188.42.218.249/2449ebaf786359c18fde2f8237ddc7a9
188.42.218.249200 OK 1.1 kB URL HTTP/1.1 188.42.218.249/2449ebaf786359c18fde2f8237ddc7a9
IP 188.42.218.249:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (332)
Hash d27b3fedf10ce8b370014451fa0758f5
85560452de33ad218e35de184edfe13ae3f13b05
eefac3d633905ac67591fdb71c4f00290803092120b51f1726da606bde77d3ed
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /2449ebaf786359c18fde2f8237ddc7a9 HTTP/1.1
Host: 188.42.218.249
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: fasthttp
Date: Tue, 07 Feb 2023 12:10:23 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1102
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4866
Expires: Tue, 07 Feb 2023 13:31:29 GMT
Date: Tue, 07 Feb 2023 12:10:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12348
Expires: Tue, 07 Feb 2023 15:36:11 GMT
Date: Tue, 07 Feb 2023 12:10:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 07 Feb 2023 11:36:31 GMT
content-type: application/json
age: 2032
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20068
Expires: Tue, 07 Feb 2023 17:44:51 GMT
Date: Tue, 07 Feb 2023 12:10:23 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: hXxDWF/N3ruKygKOZOS6d4zy1YhspAu8W2zucOHVhpOCSm2hk7MMr9TgBqFzXqOLejqr7lcJRJJG6u2R9Dd98w==
x-amz-request-id: HWDVFDW2BEFXK0Z3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 07 Feb 2023 11:35:30 GMT
age: 2093
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
188.42.218.249/favicon.ico
188.42.218.249404 Not Found 9 B URL HTTP/1.1 188.42.218.249/favicon.ico
IP 188.42.218.249:0
File type ASCII text, with no line terminators
Hash 9e076f5885f5cc16a4b5aeb8de4adff5
475c848673a3f79fa778f01c2bd5a721d4c41707
e3ebaa16dd9d9b9fc107c42183fb6cf9d22927e1af03dbbdfa0ccc38e4e4ac31
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: 188.42.218.249
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.42.218.249/2449ebaf786359c18fde2f8237ddc7a9
HTTP/1.1 404 Not Found
Server: fasthttp
Date: Tue, 07 Feb 2023 12:10:23 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 9
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 12:10:23 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94200 OK 97 kB URL HTTP/1.1 188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62672), with no line terminators
Hash 0f276e1e55c23c6ec8d7be6b30b0a796
a09a2ed15e251a54facd793ebd04fa4a931c7685
aeca64a3d3855067ca87007869054068725d9f1cc26c54aae843063f45e28dc4
Analyzer Verdict Alert quad9 Sinkholed
GET /BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.42.218.249/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa1267; expires=Fri, 10 Mar 2023 12:10:23 GMT; path=/
420ca=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NTc3MTgyM30sXCJjYW1wYWlnbnNcIjp7XCIxMVwiOjE2NzU3NzE4MjN9LFwidGltZVwiOjE2NzU3NzE4MjN9In0.3g5e23OEMTSfm280QfbThPep30QMXV39LL3G9yFrRfU; expires=Tue, 17 Mar 2076 00:20:46 GMT; path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:23 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/lander/vayt--2-gugl/js/framework-35d22e9fce2190c9.js
188.225.73.94200 OK 45 kB URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/js/framework-35d22e9fce2190c9.js
IP 188.225.73.94:0
File type ASCII text, with very long lines (65196)
Hash 42ff5a236c2793df6146ebf14bd84f3c
c66cff5cd9fed363311f9bd388f80b03d370399e
9d7364104a2d238e2ac2287b0d912ace6f1dc466277998c3d97d80ad31264b9a
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/js/framework-35d22e9fce2190c9.js HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:23 GMT
Content-Type: application/javascript
Last-Modified: Sat, 04 Feb 2023 20:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63dec597-22739"
Expires: Fri, 17 Feb 2023 12:10:23 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:23 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/lander/vayt--2-gugl/css/a244efc8b9431c99.css
188.225.73.94200 OK 5.1 kB URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type ASCII text, with very long lines (24173)
Hash ec4ce25e321b5140dd6873045f0190a7
5a7605b22157b72ef89c3e40fc95acc28bcbb713
f829eef5017cc6f7fa40f3dbf350a3ce7199eed23cbf29027ae11c0d36f8a54f
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:23 GMT
Content-Type: text/css
Last-Modified: Sat, 04 Feb 2023 20:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63dec597-5e9d"
Expires: Fri, 17 Feb 2023 12:10:23 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
188.225.73.94/lander/vayt--2-gugl/css/d14ce6f619e710e8.css
188.225.73.94200 OK 32 kB URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/css/d14ce6f619e710e8.css
IP 188.225.73.94:0
File type Unicode text, UTF-8 text, with very long lines (52432)
Hash 5e085bbbb0312e3e2a297722ea6ce682
7467ee226c8e18db7f2bcca29ee90bcf9f69421c
3c36ef68a1a7b0cce7c1e0b5cbad65a338b4b1a54dd43b085b8b3b819da98ca6
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/css/d14ce6f619e710e8.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:23 GMT
Content-Type: text/css
Last-Modified: Sat, 04 Feb 2023 20:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63dec597-2c991"
Expires: Fri, 17 Feb 2023 12:10:23 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
188.225.73.94/lander/vayt--2-gugl/js/main-00bd903a04030f80.js
188.225.73.94200 OK 64 kB URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/js/main-00bd903a04030f80.js
IP 188.225.73.94:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e2a38804df6e1e7c47a57405addad2a6
2a44357fc5d62979833d88751b6d0b1ad878f89f
cb1515579a77c140b5803c43f37a9011876203f6f00cf10ff1e95a3e0d11f9c4
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/js/main-00bd903a04030f80.js HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:23 GMT
Content-Type: application/javascript
Last-Modified: Sat, 04 Feb 2023 20:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63dec597-34d4f"
Expires: Fri, 17 Feb 2023 12:10:23 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ad2d72821808ee5f77c0598fed0f8bd1
adcd92881d1c5ac3cca4687dc6347369240f4726
c7ce86611bf0b0063c0bcb2c6a6a4b85fe6be2d89e382b8907e8bbb2e1e5962d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 12:10:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ad2d72821808ee5f77c0598fed0f8bd1
adcd92881d1c5ac3cca4687dc6347369240f4726
c7ce86611bf0b0063c0bcb2c6a6a4b85fe6be2d89e382b8907e8bbb2e1e5962d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 12:10:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
188.225.73.94/lander/vayt--2-gugl/js/_app-0542401877689ae2.js
188.225.73.94200 OK 447 kB URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/js/_app-0542401877689ae2.js
IP 188.225.73.94:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 447 kB (446963 bytes)
Hash d98849df20780a287255612caff55145
50caa01689459341a20a27159647ead70be55842
d7a304f6f0174ccaa26e6570ede024e24363489e8c64100e313a2be3214fb820
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/js/_app-0542401877689ae2.js HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:24 GMT
Content-Type: application/javascript
Last-Modified: Sat, 04 Feb 2023 20:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63dec597-18373b"
Expires: Fri, 17 Feb 2023 12:10:24 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
188.225.73.94/lander/vayt--2-gugl/js/_ssgManifest.js
188.225.73.94200 OK 250 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/js/_ssgManifest.js
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash b0392704a9d28fc3bafa1435b51a677b
3a5444bc315f9811475596c0aa723290aefec219
8b1263d36f384a561250d61b94cfe6833c020cbfa1159fb161ef7531ba82b287
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/js/_ssgManifest.js HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:24 GMT
Content-Type: application/javascript
Content-Length: 250
Last-Modified: Sat, 04 Feb 2023 20:52:39 GMT
Connection: keep-alive
ETag: "63dec597-fa"
Expires: Fri, 17 Feb 2023 12:10:24 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
188.225.73.94/lander/vayt--2-gugl/js/edu-851c44b83ae8e6b7.js
