r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8325
Expires: Thu, 02 Feb 2023 09:34:27 GMT
Date: Thu, 02 Feb 2023 07:15:42 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3548
Expires: Thu, 02 Feb 2023 08:14:50 GMT
Date: Thu, 02 Feb 2023 07:15:42 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4232
Expires: Thu, 02 Feb 2023 08:26:14 GMT
Date: Thu, 02 Feb 2023 07:15:42 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 06:43:28 GMT
content-type: application/json
age: 1934
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: hogy6L06YVwW7E8capQxjaCZPvsAg2+UTOkzADzt2q+YTd2Rdu186AUhN5tEi2VYK8wUT7OO34A=
x-amz-request-id: N36GBWJ46M2QDYZH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 06:22:59 GMT
age: 3163
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 07:15:42 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
200 OK 19 kB URL HTTP/1.1 www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (15973)
Hash 7a2772d31b904b95129341dec98be30d
04a4a1ab9740052eafd841e466e0567be71025a7
f44118582c819a9c94a1f03c43fdaec61e807215248b0b0255d65dda746d153c
Analyzer Verdict Alert fortinet Malware
GET /publ/dstu/dstu_4378_2005/3-1-0-760 HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Set-Cookie: 8ksvuCoz=; path=/; expires=Tue, 02-Feb-2021 07:15:41 GMT; HttpOnly; domain=.ksv.biz.ua
8ksvpu=+AIdY9tj; path=/; expires=Fri, 02-Feb-2024 07:15:41 GMT; domain=.ksv.biz.ua
8ksvuzll=1675322141; path=/; expires=Fri, 02-Feb-2024 07:15:41 GMT; domain=.ksv.biz.ua
ucvid=sRy0M3cpFL; domain=ksv.biz.ua; path=/; expires=Fri, 02-Feb-2024 07:15:41 GMT
8ksvpushi=1; path=/; expires=Fri, 03-Feb-2023 06:15:41 GMT
Pragma: no-cache
Vary: host
Last-Modified: Thu, 02 Feb 2023 06:39:40 GMT
Cache-Control: no-cache,no-store, private
Content-Encoding: gzip
sys000.ucoz.net/cgi/uutils.fcg?a=soc_comment_get_data&site=8ksv
200 OK 337 B URL HTTP/1.1 sys000.ucoz.net/cgi/uutils.fcg?a=soc_comment_get_data&site=8ksv
IP
Hash ddd4eddca801891c3dc8ad4cdb1327a8
5c55c0bd40b54e06c4e8d7c8e546b79b5d741704
1e8111bedf92d44af5f9361e5e20248930b2e4b705a59e3fe959787d9275794e
GET /cgi/uutils.fcg?a=soc_comment_get_data&site=8ksv HTTP/1.1
Host: sys000.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
P3P: CP="CAO PSA OUR"
Set-Cookie: uSoc=; path=/; expires=Wed, 02-Feb-2022 07:15:42 GMT; domain=.ucoz.net; SameSite=None; Secure
uSoc101=; path=/; expires=Wed, 02-Feb-2022 07:15:42 GMT; domain=.ucoz.net; SameSite=None; Secure
uSoc102=; path=/; expires=Wed, 02-Feb-2022 07:15:42 GMT; domain=.ucoz.net; SameSite=None; Secure
uSoc107=; path=/; expires=Wed, 02-Feb-2022 07:15:42 GMT; domain=.ucoz.net; SameSite=None; Secure
uSoc109=; path=/; expires=Wed, 02-Feb-2022 07:15:42 GMT; domain=.ucoz.net; SameSite=None; Secure
Cache-Control: no-cache,no-store
Pragma: no-cache
Vary: host,Accept-Encoding
Content-Encoding: gzip
www.ksv.biz.ua/?LqQUmf7zN%3BVhYYiNyeWMmdyS6NLf6vMsQYW7SM8%21SL%3Bs5YVH2i%5E%5EtchcxZt72w%5EWc6FX92q3F6JhLiwlzM28Qq%3BcOkt%21QcIg2vFDZlja0kkB7UhZECrcnm8192QdFdOt9nKw3FWyGNCned5Z1cZWLO6LnncJA99PCS1X2gGQ5HRVROO%3Bbd6tNIY69RgYc0nznhx31bdg0CJ%3Bw%21sQLe5Qulio
200 OK 1.1 kB URL HTTP/1.1 www.ksv.biz.ua/?LqQUmf7zN%3BVhYYiNyeWMmdyS6NLf6vMsQYW7SM8%21SL%3Bs5YVH2i%5E%5EtchcxZt72w%5EWc6FX92q3F6JhLiwlzM28Qq%3BcOkt%21QcIg2vFDZlja0kkB7UhZECrcnm8192QdFdOt9nKw3FWyGNCned5Z1cZWLO6LnncJA99PCS1X2gGQ5HRVROO%3Bbd6tNIY69RgYc0nznhx31bdg0CJ%3Bw%21sQLe5Qulio
IP
ASN #39572 DataWeb Global Group B.V.
Hash a50b18490e057fbd3c7175121ecb5a85
4641f82cfd49e271158d9378573f11c73af63c0a
b13389817ec58b8c0c9610cfaf7bbbd8f462c16dabbada29c1aca65179c94d64
Analyzer Verdict Alert fortinet Malware
GET /?LqQUmf7zN%3BVhYYiNyeWMmdyS6NLf6vMsQYW7SM8%21SL%3Bs5YVH2i%5E%5EtchcxZt72w%5EWc6FX92q3F6JhLiwlzM28Qq%3BcOkt%21QcIg2vFDZlja0kkB7UhZECrcnm8192QdFdOt9nKw3FWyGNCned5Z1cZWLO6LnncJA99PCS1X2gGQ5HRVROO%3Bbd6tNIY69RgYc0nznhx31bdg0CJ%3Bw%21sQLe5Qulio HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:41 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Cache-Control: no-cache, no-store, private
Pragma: no-cache
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-10424129-1
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-10424129-1
IP
File type ASCII text, with very long lines (1759)
Hash c3c74414c8efc35fed920975cff93a84
44620860a3a1661a186a1c640162b50c02660bb0
dda68e261aeadf045c71a5fbe81b41b85b73f19a4b2114796465cb9ccabae0dd
GET /gtag/js?id=UA-10424129-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 07:15:42 GMT
expires: Thu, 02 Feb 2023 07:15:42 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43935
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-QNZ8ZPS9TD
200 OK 78 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-QNZ8ZPS9TD
IP
File type ASCII text, with very long lines (21849)
Hash 73af1916056e496829ae9957278ba12b
6034546c49d8a8455f226a5cd4a5ef7543df09a7
bc6bb05db005e17d902d89197acc5e5a2bd4329ef7b34ab059e6d153cc6527ec
GET /gtag/js?id=G-QNZ8ZPS9TD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 07:15:42 GMT
expires: Thu, 02 Feb 2023 07:15:42 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77834
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-XFFR1556Y1
200 OK 77 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-XFFR1556Y1
IP
File type ASCII text, with very long lines (19467)
Hash 648d354fd93687153adb4e3e9955fbf0
ffe99d7eacf3189523f62069980524d847105173
a065b1c0ee52811645300ae6a54c295f793b2866fea17c16b4ee984fb663fc4c
GET /gtag/js?id=G-XFFR1556Y1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 07:15:42 GMT
expires: Thu, 02 Feb 2023 07:15:42 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77112
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/watch.js
302 Moved temporarily 0 B URL HTTP/1.1 mc.yandex.ru/metrika/watch.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 302 Moved temporarily
Content-Length: 0
Location: https://mc.yandex.ru/metrika/watch.js
www.ksv.biz.ua/.s/src/ulightbox/ulightbox.min.css
200 OK 1.4 kB URL HTTP/1.1 www.ksv.biz.ua/.s/src/ulightbox/ulightbox.min.css
IP
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (4552), with no line terminators
Hash 9c03edbcbefe3eea8902981444de96f7
ca39997a1765ab084fb7e6740858176b9385c4ca
8487aa6ee4bd261bdf1f5b681cf96d347cd980ed45183c5a2a9571db6c891a08
GET /.s/src/ulightbox/ulightbox.min.css HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:41 GMT
Content-Type: text/css
Last-Modified: Tue, 24 May 2022 12:36:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"628cd15d-11c8"
Expires: Wed, 22 Feb 2023 07:15:41 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
www.ksv.biz.ua/.s/src/socCom.min.css
200 OK 1.5 kB URL HTTP/1.1 www.ksv.biz.ua/.s/src/socCom.min.css
IP
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (4930), with no line terminators
Hash e340be71523ee75968627d852b988429
e48e8d16250958625be06d16c41aa2ac508b66b8
46f14ac658f2bd72a0455788ce66301365157216f7d8eb9ce48ea7fa6a9841aa
GET /.s/src/socCom.min.css HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:41 GMT
Content-Type: text/css
Last-Modified: Thu, 01 Sep 2022 17:44:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"6310ef72-1342"
Expires: Wed, 22 Feb 2023 07:15:41 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
s103.ucoz.net/cgi/uutils.fcg?a=uSD&ca=2&ug=999&isp=0&r=0.766296332929581
200 OK 0 B URL HTTP/1.1 s103.ucoz.net/cgi/uutils.fcg?a=uSD&ca=2&ug=999&isp=0&r=0.766296332929581
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi/uutils.fcg?a=uSD&ca=2&ug=999&isp=0&r=0.766296332929581 HTTP/1.1
Host: s103.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:41 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
counter.rambler.ru/top100.jcn?2484633
307 Temporary Redirect 171 B URL HTTP/1.1 counter.rambler.ru/top100.jcn?2484633
IP
ASN #24638 Rambler Internet Holding LLC
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash dd35c5be446e8b57583fcd73a23c529c
d29afc0f3c58349452d60d01e2877bab336c22dd
3a04f06f1f4e502d8b5f53f01acd3c7c6c0a1dad68b77525780b917164608a0f
GET /top100.jcn?2484633 HTTP/1.1
Host: counter.rambler.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.4
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: text/html
Content-Length: 171
Connection: keep-alive
Location: https://counter.rambler.ru/top100.jcn?2484633
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Credentials: true
Set-Cookie: proto_uid=1CIAAB5j22N5HIR6AeCOrwB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
P3P: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
t.proext.com/js/to.js
404 Not Found 504 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1903e87918cc7f3f99972454e2b4a551
59744c49be2620ea478f5eb1b14d3697b517a105
70e092243b178e159788200dcc51e7e355de19c8798ed69b848a670f14837215
GET /js/to.js HTTP/1.1
Host: t.proext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 404 Not Found
Date: Thu, 02 Feb 2023 07:15:16 GMT
Server: Apache
Last-Modified: Wed, 14 Nov 2018 10:13:26 GMT
ETag: "1f8-57a9d2f535d80"
Accept-Ranges: bytes
Content-Length: 504
Connection: close
Content-Type: text/html; charset=windows-1251
news.2xclick.ru/loader.js
200 OK 29 kB URL HTTP/1.1 news.2xclick.ru/loader.js
IP
ASN #48347 JSC Mediasoft ekspert
File type Unicode text, UTF-8 text, with very long lines (649)
Hash 50a91794924470d535437efc67b336bc
9b27365314cf2a0db0d3e82becf4fcfb4d6008a7
e96df52611fe0b273c745e5ff7e5d8e1c947b2a0ca79746d94f7c7841dc8d97d
GET /loader.js HTTP/1.1
Host: news.2xclick.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: application/javascript
Content-Length: 28826
Last-Modified: Mon, 30 Jan 2023 12:16:08 GMT
Connection: keep-alive
ETag: "63d7b508-709a"
Content-Encoding: gzip
Expires: Fri, 03 Feb 2023 07:15:42 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Set-Cookie: uid=XV9kdWPbYx4ZESB5CPpsAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; secure; SameSite=none
P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
www.ksv.biz.ua/.s/src/base.min.css
200 OK 6.2 kB URL HTTP/1.1 www.ksv.biz.ua/.s/src/base.min.css
IP
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (24508), with no line terminators
Hash dd4ba2903316d6db69f617daf90784ce
