 00zN6NcdSHaq-4mWQeizXw9SDgUZJOFnB_6dTo6skjlytfBuz8ud3w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:57:22 GMT
age: 23426
etag: "105d8d675aaafce5602e4015aee2d1659553d1b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
htlb.casalemedia.com/cygnus?s=863026&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%22997c9d08f98025%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A2%2C%22msi%22%3A2%2C%22mfu%22%3A0%2C%22bu%22%3A3%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A3%2C%22ren%22%3Afalse%2C%22version%22%3A%226.25.4%22%2C%22userIds%22%3A%5B%5D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2210a6f29698d49b6%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22863026%22%2C%22sid%22%3A%22336x280%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F65982531%2F300x250_Mobile_NewsPage_Top%23div-gpt-ad-1485945748735-0%22%7D%7D%2C%7B%22id%22%3A%221155dc4ec62adcf%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22863026%22%2C%22sid%22%3A%22300x600%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F65982531%2F300x600_Other_Right_Top%23div-gpt-ad-1529321293197-0%22%7D%7D%2C%7B%22id%22%3A%221303a6d7ddce37c8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A970%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22863026%22%2C%22sid%22%3A%22970x90%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F65982531%2F980x120_News_Terminal_Top%23div-gpt-ad-1525260523176-0%22%7D%7D%5D%2C%22at%22%3A1%2C%22user%22%3A%7B%22eids%22%3A%5B%7B%22source%22%3A%22pubcid.org%22%2C%22uids%22%3A%5B%7B%22id%22%3A%22229eba76-3e97-427a-b945-9ed1125963cb%22%7D%5D%7D%5D%7D%7D
104.18.33.19200 OK 36 B URL HTTP/2 htlb.casalemedia.com/cygnus?s=863026&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%22997c9d08f98025%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A2%2C%22msi%22%3A2%2C%22mfu%22%3A0%2C%22bu%22%3A3%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A3%2C%22ren%22%3Afalse%2C%22version%22%3A%226.25.4%22%2C%22userIds%22%3A%5B%5D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2210a6f29698d49b6%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22863026%22%2C%22sid%22%3A%22336x280%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F65982531%2F300x250_Mobile_NewsPage_Top%23div-gpt-ad-1485945748735-0%22%7D%7D%2C%7B%22id%22%3A%221155dc4ec62adcf%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22863026%22%2C%22sid%22%3A%22300x600%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F65982531%2F300x600_Other_Right_Top%23div-gpt-ad-1529321293197-0%22%7D%7D%2C%7B%22id%22%3A%221303a6d7ddce37c8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A970%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22863026%22%2C%22sid%22%3A%22970x90%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F65982531%2F980x120_News_Terminal_Top%23div-gpt-ad-1525260523176-0%22%7D%7D%5D%2C%22at%22%3A1%2C%22user%22%3A%7B%22eids%22%3A%5B%7B%22source%22%3A%22pubcid.org%22%2C%22uids%22%3A%5B%7B%22id%22%3A%22229eba76-3e97-427a-b945-9ed1125963cb%22%7D%5D%7D%5D%7D%7D
IP 104.18.33.19:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f3beac90283fc11e72e624ba0d26485a
fab6bfdf76a39242ca7542a9fd2de3c9ee33e525
9c68a6a7be34914a3aa1ca48ae933c095163530d57106711c7443adf0ab664d8
GET /cygnus?s=863026&v=7.2&ac=j&sd=1&r=%7B%22id%22%3A%22997c9d08f98025%22%2C%22site%22%3A%7B%22page%22%3A%22https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html%22%7D%2C%22ext%22%3A%7B%22source%22%3A%22prebid%22%2C%22ixdiag%22%3A%7B%22msd%22%3A2%2C%22msi%22%3A2%2C%22mfu%22%3A0%2C%22bu%22%3A3%2C%22iu%22%3A0%2C%22nu%22%3A0%2C%22ou%22%3A0%2C%22allu%22%3A3%2C%22ren%22%3Afalse%2C%22version%22%3A%226.25.4%22%2C%22userIds%22%3A%5B%5D%7D%7D%2C%22imp%22%3A%5B%7B%22id%22%3A%2210a6f29698d49b6%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A336%2C%22h%22%3A280%2C%22ext%22%3A%7B%22siteID%22%3A%22863026%22%2C%22sid%22%3A%22336x280%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F65982531%2F300x250_Mobile_NewsPage_Top%23div-gpt-ad-1485945748735-0%22%7D%7D%2C%7B%22id%22%3A%221155dc4ec62adcf%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A300%2C%22h%22%3A600%2C%22ext%22%3A%7B%22siteID%22%3A%22863026%22%2C%22sid%22%3A%22300x600%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F65982531%2F300x600_Other_Right_Top%23div-gpt-ad-1529321293197-0%22%7D%7D%2C%7B%22id%22%3A%221303a6d7ddce37c8%22%2C%22banner%22%3A%7B%22topframe%22%3A1%2C%22format%22%3A%5B%7B%22w%22%3A970%2C%22h%22%3A90%2C%22ext%22%3A%7B%22siteID%22%3A%22863026%22%2C%22sid%22%3A%22970x90%22%7D%7D%5D%7D%2C%22ext%22%3A%7B%22gpid%22%3A%22%2F65982531%2F980x120_News_Terminal_Top%23div-gpt-ad-1525260523176-0%22%7D%7D%5D%2C%22at%22%3A1%2C%22user%22%3A%7B%22eids%22%3A%5B%7B%22source%22%3A%22pubcid.org%22%2C%22uids%22%3A%5B%7B%22id%22%3A%22229eba76-3e97-427a-b945-9ed1125963cb%22%7D%5D%7D%5D%7D%7D HTTP/1.1
Host: htlb.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:48 GMT
content-type: application/json
content-length: 36
cf-ray: 7906fa4c9bbbb523-OSL
access-control-allow-origin: https://www.5.ua
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rg47nSuCMxxPQKScubc90ij17beLJWg%2FnYyPJqTbBZsnkt6E3AdJ1FtcQVFlv6Evj60Sw3E0O5wsfqCMPt6sf6dvZJqMXg8CldtU7XWR1fZgvWhlbl1OK7zZCDtKqWvd%2FAzB1TB6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 00720a2413c11265c1517fad0c1be5e4
fed87a1c9975c048e2fb09b6cea948125b6976bb
0811fb1c29fa2068fac890a96210e2d2107429ed796d0c79b318512c2a512089
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0811FB1C29FA2068FAC890A96210E2D2107429ED796D0C79B318512C2A512089"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7358
Expires: Sat, 28 Jan 2023 06:30:26 GMT
Date: Sat, 28 Jan 2023 04:27:48 GMT
Connection: keep-alive
40805b8f63b13a272eae36a20727aa3b.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
142.250.74.97200 OK 2.7 kB URL HTTP/2 40805b8f63b13a272eae36a20727aa3b.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: 40805b8f63b13a272eae36a20727aa3b.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Sat, 28 Jan 2023 04:27:48 GMT
expires: Sun, 28 Jan 2024 04:27:48 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 66e3e9eed1ebdaa783500e0c6acb991e
407a7d73e8802178dd24fd28f8fb4735180111b1
900a83d73b4ed84a4bb0fe0e72adb2e39ebc4107b775172caa9d14e63ef954b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "900A83D73B4ED84A4BB0FE0E72ADB2E39EBC4107B775172CAA9D14E63EF954B3"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7776
Expires: Sat, 28 Jan 2023 06:37:24 GMT
Date: Sat, 28 Jan 2023 04:27:48 GMT
Connection: keep-alive
player.adtelligent.com/exchange_rates/313344/config.json?cb=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
45.133.44.4200 OK 1.3 kB URL HTTP/2 player.adtelligent.com/exchange_rates/313344/config.json?cb=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , ASCII text, with very long lines (2304)
Hash 981e9a1d3e2cc08022f6e78483e7bd54
da061278990fcec228b6ae644951c7865bcc9126
0fa50d7c1caebafadce047e7aa988fd34f95c00a0cf6801330fa65d76670a365
GET /exchange_rates/313344/config.json?cb=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html HTTP/1.1
Host: player.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:48 GMT
content-type: application/json
server: nginx
last-modified: Thu, 26 Jan 2023 12:01:21 GMT
etag: W/"63d26b91-8f9"
cache-control: max-age=172800
content-encoding: gzip
expires: Mon, 30 Jan 2023 04:27:48 GMT
access-control-allow-origin: https://www.5.ua
x-proxy-cache: HIT
X-Firefox-Spdy: h2
prebid-eu.creativecdn.com/bidder/prebid/bids
185.184.8.90204 No Content 0 B URL HTTP/2 prebid-eu.creativecdn.com/bidder/prebid/bids
IP 185.184.8.90:0
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bidder/prebid/bids HTTP/1.1
Host: prebid-eu.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1016
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 28 Jan 2023 04:27:48 GMT
access-control-allow-origin: https://www.5.ua
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 3600
vary: Origin
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=12398&site_id=48138&zone_id=1882078&size_id=2&alt_size_ids=31%2C55&rp_schain=1.0,1!luponmedia.com,1994122,1,,,&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F980x120_News_Terminal_Top%23div-gpt-ad-1525260523176-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=13b70f6d-8c28-41c4-b7af-adbf672c9eae&l_pb_bid_id=22f61cca42be50b8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F980x120_News_Terminal_Top%23div-gpt-ad-1525260523176-0&slots=1&rand=0.30795079505055234
213.19.162.51200 OK 340 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=12398&site_id=48138&zone_id=1882078&size_id=2&alt_size_ids=31%2C55&rp_schain=1.0,1!luponmedia.com,1994122,1,,,&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F980x120_News_Terminal_Top%23div-gpt-ad-1525260523176-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=13b70f6d-8c28-41c4-b7af-adbf672c9eae&l_pb_bid_id=22f61cca42be50b8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F980x120_News_Terminal_Top%23div-gpt-ad-1525260523176-0&slots=1&rand=0.30795079505055234
IP 213.19.162.51:0
File type JSON data\012- , ASCII text, with very long lines (340), with no line terminators
Hash 6968dce282e02c6ca68b738e40ff1cf7
092ad977e5ed55b14517aa6ee9c0d98a7b5a89df
09165963a1a498e7b83ab6f5f412774226ae95d7e1f1c0cbe41703f72a57ea2b
GET /a/api/fastlane.json?account_id=12398&site_id=48138&zone_id=1882078&size_id=2&alt_size_ids=31%2C55&rp_schain=1.0,1!luponmedia.com,1994122,1,,,&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F980x120_News_Terminal_Top%23div-gpt-ad-1525260523176-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=13b70f6d-8c28-41c4-b7af-adbf672c9eae&l_pb_bid_id=22f61cca42be50b8&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F980x120_News_Terminal_Top%23div-gpt-ad-1525260523176-0&slots=1&rand=0.30795079505055234 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Sat, 28 Jan 2023 04:27:48 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.5.ua
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDFGCJZA-1G-MGBH; Domain=.rubiconproject.com; Path=/; Expires=Sun, 28-Jan-2024 04:27:48 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoJy9+pHnOoDu9DtVM30fCgoNkwoqvkZpoNGu2UFAQDuNdnAnmbLEPgzG6FmltYou2qeh/unzTUsA==; Domain=.rubiconproject.com; Path=/; Expires=Sun, 28-Jan-2024 04:27:48 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 340