188.225.73.94200 OK 2.8 kB URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/js/edu-851c44b83ae8e6b7.js
IP 188.225.73.94:0
File type ASCII text, with very long lines (9819), with no line terminators
Hash c6fba83dcf37927b5edce9ca315fb671
f59c88d5dec9bff5943d8d7f75214c19c842d35c
12e7982c844b5f40f6813d47b33057e617728325c4ad21baaca3e497a4527b12
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/js/edu-851c44b83ae8e6b7.js HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:24 GMT
Content-Type: application/javascript
Last-Modified: Sat, 04 Feb 2023 20:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63dec597-265b"
Expires: Fri, 17 Feb 2023 12:10:24 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
188.225.73.94/lander/vayt--2-gugl/js/email-decode.min.js
188.225.73.94200 OK 1.2 kB URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/js/email-decode.min.js
IP 188.225.73.94:0
File type HTML document, ASCII text, with very long lines (1228), with no line terminators
Hash 27db6d02c397c17d6c4b8290da3830f9
2718a743da363c8fad8e2706096aecdea2d4e89c
17a50e04066af45be95364f939988005fd0cb7bb6c9128f1e6a74018ce3db292
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/js/email-decode.min.js HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:24 GMT
Content-Type: application/javascript
Content-Length: 1228
Last-Modified: Sat, 04 Feb 2023 20:52:39 GMT
Connection: keep-alive
ETag: "63dec597-4cc"
Expires: Fri, 17 Feb 2023 12:10:24 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
188.225.73.94/lander/vayt--2-gugl/js/_buildManifest.js
188.225.73.94200 OK 2.0 kB URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/js/_buildManifest.js
IP 188.225.73.94:0
File type ASCII text, with very long lines (2044), with no line terminators
Hash f4bf3c2d317556b5c8f668c8db5ec1c9
6959073ff5ad5c730eef06716a6ca955214e455d
99e799308d83e535140cc9d205e62de9fabdf043220c28a41c544703e8753eb5
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/js/_buildManifest.js HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:24 GMT
Content-Type: application/javascript
Content-Length: 2044
Last-Modified: Sat, 04 Feb 2023 20:52:39 GMT
Connection: keep-alive
ETag: "63dec597-7fc"
Expires: Fri, 17 Feb 2023 12:10:24 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
188.225.73.94/lander/vayt--2-gugl/css/font-awesome.min.css
188.225.73.94200 OK 7.1 kB URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/css/font-awesome.min.css
IP 188.225.73.94:0
File type ASCII text, with very long lines (30837)
Hash 0ebb760c7d229fd1d2b3a63493306569
58961c039962ea4f5215caa2e0127a8658bcf847
18eecad8f04af6784d466cd2cad0337dea530bef457e6a7b3da473eea589b134
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/css/font-awesome.min.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/lander/vayt--2-gugl/css/d14ce6f619e710e8.css
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:24 GMT
Content-Type: text/css
Last-Modified: Sat, 04 Feb 2023 20:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63dec597-7918"
Expires: Fri, 17 Feb 2023 12:10:24 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
142.250.74.106200 OK 1.5 kB URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap
IP 142.250.74.106:0
Hash 7330c335e078c56c6715a2e730427c6d
9cc5176cca9530b473a15082a4aca40182b8ad79
b85e6bdcc7a5eb6a000fd95dbd395c82a0c4e67c91b3e6922685cf01ca8aa795
GET /css2?family=Montserrat:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://188.225.73.94/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 Feb 2023 12:10:24 GMT
date: Tue, 07 Feb 2023 12:10:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
188.225.73.94/lander/vayt--2-gugl/js/211-a7dea2f2a2028d15.js
188.225.73.94200 OK 148 kB URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/js/211-a7dea2f2a2028d15.js
IP 188.225.73.94:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 148 kB (148269 bytes)
Hash 590ba12536b477430837cd33211fe3f6
c308d99a05cdd513ea7c06d9e66f3a8138da514e
b3c570ec51a35766f54c88cfbf1534db10e8618655d67cf3d910c37422545a3f
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/js/211-a7dea2f2a2028d15.js HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:24 GMT
Content-Type: application/javascript
Last-Modified: Sat, 04 Feb 2023 20:52:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63dec597-97a6f"
Expires: Fri, 17 Feb 2023 12:10:24 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
188.225.73.94/lander/vayt--2-gugl/images/hero.2e70cd82.jpg
188.225.73.94200 OK 77 kB URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/images/hero.2e70cd82.jpg
IP 188.225.73.94:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x764, components 3\012- data
Hash b47a53edf5a37e6f5a1996000a6feb7b
1c12a231b5918ad0941417751b8f3b5c1128cfef
8f0cc0b5002ee6844cb0d94e22605b4422c58d43176f04fecc764e05154973cc
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/images/hero.2e70cd82.jpg HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:24 GMT
Content-Type: image/jpeg
Content-Length: 76855
Last-Modified: Sat, 04 Feb 2023 20:52:39 GMT
Connection: keep-alive
ETag: "63dec597-12c37"
Expires: Fri, 17 Feb 2023 12:10:24 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 07 Feb 2023 11:51:19 GMT
age: 1145
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0a8ea253ef61b5c330b3285f9a94e6ae
0cf9a1c66c83f505c7195774996b107c145f5884
8b6bca0cd9c9adcb16bba03349e8fcbfcd645719c82c95f0111095b731842402
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 12:10:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0a8ea253ef61b5c330b3285f9a94e6ae
0cf9a1c66c83f505c7195774996b107c145f5884
8b6bca0cd9c9adcb16bba03349e8fcbfcd645719c82c95f0111095b731842402
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 12:10:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0a8ea253ef61b5c330b3285f9a94e6ae
0cf9a1c66c83f505c7195774996b107c145f5884
8b6bca0cd9c9adcb16bba03349e8fcbfcd645719c82c95f0111095b731842402
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 12:10:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0a8ea253ef61b5c330b3285f9a94e6ae
0cf9a1c66c83f505c7195774996b107c145f5884
8b6bca0cd9c9adcb16bba03349e8fcbfcd645719c82c95f0111095b731842402
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 12:10:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0a8ea253ef61b5c330b3285f9a94e6ae
0cf9a1c66c83f505c7195774996b107c145f5884
8b6bca0cd9c9adcb16bba03349e8fcbfcd645719c82c95f0111095b731842402
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 12:10:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
216.58.207.227200 OK 128 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 128352, version 1.0\012- data
Size 128 kB (128352 bytes)
Hash 53436aca8627a49f4deaaa44dc9e3c05
0bc0c675480d94ec7e8609dda6227f88c5d08d2c
8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1
GET /s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://188.225.73.94
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 04:56:10 GMT
expires: Wed, 07 Feb 2024 04:56:10 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 25 Aug 2022 00:26:06 GMT
content-type: font/woff2
age: 26054
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2
216.58.207.227200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 21276, version 1.0\012- data
Hash 59c9b83cc112cf7eeb3bf7a5e96b21fe
771790b776b5e1bc3039c337024e400974184208
a8447cdec51e85d9e93971a0d4a53bcf6085d70bf1d201662837d2fb953422c7
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459W1hyzbi.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://188.225.73.94
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21276
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Feb 2023 16:07:46 GMT
expires: Tue, 06 Feb 2024 16:07:46 GMT
cache-control: public, max-age=31536000
age: 72158
last-modified: Mon, 11 Jul 2022 19:01:17 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://188.225.73.94
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 07:08:09 GMT