8e6507274d9d719658129b3dd24af66d7fc6e4b3
6dd14bcbcbc05d7af92a78316a37519526eec0e21ad651d7a92d2ed5065ea90f
GET /.s/src/base.min.css HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:41 GMT
Content-Type: text/css
Last-Modified: Fri, 09 Dec 2022 12:35:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"63932b9a-5fbc"
Expires: Wed, 22 Feb 2023 07:15:41 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
www.ksv.biz.ua/.s/src/layer2.min.css
200 OK 5.3 kB URL HTTP/1.1 www.ksv.biz.ua/.s/src/layer2.min.css
IP
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (21998), with no line terminators
Hash 8ad1b4a847d6cde41b1b9f2416150509
b0f1c4c805f209ca8cdd7db20741419f734c858c
a7778af1ac2346805926eefdcb6d6ad029c11c78a3f2cc2128a2e1f61ba03c50
GET /.s/src/layer2.min.css HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:41 GMT
Content-Type: text/css
Last-Modified: Fri, 09 Dec 2022 12:35:38 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"63932b9a-55ee"
Expires: Wed, 22 Feb 2023 07:15:41 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
www.ksv.biz.ua/.s/src/social.css
200 OK 610 B URL HTTP/1.1 www.ksv.biz.ua/.s/src/social.css
IP
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (442)
Hash af855dcd18719bcf0da15a9029755af1
d74d0ed8d96f2ebe46a7671564bf80eea6865103
9add1a323772a7c09260b63a21732472cb0204105c1d2bee763ea1429f0e26e9
GET /.s/src/social.css HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:41 GMT
Content-Type: text/css
Last-Modified: Wed, 01 Dec 2021 11:13:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"61a758f3-9b8"
Expires: Wed, 22 Feb 2023 07:15:41 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
www.ksv.biz.ua/.s/src/ulightbox/ulightbox.min.js
200 OK 7.6 kB URL HTTP/1.1 www.ksv.biz.ua/.s/src/ulightbox/ulightbox.min.js
IP
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (22291), with no line terminators
Hash 3bb3aaa5262067cec461b32298975b05
4e11bfe49cd05fcdbd1e692fc87788da07e62161
61fa91bb508bfda7ee487ffaf0e38aa71cfab1ce78bb108d6c6140dc9b35ab22
Analyzer Verdict Alert fortinet Malware
GET /.s/src/ulightbox/ulightbox.min.js HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:41 GMT
Content-Type: text/javascript
Last-Modified: Tue, 24 May 2022 12:36:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"628cd15d-5713"
Expires: Wed, 22 Feb 2023 07:15:41 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 72d7a00f6d8b84ac97c0df515fdacfa3
d7a87acb3010563b436d13fd83463f6db93b520b
1d7b0a1a2c5d6814e66ddf5ef58edf621af4382cec1ed5bfe87604fb0991a7d8
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Mon, 06 Feb 2023 04:31:19 GMT
ETag: "d7a87acb3010563b436d13fd83463f6db93b520b"
Last-Modified: Thu, 02 Feb 2023 04:31:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 476
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7931231fcad21c0e-OSL
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash 448603887031f9938ec81f83f2cee389
c9b4de61d705d24272b8ce42d624a1f77a6f0fce
4b8b2da37e27bc5d0108309dec3ee5a138b4a535e5e5aa5cdf20aaeaafeb2a93
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Mon, 06 Feb 2023 04:53:29 GMT
ETag: "c9b4de61d705d24272b8ce42d624a1f77a6f0fce"
Last-Modified: Thu, 02 Feb 2023 04:53:30 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1258
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7931231fcb69b4ee-OSL
scripts.mycounter.ua/counter2.0.js
200 OK 3.7 kB URL HTTP/1.1 scripts.mycounter.ua/counter2.0.js
IP
File type HTML document, ASCII text
Hash 60dd4a0324b6a778a81131c4dc6b2998
a723d940f991f781044a948e4f423331646bf70a
266a3771ef39c4855333a8ff90d4a48d8c19f2ddb561ceb41a5a8ab4747304f8
GET /counter2.0.js HTTP/1.1
Host: scripts.mycounter.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: application/javascript
Content-Length: 3653
Last-Modified: Mon, 11 Jan 2021 22:30:07 GMT
Connection: keep-alive
ETag: "5ffcd16f-e45"
Expires: Thu, 02 Feb 2023 08:15:42 GMT
Cache-Control: max-age=3600
Accept-Ranges: bytes
www.ksv.biz.ua/.s/src/socCom.min.js
200 OK 1.6 kB URL HTTP/1.1 www.ksv.biz.ua/.s/src/socCom.min.js
IP
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (4079), with no line terminators
Hash 770d5a1f264b98987b0e045e659c5d8d
a9a2809ef160d850fa89ffbe2aab8be0ebd3f5a4
98a260094609a3982e48348e2b48562954a39bbb05cedc121faa229b67650bc2
Analyzer Verdict Alert fortinet Malware
GET /.s/src/socCom.min.js HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:41 GMT
Content-Type: text/javascript
Last-Modified: Thu, 01 Sep 2022 17:44:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"6310ef72-fef"
Expires: Wed, 22 Feb 2023 07:15:41 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
www.ksv.biz.ua/?d3bLzDCGE69%5E1KeaAkYkSiW%5Ew6Dnz8SvTnsjMamE9%3B8GezajvQEpd5IeRzI%21Nr%3ByBhrQtnAM3icxI2WbSsB3HuRflNjqmytdzxNW9JBRprrKwfkCvR%21Qq8WYqZZ75efrWnNCfn3rtCe%3BEbmWN8td6mq%5ENZV0x7PT4%21WiWMPts1HSbkT4dL%3B0yKbhsqL3F4K%21I4ZXtP3N8h2h7pnk5yUSUUSm
200 OK 811 B URL HTTP/1.1 www.ksv.biz.ua/?d3bLzDCGE69%5E1KeaAkYkSiW%5Ew6Dnz8SvTnsjMamE9%3B8GezajvQEpd5IeRzI%21Nr%3ByBhrQtnAM3icxI2WbSsB3HuRflNjqmytdzxNW9JBRprrKwfkCvR%21Qq8WYqZZ75efrWnNCfn3rtCe%3BEbmWN8td6mq%5ENZV0x7PT4%21WiWMPts1HSbkT4dL%3B0yKbhsqL3F4K%21I4ZXtP3N8h2h7pnk5yUSUUSm
IP
ASN #39572 DataWeb Global Group B.V.
Hash 4a33e7cd7558f3f5a86d0fc27aee8c90
50fc0ad44d3917690997ca278091e53d0d575362
d6304d22c2821d367e3697cb9fa4e6dbeb093b8634fccd35312664d30d72b330
Analyzer Verdict Alert fortinet Malware
GET /?d3bLzDCGE69%5E1KeaAkYkSiW%5Ew6Dnz8SvTnsjMamE9%3B8GezajvQEpd5IeRzI%21Nr%3ByBhrQtnAM3icxI2WbSsB3HuRflNjqmytdzxNW9JBRprrKwfkCvR%21Qq8WYqZZ75efrWnNCfn3rtCe%3BEbmWN8td6mq%5ENZV0x7PT4%21WiWMPts1HSbkT4dL%3B0yKbhsqL3F4K%21I4ZXtP3N8h2h7pnk5yUSUUSm HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Cache-Control: no-cache, no-store, private
Pragma: no-cache
www.ksv.biz.ua/_st/my.css
200 OK 6.1 kB URL HTTP/1.1 www.ksv.biz.ua/_st/my.css
IP
ASN #39572 DataWeb Global Group B.V.
Hash 75dd1b45c8ecf9e956bff26501eb1b15
f520640cad610ddee0c123ae9c9c3f9fa00c289f
529e3b6188bd275ba5433f2d2b315107b205854ad7a197f3b447186d6fb836bc
GET /_st/my.css HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: text/css
Last-Modified: Tue, 07 Jun 2016 18:52:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"57571807-5a4f"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 06:49:05 GMT
age: 1597
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/watch.js
200 OK 58 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (554)
Hash 315a601116a9b3b0fbc85feb58375ba4
5d283ed923d0b3beb8a2ec4e80c2958d1d132fbf
251ba0fc04953e3615e7c19a9a10c5d6a4f25cc03bef190f8a5e7c6cd72a991a
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 58140
date: Thu, 02 Feb 2023 07:15:42 GMT
access-control-allow-origin: *
etag: "63c93a4b-e31c"
expires: Thu, 02 Feb 2023 08:15:42 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.usertrust.com/
200 OK 472 B IP
Hash 3dd22a25f7d2be6f5af113494feea589
35909bcef2e6c65b63f4e4017d1e227d4cec15f2
2d588ffd9e258ca429f1180f44d1fa7088f41dbe9b697c813d9aa184bb0e47a1
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 19:27:50 GMT
Expires: Tue, 07 Feb 2023 19:27:49 GMT
Etag: "35909bcef2e6c65b63f4e4017d1e227d4cec15f2"
Cache-Control: max-age=604039,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 757
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79312320bc820b31-OSL
www.ksv.biz.ua/.s/src/jquery-3.6.0.min.js
200 OK 31 kB URL HTTP/1.1 www.ksv.biz.ua/.s/src/jquery-3.6.0.min.js
IP
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (65447)
Hash 08df9f54c9e2e91db3aadc1baff368a5
a8e6c9343489d3c36cf262a10f59d22540248c49
417453d1fcaba01d9543b7649fc12ee865e118714d5f86a8316216e9bb4fdd20
Analyzer Verdict Alert fortinet Malware
GET /.s/src/jquery-3.6.0.min.js HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:41 GMT
Content-Type: text/javascript
Last-Modified: Thu, 01 Sep 2022 17:44:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"6310ef72-15d9d"
Expires: Wed, 22 Feb 2023 07:15:41 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
www.ksv.biz.ua/.s/src/uwnd.min.js
200 OK 57 kB URL HTTP/1.1 www.ksv.biz.ua/.s/src/uwnd.min.js
IP
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 20adfead3a54ad11599adb1bab3d6fc6
23bb516448d5c643cb186ad9aec426388aa79dfd
b49b11429b509cf608a66bbcebc13cf63fa444b998c1a678d1bebfe33f7c2ff4
Analyzer Verdict Alert fortinet Malware
GET /.s/src/uwnd.min.js HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:41 GMT
Content-Type: text/javascript
Last-Modified: Mon, 25 Apr 2022 10:32:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"626678ba-3334b"
Expires: Wed, 22 Feb 2023 07:15:41 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9613
Expires: Thu, 02 Feb 2023 09:55:55 GMT
Date: Thu, 02 Feb 2023 07:15:42 GMT
Connection: keep-alive
www.ksv.biz.ua/.s/img/icon/social/noavatar.png
200 OK 572 B URL HTTP/1.1 www.ksv.biz.ua/.s/img/icon/social/noavatar.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 50 x 50, 8-bit/color RGB, non-interlaced\012- data
Hash 3a75968a1b18945280c604e4d4aead36
3a8437a9027692c8d1d19d4a84a0bc51d6301d69
6f005ef7cd0da757fba872c5832f3c2a52b928808764ff1e9823c53069b7538a
GET /.s/img/icon/social/noavatar.png HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/png
Content-Length: 572
Last-Modified: Tue, 24 Jan 2023 12:04:48 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "63cfc960-23c"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
www.ksv.biz.ua/.s/img/cp/5.gif
200 OK 217 B URL HTTP/1.1 www.ksv.biz.ua/.s/img/cp/5.gif
IP
ASN #39572 DataWeb Global Group B.V.
File type GIF image data, version 89a, 80 x 15\012- data
Hash e3703b079af482ee563bfb1c91d91209
9a45fabede87c436f2b020f359f4c3a0f3bf401b
a63abd76bb348773b1071570a48c2262d860940e3151833dd9e6ea6cf1cae193
GET /.s/img/cp/5.gif HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/gif
Content-Length: 217
Last-Modified: Mon, 21 Nov 2022 12:39:10 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "637b716e-d9"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
www.ksv.biz.ua/stat/1675322141
200 OK 414 B URL HTTP/1.1 www.ksv.biz.ua/stat/1675322141
IP
ASN #39572 DataWeb Global Group B.V.