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 879d092d31f92bf9380c96d8cb0eab89
bfe6ed8df2f0da8efb546189bbc7bd6261b34727
17e2d6fed162674f3b44057d526315e77a0e18fdcbe6cd7fb2bee37c7c75d94b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5789
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:48 GMT
Last-Modified: Sat, 28 Jan 2023 02:51:20 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=12398&site_id=48138&zone_id=1882078&size_id=16&rp_schain=1.0,1!luponmedia.com,1994122,1,,,&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F300x250_Mobile_NewsPage_Top%23div-gpt-ad-1485945748735-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=a7c0d9ad-6529-473a-b64c-f5ad98db0e3b&l_pb_bid_id=20effa7204505d38&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F300x250_Mobile_NewsPage_Top%23div-gpt-ad-1485945748735-0&slots=1&rand=0.41206996698436793
213.19.162.51200 OK 323 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=12398&site_id=48138&zone_id=1882078&size_id=16&rp_schain=1.0,1!luponmedia.com,1994122,1,,,&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F300x250_Mobile_NewsPage_Top%23div-gpt-ad-1485945748735-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=a7c0d9ad-6529-473a-b64c-f5ad98db0e3b&l_pb_bid_id=20effa7204505d38&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F300x250_Mobile_NewsPage_Top%23div-gpt-ad-1485945748735-0&slots=1&rand=0.41206996698436793
IP 213.19.162.51:0
File type JSON data\012- , ASCII text, with very long lines (323), with no line terminators
Hash fdbcee60960e37cbeca5d167efcff152
dde621ee8f6ffc87cd09215d2125f42c59a6f394
2c38ee1c8133fadf0b096ffe8d7c931bc602a4e5f9855a8a944e0594162cd214
GET /a/api/fastlane.json?account_id=12398&site_id=48138&zone_id=1882078&size_id=16&rp_schain=1.0,1!luponmedia.com,1994122,1,,,&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F300x250_Mobile_NewsPage_Top%23div-gpt-ad-1485945748735-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=a7c0d9ad-6529-473a-b64c-f5ad98db0e3b&l_pb_bid_id=20effa7204505d38&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F300x250_Mobile_NewsPage_Top%23div-gpt-ad-1485945748735-0&slots=1&rand=0.41206996698436793 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Sat, 28 Jan 2023 04:27:48 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.5.ua
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDFGCJZW-P-3766; Domain=.rubiconproject.com; Path=/; Expires=Sun, 28-Jan-2024 04:27:48 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoeavhZZ1bcyO9DtVM30fCgoNkwoqvkZpoNGu2UFAQDuNdnAnmbLEPgzG6FmltYou2qeh/unzTUsA==; Domain=.rubiconproject.com; Path=/; Expires=Sun, 28-Jan-2024 04:27:48 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 323
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17184&site_id=163630&zone_id=2126352&size_id=2&alt_size_ids=31%2C55&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F980x120_News_Terminal_Top%23div-gpt-ad-1525260523176-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=13b70f6d-8c28-41c4-b7af-adbf672c9eae&l_pb_bid_id=8eca13fe3e3427&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F980x120_News_Terminal_Top%23div-gpt-ad-1525260523176-0&slots=1&rand=0.31034747056141
213.19.162.51200 OK 344 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17184&site_id=163630&zone_id=2126352&size_id=2&alt_size_ids=31%2C55&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F980x120_News_Terminal_Top%23div-gpt-ad-1525260523176-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=13b70f6d-8c28-41c4-b7af-adbf672c9eae&l_pb_bid_id=8eca13fe3e3427&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F980x120_News_Terminal_Top%23div-gpt-ad-1525260523176-0&slots=1&rand=0.31034747056141
IP 213.19.162.51:0
File type JSON data\012- , ASCII text, with very long lines (344), with no line terminators
Hash b5f3f143d11909a1e45671d38ac15190
5bb96ce2de18e81d6ab876e0ea1c8e307f713fae
cf0b1cfe7c7b2dded84185df1db08c51ad8a6da4a61febbf6c9a7b1a54fd98d3
GET /a/api/fastlane.json?account_id=17184&site_id=163630&zone_id=2126352&size_id=2&alt_size_ids=31%2C55&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F980x120_News_Terminal_Top%23div-gpt-ad-1525260523176-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=13b70f6d-8c28-41c4-b7af-adbf672c9eae&l_pb_bid_id=8eca13fe3e3427&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F980x120_News_Terminal_Top%23div-gpt-ad-1525260523176-0&slots=1&rand=0.31034747056141 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Sat, 28 Jan 2023 04:27:48 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.5.ua
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDFGCK05-X-HW6S; Domain=.rubiconproject.com; Path=/; Expires=Sun, 28-Jan-2024 04:27:48 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoF+r4AELG+RO9DtVM30fCgoNkwoqvkZpoNGu2UFAQDuNdnAnmbLEPgzG6FmltYou1VWfYuzvGRqw==; Domain=.rubiconproject.com; Path=/; Expires=Sun, 28-Jan-2024 04:27:48 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 344
X-Firefox-Spdy: h2
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17184&site_id=163630&zone_id=2126352&size_id=15&alt_size_ids=10&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F300x600_Other_Right_Top%23div-gpt-ad-1529321293197-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=01b017d7-876e-47fd-8817-b00b97e929fd&l_pb_bid_id=79c50078e16dad&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F300x600_Other_Right_Top%23div-gpt-ad-1529321293197-0&slots=1&rand=0.7598818403938391
213.19.162.51200 OK 340 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17184&site_id=163630&zone_id=2126352&size_id=15&alt_size_ids=10&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F300x600_Other_Right_Top%23div-gpt-ad-1529321293197-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=01b017d7-876e-47fd-8817-b00b97e929fd&l_pb_bid_id=79c50078e16dad&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F300x600_Other_Right_Top%23div-gpt-ad-1529321293197-0&slots=1&rand=0.7598818403938391
IP 213.19.162.51:0
File type JSON data\012- , ASCII text, with very long lines (340), with no line terminators
Hash b6bab44fa0b1fb3082ba648bf0c33f94
169bc38185ba48951585decb15b31ba2a4cbc8e7
96eaadcba7444f0209c2c2c2be600685bd1143407527f7f53508016a3aeb69f5
GET /a/api/fastlane.json?account_id=17184&site_id=163630&zone_id=2126352&size_id=15&alt_size_ids=10&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F300x600_Other_Right_Top%23div-gpt-ad-1529321293197-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=01b017d7-876e-47fd-8817-b00b97e929fd&l_pb_bid_id=79c50078e16dad&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F300x600_Other_Right_Top%23div-gpt-ad-1529321293197-0&slots=1&rand=0.7598818403938391 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Sat, 28 Jan 2023 04:27:48 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.5.ua
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDFGCK08-20-A0Y7; Domain=.rubiconproject.com; Path=/; Expires=Sun, 28-Jan-2024 04:27:48 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qpuUEMhX7IWo+9DtVM30fCgoNkwoqvkZpoNGu2UFAQDuNdnAnmbLEPgzG6FmltYou1VWfYuzvGRqw==; Domain=.rubiconproject.com; Path=/; Expires=Sun, 28-Jan-2024 04:27:48 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 340
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 56fc305db25a18097c6d3e56537eb189
d595c07f566c22addd86f2a24e9ab4aa34ee1060
3daff61b2799b42e09be8445eb32951f2fb9689089c82dec56b7aa3861af2b70
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3DAFF61B2799B42E09BE8445EB32951F2FB9689089C82DEC56B7AA3861AF2B70"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9372
Expires: Sat, 28 Jan 2023 07:04:00 GMT
Date: Sat, 28 Jan 2023 04:27:48 GMT
Connection: keep-alive
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17184&site_id=163630&zone_id=2126352&size_id=16&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F300x250_Mobile_NewsPage_Top%23div-gpt-ad-1485945748735-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=a7c0d9ad-6529-473a-b64c-f5ad98db0e3b&l_pb_bid_id=67872f68c4dd218&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F300x250_Mobile_NewsPage_Top%23div-gpt-ad-1485945748735-0&slots=1&rand=0.8901839936788359
213.19.162.51200 OK 324 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=17184&site_id=163630&zone_id=2126352&size_id=16&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F300x250_Mobile_NewsPage_Top%23div-gpt-ad-1485945748735-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=a7c0d9ad-6529-473a-b64c-f5ad98db0e3b&l_pb_bid_id=67872f68c4dd218&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F300x250_Mobile_NewsPage_Top%23div-gpt-ad-1485945748735-0&slots=1&rand=0.8901839936788359
IP 213.19.162.51:0
File type JSON data\012- , ASCII text, with very long lines (324), with no line terminators
Hash 457c2252887396ac12d18383918552fc
b95971ee082ac83466dbf7c0527d0471002245b9
90dcab1a20d8e79e7c3dec50e7653bf3e84c2d6f8ab410b0fac4b7dd37ac21c0
GET /a/api/fastlane.json?account_id=17184&site_id=163630&zone_id=2126352&size_id=16&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F300x250_Mobile_NewsPage_Top%23div-gpt-ad-1485945748735-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=a7c0d9ad-6529-473a-b64c-f5ad98db0e3b&l_pb_bid_id=67872f68c4dd218&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F300x250_Mobile_NewsPage_Top%23div-gpt-ad-1485945748735-0&slots=1&rand=0.8901839936788359 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.21.4
date: Sat, 28 Jan 2023 04:27:48 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.5.ua
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDFGCK0M-5-ARI; Domain=.rubiconproject.com; Path=/; Expires=Sun, 28-Jan-2024 04:27:48 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qrm5VyQ8gctiu9DtVM30fCgoNkwoqvkZpoNGu2UFAQDuNdnAnmbLEPgzG6FmltYou1VWfYuzvGRqw==; Domain=.rubiconproject.com; Path=/; Expires=Sun, 28-Jan-2024 04:27:48 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 324
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0588027ad1bfcdae1b70e2be8566e26a
6ffc24587880aa49d20c39863bbd743f499c1079
c1a3744a3accd3c65196e8f9be47c3f5562d5763d30745cc549e5e73cab6a1c1
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2545
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:48 GMT