expires: Sat, 03 Feb 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 363735
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0a8ea253ef61b5c330b3285f9a94e6ae
0cf9a1c66c83f505c7195774996b107c145f5884
8b6bca0cd9c9adcb16bba03349e8fcbfcd645719c82c95f0111095b731842402
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 12:10:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash e98612880e6dd01a6d7f8d03191b8f63
bddee2896b444fabe8f7e8e3a3b0171a9f984652
d65cee701adbb2e3fe5fe1697654978faa2a0a4d772e727e773c5f8a82cf73ca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1584
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 12:10:24 GMT
Etag: "63e1cba4-116"
Last-Modified: Tue, 07 Feb 2023 11:44:00 GMT
Server: ECS (amb/6BC7)
X-Cache: HIT
Content-Length: 278
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 2 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 441
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:24 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-rate-limits, retry-after, x-sentry-error
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BwWEMd2W5Evebn3nzsf%2BIRdQKx9i3qgsMRmdeCcGcWoJZbOj2a7RqSJyHApN8GIH3bFdMH3EsfThpIzj2LI83XEIus8sIJ1y7zAiRh5GM6gZdhUZBV%2BeOlIwoGCq%2Fp6KvcoPMFkS3LMxstTORE0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05af080d0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3127
Expires: Tue, 07 Feb 2023 13:02:31 GMT
Date: Tue, 07 Feb 2023 12:10:24 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash e98612880e6dd01a6d7f8d03191b8f63
bddee2896b444fabe8f7e8e3a3b0171a9f984652
d65cee701adbb2e3fe5fe1697654978faa2a0a4d772e727e773c5f8a82cf73ca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1584
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 12:10:24 GMT
Last-Modified: Tue, 07 Feb 2023 11:44:00 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
x-nextjs-data: 1
sentry-trace: 94a42954ec464ecfab0baffe3326e237-88bec25d442138ea-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=94a42954ec464ecfab0baffe3326e237,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:24 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 70d7e4cd91d9f630c160410d22c1cede
82f5d0fbb11bcde09c107b6c1cbc6e014bb08b85
b8679be6c92167c51793ca4a8774caf0a50949737a99652243208fcfda917faf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 12:10:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-MNLZXP3
142.250.74.40200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MNLZXP3
IP 142.250.74.40:0
File type ASCII text, with very long lines (1759)
Hash 6cc9afd427ab1297c73e2f83cdc2f097
3cf334de94c36cdb258b0b49d273aff12c6158d0
8bb91ef5b4346efed0fdd920d5cd06463d4a10441601cbe8ec266df35a6cdf51
GET /gtm.js?id=GTM-MNLZXP3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://188.225.73.94/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 Feb 2023 12:10:24 GMT
expires: Tue, 07 Feb 2023 12:10:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45403
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 70d7e4cd91d9f630c160410d22c1cede
82f5d0fbb11bcde09c107b6c1cbc6e014bb08b85
b8679be6c92167c51793ca4a8774caf0a50949737a99652243208fcfda917faf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 12:10:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
purpose: prefetch
x-nextjs-data: 1
sentry-trace: 94a42954ec464ecfab0baffe3326e237-a426b8769becee8a-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=94a42954ec464ecfab0baffe3326e237,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:24 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9a60d6016cd998299b6665a91c01695f
6602b5a94afbe5ff3b999196d726e6424db77339
e290f612ebf43358e7d4e0f9f329f6d4b17550c61f7e0e0e62a5e6b57a42f260
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3900
Cache-Control: max-age=108462
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 12:10:24 GMT
Etag: "63e13522-1d7"
Expires: Wed, 08 Feb 2023 18:18:06 GMT
Last-Modified: Mon, 06 Feb 2023 17:13:06 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
188.225.73.94/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
sentry-trace: 94a42954ec464ecfab0baffe3326e237-b0ba4605d4857f14-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=94a42954ec464ecfab0baffe3326e237,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:24 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9a60d6016cd998299b6665a91c01695f
6602b5a94afbe5ff3b999196d726e6424db77339
e290f612ebf43358e7d4e0f9f329f6d4b17550c61f7e0e0e62a5e6b57a42f260
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3900
Cache-Control: max-age=108462
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 12:10:24 GMT
Etag: "63e13522-1d7"
Expires: Wed, 08 Feb 2023 18:18:06 GMT
Last-Modified: Mon, 06 Feb 2023 17:13:06 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
fonts.googleapis.com/icon?family=Material+Icons
142.250.74.106200 OK 341 B URL HTTP/2 fonts.googleapis.com/icon?family=Material+Icons
IP 142.250.74.106:0
Hash c96b77603ec4024ccfffb4e30ae6071f
2941df882e5a3b43c09650cd37f33ee6b2fb27bf
4ec3702878b17d3951bbc1716b231357c875a0646cdb730d2a1cb5025c165307
GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://188.225.73.94/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 Feb 2023 12:10:24 GMT
date: Tue, 07 Feb 2023 12:10:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94200 OK 97 kB URL HTTP/1.1 188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62672), with no line terminators
Hash 0f276e1e55c23c6ec8d7be6b30b0a796
a09a2ed15e251a54facd793ebd04fa4a931c7685
aeca64a3d3855067ca87007869054068725d9f1cc26c54aae843063f45e28dc4
Analyzer Verdict Alert quad9 Sinkholed
GET /BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:25 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa1268; expires=Fri, 10 Mar 2023 12:10:25 GMT; path=/
420ca=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NTc3MTgyNX0sXCJjYW1wYWlnbnNcIjp7XCIxMVwiOjE2NzU3NzE4MjV9LFwidGltZVwiOjE2NzU3NzE4MjV9In0.eUe-8riKKcUKzapzqLFthH9M5k6X1YxM0asJHYSNmVc; expires=Tue, 17 Mar 2076 00:20:50 GMT; path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:25 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:25 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 2 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 441
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:25 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-rate-limits, retry-after, x-sentry-error
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vujbPxmXSjyT0mTD1fhtQtDtkpsSDELa4oRZKqqRs5rdOtIUvKiVyEAT4MbmMd1kVY7G70HTEuD5lgXUyRuRIZL8u1fRd8Svtlf9ALiiFfPRmpPXs3gTtgUjhpzm4Kibrutdf0psqhl8EL58vbU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05b40d9a0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
x-nextjs-data: 1
sentry-trace: 0fa11a81e5f249eb8a3cfd0c0062c09b-9d437183a7cc83be-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=0fa11a81e5f249eb8a3cfd0c0062c09b,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:25 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
static.hotjar.com/c/hotjar-3266156.js?sv=6
54.230.111.113304 Not Modified 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3266156.js?sv=6
IP 54.230.111.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/hotjar-3266156.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://188.225.73.94/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: W/231bef4eb32ed6e446bfe509472363cf
TE: trailers
HTTP/2 304 Not Modified
date: Tue, 07 Feb 2023 12:09:27 GMT
access-control-allow-origin: *
cache-control: max-age=60
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/231bef4eb32ed6e446bfe509472363cf
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VbQBgqLTk1JkUhqUjJuB7g2dv6GNIm7u9yq4Ggw_N4rDsjKDkypOeg==
age: 58
X-Firefox-Spdy: h2
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
purpose: prefetch
x-nextjs-data: 1
sentry-trace: 0fa11a81e5f249eb8a3cfd0c0062c09b-a0f3dd092ab06800-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=0fa11a81e5f249eb8a3cfd0c0062c09b,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:25 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