File type GIF image data, version 87a, 88 x 31\012- data
Hash 614d53ce088185d1e1fd9cccaa89e9e1
b35d8c1727d831818eac600a01853369d4f71cc7
aedc55cabf54b2cf2f79b94c042f7ce54a589d64349f4948b267dac13368b873
Analyzer Verdict Alert fortinet Malware
GET /stat/1675322141 HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Cache-Control: no-cache, no-store, private
Pragma: no-cache
Expires: Thu, 01 Dec 1994 16:00:00 GMT
zerossl.ocsp.sectigo.com/
200 OK 728 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP
Hash 8f27cbb9394c5e9a697745e0bfb60441
638cb779599ffc6103a80b55d4bc5aabcf48424c
0aaa7cf74e3868024c50655e19a47cadc154ffded3d6b8ae6c5f69cad00fb093
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 07:15:43 GMT
Content-Type: application/ocsp-response
Content-Length: 728
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 12:27:58 GMT
Expires: Wed, 08 Feb 2023 12:27:57 GMT
Etag: "638cb779599ffc6103a80b55d4bc5aabcf48424c"
Cache-Control: max-age=536533,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79312321ab7efac4-OSL
s.pr-cy.ru/counters/ksv.do.am
200 OK 1.2 kB URL HTTP/1.1 s.pr-cy.ru/counters/ksv.do.am
IP
ASN #262254 DDOS-GUARD CORP.
File type PNG image data, 176 x 62, 8-bit colormap, non-interlaced\012- data
Hash 7b4c9e3ada648caaec589f5860246568
ab4c53e4c4bf317d6cf92c62d4337dc5820ec00b
63ab924655a0d5d91d2316cb25a78b9d3b3e73930da3312f53582831c5e8a219
GET /counters/ksv.do.am HTTP/1.1
Host: s.pr-cy.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg1_=48RppImKB7xuLqhDi7s6; Domain=.pr-cy.ru; HttpOnly; Path=/; Expires=Fri, 02-Feb-2024 07:15:42 GMT
Date: Thu, 02 Feb 2023 07:15:43 GMT
Content-Type: image/png
Content-Length: 1182
Expires: Thu, 09 Feb 2023 07:15:43 GMT
Etag: "ab4c53e4c4bf317d6cf92c62d4337dc5820ec00b"
Cache-Control: max-age=604800
www.cy-pr.com/e/ksv.do.am_1_107.138.206.gif
200 OK 2.5 kB URL HTTP/2 www.cy-pr.com/e/ksv.do.am_1_107.138.206.gif
IP
File type GIF image data, version 87a, 88 x 31\012- data
Hash 06461f7528bc4875869fed049bf2f350
31644d19e705645f6d1e7e68a4db33f94ade78dc
f0bdcd0c80aac11d235ddd084f3ed78360ce3e91bac526fe1e624eecbf11bb21
GET /e/ksv.do.am_1_107.138.206.gif HTTP/1.1
Host: www.cy-pr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 07:31:38 GMT
content-type: image/gif
content-length: 2545
last-modified: Fri, 28 Aug 2020 18:31:12 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 29e3459d865ff0b7441e15f2013a7a7b
d2eb5fb6c602e4219fe38007ba824c44852d2399
5b824f4bdc5312d326965a37df5772adfe91d4b31aa18c828026e8ab272f09d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5B824F4BDC5312D326965A37DF5772ADFE91D4B31AA18C828026E8AB272F09D1"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13536
Expires: Thu, 02 Feb 2023 11:01:19 GMT
Date: Thu, 02 Feb 2023 07:15:43 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f7c7a9eeb153f441ab9c3c0e3094cc5a
e22d4856654d64c37dfe0dc91fca88cb3c91cecf
9059a017c7af3442850f86b08c91ada67fc4a681f088a6bb775b46e9a0ca739b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9059A017C7AF3442850F86B08C91ADA67FC4A681F088A6BB775B46E9A0CA739B"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21328
Expires: Thu, 02 Feb 2023 13:11:11 GMT
Date: Thu, 02 Feb 2023 07:15:43 GMT
Connection: keep-alive
www.ksv.biz.ua/.s/t/1256/4.png
200 OK 1.9 kB URL HTTP/1.1 www.ksv.biz.ua/.s/t/1256/4.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 270 x 30, 8-bit gray+alpha, non-interlaced\012- data
Hash 3737e2193b8236aaf0ec34d76f7b20c6
4295079a056c7d24cb3659a40c49989e405a9bc5
6b6801e85e0a79eaf4db73153d45ce2792dc5ab54d6cefa43fb700c87e7573f0
GET /.s/t/1256/4.png HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/_st/my.css
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/png
Content-Length: 1931
Last-Modified: Tue, 23 Dec 2014 09:19:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "54993394-78b"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
www.ksv.biz.ua/.s/t/1256/5.png
200 OK 282 B URL HTTP/1.1 www.ksv.biz.ua/.s/t/1256/5.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 700 x 8, 8-bit/color RGBA, non-interlaced\012- data
Hash 0815d9e628a0034c5086b5a4dc228fb6
93b5daf5faa4c580f8fa60befae81d558ef70d6f
fad520f7fe14e0bb47d3e8fb54aa119bf6575882cf5c3e07908eb093e26107f1
GET /.s/t/1256/5.png HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/_st/my.css
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/png
Content-Length: 282
Last-Modified: Tue, 23 Dec 2014 09:19:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "54993394-11a"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
www.ksv.biz.ua/7.png
200 OK 2.1 kB IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 75 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 4d6dd685f44765e2749ac22e3525aa36
b10b456c5e7a916668a822492561aab744450c86
d13bc17a84c92f571bce84c878feecc22cfc3b845e259608c93d0ec051a8fdbc
GET /7.png HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/_st/my.css
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/png
Content-Length: 2124
Last-Modified: Thu, 19 May 2016 06:37:57 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "573d5f45-84c"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
www.ksv.biz.ua/.s/img/stars/3/12.png
200 OK 1.2 kB URL HTTP/1.1 www.ksv.biz.ua/.s/img/stars/3/12.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 12 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 350693463200bbe9388eec7d1a208289
9a310a7dd3c068636b224d253e0df9ce09784df2
aa22bfd07d6d73ee1e2fc304bf81625c716e83f81e1dfc044560b54595bdec28
GET /.s/img/stars/3/12.png HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/png
Content-Length: 1161
Last-Modified: Mon, 21 Nov 2022 12:39:22 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "637b717a-489"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
www.ksv.biz.ua/log.jpg
200 OK 7.1 kB IP
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 200x144, components 3\012- data
Hash 927b3a0b1a3efe49725e022c211ce1fd
c0f0016c07bedbbd81ff7012c1c8083cf048c708
3d6eb118e15971ff346aa7011c2a0fb36e92410f2d2bee92a4399ae9dd435918
GET /log.jpg HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/_st/my.css
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/jpeg
Content-Length: 7129
Last-Modified: Wed, 18 May 2016 19:36:44 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "573cc44c-1bd9"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
c.hit.ua/hit?i=75356&g=0&x=5&s=1&c=1&t=0&w=1280&h=1024&d=24&0.9439769547552217&r=&u=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
200 OK 2.9 kB URL HTTP/1.1 c.hit.ua/hit?i=75356&g=0&x=5&s=1&c=1&t=0&w=1280&h=1024&d=24&0.9439769547552217&r=&u=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
IP
ASN #28907 Internet Invest Ltd.
File type PNG image data, 88 x 31, 8-bit colormap, non-interlaced\012- data
Hash 6d2f0116217401ec1f51f721fe2bd63e
49fcb3f7c00b81922c3ea4c64ad76d19724e2527
e5b12733f79d6f6a3174e3b7b07d63fee994983aea61198dbbdd78365e2beabd
GET /hit?i=75356&g=0&x=5&s=1&c=1&t=0&w=1280&h=1024&d=24&0.9439769547552217&r=&u=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760 HTTP/1.1
Host: c.hit.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 02 Feb 2023 07:15:43 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
P3P: policyref="/w3c/p3p.xml", CP="UNI"
Set-Cookie: uid=203356095.1675322143.2336945374; path=/; Secure; SameSite=None; domain=.hit.ua; expires=Sun, 01 Feb 2026 07:15:43 GMT
www.ksv.biz.ua/.s/t/1256/9.png
200 OK 267 B URL HTTP/1.1 www.ksv.biz.ua/.s/t/1256/9.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 10 x 10, 8-bit/color RGBA, non-interlaced\012- data
Hash 1758101b5055ffa5ce7b62e696b6fb6f
c75072a2f48caa89d66c3211fb7e852048445e24
61d1632dd19486348ec288a624e60c38e06dd4912f0c7bd6b820fc199e763e0a
GET /.s/t/1256/9.png HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/_st/my.css
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/png
Content-Length: 267
Last-Modified: Tue, 23 Dec 2014 09:19:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "54993394-10b"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aP3inrxVes1BYirmFMwMKA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AEGwVmvOuY0v5Car1FSkKSYN1H0=
www.ksv.biz.ua/.s/img/icon/social/u.svg
200 OK 612 B URL HTTP/1.1 www.ksv.biz.ua/.s/img/icon/social/u.svg
IP
ASN #39572 DataWeb Global Group B.V.
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 1e726893f02be39b70d24d502a3a9998
98c6fcf43a67426ed7e9c7a839e8115494ca8072
d0608cf0c4aff79f20a198427f7df73300d643face9bea72b8d406b432b84df9
Analyzer Verdict Alert fortinet Malware
GET /.s/img/icon/social/u.svg HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/.s/src/social.css
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/svg+xml
Content-Length: 612
Last-Modified: Mon, 26 Jun 2017 11:42:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5950f318-264"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
www.ksv.biz.ua/.s/t/1256/14.png
200 OK 285 B URL HTTP/1.1 www.ksv.biz.ua/.s/t/1256/14.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 3a80f6d864d879445d66b58bd087de71
e48e44a437fe6714fa8507976fde5df9e7da6074
27af8f9df56653988859a3a484efccfaa7543c2fffb743b99ccc4cea7a8b9772
GET /.s/t/1256/14.png HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/_st/my.css
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/png
Content-Length: 285
Last-Modified: Tue, 23 Dec 2014 09:19:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "54993394-11d"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
www.ksv.biz.ua/.s/t/1256/8.png
200 OK 313 B URL HTTP/1.1 www.ksv.biz.ua/.s/t/1256/8.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 15 x 9, 8-bit/color RGBA, non-interlaced\012- data
Hash 3acb9441d3995172afb91faf06e4d0e0
966cc629194eb1de340cebe1e90f2710449d7fe4
3fbb22e511d5c3ea748fe48d2a0452c863fbeebd28a4e45b8221261fe995f25d
GET /.s/t/1256/8.png HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/_st/my.css
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/png
Content-Length: 313
Last-Modified: Tue, 23 Dec 2014 09:19:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "54993394-139"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
www.ksv.biz.ua/.s/t/1256/12.png
200 OK 291 B URL HTTP/1.1 www.ksv.biz.ua/.s/t/1256/12.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f5a4c50957cc67b0e5129aeba29e389
02e43d603d8adf48d6e033dfd6f5d7f0a74d30af
dafdd4e937d4d6d82cc1de88264bfbab6213f94921477854246808154e17ae30
GET /.s/t/1256/12.png HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/_st/my.css
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/png
Content-Length: 291
Last-Modified: Tue, 23 Dec 2014 09:19:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "54993394-123"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
t.proext.com/?u=71232&v=6&f=5&c=1&p=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&t=0.4990954805977945
200 OK 235 B URL HTTP/1.1 t.proext.com/?u=71232&v=6&f=5&c=1&p=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&t=0.4990954805977945
IP
File type PNG image data, 88 x 31, 8-bit colormap, non-interlaced\012- data
Hash 7c9a319f21d8b5312348c9059c781759
aa90a36d25983db830c658def3ebcca16be28600
c1dd09a6514b5bcd02b3e930ca3e4a04dde35ac63cfe5849f38ba0b2c2e4ce4a
GET /?u=71232&v=6&f=5&c=1&p=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&t=0.4990954805977945 HTTP/1.1
Host: t.proext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 07:15:17 GMT
Server: Apache
Last-Modified: Wed, 14 Nov 2018 10:17:02 GMT
ETag: "eb-57a9d3c334380"
Accept-Ranges: bytes
Content-Length: 235
Connection: close
Content-Type: image/png
t.proext.com/js/to.js
404 Not Found 504 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1903e87918cc7f3f99972454e2b4a551
59744c49be2620ea478f5eb1b14d3697b517a105
70e092243b178e159788200dcc51e7e355de19c8798ed69b848a670f14837215
GET /js/to.js HTTP/1.1
Host: t.proext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 404 Not Found
Date: Thu, 02 Feb 2023 07:15:17 GMT
Server: Apache
Last-Modified: Wed, 14 Nov 2018 10:13:26 GMT
ETag: "1f8-57a9d2f535d80"
Accept-Ranges: bytes
Content-Length: 504
Connection: close
Content-Type: text/html; charset=windows-1251
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 96c794fe0eb0984074775ba4e182ed9d
bd6f5a86011fa199bc4197a37fb84079eb487f7e
3f626fa9d03173ededfce2c39da3be2989781484ca87bed7d8a8fd0f68fb051b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3F626FA9D03173EDEDFCE2C39DA3BE2989781484CA87BED7D8A8FD0F68FB051B"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5868
Expires: Thu, 02 Feb 2023 08:53:31 GMT
Date: Thu, 02 Feb 2023 07:15:43 GMT
Connection: keep-alive
mc.yandex.ru/metrika/watch.js
302 Moved temporarily 0 B URL HTTP/1.1 mc.yandex.ru/metrika/watch.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 302 Moved temporarily
Content-Length: 0
Location: https://mc.yandex.ru/metrika/watch.js
www.ksv.biz.ua/.s/img/icon/social/fb.svg
200 OK 611 B URL HTTP/1.1 www.ksv.biz.ua/.s/img/icon/social/fb.svg
IP
ASN #39572 DataWeb Global Group B.V.