Last-Modified: Sat, 28 Jan 2023 03:45:23 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 13b22234229d52b71291f47e4fc59200
dc17e2aad840341d1b4c4f83b913afdd5a4a0902
11049f21f8b5ee1daa216b73eb4c60208ab6ed7a0400b6d8b420ff6252857b3a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "11049F21F8B5EE1DAA216B73EB4C60208AB6ED7A0400B6D8B420FF6252857B3A"
Last-Modified: Thu, 26 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2702
Expires: Sat, 28 Jan 2023 05:12:50 GMT
Date: Sat, 28 Jan 2023 04:27:48 GMT
Connection: keep-alive
fastlane.rubiconproject.com/a/api/fastlane.json?account_id=12398&site_id=48138&zone_id=1882078&size_id=15&alt_size_ids=10&rp_schain=1.0,1!luponmedia.com,1994122,1,,,&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F300x600_Other_Right_Top%23div-gpt-ad-1529321293197-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=01b017d7-876e-47fd-8817-b00b97e929fd&l_pb_bid_id=21f36cd2f74bc438&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F300x600_Other_Right_Top%23div-gpt-ad-1529321293197-0&slots=1&rand=0.8840857177915402
213.19.162.51200 OK 339 B URL HTTP/2 fastlane.rubiconproject.com/a/api/fastlane.json?account_id=12398&site_id=48138&zone_id=1882078&size_id=15&alt_size_ids=10&rp_schain=1.0,1!luponmedia.com,1994122,1,,,&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F300x600_Other_Right_Top%23div-gpt-ad-1529321293197-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=01b017d7-876e-47fd-8817-b00b97e929fd&l_pb_bid_id=21f36cd2f74bc438&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F300x600_Other_Right_Top%23div-gpt-ad-1529321293197-0&slots=1&rand=0.8840857177915402
IP 213.19.162.51:0
File type JSON data\012- , ASCII text, with very long lines (339), with no line terminators
Hash ed8779888d4a55611cb6be8cb20d1a91
7d3c070532545baa9e56557b8745f5992a508378
6399171025d5e92ec1a7cb44e6ee2755f22f721b9c92cc87add71211eb65a597
GET /a/api/fastlane.json?account_id=12398&site_id=48138&zone_id=1882078&size_id=15&alt_size_ids=10&rp_schain=1.0,1!luponmedia.com,1994122,1,,,&eid_pubcid.org=229eba76-3e97-427a-b945-9ed1125963cb%5E1&rf=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&tg_i.pbadslot=%2F65982531%2F300x600_Other_Right_Top%23div-gpt-ad-1529321293197-0&tk_flint=pbjs_lite_v6.25.4&x_source.tid=01b017d7-876e-47fd-8817-b00b97e929fd&l_pb_bid_id=21f36cd2f74bc438&p_screen_res=1280x1024&rp_secure=1&rp_maxbids=1&p_gpid=%2F65982531%2F300x600_Other_Right_Top%23div-gpt-ad-1529321293197-0&slots=1&rand=0.8840857177915402 HTTP/1.1
Host: fastlane.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.4
date: Sat, 28 Jan 2023 04:27:48 GMT
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Wed, 17 Sep 1975 21:32:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.5.ua
pragma: no-cache
vary: Accept-Encoding
set-cookie: khaos=LDFGCJZB-1G-8OFT; Domain=.rubiconproject.com; Path=/; Expires=Sun, 28-Jan-2024 04:27:48 GMT; Max-Age=31536000; SameSite=None; Secure
audit=1|naVuGyos1qoZSr39rzo6Ve9DtVM30fCgoNkwoqvkZpoNGu2UFAQDuNdnAnmbLEPgzG6FmltYou2qeh/unzTUsA==; Domain=.rubiconproject.com; Path=/; Expires=Sun, 28-Jan-2024 04:27:48 GMT; Max-Age=31536000; SameSite=None; Secure
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
content-length: 339
X-Firefox-Spdy: h2
hbopenbid.pubmatic.com/translator?source=prebid-client
185.64.189.112204 No Content 0 B URL HTTP/2 hbopenbid.pubmatic.com/translator?source=prebid-client
IP 185.64.189.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /translator?source=prebid-client HTTP/1.1
Host: hbopenbid.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1469
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://www.5.ua
cache-control: no-cache, no-store, must-revalidate
date: Sat, 28 Jan 2023 04:27:48 GMT
X-Firefox-Spdy: h2
csync.loopme.me/?pubid=11378&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_109}&redirect=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Da%26ep%3D319130%26extuid%3D%7Bviewer_token%7D
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?pubid=11378&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_109}&redirect=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Da%26ep%3D319130%26extuid%3D%7Bviewer_token%7D
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?pubid=11378&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_109}&redirect=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Da%26ep%3D319130%26extuid%3D%7Bviewer_token%7D HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=a507eddd-366b-42b0-bad6-870f5813e7a1; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Fri, 28-Apr-2023 04:27:48 GMT; SameSite=None
location: https://sync.adtelligent.com/csync?t=a&ep=319130&extuid=a507eddd-366b-42b0-bad6-870f5813e7a1&gdpr_consent=${GDPR_CONSENT_109}&gdpr=${GDPR}
content-length: 0
date: Sat, 28 Jan 2023 04:27:48 GMT
server: _
X-Firefox-Spdy: h2
a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Da%26ep%3D307558%26extuid%3D%7Buser_id%7D
137.74.6.209302 Found 166 B URL HTTP/2 a4p.adpartner.pro/ssp/match?redirect=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Da%26ep%3D307558%26extuid%3D%7Buser_id%7D
IP 137.74.6.209:0
Hash e50a6641346ccc14bcc49c917e7e2798
7bd72bfb3ed2405f7482b3447336450361fb408d
350c8ec5b5203cb5d5a54cd9c79aaba17743f0339583d4436df84f21e4ebfd77
GET /ssp/match?redirect=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Da%26ep%3D307558%26extuid%3D%7Buser_id%7D HTTP/1.1
Host: a4p.adpartner.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Sat, 28 Jan 2023 04:27:48 GMT
content-type: text/html; charset=utf-8
content-length: 166
location: https://sync.adtelligent.com/csync?t=a&ep=307558&extuid=b54a0df7-45e9-4eee-b209-f5480f9ebea4
set-cookie: apuid=b54a0df7-45e9-4eee-b209-f5480f9ebea4; Path=/; Expires=Wed, 29 Mar 2023 04:27:48 GMT; Secure; SameSite=None
cache-control: no-store no-transform
X-Firefox-Spdy: h2
partner.shareaholic.com/partners.js?location=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&cl=uk&id_sync=00149df4-b953-43b4-8901-c021cc657f0a&pvs=1&site=f5e21cfdc4ccca93c6b092dfd5a87724
107.20.140.231200 OK 0 B URL HTTP/2 partner.shareaholic.com/partners.js?location=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&cl=uk&id_sync=00149df4-b953-43b4-8901-c021cc657f0a&pvs=1&site=f5e21cfdc4ccca93c6b092dfd5a87724
IP 107.20.140.231:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partners.js?location=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&cl=uk&id_sync=00149df4-b953-43b4-8901-c021cc657f0a&pvs=1&site=f5e21cfdc4ccca93c6b092dfd5a87724 HTTP/1.1
Host: partner.shareaholic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:48 GMT
content-type: application/javascript;charset=utf-8
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
vary: Accept-Encoding, User-Agent
content-length: 0
p3p: CP='OTI DSP COR DEVo ADMa OUR CONo IND COM INT ONL PUR STA OTC'
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash fda8b34a3731a1d55d3e23d81a835534
9fc032cdecf2586abee3041d83d6f0e5b51da7c2
e3b6ff6c29f1ed546943d90f9f61975af0616d96801d5d2803b84148e97ba4b2
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 28 Jan 2023 04:27:48 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 27 Jan 2023 20:06:12 GMT
Expires: Sat, 28 Jan 2023 20:06:12 GMT
ETag: "9fc032cdecf2586abee3041d83d6f0e5b51da7c2"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 66e1a200d46db2ee7aa75710ec50e112
9f844df6dc749af29f0f0599372a37301705fe73
afed7e67ffbca4cc78dc8c0454740754afa25d45dbbb80f4c62bf51c8db08c6c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AFED7E67FFBCA4CC78DC8C0454740754AFA25D45DBBB80F4C62BF51C8DB08C6C"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5523
Expires: Sat, 28 Jan 2023 05:59:51 GMT
Date: Sat, 28 Jan 2023 04:27:48 GMT
Connection: keep-alive
cs.admanmedia.com/981e2a0ec1c40493e59b139b8db4f728.gif?puid=[UID]&redir=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Da%26ep%3D737612%26extuid%3D%5BUID%5D
80.77.87.166204 No Content 0 B URL HTTP/1.1 cs.admanmedia.com/981e2a0ec1c40493e59b139b8db4f728.gif?puid=[UID]&redir=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Da%26ep%3D737612%26extuid%3D%5BUID%5D
IP 80.77.87.166:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /981e2a0ec1c40493e59b139b8db4f728.gif?puid=[UID]&redir=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Da%26ep%3D737612%26extuid%3D%5BUID%5D HTTP/1.1
Host: cs.admanmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Sat, 28 Jan 2023 04:27:49 GMT
Connection: keep-alive
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
X-Frame-Options: DENY
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 76f1c91f3325b92a865fa20ab2da8070
8420e7dc3ae2703de06ad116743de414647be65c
b53021f7789c64693e67513834c8aa49d8d7734d17b5ade1e7ff779fc8bfe427
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3944
Cache-Control: max-age=139125
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:49 GMT
Etag: "63d41152-1d7"
Expires: Sun, 29 Jan 2023 19:06:34 GMT
Last-Modified: Fri, 27 Jan 2023 18:00:50 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
scontent.flwo4-2.fna.fbcdn.net/v/t39.30808-1/274472214_358871456249212_445187151736983029_n.jpg?stp=cp0_dst-jpg_p50x50&_nc_cat=108&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=H4v8R4I6F9sAX9wS6YD&_nc_ht=scontent.flwo4-2.fna&edm=AOxfFlQEAAAA&oh=00_AfADO9PBDSRepZyJWWXRoLB2-bx6hxCY_Gu7qYpK_AXbYA&oe=63D9BC62
94.153.206.209200 OK 1.7 kB URL HTTP/2 scontent.flwo4-2.fna.fbcdn.net/v/t39.30808-1/274472214_358871456249212_445187151736983029_n.jpg?stp=cp0_dst-jpg_p50x50&_nc_cat=108&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=H4v8R4I6F9sAX9wS6YD&_nc_ht=scontent.flwo4-2.fna&edm=AOxfFlQEAAAA&oh=00_AfADO9PBDSRepZyJWWXRoLB2-bx6hxCY_Gu7qYpK_AXbYA&oe=63D9BC62
IP 94.153.206.209:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 97ee9d01766565ae87f353b5758437e0
de0ea992e5aa11cc47403a14a869f2cfe0b08f33
206e71494906cdaca217689a880eab2df7c360c7e89d1f966f3d256f02e358aa
GET /v/t39.30808-1/274472214_358871456249212_445187151736983029_n.jpg?stp=cp0_dst-jpg_p50x50&_nc_cat=108&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=H4v8R4I6F9sAX9wS6YD&_nc_ht=scontent.flwo4-2.fna&edm=AOxfFlQEAAAA&oh=00_AfADO9PBDSRepZyJWWXRoLB2-bx6hxCY_Gu7qYpK_AXbYA&oe=63D9BC62 HTTP/1.1
Host: scontent.flwo4-2.fna.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Wed, 02 Mar 2022 07:03:13 GMT