sentry-trace: 0fa11a81e5f249eb8a3cfd0c0062c09b-9679a3188d1836bd-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=0fa11a81e5f249eb8a3cfd0c0062c09b,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:25 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94200 OK 97 kB URL HTTP/1.1 188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62672), with no line terminators
Hash 0f276e1e55c23c6ec8d7be6b30b0a796
a09a2ed15e251a54facd793ebd04fa4a931c7685
aeca64a3d3855067ca87007869054068725d9f1cc26c54aae843063f45e28dc4
Analyzer Verdict Alert quad9 Sinkholed
GET /BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:25 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa1269; expires=Fri, 10 Mar 2023 12:10:25 GMT; path=/
420ca=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NTc3MTgyNX0sXCJjYW1wYWlnbnNcIjp7XCIxMVwiOjE2NzU3NzE4MjV9LFwidGltZVwiOjE2NzU3NzE4MjV9In0.eUe-8riKKcUKzapzqLFthH9M5k6X1YxM0asJHYSNmVc; expires=Tue, 17 Mar 2076 00:20:50 GMT; path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:25 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:25 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 41 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 3f014526b9567fcc85f0e7e568ac2125
a66fbb549bce7df8b6d3807e89998ba85a05bc7c
e9b1c915fc7cc0af47140f700e3d520e80d7c3e2e3ca90ddbbbfdb8115cb5a21
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 13584
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:25 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-error, x-sentry-rate-limits, retry-after
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OpWoSj8KAz7ib2r2r5xUqnvM%2BcL0ZzCXe9lNioXuEy7uazF42Q7e2RPqLRGYY8cVJJPB33piWdaUqEDG4maCbywUff36dmPoVd9ExmJVZ0KXLGTvP9WTu9irDPxGGglSlgrUtFM7Rqq7c%2FgLMPQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05b799450b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4158
Expires: Tue, 07 Feb 2023 13:19:44 GMT
Date: Tue, 07 Feb 2023 12:10:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a62e65-5d07-4259-aa47-d2491847eee9.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a62e65-5d07-4259-aa47-d2491847eee9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d29e7077f69b88a0108efeb7a2efe7e9
1958f83edeb8c6b68f17cead3fb5714f44e619eb
371f02a5b36ac3e52cc6c4e78f0980107a0f92105e79ee53278089ae5ff6de93
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a62e65-5d07-4259-aa47-d2491847eee9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10788
x-amzn-requestid: 8e1c8026-1eea-4eb0-810e-7ea43ed11f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyymWEsSoAMFykg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddcaf5-20fc23b535fa86f56a34fbae;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 03:03:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -OEG4deGxPaXCxA16sr4s2uAcDTWyzDoXgCkUdwluUiYL-z55VQKwA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 06:11:48 GMT
age: 21518
etag: "1958f83edeb8c6b68f17cead3fb5714f44e619eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6154ab9-bb20-4d77-a86e-15f604bb237a.webp
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6154ab9-bb20-4d77-a86e-15f604bb237a.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4dd67c975f1c1f91ca92f37c9e098231
b9096efb56b6e196b13722e767a9d2762737cbb9
39f21e5db4089d6cf94646b76cd9032e9831ed03f7c2f0d980fac09c893a52db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6154ab9-bb20-4d77-a86e-15f604bb237a.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8110
x-amzn-requestid: fdfa4af0-a6e4-4664-a86b-48fd6f374d96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f77JCFyzoAMFtyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e17239-205cdd9d70f23cb358c65222;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:33:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zHo_IPM2j3t4prd4ZuLR7c-GPrWHxSxqSUprBxrT9n_DG8ySpkpb8g==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:46:30 GMT
age: 51836
etag: "b9096efb56b6e196b13722e767a9d2762737cbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bbda930-ccb5-4a8a-b679-2389a710fc6f.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bbda930-ccb5-4a8a-b679-2389a710fc6f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d057038cd3164c40413a88f9b5c2af92
afbcb6617c7277ea42068c2aa1c8dcba02549873
ae03b42f1a5c3774e3ea569a886707a8a31da05a45bd971b829cf579be0ea6c7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9bbda930-ccb5-4a8a-b679-2389a710fc6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6787
x-amzn-requestid: 15924d6a-68a3-414b-9e23-68d37291d4a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fvyxSEjXIAMFT3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc9808-22daff920f5fe1201328ccee;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 05:13:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AOnXbzTBcVZ3quJx3NoNQC08Gk5_phyp8UiWCm6Dk4GPxl8FCaIC4w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 04:57:41 GMT
age: 25965
etag: "afbcb6617c7277ea42068c2aa1c8dcba02549873"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eedb4de12585c70ddb5b8f94fe6a59e2
83c9437e71a0a03b3e8ff652155a85eafa76cdda
d4493a30f62e9ad224b3595ba3af8a322e2d4a3d9238a1847973f962bdcc0c82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4227
x-amzn-requestid: b45f2ab7-0102-4542-9514-54fb93a0e27f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f77sTH4jIAMFnsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1731b-4a24bcb1102e58543cd81343;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: V_4NzIAVBOZMjf_YIM3bowFdlP1y4peI5JI-jO105s3NVjmyYnC0Tg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:48:48 GMT
age: 51698
etag: "83c9437e71a0a03b3e8ff652155a85eafa76cdda"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 75b0935816ca54d5d20a9fffa5531e0d
bd8374980c16b7d5a28e55b8bef2215713b1ebb2
4ab6f49d22d029681754b617001f93467d63035acdaf12905c2314cab77991af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13390
x-amzn-requestid: 0664e077-13a4-4a97-afc2-3969cee56958
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f2pu6Fb7oAMF_0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63df565f-057ee8fa26aa83d21f875d73;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 07:10:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cAwOWu-_JYTMa0l-1A07FxgOGtG7P59D7XlovXByRA9dQxfsS2An7w==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 18:44:40 GMT
age: 62746
etag: "bd8374980c16b7d5a28e55b8bef2215713b1ebb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qwSN-ztVJgRfu3bFIjYaVYV8Cnx77j1ugkRjqhRtRXdPju7AhEMg-A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 07:15:46 GMT
age: 17680
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 2 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 441
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:26 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: retry-after, x-sentry-rate-limits, x-sentry-error
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZjUn7moSfmB0FB9WoHR2IrgEMHQZOds1yM9yBfFyf5I1T2t1O%2Bw7BQA6Jm2dD1HZQulQS%2FmNa5%2FRqCPv5S7rkXg%2Bn7ywX62yNStMECBsBzvAjdmlWACV78pqWwl37pkN7m0fjeLN%2Bx2T7dEbNVk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05b93b340b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
x-nextjs-data: 1
sentry-trace: e1301a43c5aa4961976f97375bfca998-b1c37fdf65ba39ab-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=e1301a43c5aa4961976f97375bfca998,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:26 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
static.hotjar.com/c/hotjar-3266156.js?sv=6
54.230.111.113304 Not Modified 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3266156.js?sv=6
IP 54.230.111.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/hotjar-3266156.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://188.225.73.94/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: W/231bef4eb32ed6e446bfe509472363cf