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d178cc46dcbcf2b6f19445674fe3fe58
26f9747489d9e796926f7bbe11817c420afda3af
a9265d79c9ff74d4deeab5dce9643ed838018a6b4346605e002867858534f4bf
Analyzer Verdict Alert fortinet Malware
GET /.s/img/icon/social/fb.svg HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/.s/src/social.css
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/svg+xml
Content-Length: 611
Last-Modified: Mon, 26 Jun 2017 11:42:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5950f318-263"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
s.uuidksinc.net/match/1/?cb_url=https%3A%2F%2Fhdbcode.com%2Fsetuid%3F%5BUID%5D&gdpr=0&gdpr_consent=
302 Found 0 B URL HTTP/2 s.uuidksinc.net/match/1/?cb_url=https%3A%2F%2Fhdbcode.com%2Fsetuid%3F%5BUID%5D&gdpr=0&gdpr_consent=
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/1/?cb_url=https%3A%2F%2Fhdbcode.com%2Fsetuid%3F%5BUID%5D&gdpr=0&gdpr_consent= HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:43 GMT
content-length: 0
location: https://hdbcode.com/setuid?0GFvOYslvcjAnPK1yUOQ
set-cookie: jcsuuid=0GFvOYslvcjAnPK1yUOQ; expires=Fri, 02 Feb 2024 07:15:43 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
www.ksv.biz.ua/.s/img/icon/social/gp.svg
200 OK 550 B URL HTTP/1.1 www.ksv.biz.ua/.s/img/icon/social/gp.svg
IP
ASN #39572 DataWeb Global Group B.V.
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (534), with no line terminators
Hash 10d296226de121de55180e5b1b7d9d49
5980293f4f290734d09459d068a8c3996e43fe40
a657a4d5d05c6cd9b9f881ab6941e71f725c7eb451c9f37ceb514e45fdfd441d
Analyzer Verdict Alert fortinet Malware
GET /.s/img/icon/social/gp.svg HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/.s/src/social.css
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/svg+xml
Content-Length: 550
Last-Modified: Fri, 01 Feb 2019 12:57:26 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5c544236-226"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
www.ksv.biz.ua/.s/img/icon/social/tw.svg
200 OK 980 B URL HTTP/1.1 www.ksv.biz.ua/.s/img/icon/social/tw.svg
IP
ASN #39572 DataWeb Global Group B.V.
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 07c767ca6c3074f8ada72e66ebee5b0c
888c6c233a7230dc75d9cbdc28bf34b0b7050bf8
92b648419c1a8d3e31baf2c94d48df5077be1f741cac71f8baf833213fa5ab07
Analyzer Verdict Alert fortinet Malware
GET /.s/img/icon/social/tw.svg HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/.s/src/social.css
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/svg+xml
Content-Length: 980
Last-Modified: Mon, 26 Jun 2017 11:42:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5950f318-3d4"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
hdbcode.com/setuid?0GFvOYslvcjAnPK1yUOQ
200 OK 74 B URL HTTP/2 hdbcode.com/setuid?0GFvOYslvcjAnPK1yUOQ
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET /setuid?0GFvOYslvcjAnPK1yUOQ HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:43 GMT
content-type: image/png
content-length: 74
set-cookie: dmpUid=0GFvOYslvcjAnPK1yUOQ; expires=Fri, 02 Feb 2024 07:15:43 GMT; domain=hdbcode.com; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=www.ksv.biz.ua&blockID=322613&width=863&height=791&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=14f4eca0-701c-472c-a0ed-3a1434487f06
200 OK 0 B URL HTTP/2 hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=www.ksv.biz.ua&blockID=322613&width=863&height=791&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=14f4eca0-701c-472c-a0ed-3a1434487f06
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=www.ksv.biz.ua&blockID=322613&width=863&height=791&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=14f4eca0-701c-472c-a0ed-3a1434487f06 HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:43 GMT
content-length: 0
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: http://www.ksv.biz.ua
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=www.ksv.biz.ua&blockID=322502&width=863&height=791&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=14f4eca0-701c-472c-a0ed-3a1434487f06
200 OK 0 B URL HTTP/2 hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=www.ksv.biz.ua&blockID=322502&width=863&height=791&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=14f4eca0-701c-472c-a0ed-3a1434487f06
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=www.ksv.biz.ua&blockID=322502&width=863&height=791&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=14f4eca0-701c-472c-a0ed-3a1434487f06 HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:43 GMT
content-length: 0
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: http://www.ksv.biz.ua
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
count.yandeg.ru/cnt.php?id=364590&img=8&h=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&ref=&s=1280*1024*24&rand=0.3669716016079482
301 Moved Permanently 0 B URL HTTP/1.1 count.yandeg.ru/cnt.php?id=364590&img=8&h=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&ref=&s=1280*1024*24&rand=0.3669716016079482
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cnt.php?id=364590&img=8&h=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&ref=&s=1280*1024*24&rand=0.3669716016079482 HTTP/1.1
Host: count.yandeg.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 07:15:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 02 Feb 2023 08:15:43 GMT
Location: https://count.yandeg.ru/cnt.php?id=364590&img=8&h=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&ref=&s=1280*1024*24&rand=0.3669716016079482
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e6aREJYYJpp6E1IziyrdlUQYGHw0f1HTe7EyOSD4Yfxlq0lw3ALDVXLYx9kKJgl0NwMCxi1T26GPldj1SEVCL%2Bo0RY8bocJ9vg7HejWycsAeISNoA%2Fv8sv24wf9vZWsJXqE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793123251897b524-OSL
alt-svc: h2=":443"; ma=60
usocial.pro/usocial/usocial.share.js?js=7.1.5
200 OK 11 kB URL HTTP/2 usocial.pro/usocial/usocial.share.js?js=7.1.5
IP
File type Unicode text, UTF-8 text, with very long lines (39645), with no line terminators
Hash 82d1407aab5cd9c9d806d426891092d4
846181f34e454c698d1606b1278a4a26428fd096
f4d37763b7cef7aced4028485fedc20cb84588b5de2faae3946ffac3234e4004
GET /usocial/usocial.share.js?js=7.1.5 HTTP/1.1
Host: usocial.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=J12lM7h7kFhuzOD4xCNY; Domain=.usocial.pro; HttpOnly; Path=/; Expires=Fri, 02-Feb-2024 07:15:43 GMT
date: Thu, 02 Feb 2023 07:14:59 GMT
content-type: application/javascript; charset=utf-8
last-modified: Fri, 29 Jan 2021 14:35:50 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=300, public
content-encoding: br
content-length: 10816
ddg-cache-status: HIT,HIT
etag: "60141d46-9c68"
age: 44
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d5aa03d944374e364d4fdbb8f9cbf95e
43e3c5a8a5ff027de3c9ad9a41b572e4f33e72f9
483314668ec3c34108277a26d39a4282ce255e416cb5cec43e3d30d5340b8138
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "483314668EC3C34108277A26D39A4282CE255E416CB5CEC43E3D30D5340B8138"
Last-Modified: Wed, 01 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11283
Expires: Thu, 02 Feb 2023 10:23:46 GMT
Date: Thu, 02 Feb 2023 07:15:43 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 344 B IP
ASN #20940 Akamai International B.V.