x-haystack-needlechecksum: 1885387822
x-needle-checksum: 1744859146
content-type: image/jpeg
content-digest: adler32=2438354842
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
content-length: 1716
date: Sat, 28 Jan 2023 04:27:49 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
api.gravitec.media/api/stats/track?app_key=fc1fa553ef40bf21c0a94cc43f686f04&user_id=dc41f5b1-e892-4806-8d31-885c7ce86339&utmb=fcb17b19-4eb0-42b0-b44e-9669db0d673e&path=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&referrer=
35.214.184.209201 Created 0 B URL HTTP/2 api.gravitec.media/api/stats/track?app_key=fc1fa553ef40bf21c0a94cc43f686f04&user_id=dc41f5b1-e892-4806-8d31-885c7ce86339&utmb=fcb17b19-4eb0-42b0-b44e-9669db0d673e&path=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&referrer=
IP 35.214.184.209:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/stats/track?app_key=fc1fa553ef40bf21c0a94cc43f686f04&user_id=dc41f5b1-e892-4806-8d31-885c7ce86339&utmb=fcb17b19-4eb0-42b0-b44e-9669db0d673e&path=https%3A%2F%2Fwww.5.ua%2Fsuspilstvo%2Freznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html&referrer= HTTP/1.1
Host: api.gravitec.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.5.ua/
Origin: https://www.5.ua
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 201 Created
server: nginx
date: Sat, 28 Jan 2023 04:27:49 GMT
content-length: 0
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1 ; mode=block
referrer-policy: no-referrer
x-correlation-id: 78db2b6868c0600d19ee33d361255824
X-Firefox-Spdy: h2
www.5.ua/img/logo/logo-dv.svg
104.18.3.230200 OK 1.8 kB URL HTTP/2 www.5.ua/img/logo/logo-dv.svg
IP 104.18.3.230:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 751c4f1024ced4ee15de5c0893ce08f4
0eabfd1b116baf837c855d650e10d7ead7779630
26ac050c0952bc206a45509d6d226f62fe50a8dd7545fc3f13eeb9ef449e2871
GET /img/logo/logo-dv.svg HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; __cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: image/svg+xml
last-modified: Mon, 14 Sep 2020 13:03:06 GMT
vary: Accept-Encoding
etag: W/"5f5f6a0a-db6"
expires: Sun, 28 Jan 2024 04:27:46 GMT
cache-control: public, max-age=31536000
cf-cache-status: HIT
age: 12517
server: cloudflare
cf-ray: 7906fa414a94b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
104.18.32.68200 OK 316 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 104.18.32.68:0
Hash 4e012c1055e5ed3b342f8adce62e51b6
12bdd6f65f18fd6c2a2c049313e3239d0cdc3fc9
b38d06af9cb436676a858b29b24fd1cb12f83ee9374682b33f7ba7258593c019
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:27:49 GMT
Content-Type: application/ocsp-response
Content-Length: 316
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 09:00:19 GMT
Expires: Fri, 03 Feb 2023 09:00:18 GMT
Etag: "12bdd6f65f18fd6c2a2c049313e3239d0cdc3fc9"
Cache-Control: max-age=534148,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7906fa4f5c70b509-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 76f1c91f3325b92a865fa20ab2da8070
8420e7dc3ae2703de06ad116743de414647be65c
b53021f7789c64693e67513834c8aa49d8d7734d17b5ade1e7ff779fc8bfe427
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3944
Cache-Control: max-age=139125
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:49 GMT
Etag: "63d41152-1d7"
Expires: Sun, 29 Jan 2023 19:06:34 GMT
Last-Modified: Fri, 27 Jan 2023 18:00:50 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
sync.adtelligent.com/csync?t=a&ep=307558&extuid=b54a0df7-45e9-4eee-b209-f5480f9ebea4
62.149.1.122200 OK 0 B URL HTTP/1.1 sync.adtelligent.com/csync?t=a&ep=307558&extuid=b54a0df7-45e9-4eee-b209-f5480f9ebea4
IP 62.149.1.122:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csync?t=a&ep=307558&extuid=b54a0df7-45e9-4eee-b209-f5480f9ebea4 HTTP/1.1
Host: sync.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.5.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Adtelligent
Date: Sat, 28 Jan 2023 04:27:49 GMT
Content-Length: 0
Etag: 551cd6bc7463d578
Set-Cookie: vmuid=551cd6bc7463d578; expires=Fri, 31 Mar 2023 04:27:49 GMT; domain=.adtelligent.com; path=/; secure; SameSite=None
a307558=b54a0df7-45e9-4eee-b209-f5480f9ebea4; expires=Fri, 31 Mar 2023 04:27:49 GMT; domain=.adtelligent.com; path=/; secure; SameSite=None
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023011901&st=env
142.250.74.130200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2023011901&st=env
IP 142.250.74.130:0
File type JSON data\012- , ASCII text, with very long lines (15014), with no line terminators
Hash 1b1e2e7e0963158aa3132b41a12b7ef8
9f60f49b9c691adc544ee047ab7d5c61a8c25345
7c384cf707f8705ee05568ee050b482d5c443a285d93af8f7fd63f27e384e2b9
GET /getconfig/sodar?sv=200&tid=gpt&tv=2023011901&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.5.ua
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Sat, 28 Jan 2023 04:27:49 GMT
server: cafe
content-length: 11334
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sync.adtelligent.com/csync?t=a&ep=319130&extuid=a507eddd-366b-42b0-bad6-870f5813e7a1&gdpr_consent=${GDPR_CONSENT_109}&gdpr=${GDPR}
62.149.1.122200 OK 247 B URL HTTP/1.1 sync.adtelligent.com/csync?t=a&ep=319130&extuid=a507eddd-366b-42b0-bad6-870f5813e7a1&gdpr_consent=${GDPR_CONSENT_109}&gdpr=${GDPR}
IP 62.149.1.122:0
Hash db28b166962968a0ea9e791f55dd43f7
f3462186c6271890c95c99c112b61fa3dd6057b1
e49d6c85b19a1fa3904fd1b840dd4e2e56559363425ed8ca166d98efdbe5c7a4
GET /csync?t=a&ep=319130&extuid=a507eddd-366b-42b0-bad6-870f5813e7a1&gdpr_consent=${GDPR_CONSENT_109}&gdpr=${GDPR} HTTP/1.1
Host: sync.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.5.ua/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Adtelligent
Date: Sat, 28 Jan 2023 04:27:49 GMT
Content-Length: 0
Etag: 551cd6bc7463d578
Set-Cookie: vmuid=551cd6bc7463d578; expires=Fri, 31 Mar 2023 04:27:49 GMT; domain=.adtelligent.com; path=/; secure; SameSite=None
a319130=a507eddd-366b-42b0-bad6-870f5813e7a1; expires=Fri, 31 Mar 2023 04:27:49 GMT; domain=.adtelligent.com; path=/; secure; SameSite=None
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 622311873d3819b9911301b09bc2d43c
9f08d648e40479aa12da033da15b80a15017c739
6138674cec17da8b7bb02bf0686bf3e7aefa2bce6a5f844ebd80e10b665818b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-43467952-1&cid=1175364795.1674880069&jid=898350169&_u=aCDAiEABBAQCAEAAI~&z=328125923
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-43467952-1&cid=1175364795.1674880069&jid=898350169&_u=aCDAiEABBAQCAEAAI~&z=328125923
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-43467952-1&cid=1175364795.1674880069&jid=898350169&_u=aCDAiEABBAQCAEAAI~&z=328125923 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.5.ua/
Connection: keep-alive
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 28 Jan 2023 04:27:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 17504951994384b5dfa3387f5e8b684f
d76ab271cbc580a05222ec155fbc0e82545ae97c
f7e09c196a20bed2d1c1f6fada5eb982e04880a2f1c8c24d7fdce87e46152c3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash ea0eeb5b6203d9acb98805ad0f911545
0b03b0f382689dbeec6e5795ada4caf315d3f5ee
6dac739f6e5f7334f308d83e298cc0696d8f189681c892c654836f9e774ef28c
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 28 Jan 2023 04:27:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 27 Jan 2023 21:31:37 GMT
Expires: Sat, 28 Jan 2023 21:31:37 GMT
ETag: "0b03b0f382689dbeec6e5795ada4caf315d3f5ee"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
tpc.googlesyndication.com/sodar/sodar2.js
172.217.21.161200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.5.ua/
Connection: keep-alive
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sat, 28 Jan 2023 04:27:49 GMT
expires: Sat, 28 Jan 2023 04:27:49 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
172.217.21.161200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 20:43:30 GMT
expires: Fri, 26 Jan 2024 20:43:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 114259
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ap.lijit.com/pixel?redir=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Da%26ep%3D310570%26extuid%3D%24UID
216.52.2.30204 No Content 0 B URL HTTP/1.1 ap.lijit.com/pixel?redir=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Da%26ep%3D310570%26extuid%3D%24UID
IP 216.52.2.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel?redir=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Da%26ep%3D310570%26extuid%3D%24UID HTTP/1.1
Host: ap.lijit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Sat, 28 Jan 2023 04:27:49 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, DELETE, PUT
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With, Content-Type
X-Sovrn-Pod: ad_ap6ams1
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 129259bf062d7eb460547eb66ee30a83
c340a86ed2c1b2b508c6b21ca21dd6cfd8afc815
753d90d0ee7702f263d9970d624633bf1f5a73d7dc792e3ee073eb961967c126
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 129259bf062d7eb460547eb66ee30a83
c340a86ed2c1b2b508c6b21ca21dd6cfd8afc815
753d90d0ee7702f263d9970d624633bf1f5a73d7dc792e3ee073eb961967c126
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012301112346000/v0/amp-ad-exit-0.1.mjs
172.217.21.161200 OK 5.2 kB URL HTTP/2 cdn.ampproject.org/rtv/012301112346000/v0/amp-ad-exit-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (14751)
Hash 8d4f7148a157a31d69df198119f15f6c
869d2edb3409f82d8da8690b3b6c7c4212466bf1
9e17a0f37428d7db29cea9973f978d4716aaa7581c2480e9c337efcc84def4bf
GET /rtv/012301112346000/v0/amp-ad-exit-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.5.ua/
Connection: keep-alive
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5217
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:11:05 GMT
expires: Tue, 23 Jan 2024 18:11:05 GMT
cache-control: public, max-age=31536000
etag: "cee5c64b71634b65"
content-type: text/javascript; charset=UTF-8
age: 382604
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 26 kB IP 142.250.74.131:0
Hash 7edb23d2c2a652952730d98bfead3572
4e6f1a3e5fcf3c4e14e9166ff1a0fdd072732a74
17f21597ae3cc7ddb3628c15814d93cbb89226978d1ba745806977af82619bdd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 129259bf062d7eb460547eb66ee30a83
c340a86ed2c1b2b508c6b21ca21dd6cfd8afc815
753d90d0ee7702f263d9970d624633bf1f5a73d7dc792e3ee073eb961967c126