TE: trailers
HTTP/2 304 Not Modified
date: Tue, 07 Feb 2023 12:09:27 GMT
access-control-allow-origin: *
cache-control: max-age=60
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/231bef4eb32ed6e446bfe509472363cf
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vi_fYyl70f91RjoFGNgHuiMwA6RuQyRvby5c-SqeuO9CJW1mPxapTg==
age: 59
X-Firefox-Spdy: h2
188.225.73.94/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
sentry-trace: e1301a43c5aa4961976f97375bfca998-9f2a211900a1584a-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=e1301a43c5aa4961976f97375bfca998,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:26 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
purpose: prefetch
x-nextjs-data: 1
sentry-trace: e1301a43c5aa4961976f97375bfca998-a4fa9b7d3f0fb28b-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=e1301a43c5aa4961976f97375bfca998,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:26 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94200 OK 97 kB URL HTTP/1.1 188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62672), with no line terminators
Hash 0f276e1e55c23c6ec8d7be6b30b0a796
a09a2ed15e251a54facd793ebd04fa4a931c7685
aeca64a3d3855067ca87007869054068725d9f1cc26c54aae843063f45e28dc4
Analyzer Verdict Alert quad9 Sinkholed
GET /BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:26 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa126a; expires=Fri, 10 Mar 2023 12:10:26 GMT; path=/
420ca=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NTc3MTgyNn0sXCJjYW1wYWlnbnNcIjp7XCIxMVwiOjE2NzU3NzE4MjZ9LFwidGltZVwiOjE2NzU3NzE4MjZ9In0.7cPibr2muBbS3lJi6S3UWR5zTg_cckCaPq64XLXFIN0; expires=Tue, 17 Mar 2076 00:20:52 GMT; path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:26 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:26 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 41 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c416247bdac827eb1be64067024b9000
f883a9f0b407f882268d8136ee4628a4cff47726
5a8c6a040615c40bc82860ed25179218bc9dad3cd57b99027d16b7385dab7508
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 14128
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:26 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-error, retry-after, x-sentry-rate-limits
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OyE%2BusfiSoh3WYbhdy8IZSVDIQlyeQjKrtaYG7XdkWxL9E1FvZoS%2B8ZVrZMn%2BgDrP0RGKOVXoHGiFK2YjoCzFXr%2FSsmDFCXwh9bT5Y79VyXxmY0k%2FAIJhAegg34w3zwqHIOn8bdHuO4OcOeHS3U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05bd0f360b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 2 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 441
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:26 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-rate-limits, retry-after, x-sentry-error
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9ZdOqL%2BXQWrHY3tmQc5JkkT%2Frz2s5TpLefTHmjAqjNekJM38ohqFrMKvWs8khDCc0LuE5wDEN%2FUwiw%2BTrVbwTAoB%2FA18EF%2B3EUDY1CwfLiIea7zb%2F8k8hvjnIwYfpaeQ60RflhqrmnVWMTqkt84%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05be38970b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
x-nextjs-data: 1
sentry-trace: 5881149048aa462b9f2a8c0a2dba1707-9a54909f5055dcf3-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=5881149048aa462b9f2a8c0a2dba1707,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:27 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
static.hotjar.com/c/hotjar-3266156.js?sv=6
54.230.111.113304 Not Modified 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3266156.js?sv=6
IP 54.230.111.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/hotjar-3266156.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://188.225.73.94/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: W/231bef4eb32ed6e446bfe509472363cf
TE: trailers
HTTP/2 304 Not Modified
date: Tue, 07 Feb 2023 12:10:27 GMT
access-control-allow-origin: *
cache-control: max-age=60
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/231bef4eb32ed6e446bfe509472363cf
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Og4GE1G7cZ0KTOidrEAnhyUFEuk4g8RhAi8t4niOkkjKcw9_IKJCFg==
X-Firefox-Spdy: h2
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
purpose: prefetch
x-nextjs-data: 1
sentry-trace: 5881149048aa462b9f2a8c0a2dba1707-9d7f0965bf98e270-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=5881149048aa462b9f2a8c0a2dba1707,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:27 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
sentry-trace: 5881149048aa462b9f2a8c0a2dba1707-abf90739cb6ff0a1-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=5881149048aa462b9f2a8c0a2dba1707,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:27 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94200 OK 97 kB URL HTTP/1.1 188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62672), with no line terminators
Hash 0f276e1e55c23c6ec8d7be6b30b0a796
a09a2ed15e251a54facd793ebd04fa4a931c7685
aeca64a3d3855067ca87007869054068725d9f1cc26c54aae843063f45e28dc4
Analyzer Verdict Alert quad9 Sinkholed
GET /BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:27 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa126b; expires=Fri, 10 Mar 2023 12:10:27 GMT; path=/
420ca=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NTc3MTgyN30sXCJjYW1wYWlnbnNcIjp7XCIxMVwiOjE2NzU3NzE4Mjd9LFwidGltZVwiOjE2NzU3NzE4Mjd9In0.yOkxnml-cJVlR-vnyF6qeR19R34-hCIACXidjU_hIjA; expires=Tue, 17 Mar 2076 00:20:54 GMT; path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:27 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:27 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 41 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 094b652a52bfe3800c28990218fe1195
2a0219a7fe793b27644d462d4e29f49c0c684802
741dfc2c386e21440c7eb95ad6a457c7982f62efe097b8505b6ab711b11ce08a
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 13553
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:27 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-rate-limits, x-sentry-error, retry-after
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pQf5rL8qQ92AfyDniRwTNMC10eRL6cP9k6fvBMTtWSwy5Sl61EGDZwee2N0qtkjlT2ld7k%2BqmgZODfOX0rMwfa8QsE2gH0823QattlbwtKCDDRBWe0eLzIzdNhvRZ29SarWNbAKwp6VYrppv0ww%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05c20d160b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 2 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 441
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:27 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-rate-limits, retry-after, x-sentry-error
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=McX%2B1P5PImBv8QqjPv9lKLoPVkR6zrwGGeGlO4fMNcl1ghl1vpXR2zUbPU39UjSJAw0fGbbhPsl6PA1w1vLWC4WTWvtTe%2FuRjnMPGF3TSs9XNW0igshXR%2FvxD620JjTnNXF9U7JXjNTgO7qFFA0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05c2bddd0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
x-nextjs-data: 1
sentry-trace: 7aec9c809564475ba9ea418edc9470c6-81e153918ad1c89b-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=7aec9c809564475ba9ea418edc9470c6,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:28 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
static.hotjar.com/c/hotjar-3266156.js?sv=6
54.230.111.113304 Not Modified 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3266156.js?sv=6
IP 54.230.111.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/hotjar-3266156.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://188.225.73.94/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-None-Match: W/231bef4eb32ed6e446bfe509472363cf
TE: trailers
HTTP/2 304 Not Modified
date: Tue, 07 Feb 2023 12:10:28 GMT
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
cache-control: max-age=60
etag: W/231bef4eb32ed6e446bfe509472363cf
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cJS5m_1w4GzxakxGAc6dxCGJmpNYwqXBclcZqZlnrbO1znWNWDDzMw==
age: 1
X-Firefox-Spdy: h2