Hash ed5623014995887820b555eed90c7242
5723e26ddb5fbc1b927c0a8d01f0b36bd28a1d87
23eeacfaedf72f886ae7e39df458f0b2d4c4b70783a21530d52689d277cc10f6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "23EEACFAEDF72F886AE7E39DF458F0B2D4C4B70783A21530D52689D277CC10F6"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6309
Expires: Thu, 02 Feb 2023 09:00:52 GMT
Date: Thu, 02 Feb 2023 07:15:43 GMT
Connection: keep-alive
usocial.pro/usocial/css/uscl.css?v=7.1.5
200 OK 26 kB URL HTTP/2 usocial.pro/usocial/css/uscl.css?v=7.1.5
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 179c404069bbadc591e2089e875481e9
ab875e932f13d54a6c26122e4a90abbda88ce68a
5a28184b381e09c3eee9ad5a1c77b01b35648f2d3f866d645a2700a4a8371034
GET /usocial/css/uscl.css?v=7.1.5 HTTP/1.1
Host: usocial.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=1cZGQw2kQYLVOfu6ZcT0; Domain=.usocial.pro; HttpOnly; Path=/; Expires=Fri, 02-Feb-2024 07:15:43 GMT
date: Thu, 02 Feb 2023 07:11:36 GMT
content-type: text/css
last-modified: Tue, 04 Feb 2020 13:54:50 GMT
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=300, public
content-encoding: br
content-length: 26246
ddg-cache-status: HIT,HIT
etag: "5e3977aa-6335e"
age: 247
X-Firefox-Spdy: h2
www.ksv.biz.ua/?ai1pbZ8w2EX6%5EJaWnyqY09Hv43F3a9DnBAWwTYvhI47%3B7VMn9GD8vdyBU0abMGN5cm5AM95DxNKrL5fpkLSw
200 OK 799 B URL HTTP/1.1 www.ksv.biz.ua/?ai1pbZ8w2EX6%5EJaWnyqY09Hv43F3a9DnBAWwTYvhI47%3B7VMn9GD8vdyBU0abMGN5cm5AM95DxNKrL5fpkLSw
IP
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash fc3310e774ab6dc5ae8d8db7a68ce207
753b1ed393b7b464004e65bcbd163094eb6d67eb
dd4577f11a9626aec9f4a02a3048fa3308b0533fe9f05641fc981bc853a6fa1c
Analyzer Verdict Alert fortinet Malware
GET /?ai1pbZ8w2EX6%5EJaWnyqY09Hv43F3a9DnBAWwTYvhI47%3B7VMn9GD8vdyBU0abMGN5cm5AM95DxNKrL5fpkLSw HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168; adtech_uid=495e88fd-ecd7-4757-84df-ad86bb58d005%3Aksv.biz.ua; __utma=105968665.56780934.1675322168.1675322168.1675322168.1; __utmb=105968665.1.10.1675322168; __utmc=105968665; __utmz=105968665.1675322168.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1; kdSspUid=14f4eca0-701c-472c-a0ed-3a1434487f06; _ga_QNZ8ZPS9TD=GS1.1.1675322168.1.0.1675322168.60.0.0; _ga=GA1.1.1943197854.1675322168; _ga_XFFR1556Y1=GS1.1.1675322168.1.0.1675322168.60.0.0; s=1
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Cache-Control: no-cache, no-store, private
Pragma: no-cache
Content-Encoding: gzip
www.ksv.biz.ua/flag-ukrainy.jpg
200 OK 217 kB URL HTTP/1.1 www.ksv.biz.ua/flag-ukrainy.jpg
IP
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 1900x950, components 3\012- data
Size 217 kB (216917 bytes)
Hash 315935f10a96c729648019c02ddc934c
85edaa01a042521a37a7ce8c8ca90ef2b1e9e41b
731aaa2d50589de47dbe40fc630b0ab49cce3644ea5d06c9879c148e2c51e59b
GET /flag-ukrainy.jpg HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/_st/my.css
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: image/jpeg
Content-Length: 216917
Last-Modified: Wed, 18 May 2016 19:50:55 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "573cc79f-34f55"
Expires: Wed, 22 Feb 2023 07:15:42 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
z.cdn.adtarget.me/smc?s=22&u=0GFvOYslvcjAnPK1yUOQ
204 No Content 0 B URL HTTP/2 z.cdn.adtarget.me/smc?s=22&u=0GFvOYslvcjAnPK1yUOQ
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smc?s=22&u=0GFvOYslvcjAnPK1yUOQ HTTP/1.1
Host: z.cdn.adtarget.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uuidksinc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 02 Feb 2023 07:06:13 GMT
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash 9fd85307858b60e1e40c5486a662406a
3cb6bb0ca5246822060d4ed90fc73b20adf52805
2541fa966918be83daaefe01d1e8117e982d67d4382f69e20717ea09e61aff92
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 07:15:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Mon, 06 Feb 2023 04:14:01 GMT
ETag: "3cb6bb0ca5246822060d4ed90fc73b20adf52805"
Last-Modified: Thu, 02 Feb 2023 04:14:02 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3271
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79312325f8e11c12-OSL
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5117915a0a3632d04b72e65ea2a4fe72
2263c7273f623d75b82fb8ca00e5a771956b0d89
cf4eb4156859b45fd6cce69e44a6b4a3cbc777cae9ae3855e431e43510ab34d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CF4EB4156859B45FD6CCE69E44A6B4A3CBC777CAE9AE3855E431E43510AB34D5"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12965
Expires: Thu, 02 Feb 2023 10:51:48 GMT
Date: Thu, 02 Feb 2023 07:15:43 GMT
Connection: keep-alive
hdbcode.com/b3aad1kk.js
200 OK 9.1 kB IP
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (16550)
Hash e0a999f04d27c1fa76ae04c504a5b396
6e0a2396ae72021840091b223fd12122839e73a6
c7b46766e308f3093381a81f4cbd77ce58cead10df54699daf9eb227f5221f21
GET /b3aad1kk.js HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:43 GMT
content-type: application/javascript
last-modified: Tue, 31 Jan 2023 10:27:26 GMT
vary: Accept-Encoding
etag: W/"63d8ed0e-565e"
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 511c5756affcd18c790682dbd9e5dc43
dc7ad19ae371fc22c49958ff907ce6f727c38dc4
812fce75a6a36e769c9f04896b9258568cf6495f660c950e3949f33b82d4fc13
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "812FCE75A6A36E769C9F04896B9258568CF6495F660C950E3949F33B82D4FC13"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8568
Expires: Thu, 02 Feb 2023 09:38:31 GMT
Date: Thu, 02 Feb 2023 07:15:43 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 841decbded24a72bf9db2d73a5496128
52dc79bf8713e35e0c4ed18adf8ef7947fd16b7c
1ded9d10ed73c2515cd15bde23f64ca4b35f45d0519de634c32937bf8541cfad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DED9D10ED73C2515CD15BDE23F64CA4B35F45D0519DE634C32937BF8541CFAD"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6102
Expires: Thu, 02 Feb 2023 08:57:25 GMT
Date: Thu, 02 Feb 2023 07:15:43 GMT
Connection: keep-alive
usocial.pro/usocial/fonts/uscl.woff2?n2tjsc
200 OK 6.8 kB URL HTTP/2 usocial.pro/usocial/fonts/uscl.woff2?n2tjsc
IP
File type Web Open Font Format (Version 2), TrueType, length 6816, version 1.6554\012- data
Hash ced30c64206cd636c9c094923d88046b
d01eef47b5303aacb4bcf8fd7fbb672feca3d58a
485e3c6dee567f7280fa8a0224612e00bfb502cc239e175deda45147339aba40
GET /usocial/fonts/uscl.woff2?n2tjsc HTTP/1.1
Host: usocial.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: https://usocial.pro/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=HuUZ367J8IG3LGp0bb5e; Domain=.usocial.pro; HttpOnly; Path=/; Expires=Fri, 02-Feb-2024 07:15:43 GMT
date: Thu, 02 Feb 2023 07:15:43 GMT
content-type: font/woff2
content-length: 6816
last-modified: Mon, 29 Mar 2021 13:57:09 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=300, public
accept-ranges: bytes
ddg-cache-status: MISS,MISS
etag: "6061dcb5-1aa0"
age: 0
X-Firefox-Spdy: h2
www.acint.net/rmatch?dp=191&r=https://d.uuidksinc.net/match/383/?remote_uid=0GFvOYslvcjAnPK1yUOQ
302 Found 154 B URL HTTP/2 www.acint.net/rmatch?dp=191&r=https://d.uuidksinc.net/match/383/?remote_uid=0GFvOYslvcjAnPK1yUOQ
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=191&r=https://d.uuidksinc.net/match/383/?remote_uid=0GFvOYslvcjAnPK1yUOQ HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uuidksinc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 07:15:43 GMT
content-type: text/html
content-length: 154
location: /rmatch?r=https%3A%2F%2Fd.uuidksinc.net%2Fmatch%2F383%2F%3Fremote_uid%3D0GFvOYslvcjAnPK1yUOQ&dp=191&tc=1
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Thu, 02-Feb-23 07:25:43 GMT
aid=CkIDFWPbYx81mhNNC2QIAsqinBXdaoSOgzBTyHtcwK7al15P; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
s103.ucoz.net/adv/dummy/000/css/style.css
200 OK 1.6 kB URL HTTP/1.1 s103.ucoz.net/adv/dummy/000/css/style.css
IP
ASN #39572 DataWeb Global Group B.V.
Hash 50406c447ccad47ca9e5d53eff612ffb
16e3921585135a87a1066689c9c67a312d96c92d
01a0732bba96fb38be885a1d233fecf52e32c7e07e48cd05f6f07a3690ea304c
GET /adv/dummy/000/css/style.css HTTP/1.1
Host: s103.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:42 GMT
Content-Type: text/css
Last-Modified: Tue, 26 Mar 2019 14:28:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"5c9a36fe-19eb"
Content-Encoding: gzip
e1.o.lencr.org/
200 OK 344 B IP
ASN #20940 Akamai International B.V.
Hash ed5623014995887820b555eed90c7242
5723e26ddb5fbc1b927c0a8d01f0b36bd28a1d87
23eeacfaedf72f886ae7e39df458f0b2d4c4b70783a21530d52689d277cc10f6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "23EEACFAEDF72F886AE7E39DF458F0B2D4C4B70783A21530D52689D277CC10F6"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6309
Expires: Thu, 02 Feb 2023 09:00:52 GMT
Date: Thu, 02 Feb 2023 07:15:43 GMT
Connection: keep-alive
get.mycounter.ua/counter.php?id=103883&w=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&s=1280x1024x24&rr=*&c=1&j=5
200 OK 923 B URL HTTP/1.1 get.mycounter.ua/counter.php?id=103883&w=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&s=1280x1024x24&rr=*&c=1&j=5
IP
File type PNG image data, 88 x 61, 8-bit colormap, non-interlaced\012- data
Hash 3965e33f69c62f390c6b41b36d38993e
61e427ecf2d1716b6458caf5c91769d328621df8
46cafe2c78f29827c87af040034805ba87cbca36902fa8b139e951831a8ed6d3
GET /counter.php?id=103883&w=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&s=1280x1024x24&rr=*&c=1&j=5 HTTP/1.1
Host: get.mycounter.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 923
Connection: keep-alive
Date: Thu, 02 Feb 2023 09:15:43 GMT
Server: MyCounter TCP Server v.2.0.0
Accept-Ranges: bytes
Expires: 0
Cache-control: no-cache
kimberlite.io/rtb/sync/kadam?u=0GFvOYslvcjAnPK1yUOQ
307 Temporary Redirect 0 B URL HTTP/1.1 kimberlite.io/rtb/sync/kadam?u=0GFvOYslvcjAnPK1yUOQ
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/kadam?u=0GFvOYslvcjAnPK1yUOQ HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uuidksinc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Thu, 02 Feb 2023 07:15:43 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: u=Y9tjH6c2rcs~nNNYgwf5kSlDFTOTF72wkLBBgt4; path=/; max-age=7776000; samesite=none; httponly; secure
location: https://ads.betweendigital.com/match?bidder_id=45004&callback_url=https%3A%2F%2Fkimberlite.io%2Frtb%2Fsync%2Fbetween2%3Fu%3D%24%7BUSER_ID%7D%26f%3Dhttps%253A%252F%252Fd.uuidksinc.net%252Fmatch%252F499%252F%253Fremote_uid%253DY9tjH6c2rcs%26n%3D1
referrer-policy: no-referrer
server-timing: app;srv=2;dur=0.0002
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cbff38ff2fedd197ce23aab62520ebe5
5a615a636fe04ddf563a6cc5dc4bae400e525c83
69bef33937d0b49a5e448d9bf35dc0c7d45f4c59aacb89527adc4e1875d783bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69BEF33937D0B49A5E448D9BF35DC0C7D45F4C59AACB89527ADC4E1875D783BC"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8725
Expires: Thu, 02 Feb 2023 09:41:08 GMT
Date: Thu, 02 Feb 2023 07:15:43 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 279 B IP
Hash f8f48de864235d5d8b3d5be17a4e1ad3
62d79f5b3d9dd4d95876f2561c4a669bf8eac4a0
f587dbb5c019311f277e23e5fc6557d66cafd355fea2b9993f9f011e63ef3402
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6384
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:43 GMT
Last-Modified: Thu, 02 Feb 2023 05:29:19 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=www.ksv.biz.ua&blockID=322613&width=863&height=791&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=14f4eca0-701c-472c-a0ed-3a1434487f06
200 OK 21 kB URL HTTP/2 hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=www.ksv.biz.ua&blockID=322613&width=863&height=791&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=14f4eca0-701c-472c-a0ed-3a1434487f06
IP
ASN #39572 DataWeb Global Group B.V.
Hash f95da70fd02d88d206e634d159d2bbda
32c409f2e1ea3524a13fce7781e48fae16e215f8
ba0929a33f28a266d900bba578fe287e9c02151be064f9954d3c69b99aa2ebf6
GET /get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=www.ksv.biz.ua&blockID=322613&width=863&height=791&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=14f4eca0-701c-472c-a0ed-3a1434487f06 HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Cookie: dmpUid=0GFvOYslvcjAnPK1yUOQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:43 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: http://www.ksv.biz.ua
content-encoding: gzip
X-Firefox-Spdy: h2
rot.spotsniper.ru/?src=ujs6
200 OK 1 B URL HTTP/1.1 rot.spotsniper.ru/?src=ujs6
IP
ASN #44066 diva-e Datacenters GmbH
File type very short file (no magic)
Hash 7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
GET /?src=ujs6 HTTP/1.1
Host: rot.spotsniper.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:43 GMT
Content-Type: application/javascript
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7b0cfb38a660eea768ac4ce59aaecf86
9ed5da9144c35d7686fa865f0f66858666df1194
2838237a654b7645297c92b273180708e5aaa4d2ebcda3de4481d699774c6956
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2838237A654B7645297C92B273180708E5AAA4D2EBCDA3DE4481D699774C6956"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4259
Expires: Thu, 02 Feb 2023 08:26:42 GMT
Date: Thu, 02 Feb 2023 07:15:43 GMT
Connection: keep-alive
uuidksinc.net/matchx?gdpr=0&gdpr_consent=
200 OK 1.7 kB URL HTTP/2 uuidksinc.net/matchx?gdpr=0&gdpr_consent=
IP
ASN #39572 DataWeb Global Group B.V.