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 129259bf062d7eb460547eb66ee30a83
c340a86ed2c1b2b508c6b21ca21dd6cfd8afc815
753d90d0ee7702f263d9970d624633bf1f5a73d7dc792e3ee073eb961967c126
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/rtv/012301112346000/amp4ads-v0.mjs
172.217.21.161200 OK 62 kB URL HTTP/2 cdn.ampproject.org/rtv/012301112346000/amp4ads-v0.mjs
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (65008)
Hash 27cf438fb43d91ae188ec660779545d6
8b9a4cafe884163806af638d24d38b3d3ebc9a4b
fbad1bda779d108b137b7ef98564a9538f866d3c20208c5c3f59f30be33e43ad
GET /rtv/012301112346000/amp4ads-v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.5.ua/
Connection: keep-alive
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 61771
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:11:05 GMT
expires: Tue, 23 Jan 2024 18:11:05 GMT
cache-control: public, max-age=31536000
etag: "004684fcaffa7679"
content-type: text/javascript; charset=UTF-8
age: 382604
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.gravitec.net/modules/0.bundle.js
45.133.44.4200 OK 3.3 kB URL HTTP/2 cdn.gravitec.net/modules/0.bundle.js
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (9552), with no line terminators
Hash 8d9027dd4e8af5475a8cf9439cb5a519
8977253257e1e3d6f6c5a4521a7b233889190b7e
4994ff2ec114b0199ac0792bad67b4940de816711ca55ba44955b53ff77f606a
GET /modules/0.bundle.js HTTP/1.1
Host: cdn.gravitec.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.5.ua/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:49 GMT
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Wed, 02 Feb 2022 09:01:35 GMT
etag: W/"61fa486f-2550"
expires: Wed, 02 Feb 2022 09:06:29 GMT
cache-control: max-age=10
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-proxy-cache: HIT
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301112346000/v0/amp-analytics-0.1.mjs
172.217.21.161200 OK 29 kB URL HTTP/2 cdn.ampproject.org/rtv/012301112346000/v0/amp-analytics-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (65534)
Hash 7c4e76629bf5f57043e927954d19a19d
a144b16ad4d7168628eaed4f4b26e00a8f4364e3
310354d1c8f1db61fdfb182e107c8eb8a2e7986d1f4e95a2664df2cbdc1f7ccf
GET /rtv/012301112346000/v0/amp-analytics-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.5.ua/
Connection: keep-alive
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 28839
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:11:05 GMT
expires: Tue, 23 Jan 2024 18:11:05 GMT
cache-control: public, max-age=31536000
etag: "22d781f17bba60c1"
content-type: text/javascript; charset=UTF-8
age: 382604
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301112346000/v0/amp-form-0.1.mjs
172.217.21.161200 OK 13 kB URL HTTP/2 cdn.ampproject.org/rtv/012301112346000/v0/amp-form-0.1.mjs
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (41068)
Hash dac0049d10fef1c315153ac07254ffda
6282a0a8727d76cb0fe8267c7f1aac6646302ebc
e7d78a90fc0d890bd6da55f94658d31a587cca0247d81364b7a39a7f142772d1
GET /rtv/012301112346000/v0/amp-form-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.5.ua/
Connection: keep-alive
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12955
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:11:08 GMT
expires: Tue, 23 Jan 2024 18:11:08 GMT
cache-control: public, max-age=31536000
etag: "ba03cd6134fdf15c"
content-type: text/javascript; charset=UTF-8
age: 382601
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.ampproject.org/rtv/012301112346000/v0/amp-fit-text-0.1.mjs
172.217.21.161200 OK 1.9 kB URL HTTP/2 cdn.ampproject.org/rtv/012301112346000/v0/amp-fit-text-0.1.mjs
IP 172.217.21.161:0
File type ASCII text, with very long lines (5021)
Hash 7fe5c160dceb250b352d5e11b7586036
0903f40a74a5805f6391a371509369de8e2e1c50
eaec033417fdbf02ec62fc0bf45d0bee3538e3e1722660a312cbe3e4dd60068f
GET /rtv/012301112346000/v0/amp-fit-text-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.5.ua/
Connection: keep-alive
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1907
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:11:08 GMT
expires: Tue, 23 Jan 2024 18:11:08 GMT
cache-control: public, max-age=31536000
etag: "5788572ff662ddbc"
content-type: text/javascript; charset=UTF-8
age: 382601
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 129259bf062d7eb460547eb66ee30a83
c340a86ed2c1b2b508c6b21ca21dd6cfd8afc815
753d90d0ee7702f263d9970d624633bf1f5a73d7dc792e3ee073eb961967c126
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/drt/s?v=r20120211
142.250.74.66200 OK 145 B URL HTTP/2 googleads.g.doubleclick.net/pagead/drt/s?v=r20120211
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 92235b51835ea17fa6d313a73f3c2b8f
1e310139fd2be77b54f39c7c64e1616fd35785ad
2cf3e738572a24733a96c3be1d798e95e2bff434d37d6f28cde31ce53df8e333
GET /pagead/drt/s?v=r20120211 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://40805b8f63b13a272eae36a20727aa3b.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 145
x-xss-protection: 0
date: Sat, 28 Jan 2023 04:06:28 GMT
cache-control: public, max-age=3600
content-type: text/html; charset=UTF-8
age: 1282
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash d66bc4ab2a1aab92265bddd7dee05447
8e0918134554c68865a29f8d0b3dc1d92b9ae56a
30921e6ef4983a2ae6c0ed4063a419a13804ba0c941c01f846c782083d786544
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 04:27:50 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Wed, 01 Feb 2023 02:27:57 GMT
ETag: "8e0918134554c68865a29f8d0b3dc1d92b9ae56a"
Last-Modified: Sat, 28 Jan 2023 02:27:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 406
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7906fa569ecfb4ee-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
142.250.74.35200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: null
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 10:25:03 GMT
expires: Mon, 22 Jan 2024 10:25:03 GMT
cache-control: public, max-age=31536000
age: 496967
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
142.250.74.35200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 24408, version 1.0\012- data
Hash efee2d080d7bebdd2e0aeb2e030813a0
f8d38f9f9584e48c2e469877ebd94232265585f1
bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0
GET /s/lato/v23/S6u8w4BMUTPHjxsAXC-q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: null
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:31 GMT
expires: Fri, 26 Jan 2024 21:48:31 GMT
cache-control: public, max-age=31536000
age: 110359
last-modified: Tue, 26 Apr 2022 15:50:25 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.gravitec.net/sw/worker.js
45.133.44.4200 OK 9.1 kB URL HTTP/2 cdn.gravitec.net/sw/worker.js
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (34324), with no line terminators
Hash 45537fed9436a9a30ae378adfb62bb30
f3283c4e1be7b109e92b305a4d33223933cadb92
d99c72cb1918564222de0327b6e669b849898e82f750c9da718d16ab56eec323
GET /sw/worker.js HTTP/1.1
Host: cdn.gravitec.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:50 GMT
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Wed, 02 Feb 2022 09:01:35 GMT
etag: W/"61fa486f-8623"
expires: Wed, 02 Feb 2022 09:06:29 GMT
cache-control: max-age=10
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-proxy-cache: HIT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash af1c521d29c662e208d80836c19fa58a
64e18dcf8f3ea43f6aeb1c66299bd37121cdfe14
57fe9c6dbb637c6090c7110234fb9d3aadb75850d6d5ed5c668376ebd121c1f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/dynamic/5/337404754/3582561682241264069_7553970770884753310.jpeg
142.250.74.134200 OK 97 kB URL HTTP/2 static.doubleclick.net/dynamic/5/337404754/3582561682241264069_7553970770884753310.jpeg
IP 142.250.74.134:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=3], baseline, precision 8, 800x600, components 3\012- data
Hash 68985a9c520069b0370b5508a93ec2c8
7a8230858dbe946a3005e5c16dd0b7370a781600
54989950e80ebd237683c3407cbc7a1d1abb040e241b8e9dcfbab7dbb2755f82
GET /dynamic/5/337404754/3582561682241264069_7553970770884753310.jpeg HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 97111
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 22 Jan 2023 09:10:53 GMT
expires: Mon, 22 Jan 2024 09:10:53 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Jun 2022 16:19:58 GMT
content-type: image/jpeg
age: 501417
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash af1c521d29c662e208d80836c19fa58a
64e18dcf8f3ea43f6aeb1c66299bd37121cdfe14
57fe9c6dbb637c6090c7110234fb9d3aadb75850d6d5ed5c668376ebd121c1f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsuH42LDT9EL889IuqFaOVBtMLB0-V9uCYUt8NxIoawzMkqvUaNphL-4bBy2OGf8_EEgpU57B0m8H_0VDTpWe3dhrcholI_Zavc5-JuiGOFD1Scg4agHCfvqJv5nBvTvAE2v2zmFfg&sai=AMfl-YQe8_4yIb5mtoA77EYkyYWNvNI-UBcPsknyx_nrmkh8KIqj5SdE_De9Lb1pltaa-Ey6Bxoi1Dn6q4esqdoV9mnGysl-qtPkqGTeopPT1Nu0NQoVgZxJTYzqNTHREhu4Ams52rH65ugnnMldoVY&sig=Cg0ArKJSzOlqQgzC7_8OEAE&cid=CAQSSwDUE5ymwcKyP3h8W89Muk4TR4RoAAJxBoxjJgc19GO4G3s-qlt0Xo9u4iGCt4VzFW1i1i6mJy2j4uuwzk-KCBdt_b6ErnL2_S9NEBgBIBM&id=lidar2&mcvt=1007&p=528,835,1128,1135&mtos=0,0,1007,1007,1007&tos=0,0,1007,0,0&v=20230125&bin=7&avms=nio&bs=0,0&mc=0.51&if=1&vu=1&app=0&itpl=2&adk=2279244755&rs=4&la=0&cr=0&vs=4&r=v&rst=1674880070772&rpt=305&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0
142.250.74.130200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsuH42LDT9EL889IuqFaOVBtMLB0-V9uCYUt8NxIoawzMkqvUaNphL-4bBy2OGf8_EEgpU57B0m8H_0VDTpWe3dhrcholI_Zavc5-JuiGOFD1Scg4agHCfvqJv5nBvTvAE2v2zmFfg&sai=AMfl-YQe8_4yIb5mtoA77EYkyYWNvNI-UBcPsknyx_nrmkh8KIqj5SdE_De9Lb1pltaa-Ey6Bxoi1Dn6q4esqdoV9mnGysl-qtPkqGTeopPT1Nu0NQoVgZxJTYzqNTHREhu4Ams52rH65ugnnMldoVY&sig=Cg0ArKJSzOlqQgzC7_8OEAE&cid=CAQSSwDUE5ymwcKyP3h8W89Muk4TR4RoAAJxBoxjJgc19GO4G3s-qlt0Xo9u4iGCt4VzFW1i1i6mJy2j4uuwzk-KCBdt_b6ErnL2_S9NEBgBIBM&id=lidar2&mcvt=1007&p=528,835,1128,1135&mtos=0,0,1007,1007,1007&tos=0,0,1007,0,0&v=20230125&bin=7&avms=nio&bs=0,0&mc=0.51&if=1&vu=1&app=0&itpl=2&adk=2279244755&rs=4&la=0&cr=0&vs=4&r=v&rst=1674880070772&rpt=305&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0