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
purpose: prefetch
x-nextjs-data: 1
sentry-trace: 7aec9c809564475ba9ea418edc9470c6-aaccd6ade5afba5d-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=7aec9c809564475ba9ea418edc9470c6,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:28 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
purpose: prefetch
x-nextjs-data: 1
sentry-trace: 7aec9c809564475ba9ea418edc9470c6-97e36eb12588ddc1-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=7aec9c809564475ba9ea418edc9470c6,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:28 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94200 OK 97 kB URL HTTP/1.1 188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62672), with no line terminators
Hash 0f276e1e55c23c6ec8d7be6b30b0a796
a09a2ed15e251a54facd793ebd04fa4a931c7685
aeca64a3d3855067ca87007869054068725d9f1cc26c54aae843063f45e28dc4
Analyzer Verdict Alert quad9 Sinkholed
GET /BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:28 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa126e; expires=Fri, 10 Mar 2023 12:10:28 GMT; path=/
420ca=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NTc3MTgyOH0sXCJjYW1wYWlnbnNcIjp7XCIxMVwiOjE2NzU3NzE4Mjh9LFwidGltZVwiOjE2NzU3NzE4Mjh9In0.-UX8JVY4m2BBn4oZObSOprj59gpsSEYDl9DiAORg1KA; expires=Tue, 17 Mar 2076 00:20:56 GMT; path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:28 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:28 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 41 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 156ffa6326b646fa2179ceeb4782b780
d8bc0d7c1cd75d45efccfa15630e80bbb83ad45f
435c9d8eea1a1e058a953f7c88f90732ac45fb1ca20bfb97563af72d1637cacf
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 14206
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:28 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: retry-after, x-sentry-rate-limits, x-sentry-error
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BcKwXyGh07hw47RH1W2yC6nOv4XDr1Ajd86HjDPS9oMeeUZCXM%2BLPoHVvtG8CAQ9gg9OTspad%2B%2BNrnfjrsLZu8BYB6Zxo%2B%2F5eWTzcl%2ByitOdlQvSZWI1ucW4R53zglEzVERP1UJ0jjnketd4Yj4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05c67a0d0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 2 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 441
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:28 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-error, retry-after, x-sentry-rate-limits
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jXPVByaBU%2F53nTEoQqesXMOM36c1ai952cRGDV6iHW2v4xQP9tVMnJ1pvauRUh05G%2FI5lbIEhirfCRThQMU06tSrmb0dQ7HVcmyUb59rmCVFsIBYM79vXxwZ9qVkW53moueobR2%2BIjSX9vehOLI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05c73ac80b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
x-nextjs-data: 1
sentry-trace: 85501114836849dbbea317f3f6958f42-8740493f8bc2e67e-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=85501114836849dbbea317f3f6958f42,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:28 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
sentry-trace: 85501114836849dbbea317f3f6958f42-a3560fbe55676315-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=85501114836849dbbea317f3f6958f42,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:28 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
purpose: prefetch
x-nextjs-data: 1
sentry-trace: 85501114836849dbbea317f3f6958f42-975369ea18191114-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=85501114836849dbbea317f3f6958f42,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:28 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
purpose: prefetch
x-nextjs-data: 1
sentry-trace: 85501114836849dbbea317f3f6958f42-930df9e92185291c-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=85501114836849dbbea317f3f6958f42,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:28 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94200 OK 97 kB URL HTTP/1.1 188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62672), with no line terminators
Hash 0f276e1e55c23c6ec8d7be6b30b0a796
a09a2ed15e251a54facd793ebd04fa4a931c7685
aeca64a3d3855067ca87007869054068725d9f1cc26c54aae843063f45e28dc4
Analyzer Verdict Alert quad9 Sinkholed
GET /BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:28 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa126g; expires=Fri, 10 Mar 2023 12:10:28 GMT; path=/
420ca=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NTc3MTgyOH0sXCJjYW1wYWlnbnNcIjp7XCIxMVwiOjE2NzU3NzE4Mjh9LFwidGltZVwiOjE2NzU3NzE4Mjh9In0.-UX8JVY4m2BBn4oZObSOprj59gpsSEYDl9DiAORg1KA; expires=Tue, 17 Mar 2076 00:20:56 GMT; path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:29 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:29 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 41 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 21848aa77fe0e2637c2e74cb207a4e0d
181334f421942ef7ad2a1adcb5d28b7fee2223a1
5638999a28f03ebaef467d93629f901019dd260111bd2d60b85a15104ee427da
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 14101
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:29 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-rate-limits, retry-after, x-sentry-error
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2nflBBU%2F1zSzWhIxosVe7C5cXr66Cb%2BpRNDLKZakP7IBJbEyqfUvrwYU%2FkJH6Hyr3Cfx1RaGlQzbCnecqhOlhBnOvIZZ5TfX9%2B0ettCC1N42VJ7dB5Vb5r7Dsr92g5GL3biKgzGxeifFA1OWYqo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05cbd85e0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 2 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 441
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:29 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-rate-limits, x-sentry-error, retry-after
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D8fIZ15Z7X59okY9dFsccT9egVM4cjfz3qKtraL3U3FkGI6Ujsl69bPf4fx9UWbpE%2BsT%2BYPajgtZo8QeRFsIHfd5nJxqR9K0DfBW3AB6MwlzVVS7gmEVYtvk9LlaGsUk%2FZTM9PMPbucTxjt8yfw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05ccb9590b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
x-nextjs-data: 1
sentry-trace: 3031b1ccd2ce4ec49309ffaf23e2cec8-aa0c92e90e4a59f0-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=3031b1ccd2ce4ec49309ffaf23e2cec8,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:29 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
sentry-trace: 3031b1ccd2ce4ec49309ffaf23e2cec8-a1bd7c76747a10c2-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=3031b1ccd2ce4ec49309ffaf23e2cec8,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:29 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
purpose: prefetch
x-nextjs-data: 1
sentry-trace: 3031b1ccd2ce4ec49309ffaf23e2cec8-907d70e57bc82f87-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=3031b1ccd2ce4ec49309ffaf23e2cec8,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:29 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94200 OK 97 kB URL HTTP/1.1 188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62672), with no line terminators
Hash 0f276e1e55c23c6ec8d7be6b30b0a796
a09a2ed15e251a54facd793ebd04fa4a931c7685
aeca64a3d3855067ca87007869054068725d9f1cc26c54aae843063f45e28dc4
Analyzer Verdict Alert quad9 Sinkholed
GET /BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa126i; expires=Fri, 10 Mar 2023 12:10:29 GMT; path=/
420ca=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NTc3MTgyOX0sXCJjYW1wYWlnbnNcIjp7XCIxMVwiOjE2NzU3NzE4Mjl9LFwidGltZVwiOjE2NzU3NzE4Mjl9In0.KEx5gw4jbzygcW8wscTx4Lbf1cACrAFi-S8263upa7M; expires=Tue, 17 Mar 2076 00:20:58 GMT; path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:29 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:29 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 41 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1d405cc21c1ad804397a4e1e4f680ba1
d36cd373444551182ad452cba1d2df5646813ac0
f03812ee7e011ebf5704b4fbe2201b24e8b60b94e3be944a47e62971ac6c9d0e
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 14098