Hash ea262d4f3a56579a32ddb2ca70e697df
3e80aebae1aa6adb67973cf6badcc47f704c8cb0
635887bbf852d7ed55b00500ed72dcba15b41730213cd0e551a0e5c7c8ccf118
GET /matchx?gdpr=0&gdpr_consent= HTTP/1.1
Host: uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Cookie: jcsuuid=0GFvOYslvcjAnPK1yUOQ
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:43 GMT
content-type: text/html
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.printfriendly.com/printfriendly.js
200 OK 14 kB URL HTTP/1.1 cdn.printfriendly.com/printfriendly.js
IP
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (359)
Hash ee7b0199aa5bb660bcc40f42eaa3076c
b982dfb377795f29363798b5555509fe0ac6f215
1407452f446659389988689b6c310f77020bbbe2d2218266de8382c5289d18d4
GET /printfriendly.js HTTP/1.1
Host: cdn.printfriendly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 07:15:43 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Server: BunnyCDN-NO1-830
CDN-PullZone: 29989
CDN-Uid: c46cf0ce-de12-43ee-84e2-564af22e66fd
CDN-RequestCountryCode: NO
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type
Cache-Control: public, max-age=300
Content-Encoding: gzip
ETag: "ee7b0199aa5bb660bcc40f42eaa3076c"
Expires: Tue, 31 Jan 2023 10:54:25 GMT
Last-Modified: Wed, 07 Dec 2022 08:31:33 GMT
X-GUploader-UploadID: ADPycdsk9wtobaNIdPuAOk7K6ZfvocNRryztGfBYuFR7SXXmq7dldLfPY5raAybOa-xpVDRoyPi9Isw37CR8FsQC2J4rcvchZKYf
x-goog-generation: 1670401893149716
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 14415
x-goog-hash: crc32c=9zN9FQ==, md5=7nsBmapbtmC8xA9C6qMHbA==
x-goog-storage-class: STANDARD
CDN-ProxyVer: 1.03
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
CDN-CachedAt: 01/31/2023 10:49:26
CDN-EdgeStorageId: 830
CDN-Status: 200
CDN-RequestId: 782c88e094f558d66628dc45df8250dc
CDN-Cache: HIT
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cbff38ff2fedd197ce23aab62520ebe5
5a615a636fe04ddf563a6cc5dc4bae400e525c83
69bef33937d0b49a5e448d9bf35dc0c7d45f4c59aacb89527adc4e1875d783bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69BEF33937D0B49A5E448D9BF35DC0C7D45F4C59AACB89527ADC4E1875D783BC"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7810
Expires: Thu, 02 Feb 2023 09:25:53 GMT
Date: Thu, 02 Feb 2023 07:15:43 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 279 B IP
Hash f8f48de864235d5d8b3d5be17a4e1ad3
62d79f5b3d9dd4d95876f2561c4a669bf8eac4a0
f587dbb5c019311f277e23e5fc6557d66cafd355fea2b9993f9f011e63ef3402
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6384
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:43 GMT
Last-Modified: Thu, 02 Feb 2023 05:29:19 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279
s103.ucoz.net/adv/dummy/000/img/ucoz-logo.png
200 OK 4.6 kB URL HTTP/1.1 s103.ucoz.net/adv/dummy/000/img/ucoz-logo.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 136 x 136, 8-bit/color RGBA, non-interlaced\012- data
Hash 14d37a3409afc2c450c62b97bc8019da
43fc12bf16a292d6d10b17ab7d1e37785288858c
fc4f998c5fcacc6cf161f1bedf46ec55e56273670ecce8b59e947b68d3c5bdb2
GET /adv/dummy/000/img/ucoz-logo.png HTTP/1.1
Host: s103.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:43 GMT
Content-Type: image/png
Content-Length: 4585
Last-Modified: Tue, 26 Mar 2019 14:28:14 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5c9a36fe-11e9"
Accept-Ranges: bytes
s.luxadv.com/t/lb207266_3.js?rt=21685740045
200 OK 26 kB URL HTTP/1.1 s.luxadv.com/t/lb207266_3.js?rt=21685740045
IP
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (625), with CRLF, LF line terminators
Hash 05813e74741deda66f9716b01c933703
b90d76b13b69ccf417529ae8a971a86190016352
e9c2aca4d7c42d294a53c584a68729fe95f4778564c9c9e44b9c6e00b1edf13e
GET /t/lb207266_3.js?rt=21685740045 HTTP/1.1
Host: s.luxadv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:43 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Fri, 02 Feb 2018 09:28:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5a742f3a-f856"
Expires: Thu, 02 Feb 2023 07:16:43 GMT
Cache-Control: max-age=60
Access-Control-Allow-Origin: *
Content-Encoding: gzip
rot.spotsniper.ru/?src=ujs6&s_subid=btn
200 OK 1 B URL HTTP/1.1 rot.spotsniper.ru/?src=ujs6&s_subid=btn
IP
ASN #44066 diva-e Datacenters GmbH
File type very short file (no magic)
Hash 7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
GET /?src=ujs6&s_subid=btn HTTP/1.1
Host: rot.spotsniper.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:43 GMT
Content-Type: application/javascript
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
themes.googleusercontent.com/static/fonts/ptsans/v5/LKf8nhXsWg5ybwEGXk8UBQ.woff
200 OK 60 kB URL HTTP/1.1 themes.googleusercontent.com/static/fonts/ptsans/v5/LKf8nhXsWg5ybwEGXk8UBQ.woff
IP
File type Web Open Font Format, TrueType, length 60332, version 1.1\012- data
Hash 0d6d6ae28614efe13ec053eaeef473c1
20cd1c419ba0763bb4bbb1435bc0aed00452af2e
5dfdd878d2d6bdd50f37fde1800a044753dd00bac3c3a30a35f999b422a48ee1
GET /static/fonts/ptsans/v5/LKf8nhXsWg5ybwEGXk8UBQ.woff HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: http://s103.ucoz.net/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Timing-Allow-Origin: *
Content-Length: 60332
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 01 Feb 2023 14:12:00 GMT
Expires: Thu, 01 Feb 2024 14:12:00 GMT
Cache-Control: public, max-age=31536000
Age: 61423
Last-Modified: Tue, 22 Oct 2019 18:15:00 GMT
Content-Type: font/woff
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hdbcode.com/kkqahhd3.js
200 OK 9.1 kB IP
ASN #39572 DataWeb Global Group B.V.
Hash 305c229a55847eaff62854c9ca4f4d04
8c5ffdbfddb2899f05ffeab8e2b6135c88853937
deac14ae9b9bb1ae5fe9fb8f7400103c150857b404a7dc68fda31eb19e70f45d
GET /kkqahhd3.js HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:43 GMT
content-type: application/javascript
last-modified: Tue, 31 Jan 2023 10:27:26 GMT
vary: Accept-Encoding
etag: W/"63d8ed0e-565e"
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.uarating.com/1672775057;1280x1024;24;1;;0.7755622443766084
200 OK 2.5 kB URL HTTP/2 c.uarating.com/1672775057;1280x1024;24;1;;0.7755622443766084
IP
File type GIF image data, version 89a, 88 x 31\012- data
Hash 20652340a10ee981a9e134127bce3b52
ac9e87f523e09c8a64fbbe181da39935bea94e52
7565717cc0afa25defaf5abc991b7f62ac0066d5560260839de3a9bd1ca580b0
GET /1672775057;1280x1024;24;1;;0.7755622443766084 HTTP/1.1
Host: c.uarating.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 07:15:43 GMT
content-type: image/png
content-length: 2507
last-modified: Tue, 15 Nov 2022 16:35:28 GMT
etag: "6373bfd0-9cb"
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pLRt7F7ePpKtR%2F6So6ExMbwq0THpD5iBKoHJRkp72jSJzFx7YMDxNzaoTlWq89Ce24Kmd92O4fUtYsLYgc4TRDlTHDGinRwrKaNHMExYnH7vJq86HVqBkY48SoG%2F%2FkFx3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 793123270be2b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c70fa210db8cb3a65d555bef49e050bc
8a834fe202d34465e13fdaefc7562702097e0fdc
d13d61f106ad0d5b69027daa0e626df63e0aaeac2f46f244f0806bcc90f69e0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D13D61F106AD0D5B69027DAA0E626DF63E0AAEAC2F46F244F0806BCC90F69E0F"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3011
Expires: Thu, 02 Feb 2023 08:05:54 GMT
Date: Thu, 02 Feb 2023 07:15:43 GMT
Connection: keep-alive
count.yandeg.ru/cnt.php?id=364590&img=8&h=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&ref=&s=1280*1024*24&rand=0.3669716016079482
301 Moved Permanently 32 B URL HTTP/2 count.yandeg.ru/cnt.php?id=364590&img=8&h=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&ref=&s=1280*1024*24&rand=0.3669716016079482
IP
File type HTML document, ASCII text
Hash 3e9c09a8c5a87f266e047a596f48578c
07d7b1940b7e3f9a3db43197458f9b8ef18a6bce
57fad7ae62012ff4a38ecb6045ac6e8e3a070a33bbd033b21ab6cad3566d9254
GET /cnt.php?id=364590&img=8&h=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&ref=&s=1280*1024*24&rand=0.3669716016079482 HTTP/1.1
Host: count.yandeg.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Thu, 02 Feb 2023 07:15:43 GMT
content-type: text/html; charset=UTF-8
location: https://count.yandeg.ru/cnt.php?id=364590&img=8&h=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&ref=&s=1280*1024*24&rand=0.3669716016079482?&autch=1
x-powered-by: PHP/7.2.34
cache-control: no-cache, must-revalidate
pragma: no-cache
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
set-cookie: FTID=vn60wfc831hg2ujk947r; expires=Tue, 19-Dec-2023 07:15:43 GMT; Max-Age=27648000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TcRVP2X%2BPK0TpXsiRDopUDEyferJZhzFfiGCE98ts0torduoidmzUCR8KcVffWYZm%2BsF4LXI4mdwHTBZ2t3lHjMR2L%2FbLNZvM49FNyunOfmcXnwtUvjjjq2x5dBXbROVL6U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 79312325992eb524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gecpbt.com/.cdn/3a8241/c20ad4/799f4983afba4c45a89a085e044d1ee5/d0363a03de19bad4.jpeg
200 OK 34 kB URL HTTP/1.1 gecpbt.com/.cdn/3a8241/c20ad4/799f4983afba4c45a89a085e044d1ee5/d0363a03de19bad4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3\012- data
Hash e04b693145ff4e98f43fc756c2b6fd7a
e57e08135592df5299ac46aa029286b081e9d603
0cd8da16d138ba4133f8e9c88f5d52c3867068f7d07cee2c72aaf7ea0a94a5c5
GET /.cdn/3a8241/c20ad4/799f4983afba4c45a89a085e044d1ee5/d0363a03de19bad4.jpeg HTTP/1.1
Host: gecpbt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 02 Feb 2023 07:15:43 GMT
Content-Type: image/jpeg
Content-Length: 34234
Connection: keep-alive
Last-Modified: Mon, 19 Dec 2022 10:33:05 GMT
ETag: "63a03de1-85ba"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js
200 OK 109 kB URL HTTP/2 cdn.jsdelivr.net/npm/yandex-metrica-watch/tag.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Size 109 kB (108919 bytes)
Hash a06a539165ff8b683356b7aedf4afb3c
74a411eb376eca85394526f03afbd00581764a38
b3413397d5d64ed4a3cecd38dc5ee427e9b2264d32a8fda8617d189c9bcf7f6b
GET /npm/yandex-metrica-watch/tag.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 07:15:43 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 1.257.0
x-jsd-version-type: version
etag: W/"34e3a-eIUrj6hD3pmnKAQZCp7YaNtM0Rc"
x-served-by: cache-fra-eddf8230060-FRA, cache-yyz4554-YYZ
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 19308
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h%2FaKeeNvL7%2Fg%2BUbxG5XN5qAjv%2FNsdUT1wu6ksjKgci601TmV7IEI0fgawTlSBFfOQbv10U4RP6Xq6wTh4HqDk%2BDEJPDtLB0DEm0y2ACKqQnICG33ng7S0UsWR%2FWs5An1zrA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79312326cc760b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
gecpbt.com/.cdn/3a8241/6512bd/8716577075384ec0b2f8f13a21b2708a/d0363766f60c5b78.jpeg
200 OK 27 kB URL HTTP/1.1 gecpbt.com/.cdn/3a8241/6512bd/8716577075384ec0b2f8f13a21b2708a/d0363766f60c5b78.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3\012- data
Hash 13dadafd46c5a24234c0e16c93541c26
28e546aef135df37466c56e7fbee176f09e1afcf
7ebc0dc802dc4dd534d2fee9c3a00a43350cc0a072332613fb337b0c45192a50
GET /.cdn/3a8241/6512bd/8716577075384ec0b2f8f13a21b2708a/d0363766f60c5b78.jpeg HTTP/1.1
Host: gecpbt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 02 Feb 2023 07:15:43 GMT
Content-Type: image/jpeg
Content-Length: 26701
Connection: keep-alive
Last-Modified: Thu, 17 Nov 2022 17:29:04 GMT
ETag: "63766f60-684d"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=www.ksv.biz.ua&blockID=322502&width=863&height=791&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=14f4eca0-701c-472c-a0ed-3a1434487f06
200 OK 42 kB URL HTTP/2 hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=www.ksv.biz.ua&blockID=322502&width=863&height=791&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=14f4eca0-701c-472c-a0ed-3a1434487f06
IP
ASN #39572 DataWeb Global Group B.V.