IP 142.250.74.130:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsuH42LDT9EL889IuqFaOVBtMLB0-V9uCYUt8NxIoawzMkqvUaNphL-4bBy2OGf8_EEgpU57B0m8H_0VDTpWe3dhrcholI_Zavc5-JuiGOFD1Scg4agHCfvqJv5nBvTvAE2v2zmFfg&sai=AMfl-YQe8_4yIb5mtoA77EYkyYWNvNI-UBcPsknyx_nrmkh8KIqj5SdE_De9Lb1pltaa-Ey6Bxoi1Dn6q4esqdoV9mnGysl-qtPkqGTeopPT1Nu0NQoVgZxJTYzqNTHREhu4Ams52rH65ugnnMldoVY&sig=Cg0ArKJSzOlqQgzC7_8OEAE&cid=CAQSSwDUE5ymwcKyP3h8W89Muk4TR4RoAAJxBoxjJgc19GO4G3s-qlt0Xo9u4iGCt4VzFW1i1i6mJy2j4uuwzk-KCBdt_b6ErnL2_S9NEBgBIBM&id=lidar2&mcvt=1007&p=528,835,1128,1135&mtos=0,0,1007,1007,1007&tos=0,0,1007,0,0&v=20230125&bin=7&avms=nio&bs=0,0&mc=0.51&if=1&vu=1&app=0&itpl=2&adk=2279244755&rs=4&la=0&cr=0&vs=4&r=v&rst=1674880070772&rpt=305&isd=0&lsd=0&met=mue&wmsd=0&pbe=0&vae=0&spb=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://40805b8f63b13a272eae36a20727aa3b.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Sat, 28 Jan 2023 04:27:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=156813
23.38.200.201200 OK 5.6 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/user_sync.html?kdntuid=1&p=156813
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (15889), with no line terminators
Hash 18a6bc0e051c0767f814f63ff07e65f9
8fbe4eb399d8501b90276723d38c9ffb4ab483fa
26341482a8d6c8384b2cb91aba95833ac2002bd284ff690adbd2009bf76cb95b
GET /AdServer/js/user_sync.html?kdntuid=1&p=156813 HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 06:36:49 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 5554
content-type: text/html
cache-control: max-age=43255
expires: Sat, 28 Jan 2023 16:28:46 GMT
date: Sat, 28 Jan 2023 04:27:51 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 0aa389b0fe1adcb088fb1ab09633fde4
0c899314e55e2ecff3cf596674d1f1a847595b73
fef0925940dfa150d2c2976726d52eff825debba57408b324f25c340ae9b0ab9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1248
Cache-Control: max-age=114491
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:51 GMT
Etag: "63d3bba2-13a"
Expires: Sun, 29 Jan 2023 12:16:02 GMT
Last-Modified: Fri, 27 Jan 2023 11:55:14 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 314
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4fed69565ceab3f7d13caae0921dcbc7
6619cd41cc183cbebd9eb0de90105bd7437fd8a3
06339124aa4a93d8811614cac0418fdbdc60cad00afc74ad798e257d10990e90
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "06339124AA4A93D8811614CAC0418FDBDC60CAD00AFC74AD798E257D10990E90"
Last-Modified: Wed, 25 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9152
Expires: Sat, 28 Jan 2023 07:00:23 GMT
Date: Sat, 28 Jan 2023 04:27:51 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 0aa389b0fe1adcb088fb1ab09633fde4
0c899314e55e2ecff3cf596674d1f1a847595b73
fef0925940dfa150d2c2976726d52eff825debba57408b324f25c340ae9b0ab9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1248
Cache-Control: max-age=114491
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:51 GMT
Etag: "63d3bba2-13a"
Expires: Sun, 29 Jan 2023 12:16:02 GMT
Last-Modified: Fri, 27 Jan 2023 11:55:14 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 314
eus.rubiconproject.com/usync.html
104.88.9.101200 OK 233 B URL HTTP/1.1 eus.rubiconproject.com/usync.html
IP 104.88.9.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6220919f0a2b24a12a281ea8b891ecf6
759111c360edc6df73ed10aaaa212cb22c47ce0d
030c6e199782fb1908f6f89d3cd41950fd3ae0830c5020ba9ed617111bacd180
GET /usync.html HTTP/1.1
Host: eus.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 02 Nov 2022 02:30:44 GMT
ETag: "403b9-119-5ec73a0a33d00"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 233
Content-Type: text/html; charset=UTF-8
Date: Sat, 28 Jan 2023 04:27:51 GMT
Connection: keep-alive
Vary: Accept-Encoding
csync.loopme.me/?pubid=11378&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_109}&redirect=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Da%26ep%3D319130%26extuid%3D%7Bviewer_token%7D
35.214.223.115307 Temporary Redirect 0 B URL HTTP/2 csync.loopme.me/?pubid=11378&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_109}&redirect=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Da%26ep%3D319130%26extuid%3D%7Bviewer_token%7D
IP 35.214.223.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?pubid=11378&gdpr=${GDPR}&gdpr_consent=${GDPR_CONSENT_109}&redirect=https%3A%2F%2Fsync.adtelligent.com%2Fcsync%3Ft%3Da%26ep%3D319130%26extuid%3D%7Bviewer_token%7D HTTP/1.1
Host: csync.loopme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Cookie: viewer_token=a507eddd-366b-42b0-bad6-870f5813e7a1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
set-cookie: viewer_token=44480d40-ec4d-440b-9196-bc04dc4a37ce; path=/; domain=csync.loopme.me; secure; HttpOnly; Expires=Fri, 28-Apr-2023 04:27:51 GMT; SameSite=None
location: https://sync.adtelligent.com/csync?t=a&ep=319130&extuid=44480d40-ec4d-440b-9196-bc04dc4a37ce&gdpr_consent=${GDPR_CONSENT_109}&gdpr=${GDPR}
content-length: 0
date: Sat, 28 Jan 2023 04:27:51 GMT
server: _
X-Firefox-Spdy: h2
id5-sync.com/api/config/prebid
162.19.138.83200 135 B URL HTTP/1.1 id5-sync.com/api/config/prebid
IP 162.19.138.83:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5f2f8115045ff1eadf2c6a71ee4c9841
827c34f8424aa2a1f3c809483904314a00326c3e
f2a8720de45d6e2afa1037156d17e6b24e05d98b9f3ffb06ea6dbd8faafb3297
POST /api/config/prebid HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 121
Origin: https://www.5.ua
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.5.ua/
Connection: keep-alive
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.5.ua
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Sat, 28 Jan 2023 04:27:51 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.5.ua%2F&domain=www.5.ua&cw=1&lsw=1
178.250.2.146200 OK 10 kB URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.5.ua%2F&domain=www.5.ua&cw=1&lsw=1
IP 178.250.2.146:0
File type JSON data\012- , ASCII text, with very long lines (18573)
Hash 8351916d61312e783759c836aa8ef922
e950a297324cf0be686c4c73868963696be35ee6
ed852c2a20c6f2daff061e6dd9b6420845dd086488aec82bb913603544d3404d
OPTIONS /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.5.ua%2F&domain=www.5.ua&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.5.ua/
Origin: https://www.5.ua
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:51 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: GET
access-control-allow-origin: https://www.5.ua
server-processing-duration-in-ticks: 374806
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.5.ua%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F
104.18.33.19302 Found 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.5.ua%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F
IP 104.18.33.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch?d=https%3A%2F%2Fwww.5.ua%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js-sec.indexww.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 28 Jan 2023 04:27:52 GMT
content-length: 0
location: /usermatch?d=https%3A%2F%2Fwww.5.ua%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
cf-ray: 7906fa621b6fb52d-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y9SkSI0uzSLcCR.bJ5j7NwAA; Path=/; Domain=casalemedia.com; Expires=Sun, 28 Jan 2024 04:27:52 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=673; Path=/; Domain=casalemedia.com; Expires=Fri, 28 Apr 2023 04:27:52 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=673; Path=/; Domain=casalemedia.com; Expires=Fri, 28 Apr 2023 04:27:52 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PAB%2BrhIxoWbEIVMxVKULsbDndlpRUNMoZOZ2lPAS7mB92mo51XjFt%2B9TyhZSWE1c7e7llYEKpvXfzZvyThR4xK3p749v3Fx0MOaHZ6NZSLHXL7XHB0fxS2ixV%2BYIgT6%2FTCqlNFv9wQ00og%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
185.64.190.78200 OK 60 B URL HTTP/2 image6.pubmatic.com/AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB
IP 185.64.190.78:0
File type ASCII text, with no line terminators
Hash e6416e13ffea6487be9a2779224c5996
b3b523a3c3cc70462033675fd7aa2cbfdae1e530
a30d98061c42528c850aae09b2a91ea07a84857783c7e7f4031d4df77f7b6ebd
GET /AdServer/UCookieSetPug?oid=2&cb=PubMatic._uidCB HTTP/1.1
Host: image6.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=UTF-8
expires: Thu, 27 Apr 2023 21:08:38 GMT
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
date: Sat, 28 Jan 2023 04:27:51 GMT
content-length: 60
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 492d03b6c1a0e73fb127623d0e1618d3
b162afe517d930681f78a5435e4a698c54b552c5
acc6d55af7b0b68b0dab453548667f030e4d20a239a74af40555a357ef9603eb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ACC6D55AF7B0B68B0DAB453548667F030E4D20A239A74AF40555A357EF9603EB"
Last-Modified: Wed, 25 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8966
Expires: Sat, 28 Jan 2023 06:57:18 GMT
Date: Sat, 28 Jan 2023 04:27:52 GMT
Connection: keep-alive
lb.eu-1-id5-sync.com/lb/v1
141.95.98.64200 33 B URL HTTP/1.1 lb.eu-1-id5-sync.com/lb/v1
IP 141.95.98.64:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 5a4217e92424497b6e3a4390327706ef
64db7e2fb017357a8bf7c203717269cb50bb73dc
51c601308bb60e2da6abb1fcfd73e12dc0f68e8363b91c5169ec4e703e4a9013
GET /lb/v1 HTTP/1.1
Host: lb.eu-1-id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.5.ua
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.5.ua/
Connection: keep-alive
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.5.ua
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Sat, 28 Jan 2023 04:27:52 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
sync.adtelligent.com/csync?t=a&ep=319130&extuid=44480d40-ec4d-440b-9196-bc04dc4a37ce&gdpr_consent=${GDPR_CONSENT_109}&gdpr=${GDPR}
62.149.1.122200 OK 0 B URL HTTP/1.1 sync.adtelligent.com/csync?t=a&ep=319130&extuid=44480d40-ec4d-440b-9196-bc04dc4a37ce&gdpr_consent=${GDPR_CONSENT_109}&gdpr=${GDPR}
IP 62.149.1.122:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csync?t=a&ep=319130&extuid=44480d40-ec4d-440b-9196-bc04dc4a37ce&gdpr_consent=${GDPR_CONSENT_109}&gdpr=${GDPR} HTTP/1.1
Host: sync.adtelligent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.5.ua/
Connection: keep-alive
Cookie: vmuid=551cd6bc7463d578; a307558=b54a0df7-45e9-4eee-b209-f5480f9ebea4; a319130=a507eddd-366b-42b0-bad6-870f5813e7a1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Adtelligent
Date: Sat, 28 Jan 2023 04:27:51 GMT
Content-Length: 0
Etag: 551cd6bc7463d578
Set-Cookie: vmuid=551cd6bc7463d578; expires=Fri, 31 Mar 2023 04:27:52 GMT; domain=.adtelligent.com; path=/; secure; SameSite=None