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:29 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-rate-limits, retry-after, x-sentry-error
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=80EbV8K5BrtnYGWbhXgKOiohlA5taHja5qdMvrH0KnuydAQHcpqS8IiDL%2Bec%2FQBpgYi4QBXFx87xhNDOHSjGK3QlAz28rHKmmKZnJ9F2C5%2Fsfdv3mMKstvOnqqCXZdlxu6rbR43POl5wZ6AILF0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05d0fdb00b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 2 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 441
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:30 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-error, x-sentry-rate-limits, retry-after
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w%2BcbTALin7ImXCnwVH%2BykZTle8%2F8W9jCySii3%2FDMcdceUaciCQJBIVUm97iv%2BXu18UP0PJMkpVcqjAxjq2mMZHRMNiC8OAtRSPMGaQrkj0KbgqC7UC9L6LgZBPcusQgwy6%2BdvgP2Vbmne3A5F0M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05d1dea60b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
x-nextjs-data: 1
sentry-trace: fe7cf5e55ba741a6bb66ea8f4d5a5bbd-ba46c14dda6d473f-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=fe7cf5e55ba741a6bb66ea8f4d5a5bbd,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:30 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
purpose: prefetch
x-nextjs-data: 1
sentry-trace: fe7cf5e55ba741a6bb66ea8f4d5a5bbd-94d2397c7bca96fb-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=fe7cf5e55ba741a6bb66ea8f4d5a5bbd,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:30 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
sentry-trace: fe7cf5e55ba741a6bb66ea8f4d5a5bbd-b616ecbaf2a6b420-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=fe7cf5e55ba741a6bb66ea8f4d5a5bbd,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:30 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94200 OK 97 kB URL HTTP/1.1 188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62672), with no line terminators
Hash 0f276e1e55c23c6ec8d7be6b30b0a796
a09a2ed15e251a54facd793ebd04fa4a931c7685
aeca64a3d3855067ca87007869054068725d9f1cc26c54aae843063f45e28dc4
Analyzer Verdict Alert quad9 Sinkholed
GET /BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:30 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa126j; expires=Fri, 10 Mar 2023 12:10:30 GMT; path=/
420ca=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NTc3MTgzMH0sXCJjYW1wYWlnbnNcIjp7XCIxMVwiOjE2NzU3NzE4MzB9LFwidGltZVwiOjE2NzU3NzE4MzB9In0.XxOg1poJFPaW2G6vHCFNWBjfk2OLd0buSFZt5j2viLM; expires=Tue, 17 Mar 2076 00:21:00 GMT; path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 41 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 465e8aed881eacab01c6ab8d04c6fde5
405c89cb0cdbd78ce8d417cb55160810266013ff
a86979529dafa9faa2665004c489a0eea95af85293bb347765b0357137fc3fc4
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 13548
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:30 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: retry-after, x-sentry-rate-limits, x-sentry-error
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lbU3csyq4trAHbwILApWz%2F8eemm2Lof%2B%2BCBVZw8KfSjtB%2BfmI%2BkrjRJJGBlshiszmVv%2FBqbUv264ztmTDuQjvXWYyEmFI511fTOY%2Bpa9BpZowCAzWiAq5EfEwNP9g39fN66cLMG1IqV1WuzBAgk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05d59b220b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:30 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:30 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 2 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 441
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:30 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-error, retry-after, x-sentry-rate-limits
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d5DocZQHcZGxiBo8pza44TuSnuqFlIAAaCDgnEiEsyo7Ne42boe%2BljIMiFX0aIhWGDEZ1hcL6zYTXwkBK03Tiob8qqe0SJ05CBn%2FYzMAM2%2BO8rYISmg1P3jgUNxpRkP43YTvD2BvOA68uy85JS0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05d67c0b0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
x-nextjs-data: 1
sentry-trace: 4a451cd5b4de47c99cc2b4458c420244-b6e7fa2a448c8043-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=4a451cd5b4de47c99cc2b4458c420244,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:31 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
sentry-trace: 4a451cd5b4de47c99cc2b4458c420244-a94e9da2a452a9fd-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=4a451cd5b4de47c99cc2b4458c420244,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:31 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
purpose: prefetch
x-nextjs-data: 1
sentry-trace: 4a451cd5b4de47c99cc2b4458c420244-9fb9895cd97fcdfa-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=4a451cd5b4de47c99cc2b4458c420244,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:31 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
purpose: prefetch
x-nextjs-data: 1
sentry-trace: 4a451cd5b4de47c99cc2b4458c420244-aa3452a24fcf2d6c-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=4a451cd5b4de47c99cc2b4458c420244,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:31 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94200 OK 97 kB URL HTTP/1.1 188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62672), with no line terminators
Hash 0f276e1e55c23c6ec8d7be6b30b0a796
a09a2ed15e251a54facd793ebd04fa4a931c7685
aeca64a3d3855067ca87007869054068725d9f1cc26c54aae843063f45e28dc4
Analyzer Verdict Alert quad9 Sinkholed
GET /BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa126k; expires=Fri, 10 Mar 2023 12:10:31 GMT; path=/
420ca=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NTc3MTgzMX0sXCJjYW1wYWlnbnNcIjp7XCIxMVwiOjE2NzU3NzE4MzF9LFwidGltZVwiOjE2NzU3NzE4MzF9In0.9ve7YRK8XQwP2tz6z8yf240ED3vWxSpRvhnJqLA2aew; expires=Tue, 17 Mar 2076 00:21:02 GMT; path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 41 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9a0b7307fc4ae084aa95fba938e12944
554f757562151cdd5345d38c4cdaa5264acbd1ed
6e4d332362ca0a03591dfc74011edf37f2caac2a2ea56543bb2e85864961e532
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 14206
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:31 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-rate-limits, retry-after, x-sentry-error
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zBMzirr35zCZWReUZZQjZNLGUdtCwBefmxoXYcZMULm8RVpG2NNtKtqq%2FNipmsr3OnyxoIIGC3qY9kWQLimXLmbF0tAjRU5NKPyW%2FGAUE2clpo%2FNRA%2FWY101VzmDgYtFPbsRIx8Gh3O3hUYz%2Fyg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05db98cc0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:31 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:31 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 2 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 441
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:31 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-rate-limits, x-sentry-error, retry-after
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F5e3YyOCpUQRtDW21%2BFiiQzBbHbxTfTluh5ilIQuN1qMqr3ZwjOuVoctPuNUnk6u4MCvZ38hE%2BF%2BmzKyYPsqxFng6rCrHLqkHC%2BncBq%2FgTdR8UzjJr%2BVtd%2BEX62POI%2F3mwyPt6aKsr4cHSEN%2BjQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05dc89da0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru/BXfxCxwL.json?cost=0.0066¤cy=usd&external_id=%24%7BSUBID%7D&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
x-nextjs-data: 1
sentry-trace: eb552e032a1041afbad33b85fe641363-954ae7ae922982f9-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=eb552e032a1041afbad33b85fe641363,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:32 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 29af19f4d35dda344776c6f6db66c235
164bc64453a7e1e9c960982ff07d116ccf11434f
64ead99aef7098e547907e17edee7de198173e5951a82f91a038a562b50d1486
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 07 Feb 2023 12:10:32 GMT
Last-Modified: Tue, 07 Feb 2023 10:30:52 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cVW6l8o1psKK58liDiHj-5qI0maYYuz6T9gnMx6XA4aZ0Ba7NJBM-g==