Hash 79749816c12b5db8422a6db927c3e622
ab968eadf2465f2ebad5a79af32dddc4797b46ca
75c320b33f0f6b87e388ee8c0ca4b44ac60902550c28587ba162c4c019e0e676
GET /get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=www.ksv.biz.ua&blockID=322502&width=863&height=791&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=14f4eca0-701c-472c-a0ed-3a1434487f06 HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Cookie: dmpUid=0GFvOYslvcjAnPK1yUOQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:43 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: http://www.ksv.biz.ua
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/watch/53858797/1?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1335%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A3%3Adp%3A0%3Als%3A1064628353293%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322169%3Ac%3A1%3Arn%3A809766265%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C1249%2C5%2C%2C%2C%2C1681%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322169%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
200 OK 426 B URL HTTP/2 mc.yandex.ru/watch/53858797/1?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1335%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A3%3Adp%3A0%3Als%3A1064628353293%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322169%3Ac%3A1%3Arn%3A809766265%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C1249%2C5%2C%2C%2C%2C1681%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322169%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (426), with no line terminators
Hash de1b25507fe86ab49da213862ca68638
df10cb6222f5af0350c07b9d5c7f2477f9f71ed4
bacc5dcaadc939f37806db51b8038dec82a14a7d3c94c0b415ff7f26d4f34ee7
GET /watch/53858797/1?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1335%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A3%3Adp%3A0%3Als%3A1064628353293%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322169%3Ac%3A1%3Arn%3A809766265%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C1249%2C5%2C%2C%2C%2C1681%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322169%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.ksv.biz.ua
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 426
date: Thu, 02 Feb 2023 07:15:43 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://www.ksv.biz.ua
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 02-Feb-2023 07:15:43 GMT
last-modified: Thu, 02-Feb-2023 07:15:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
gecpbt.com/.cdn/3a8241/c20ad4/564267366a954de8a94d6f7dcf874d9b/d0363a95b8caceab.jpeg
200 OK 18 kB URL HTTP/1.1 gecpbt.com/.cdn/3a8241/c20ad4/564267366a954de8a94d6f7dcf874d9b/d0363a95b8caceab.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3\012- data
Hash 659b6ddf2cea4febca997e012e91f89e
ce2c83dcbb2ff2d0794ff90d34f277e48426c71f
06d844ff4b3fe9423538c68509c01918c1b0c918ed2927a468ba9e36ac8c26c2
GET /.cdn/3a8241/c20ad4/564267366a954de8a94d6f7dcf874d9b/d0363a95b8caceab.jpeg HTTP/1.1
Host: gecpbt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 02 Feb 2023 07:15:43 GMT
Content-Type: image/jpeg
Content-Length: 17566
Connection: keep-alive
Last-Modified: Mon, 26 Dec 2022 08:30:04 GMT
ETag: "63a95b8c-449e"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
mc.yandex.ru/watch/73418029/1?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1335%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A1600218222354%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322169%3Ac%3A1%3Arn%3A765903252%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C1249%2C5%2C%2C%2C%2C1681%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322169%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
200 OK 400 B URL HTTP/2 mc.yandex.ru/watch/73418029/1?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1335%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A1600218222354%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322169%3Ac%3A1%3Arn%3A765903252%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C1249%2C5%2C%2C%2C%2C1681%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322169%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash 37f0a81c7e89d5a43fdb27097fdd01a9
fa827b22cd6856a86d306219ff55b20a8ba33a2e
2672e95cb5d793459dc988bb94bdc53c111d6cc407bbc7487400fb169f65ea46
GET /watch/73418029/1?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1335%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A1600218222354%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322169%3Ac%3A1%3Arn%3A765903252%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C1249%2C5%2C%2C%2C%2C1681%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322169%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.ksv.biz.ua
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Thu, 02 Feb 2023 07:15:44 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://www.ksv.biz.ua
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 02-Feb-2023 07:15:44 GMT
last-modified: Thu, 02-Feb-2023 07:15:44 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
count.yandeg.ru/cnt.php?id=364590&img=8&h=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&ref=&s=1280*1024*24&rand=0.3669716016079482?&autch=1
200 OK 1.2 kB URL HTTP/2 count.yandeg.ru/cnt.php?id=364590&img=8&h=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&ref=&s=1280*1024*24&rand=0.3669716016079482?&autch=1
IP
File type PNG image data, 88 x 31, 8-bit colormap, non-interlaced\012- data
Hash 8ba7d41285a713d0f244c0c7bfc67620
9ebd705c578bf88abce142bec46dcb3918a82079
04eb51b9e82f9e6aa94a5c52fe24b1a69a5b911776089f6d3da150d582c1870a
GET /cnt.php?id=364590&img=8&h=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&ref=&s=1280*1024*24&rand=0.3669716016079482?&autch=1 HTTP/1.1
Host: count.yandeg.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 07:15:43 GMT
content-type: image/png
x-powered-by: PHP/7.2.34
cache-control: no-cache, must-revalidate
pragma: no-cache
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
x-time-exec: 0.00076508522033691
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=08a%2F9o1TxYvA18doxjBJT4YfMlJLkp08iwGWwio3nUK6SADYiLVc6VdU51mrTQPmpFrDZ3XNjONFM2AxZApE5DqtpMddIvbcV4vtqoKdovMBd3KWPr8OABJMhhykZ9METdU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 793123266a3eb524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gecpbt.com/.cdn/3a8241/6512bd/4c10af01282543838eaa4671addbb5e7/d03638649953b12e.jpeg
200 OK 23 kB URL HTTP/1.1 gecpbt.com/.cdn/3a8241/6512bd/4c10af01282543838eaa4671addbb5e7/d03638649953b12e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3\012- data
Hash f6a57817070a2e8b8515fd516c9bf781
4f228d0ee5834dee2f354db184dfaac2ce051293
3c656e5add5ddd5ba18f435ac2d9ced3d805a60bba8ef92c671f5a1699c6b8eb
GET /.cdn/3a8241/6512bd/4c10af01282543838eaa4671addbb5e7/d03638649953b12e.jpeg HTTP/1.1
Host: gecpbt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Type: image/jpeg
Content-Length: 22734
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 18:04:05 GMT
ETag: "63864995-58ce"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
usocial.pro/data/shares?providers=fb,twi,gPlus,lin&url=http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
200 OK 25 kB URL HTTP/2 usocial.pro/data/shares?providers=fb,twi,gPlus,lin&url=http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
IP
Hash 7f416390792da057cda2fe98cddd495e
4874a585d5bce88a699aa71a3b30591ff34f69bc
63a8369b9a3c43b8d02822d654097278a68fa05101f7f8675ea8c2c2f2072fb0
GET /data/shares?providers=fb,twi,gPlus,lin&url=http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760 HTTP/1.1
Host: usocial.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=JBKvm3jbXB1p0rhDdj5b; Domain=.usocial.pro; HttpOnly; Path=/; Expires=Fri, 02-Feb-2024 07:15:43 GMT
date: Thu, 02 Feb 2023 07:15:43 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.24
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
s103.ucoz.net/adv/dummy/000/img/bg.gif
200 OK 1.3 kB URL HTTP/1.1 s103.ucoz.net/adv/dummy/000/img/bg.gif
IP
ASN #39572 DataWeb Global Group B.V.