a319130=44480d40-ec4d-440b-9196-bc04dc4a37ce; expires=Fri, 31 Mar 2023 04:27:52 GMT; domain=.adtelligent.com; path=/; secure; SameSite=None
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 71b0a03676981d79186f466949fcfd6a
9e0b460116fa3507de28e76759ddb59b2b66ed29
5c96690d415544373a4aa5255ad2b51bb4cd2999430cacac6fd432e1d7278678
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5610
Cache-Control: max-age=87161
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:52 GMT
Etag: "63d33fd7-117"
Expires: Sun, 29 Jan 2023 04:40:33 GMT
Last-Modified: Fri, 27 Jan 2023 03:07:03 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.5.ua%2F&domain=www.5.ua&cw=1&lsw=1
178.250.2.146200 OK 432 B URL HTTP/2 gum.criteo.com/sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.5.ua%2F&domain=www.5.ua&cw=1&lsw=1
IP 178.250.2.146:0
Hash b1c827c7da719e0251e0bfb1fa879ddc
6925942b5dc3ed8c4663e4886d431b2b74987edc
ac0195b544c430e697f30b196f42c78271184ab11c28c1a5b4a2962c4f16cdfe
GET /sid/json?origin=prebid&topUrl=https%3A%2F%2Fwww.5.ua%2F&domain=www.5.ua&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.5.ua
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.5.ua/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:51 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.5.ua
server-processing-duration-in-ticks: 1027964
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/nqT2YDGJ6Wo
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/nqT2YDGJ6Wo
IP 142.250.74.131:0
Hash 099f9facb3b0195e1bae4be26d02fcae
00064dd4caf7f9c3a4007976e4a48e7f9264e18e
b25259eaccba2fe7d4080657cf902ef7585792bbe18018ac57721224b84c872a
POST /s/gts1d4/nqT2YDGJ6Wo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:52 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tr.blismedia.com/v1/api/sync/rubicon
34.96.105.8204 No Content 0 B URL HTTP/2 tr.blismedia.com/v1/api/sync/rubicon
IP 34.96.105.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/api/sync/rubicon HTTP/1.1
Host: tr.blismedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
set-cookie: b=63D4A448BCB27D048F247E2DBLIS;Version=1;Domain=blismedia.com;Path=/;Max-Age=31540000;SameSite=None;Secure
date: Sat, 28 Jan 2023 04:27:52 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
id5-sync.com/g/v2/692.json
162.19.138.83200 216 B URL HTTP/1.1 id5-sync.com/g/v2/692.json
IP 162.19.138.83:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9d1cbba5d518954772981996d9949fd3
89bf770748b989a88fdfc357285947777193bbad
e85dd3dffd84d0a2505e7e31006b96033cf8bacd81349fad465f1cfc4ccd857c
POST /g/v2/692.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 356
Origin: https://www.5.ua
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.5.ua/
Connection: keep-alive
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://www.5.ua
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Sat, 28 Jan 2023 04:27:52 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
pixel.rubiconproject.com/exchange/sync.php?p=a9us
69.173.144.139204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/exchange/sync.php?p=a9us
IP 69.173.144.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /exchange/sync.php?p=a9us HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 37b22a0c36bd84993dd2cda4a5e04b1d
Content-Type: image/gif
ocsp.pki.goog/s/gts1d4/nqT2YDGJ6Wo
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/nqT2YDGJ6Wo
IP 142.250.74.131:0
Hash 099f9facb3b0195e1bae4be26d02fcae
00064dd4caf7f9c3a4007976e4a48e7f9264e18e
b25259eaccba2fe7d4080657cf902ef7585792bbe18018ac57721224b84c872a
POST /s/gts1d4/nqT2YDGJ6Wo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 04:27:52 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3D3CF359C4-7927-41CF-8F3E-5D2487C81E1F%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
23.38.200.201200 OK 953 B URL HTTP/2 ads.pubmatic.com/AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3D3CF359C4-7927-41CF-8F3E-5D2487C81E1F%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID
IP 23.38.200.201:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (1720), with no line terminators
Hash 499546dec064c08e4c7c354bab138f7f
f155d071d071e4e7c1d45e22943915df9d9f2b75
1a9219bc3962479cfa6ff0ca64e2f810aab8b816ae4f937b252d0ca044d693b4
GET /AdServer/js/cl_partner.html?pid=2&gdpr=0&gdpr_consent=&rdu=https%3A%2F%2Fsimage4.pubmatic.com%2FAdServer%2FSPug%3Fo%3D3%26u%3D3CF359C4-7927-41CF-8F3E-5D2487C81E1F%26vcode%3Dbz0yJnR5cGU9MSZjb2RlPTM2MiZ0bD00MzIwMA%3D%3D%26piggybackCookie%3Duid%3A%23%23P_UID HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://simage4.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 17 Aug 2016 09:36:32 GMT
etag: "fa18f0-6b8-53a413358bd01"
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 953
content-type: text/html; charset=UTF-8
cache-control: max-age=164201
expires: Mon, 30 Jan 2023 02:04:33 GMT
date: Sat, 28 Jan 2023 04:27:52 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=$UID
185.89.210.244307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=$UID
IP 185.89.210.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 28 Jan 2023 04:27:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D564534%26nid%3D5466%26put%3D%24UID
AN-X-Request-Uuid: b9ce13e1-700b-4c9e-b42c-ede0145d198e
Set-Cookie: uuid2=893637965013131275; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 28-Apr-2023 04:27:52 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 946.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
token.rubiconproject.com/token?pid=25470
69.173.144.165204 No Content 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=25470
IP 69.173.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=25470 HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 78e3bdce5107450057bade54d54a0a7e
aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=
54.239.33.159302 Found 0 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=
IP 54.239.33.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id= HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Sat, 28 Jan 2023 04:27:52 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: 54G5AEZM8HCMKEPE4P04
Set-Cookie: ad-id=Aw0l_ll8lkamkHB-Hd0ge0w|t; Domain=.amazon-adsystem.com; Expires=Sun, 01-Oct-2023 04:27:52 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D564534%26nid%3D5466%26put%3D%24UID
185.89.210.244302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D564534%26nid%3D5466%26put%3D%24UID
IP 185.89.210.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fpixel.rubiconproject.com%2Ftap.php%3Fv%3D564534%26nid%3D5466%26put%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Sat, 28 Jan 2023 04:27:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=0
AN-X-Request-Uuid: 10dca707-6b39-4bdc-9d6c-d26608a16eaa
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 946.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=0
69.173.144.139204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=564534&nid=5466&put=0
IP 69.173.144.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=564534&nid=5466&put=0 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 37b22a0c36bd84993dd2cda4a5e04b1d
Content-Type: image/gif
aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=&dcc=t
54.239.33.159200 OK 43 B URL HTTP/1.1 aax-eu.amazon-adsystem.com/s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=&dcc=t
IP 54.239.33.159:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6851dbf491ae442da3314f19e8aff085
ecfec27263608c4ae7cd4f8e0cebb1b061df2ac3
c21e2c1246fe45a6750ae6208db2b5965ff6ed63eb80d2ecec3be9c83813428e
GET /s/dcm?pid=a38a8ddf-19a7-4ab8-ba05-0a61de92a7e5&id=&dcc=t HTTP/1.1
Host: aax-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Sat, 28 Jan 2023 04:27:52 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: XMH72V93HAYBV5NGJR8Q
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
pixel.mathtag.com/sync/img?redir=https%3A%2F%2Ftoken.rubiconproject.com%2Ftoken%3Fpid%3D35912%26puid%3D%5BMM_UUID%5D
23.38.200.207302 Moved Temporarily 0 B URL HTTP/1.1 pixel.mathtag.com/sync/img?redir=https%3A%2F%2Ftoken.rubiconproject.com%2Ftoken%3Fpid%3D35912%26puid%3D%5BMM_UUID%5D
IP 23.38.200.207:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/img?redir=https%3A%2F%2Ftoken.rubiconproject.com%2Ftoken%3Fpid%3D35912%26puid%3D%5BMM_UUID%5D HTTP/1.1
Host: pixel.mathtag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: image/gif
Content-Length: 0
Access-Control-Allow-Origin: *
Server: MT3 404 ce67235 master iad-pixel-x7 config:1.0.0
Cache-Control: no-cache
P3P: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
Location: https://token.rubiconproject.com/token?pid=35912&puid=ea0a63d4-a448-4100-8249-635e05514e71
Expires: Sat, 28 Jan 2023 04:27:51 GMT
Date: Sat, 28 Jan 2023 04:27:52 GMT
Connection: keep-alive
Set-Cookie: uuid=ea0a63d4-a448-4100-8249-635e05514e71; domain=.mathtag.com; path=/; expires=Sun, 25-Feb-2024 04:27:52 GMT; SameSite=None; Secure
token.rubiconproject.com/token?pid=35912&puid=ea0a63d4-a448-4100-8249-635e05514e71
69.173.144.165204 No Content 0 B URL HTTP/1.1 token.rubiconproject.com/token?pid=35912&puid=ea0a63d4-a448-4100-8249-635e05514e71
IP 69.173.144.165:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token?pid=35912&puid=ea0a63d4-a448-4100-8249-635e05514e71 HTTP/1.1
Host: token.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 78e3bdce5107450057bade54d54a0a7e
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 77b7a0dac027b446e3ec9ae2d8b19258
676dcd5f2c772dc3fb283e1029828657f7539b6d
070e3ca1ab2417dfd1b60a5c77a6a189ef0c04bfc928549720632f035a3b6129
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 28 Jan 2023 04:27:52 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 27 Jan 2023 20:05:55 GMT
Expires: Sat, 28 Jan 2023 20:05:55 GMT
ETag: "676dcd5f2c772dc3fb283e1029828657f7539b6d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
match.deepintent.com/usersync/143
8.18.47.7200 OK 0 B URL HTTP/2 match.deepintent.com/usersync/143
IP 8.18.47.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usersync/143 HTTP/1.1
Host: match.deepintent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Sat, 28 Jan 2023 04:27:51 GMT
server: b
X-Firefox-Spdy: h2
s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=
52.46.130.91302 Found 0 B URL HTTP/1.1 s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=