Age: 5980
csmetrics.hotjar.com/
52.212.205.107204 No Content 0 B IP 52.212.205.107:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: csmetrics.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 81
Origin: http://188.225.73.94
Connection: keep-alive
Referer: http://188.225.73.94/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 07 Feb 2023 12:10:32 GMT
vary: Origin
access-control-allow-origin: *
X-Firefox-Spdy: h2
188.225.73.94/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
sentry-trace: eb552e032a1041afbad33b85fe641363-a88c4912dcfb87c1-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=eb552e032a1041afbad33b85fe641363,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:32 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
purpose: prefetch
x-nextjs-data: 1
sentry-trace: eb552e032a1041afbad33b85fe641363-afdb32e7b0c2215d-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=eb552e032a1041afbad33b85fe641363,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:32 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
188.225.73.94404 Not Found 13 B URL HTTP/1.1 188.225.73.94/_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json
IP 188.225.73.94:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
Analyzer Verdict Alert quad9 Sinkholed
GET /_next/data/un5q2L_sfuGTPQtlBmBhd/ru.json HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
purpose: prefetch
x-nextjs-data: 1
sentry-trace: eb552e032a1041afbad33b85fe641363-8a422ef9c123558a-1
baggage: sentry-environment=production,sentry-release=un5q2L_sfuGTPQtlBmBhd,sentry-transaction=%2Fedu,sentry-public_key=2027f3b0a58245599d2345b8728a0f22,sentry-trace_id=eb552e032a1041afbad33b85fe641363,sentry-sample_rate=1
Connection: keep-alive
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:32 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 13
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Vary: Accept-Encoding
188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
188.225.73.94200 OK 97 kB URL HTTP/1.1 188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62672), with no line terminators
Hash 0f276e1e55c23c6ec8d7be6b30b0a796
a09a2ed15e251a54facd793ebd04fa4a931c7685
aeca64a3d3855067ca87007869054068725d9f1cc26c54aae843063f45e28dc4
Analyzer Verdict Alert quad9 Sinkholed
GET /BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356 HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 12:10:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa126l; expires=Fri, 10 Mar 2023 12:10:32 GMT; path=/
420ca=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjMxXCI6MTY3NTc3MTgzMn0sXCJjYW1wYWlnbnNcIjp7XCIxMVwiOjE2NzU3NzE4MzJ9LFwidGltZVwiOjE2NzU3NzE4MzJ9In0.4QJ9OAAB-OmNr_5Wixe0j-RtNzZ2mHrXAHaF_FF-8YE; expires=Tue, 17 Mar 2076 00:21:04 GMT; path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 41 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 51a52f40e73d46bed48b5887ae5793e2
27fd06c3a67209199350197f87acdd8a588bb9b8
c0301d42f70dccbff193e222dc7221c4da274ed27040f82d437dc063f4f02339
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 14098
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:32 GMT
content-type: application/json
content-length: 41
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-rate-limits, retry-after, x-sentry-error
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SoVj8limw0CXO3ZmbB52VwUQ0yHe4b5GQMwQfURtgG89Q8rPOjhb27fCbrDMJfA%2FGoq0S6K0EXpS7Uj7IosWgpSRmAZ0cdbgCcTJqp7ZrUdkknpy5OFSbjtVVAwWOXuF4k%2B0kcl6mrO%2FJXoD8g8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05e0ae580b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/d14ce6f619e710e8.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:32 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
188.225.73.94404 Not Found 146 B URL HTTP/1.1 188.225.73.94/lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css
IP 188.225.73.94:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/vayt--2-gugl/_next/static/css/a244efc8b9431c99.css HTTP/1.1
Host: 188.225.73.94
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://188.225.73.94/BXfxCxwL?cost=0.0066¤cy=usd&external_id=$%7bSUBID%7d&creative_id=16653530&ad_campaign_id=6598067&source=2475356
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 07 Feb 2023 12:10:32 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
188.114.97.1200 OK 2 B URL HTTP/2 sentry.resonanceholding.com/api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0
IP 188.114.97.1:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /api/3/envelope/?sentry_key=2027f3b0a58245599d2345b8728a0f22&sentry_version=7&sentry_client=sentry.javascript.nextjs%2F7.34.0 HTTP/1.1
Host: sentry.resonanceholding.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://188.225.73.94/
Content-Type: text/plain;charset=UTF-8
Origin: http://188.225.73.94
Content-Length: 441
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 Feb 2023 12:10:32 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: http://188.225.73.94
access-control-expose-headers: x-sentry-error, x-sentry-rate-limits, retry-after
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WhFgu9s2cShwPE7Rw%2Fk7Bv5Y9O3jyCsPwVbzdOe4UyFB%2FHjYHc9t1V0tVYQvH7m%2BTzM6gOjYuiet7CV15IcZy3YLwqT8VZTjz3TKG5jpWZRXrwM0Fv4DFA1vZNmjcd2NOp7digSibz7%2BZIh%2FnQw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 795c05e23fde0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F028c7ce9-e4c6-4453-bc20-0c0fefbadfec.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F028c7ce9-e4c6-4453-bc20-0c0fefbadfec.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b08a4dc42d2e08b2b18c9545ce9a2fdb
b688557ebba4b3c987275761e9a1f5993ad3d8a5
641402fb9282208b33877e4812cb9392b035dba85fcb3a344a2a1072d5a69f28
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F028c7ce9-e4c6-4453-bc20-0c0fefbadfec.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11630
x-amzn-requestid: 3912e3f9-44a5-405c-9edb-d8409faa0b04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4pkUHUoIAMFzcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e022e8-03e547e96b085d9e29a1852b;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:43:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: sxF0lRh0Jc9km7inuPEIo5I0hx-TW8Mjz5C3oDcBGtfxtJTnBssPVw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 07:08:35 GMT
age: 18117
etag: "b688557ebba4b3c987275761e9a1f5993ad3d8a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 0 B URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://188.225.73.94/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: iaRdunJr+R+gW6N2FKiVhFuMHOM3MJxRI70XSgcZSwLHX/tqAb3nX7ghYEWKAaR65yZMQwp3cAZeL9yl6uRVRg==
content-length: 27843
x-fb-trip-id: 1679558926
date: Tue, 07 Feb 2023 12:10:24 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Source+Sans+Pro:ital,wght@0,200;0,300;0,400;0,600;0,700;0,900;1,200;1,300;1,400;1,600;1,700;1,900&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Source+Sans+Pro:ital,wght@0,200;0,300;0,400;0,600;0,700;0,900;1,200;1,300;1,400;1,600;1,700;1,900&display=swap
IP 142.250.74.106:0
GET /css2?family=Source+Sans+Pro:ital,wght@0,200;0,300;0,400;0,600;0,700;0,900;1,200;1,300;1,400;1,600;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://188.225.73.94/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 Feb 2023 12:10:24 GMT
date: Tue, 07 Feb 2023 12:10:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-3266156.js?sv=6
54.230.111.113200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3266156.js?sv=6
IP 54.230.111.113:0
GET /c/hotjar-3266156.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://188.225.73.94/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Tue, 07 Feb 2023 12:09:27 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/231bef4eb32ed6e446bfe509472363cf
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XG9c98rdDVUURYOgViJLaRuQpNwQzXyRaxvnZcAUeURaN-6v8NCbUw==
age: 57
X-Firefox-Spdy: h2