IP 52.46.130.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id= HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eus.rubiconproject.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Sat, 28 Jan 2023 04:27:52 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: N3K3GP8VCRA3J4RT496Y
Set-Cookie: ad-id=AxU28UeGgkl5ttYkDMxzKQE|t; Domain=.amazon-adsystem.com; Expires=Sun, 01-Oct-2023 04:27:52 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&dcc=t
52.46.130.91200 OK 43 B URL HTTP/1.1 s.amazon-adsystem.com/dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&dcc=t
IP 52.46.130.91:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6851dbf491ae442da3314f19e8aff085
ecfec27263608c4ae7cd4f8e0cebb1b061df2ac3
c21e2c1246fe45a6750ae6208db2b5965ff6ed63eb80d2ecec3be9c83813428e
GET /dcm?pid=50cd21b7-d8d7-4615-9fb9-a2be831f8488&id=&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eus.rubiconproject.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Sat, 28 Jan 2023 04:27:52 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: VAJ03FEK5T3GYHE80CCG
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
104.18.3.230200 OK 0 B URL HTTP/2 www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
IP 104.18.3.230:0
GET /suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.0.33
cf-cache-status: DYNAMIC
set-cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; path=/; samesite=Lax; HttpOnly
__cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=; path=/; expires=Sat, 28-Jan-23 04:57:46 GMT; domain=.5.ua; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7906fa3df918b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.5.ua/js/core/jquery-ui-new.min.js?v=1485440735
104.18.3.230200 OK 0 B URL HTTP/2 www.5.ua/js/core/jquery-ui-new.min.js?v=1485440735
IP 104.18.3.230:0
GET /js/core/jquery-ui-new.min.js?v=1485440735 HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; __cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: application/javascript
last-modified: Wed, 06 May 2020 13:37:12 GMT
vary: Accept-Encoding
etag: W/"5eb2bd88-3e742"
expires: Sun, 28 Jan 2024 04:27:46 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 7234
server: cloudflare
cf-ray: 7906fa415aa3b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
simage4.pubmatic.com/AdServer/SPug?o=1&p=156813&sc=1&u=3CF359C4-7927-41CF-8F3E-5D2487C81E1F&rs=3&gdpr=0&gdpr_consent=&us_privacy=
198.47.127.20200 OK 0 B URL HTTP/2 simage4.pubmatic.com/AdServer/SPug?o=1&p=156813&sc=1&u=3CF359C4-7927-41CF-8F3E-5D2487C81E1F&rs=3&gdpr=0&gdpr_consent=&us_privacy=
IP 198.47.127.20:0
GET /AdServer/SPug?o=1&p=156813&sc=1&u=3CF359C4-7927-41CF-8F3E-5D2487C81E1F&rs=3&gdpr=0&gdpr_consent=&us_privacy= HTTP/1.1
Host: simage4.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.pubmatic.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 04:27:51 GMT
content-type: text/html; charset=utf-8
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.5.ua%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
104.18.33.19200 OK 0 B URL HTTP/2 ssum-sec.casalemedia.com/usermatch?d=https%3A%2F%2Fwww.5.ua%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1
IP 104.18.33.19:0
GET /usermatch?d=https%3A%2F%2Fwww.5.ua%2F&s=184674&cb=https%3A%2F%2Fcdn.indexww.com%2Fht%2Fhtw-pixel.gif%3F&C=1 HTTP/1.1
Host: ssum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://js-sec.indexww.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:52 GMT
content-type: text/html
cf-ray: 7906fa627b86b52d-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wD1oR6tZ7j1Q9TD0LgMKguFLTxydc8EG6%2FuxTqqL2CoNfDr04F7y%2BG3cUlH%2FMgvX2w%2BV22r53MzMY7Ddl%2Fc0cnCRRWiAhF%2BDDfGU5nhE2nQhaYA7A9dnqoTvAkiPSB66DyILfzGhABGXSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.5.ua/components/search/form.min.js?v=1593676928
104.18.3.230200 OK 0 B URL HTTP/2 www.5.ua/components/search/form.min.js?v=1593676928
IP 104.18.3.230:0
GET /components/search/form.min.js?v=1593676928 HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; __cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: application/javascript
last-modified: Thu, 02 Jul 2020 08:02:08 GMT
vary: Accept-Encoding
etag: W/"5efd9480-449"
expires: Sun, 28 Jan 2024 04:27:46 GMT
cache-control: public, max-age=31536000
cf-cache-status: HIT
server: cloudflare
cf-ray: 7906fa417ab5b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.5.ua/js/scripts.min.js?v=1617731876
104.18.3.230200 OK 0 B URL HTTP/2 www.5.ua/js/scripts.min.js?v=1617731876
IP 104.18.3.230:0
GET /js/scripts.min.js?v=1617731876 HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; __cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: application/javascript
last-modified: Tue, 06 Apr 2021 17:57:56 GMT
vary: Accept-Encoding
etag: W/"606ca124-5d42"
expires: Sun, 28 Jan 2024 04:27:46 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 7234
server: cloudflare
cf-ray: 7906fa416aa8b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.5.ua/js/core/head_js-modernizr.min.js
104.18.3.230200 OK 0 B URL HTTP/2 www.5.ua/js/core/head_js-modernizr.min.js
IP 104.18.3.230:0
GET /js/core/head_js-modernizr.min.js HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; __cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: application/javascript
last-modified: Wed, 06 May 2020 13:37:12 GMT
vary: Accept-Encoding
etag: W/"5eb2bd88-3f51"
expires: Sun, 28 Jan 2024 04:27:46 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
server: cloudflare
cf-ray: 7906fa414a8cb4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.gravitec.media/track.min.js
45.133.44.3200 OK 0 B URL HTTP/2 cdn.gravitec.media/track.min.js
IP 45.133.44.3:0
ASN #39572 DataWeb Global Group B.V.
GET /track.min.js HTTP/1.1
Host: cdn.gravitec.media
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:48 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Wed, 27 Nov 2019 14:51:46 GMT
etag: W/"5dde8d82-11d5"
cache-control: max-age=7776000
access-control-allow-origin: *
content-encoding: gzip
expires: Fri, 28 Apr 2023 04:27:48 GMT
vary: Accept-Encoding
x-proxy-cache: HIT
X-Firefox-Spdy: h2
www.5.ua/js/lazy-scripts.min.js?v=1593676928
104.18.3.230200 OK 0 B URL HTTP/2 www.5.ua/js/lazy-scripts.min.js?v=1593676928
IP 104.18.3.230:0
GET /js/lazy-scripts.min.js?v=1593676928 HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; __cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: application/javascript
last-modified: Thu, 20 Aug 2020 13:45:52 GMT
vary: Accept-Encoding
etag: W/"5f3e7e90-11e3"
expires: Sun, 28 Jan 2024 04:27:46 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 7234
server: cloudflare
cf-ray: 7906fa417ab4b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.gravitec.net/modules/1.bundle.js
45.133.44.4200 OK 0 B URL HTTP/2 cdn.gravitec.net/modules/1.bundle.js
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
GET /modules/1.bundle.js HTTP/1.1
Host: cdn.gravitec.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.5.ua/
Connection: keep-alive
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:49 GMT
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Wed, 02 Feb 2022 09:01:35 GMT
etag: W/"61fa486f-8092"
expires: Tue, 20 Dec 2022 09:05:37 GMT
cache-control: max-age=10
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-proxy-cache: HIT
X-Firefox-Spdy: h2
cdn.gravitec.net/storage/fc1fa553ef40bf21c0a94cc43f686f04/client.js
45.133.44.4200 OK 0 B URL HTTP/2 cdn.gravitec.net/storage/fc1fa553ef40bf21c0a94cc43f686f04/client.js
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
GET /storage/fc1fa553ef40bf21c0a94cc43f686f04/client.js HTTP/1.1
Host: cdn.gravitec.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Thu, 24 Nov 2022 09:35:19 GMT
etag: W/"637f3ad7-100fb"
expires: Thu, 24 Nov 2022 09:35:40 GMT
cache-control: max-age=10
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-proxy-cache: HIT
X-Firefox-Spdy: h2
www.5.ua/components/lightgallery/lightgallery.min.js?v=1484146995
104.18.3.230200 OK 0 B URL HTTP/2 www.5.ua/components/lightgallery/lightgallery.min.js?v=1484146995
IP 104.18.3.230:0
GET /components/lightgallery/lightgallery.min.js?v=1484146995 HTTP/1.1
Host: www.5.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/suspilstvo/reznikov-voroh-pochav-intensyvni-obstrily-pidpozdiliv-zsu-na-skhodi-ukrainska-armiia-daie-vidsich-rosiiskym-viiskam-269168.html
Cookie: _csrf-frontend=3d6ddc00c0d0175676ba0ddd77286ed915d46869ef6cd5682917c5d5f1e5fb4fa%3A2%3A%7Bi%3A0%3Bs%3A14%3A%22_csrf-frontend%22%3Bi%3A1%3Bs%3A32%3A%22ge26ICpqUjsOTAs4UjdlwTS7p91pDmQ7%22%3B%7D; __cf_bm=lSgL0r_ugIk7ouoQVouKBrEVOZfQLVe34kJaxD.qx.4-1674880066-0-AbHOK+XebTxkXYZqn88GW4HFC12ySqe2fEHKgmbADYAMOGpoAYGgoNZtIbKZ3FSE1HjEiEGYIexMiykibLbv+sM=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:46 GMT
content-type: application/javascript
last-modified: Wed, 06 May 2020 13:37:12 GMT
vary: Accept-Encoding
etag: W/"5eb2bd88-2043"
expires: Sun, 28 Jan 2024 04:27:46 GMT
cache-control: public, max-age=31536000
cf-cache-status: HIT
age: 7064
server: cloudflare
cf-ray: 7906fa415a98b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.gravitec.net/sw/worker.js
45.133.44.4200 OK 0 B URL HTTP/2 cdn.gravitec.net/sw/worker.js
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
GET /sw/worker.js HTTP/1.1
Host: cdn.gravitec.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:49 GMT
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Wed, 02 Feb 2022 09:01:35 GMT
etag: W/"61fa486f-8623"
expires: Wed, 02 Feb 2022 09:06:29 GMT
cache-control: max-age=10
access-control-allow-origin: *
content-encoding: gzip
vary: Accept-Encoding
x-proxy-cache: HIT
X-Firefox-Spdy: h2
js-sec.indexww.com/um/ixmatch.html
104.18.36.94200 OK 0 B URL HTTP/2 js-sec.indexww.com/um/ixmatch.html
IP 104.18.36.94:0
GET /um/ixmatch.html HTTP/1.1
Host: js-sec.indexww.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.5.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 04:27:51 GMT
content-type: text/html; charset=UTF-8
last-modified: Mon, 25 Jul 2022 19:18:19 GMT
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
cf-cache-status: HIT
age: 383
expires: Sat, 28 Jan 2023 08:27:51 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
server: cloudflare
cf-ray: 7906fa61acbe1c06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2