File type GIF image data, version 89a, 485 x 3\012- data
Hash b19967d808ed7c42b41316d6c8474f55
18d80748bd4041b13a3373a429281ec65347a0e2
16c9962c4ecd52efc16d9d639d52fc60b9e427b6e454190d162f1aa1d220ad50
GET /adv/dummy/000/img/bg.gif HTTP/1.1
Host: s103.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://s103.ucoz.net/adv/dummy/000/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:43 GMT
Content-Type: image/gif
Content-Length: 1268
Last-Modified: Tue, 26 Mar 2019 14:28:14 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5c9a36fe-4f4"
Accept-Ranges: bytes
acint.net/rmatch?dp=14&euid=4602420A2063DB634400493402E35206&r=https%3A%2F%2Fd.uuidksinc.net%2Fmatch%2F383%2F%3Fremote_uid%3D0GFvOYslvcjAnPK1yUOQ
302 Found 154 B URL HTTP/2 acint.net/rmatch?dp=14&euid=4602420A2063DB634400493402E35206&r=https%3A%2F%2Fd.uuidksinc.net%2Fmatch%2F383%2F%3Fremote_uid%3D0GFvOYslvcjAnPK1yUOQ
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=14&euid=4602420A2063DB634400493402E35206&r=https%3A%2F%2Fd.uuidksinc.net%2Fmatch%2F383%2F%3Fremote_uid%3D0GFvOYslvcjAnPK1yUOQ HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uuidksinc.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=CkIDFWPbYx81mhNNC2QIAsqinBXdaoSOgzBTyHtcwK7al15P; cSyncDp14v3=1675322143
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 02 Feb 2023 07:15:44 GMT
content-type: text/html
content-length: 154
location: https://d.uuidksinc.net/match/383/?remote_uid=0GFvOYslvcjAnPK1yUOQ
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1a0a4f3ce3344ff3e87df35aebbba4f6
2bf2a812f77fffb1417eaada0101c1b3f8dd0383
a5f832502a1836446abcbf636afadde422c7139efabb0207111bf162fcd2b1d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A5F832502A1836446ABCBF636AFADDE422C7139EFABB0207111BF162FCD2B1D2"
Last-Modified: Wed, 01 Feb 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21203
Expires: Thu, 02 Feb 2023 13:09:07 GMT
Date: Thu, 02 Feb 2023 07:15:44 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 292424
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-XFFR1556Y1>m=2oe1u0&_p=710811802&_gaz=1&cid=1943197854.1675322168&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675322168&sct=1&seg=0&dl=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&dt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&en=page_view&_fv=1&_ss=1&_ee=1
204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-XFFR1556Y1>m=2oe1u0&_p=710811802&_gaz=1&cid=1943197854.1675322168&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675322168&sct=1&seg=0&dl=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&dt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&en=page_view&_fv=1&_ss=1&_ee=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-XFFR1556Y1>m=2oe1u0&_p=710811802&_gaz=1&cid=1943197854.1675322168&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675322168&sct=1&seg=0&dl=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&dt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&en=page_view&_fv=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: http://www.ksv.biz.ua
date: Thu, 02 Feb 2023 07:15:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data
Hash d9ac47c7e500fb7083b8d595eaf6fe12
112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933
495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 12:24:15 GMT
expires: Thu, 01 Feb 2024 12:24:15 GMT
cache-control: public, max-age=31536000
age: 67889
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
d.uuidksinc.net/match/383/?remote_uid=0GFvOYslvcjAnPK1yUOQ
200 OK 74 B URL HTTP/2 d.uuidksinc.net/match/383/?remote_uid=0GFvOYslvcjAnPK1yUOQ
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET /match/383/?remote_uid=0GFvOYslvcjAnPK1yUOQ HTTP/1.1
Host: d.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uuidksinc.net/
Connection: keep-alive
Cookie: jcsuuid=0GFvOYslvcjAnPK1yUOQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:44 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c6bd926c6b69794bac48899c595d536b
5eb4671706dad96afb0259a763b8d3d5e89c438b
dd4600c2d8232af100ba9261b9a2748ca1564b8ba836df834cbb2802e6d6a102
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD4600C2D8232AF100BA9261B9A2748CA1564B8BA836DF834CBB2802E6D6A102"
Last-Modified: Tue, 31 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14685
Expires: Thu, 02 Feb 2023 11:20:29 GMT
Date: Thu, 02 Feb 2023 07:15:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 25b733dfc345fc95c8772d6d03ee8dc0
a1e95e7370311f51ffe65f20ed9c4f353734a279
120c2f6b5e38e9e2feb3ec4280c3b2a4b03e26d4ee89921218adc2301c365eff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "120C2F6B5E38E9E2FEB3EC4280C3B2A4B03E26D4EE89921218ADC2301C365EFF"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15514
Expires: Thu, 02 Feb 2023 11:34:18 GMT
Date: Thu, 02 Feb 2023 07:15:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 25b733dfc345fc95c8772d6d03ee8dc0
a1e95e7370311f51ffe65f20ed9c4f353734a279
120c2f6b5e38e9e2feb3ec4280c3b2a4b03e26d4ee89921218adc2301c365eff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "120C2F6B5E38E9E2FEB3EC4280C3B2A4B03E26D4EE89921218ADC2301C365EFF"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15514
Expires: Thu, 02 Feb 2023 11:34:18 GMT
Date: Thu, 02 Feb 2023 07:15:44 GMT
Connection: keep-alive
s.viitjcfx.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=
200 OK 74 B URL HTTP/2 s.viitjcfx.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=
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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= HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:44 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
s.viitjcfx.com/n/1/pniesytfbv5fwadhpn4fa2cnmzvaw6kranxhw6sxmfegkaoeqt5dqxtyfucgitlhmaffw3yhmf7xqvtemdqyuk3ju2rpfj5qt2xypk2tcco4z7myjb5wk2diarjwaiijrotytf6i3t7yvojzeh3pjo6rjui5blf4ra6tdlr33rhay2nl4cjvaicdid53tb7yi4a222z2hiygsmswj5fwdich2rjtvwliwsver63aqktxlerzroqljwfwwspk7b2vq4423tfjnwtuu5mbpko334h2j5ryg4gzmcfh2pbgjq4rucdzmaxquiq2eeqrmkqgl54ts72omregmyikmyduojbdcqbd6frshnfcivsvnmsbyljvbm6qetb3fvcgkfjcfafdudtcb4oqgriqe57qmjsacesfwaymmusbm6yefixwmo3vfqchcaqahytcmkqxcvgaoodfgathsjakfuobq6yoez5s4ljskfqawhagkecf4vjbeqecsfbaay5w4m2zlugccbiabfetm2t5dqfv4ebfomibwjz4mnpcgecfey4hsmiiafttq6lrennam5zcfa3tw3bilmld46yydmbamjbmailfw7qakaodwmsxhirccmymharfajjae4bsuszrdyarqitdgbrb2gi7jehdsyr2dvubedlsguntgmieoexrwwrfcz4qsykpcmku6iz3keicgosxa43rmjs4eimumizabarcepb4eftrmw2ueidbeuridyock6qdafabeaiufmjcs3aakiscwricbyxfsgjlar7vabytmqjsifbzajks2iancfcb6fawarkrwpygfnndqd2dda4hedjejiicm4iddnrrieaoge5fkfz5iacd2hz2pn6ayhcape5eqeicmy5xoljta4pdqmaiennx4pbbgmvtgpjnhv3s2gcwme6bscatia6ce3t5fr5cabbfgqctofz7m4hrsc3ce4hbmpbunuih2oq4iq6hmhczeqgsgj26mqdwg3rmpudwceatgvut2xsqh4ab4tbidfrqq7iear3ayibzbelbwnzzbb5cixytbehbepsveycw2ojpaamh2bbpbe6scakqeisaeozahehwgf3gm5uhsdd6d4pssu3ecmbd4drkhyagmfjrfa2sszyylf5qq5z6pixfezjbnqpvg7r2p5xrmdaegy4rca3paesxmmqvajgbosiyhifduw3xeixdgda3ji6tc5rfgabt65rcam6eazd7merfwarhhmbva2ima4lgu7qeluyawkacc5kqghs3dmtekpixhfjtsgy6hbybqgsggapxydiubewscyj3eadsacd7jrqcszakjv7dmxrhpeprqhzlbr7qqkz4jaydy4zqmq2beyd3n4eee23lgaqakoyadn3qontcaqdaqjbnly2tcblncjzqgda7faptmcyrnuntw5yybqjbz6dznprdsswrgm7z6stlrb46nd4s4fvnev75s3f7q654kpmexgztkuor4i6zpjkfeodjgw63y4hbmnjs2bywrbf6pc7nsoyz5l4hvnj7uszmcog3mnil5qgco3irj7ukpfknnuiw6scaniwaqmjk6e5cjuebi4cveocjnezfnp3udcfyckryqq6rudoxjzg6brn3kz2eq5xagmhfp3auh7eyk3pqjmgoavcpsnrvfgcw22zyn2bv3rgegvrwdvqgoc33lorfktgtmluht5crixqwum7gjrbzcu5f3l2z4s7lgzol5ulc3xnfow6w2nvkeuu6lx4vi6puk2ty7bfmkd7u7lwa3s6itpxsnofffqps3kgifk5ny63gryss6nelwvdmmqkx4pzgnmssgpichi4tuattpaigogi65nsfc===?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
200 OK 74 B URL HTTP/2 s.viitjcfx.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=?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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=?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:44 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
s.viitjcfx.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=
200 OK 74 B URL HTTP/2 s.viitjcfx.com/i/1/pniesytfbv5fwadhpn4fa2cnmzvaw6kranxhw6sxmfegkaoeqt5dqxtyfucgitlhmaffw3yhmf7xqvtemdqyuk3ju2rpfj5qt2xypk2tcco4z7myjb5wk2diarjwaiijrotytf6i3t7yvojzeh3pjo6rjui5blf4ra6tdlr33rhay2nl4cjvaicdid53tb7yi4a222z2hiygsmswj5fwdich2rjtvwliwsver63aqktxlerzroqljwfwwspk7b2vq4423tfjnwtuu5mbpko334h2j5ryg4gzmcfh2pbgjq4rucdzmaxquiq2eeqrmkqgl54ts72omregmyikmyduojbdcqbd6frshnfcivsvnmsbyljvbm6qetb3fvcgkfjcfafdudtcb4oqgriqe57qmjsacesfwaymmusbm6yefixwmo3vfqchcaqahytcmkqxcvgaoodfgathsjakfuobq6yoez5s4ljskfqawhagkecf4vjbeqecsfbaay5w4m2zlugccbiabfetm2t5dqfv4ebfomibwjz4mnpcgecfey4hsmiiafttq6lrennam5zcfa3tw3bilmld46yydmbamjbmailfw7qakaodwmsxhirccmymharfajjae4bsuszrdyarqitdgbrb2gi7jehdsyr2dvubedlsguntgmieoexrwwrfcz4qsykpcmku6iz3keicgosxa43rmjs4eimumizabarcepb4eftrmw2ueidbeuridyock6qdafabeaiufmjcs3aakiscwricbyxfsgjlar7vabytmqjsifbzajks2iancfcb6fawarkrwpygfnndqd2dda4hedjejiicm4iddnrrieaoge5fkfz5iacd2hz2pn6ayhcape5eqeicmy5xoljta4pdqmaiennx4pbbgmvtgpjnhv3s2gcwme6bscatia6ce3t5fr5cabbfgqctofz7m4hrsc3ce4hbmpbunuih2oq4iq6hmhczeqgsgj26mqdwg3rmpudwceatgvut2xsqh4ab4tbidfrqq7iear3ayibzbelbwnzzbb5cixytbehbepsveycw2ojpaamh2bbpbe6scakqeisaeozahehwgf3gm5uhsdd6d4pssu3ecmbd4drkhyagmfjrfa2sszyylf5qq5z6pixfezjbnqpvg7r2p5xrmdaegy4rca3paesxmmqvajgbosiyhifduw3xeixdgda3ji6tc5rfgabt65rcam6eazd7merfwarhhmbva2ima4lgu7qeluyawkacc5kqghs3dmtekpixhfjtsgy6hbybqgsggapxydiubewscyj3eadsacd7jrqcszakjv7dmxrhpeprqhzlbr7qqkz4jaydy4zqmq2beyd3n4eee23lgaqakoyadn3qontcaqdaqjbnly2tcblncjzqgda7faptmcyrnuntw5yybqjbz6dznprdsswrgm7z6stlrb46nd4s4fvnev75s3f7q654kpmexgztkuor4i6zpjkfeodjgw63y4hbmnjs2bywrbf6pc7nsoyz5l4hvnj7us2acog3mnil5qgco3irj7ukpfknnuiw6scaniwdbmwlfas7ofjdi7kvgpwi7tyvi2j3l2mhummahje3cmcuv5e6lw5x2vk3estbauycu72umnfgnqr3jlytd3so5nrc3ucxkoeeuyockwjmlrxwpllfmmvy6my5x3kinc7oev62hrj7snuhlhjwkuoykdg75jhxgttexbhr6sii7vedjpitnwhw6c62vb5lvxdurojw5jgjczkejajritqggbatuojibmirmbazbeydy7ih55hga===
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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= HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:44 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
ocsp.usertrust.com/
200 OK 472 B IP
Hash c60ca4b761622aee6dac8fcd5a7b47bb
bf27b8a42a03073eb548b79b3adfc1c4a09921ba
55e4d169563b096866bbab23531097fd09fa620a64f56261165cf190aa90aaa7
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 30 Jan 2023 04:18:19 GMT
Expires: Mon, 06 Feb 2023 04:18:18 GMT
Etag: "bf27b8a42a03073eb548b79b3adfc1c4a09921ba"
Cache-Control: max-age=604094,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 716
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79312329daff0b31-OSL
ocsp.pki.goog/s/gts1p5/moUVnJuqZg4
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/moUVnJuqZg4
IP
Hash 96c16f241c68945ffd05f8f1df8002c5
8eb05a082e29eb73389ed3142f5d15b57ab65232
cf9edd0a4a4bf170b930e2cd412578934fcd2c1a01c4c4e7c49701ed44ddd1b1
POST /s/gts1p5/moUVnJuqZg4 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:44 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 25b733dfc345fc95c8772d6d03ee8dc0
a1e95e7370311f51ffe65f20ed9c4f353734a279
120c2f6b5e38e9e2feb3ec4280c3b2a4b03e26d4ee89921218adc2301c365eff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "120C2F6B5E38E9E2FEB3EC4280C3B2A4B03E26D4EE89921218ADC2301C365EFF"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2677
Expires: Thu, 02 Feb 2023 08:00:21 GMT
Date: Thu, 02 Feb 2023 07:15:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 25b733dfc345fc95c8772d6d03ee8dc0
a1e95e7370311f51ffe65f20ed9c4f353734a279
120c2f6b5e38e9e2feb3ec4280c3b2a4b03e26d4ee89921218adc2301c365eff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "120C2F6B5E38E9E2FEB3EC4280C3B2A4B03E26D4EE89921218ADC2301C365EFF"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15514
Expires: Thu, 02 Feb 2023 11:34:18 GMT
Date: Thu, 02 Feb 2023 07:15:44 GMT
Connection: keep-alive
s.viitjcfx.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=?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
200 OK 74 B URL HTTP/2 s.viitjcfx.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=?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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=?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:44 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-QNZ8ZPS9TD>m=2oe1u0&_p=710811802&_gaz=1&cid=1943197854.1675322168&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675322168&sct=1&seg=0&dl=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&dt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&en=page_view&_fv=2&_nsi=1&_ss=2&_c=1&_ee=1
204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-QNZ8ZPS9TD>m=2oe1u0&_p=710811802&_gaz=1&cid=1943197854.1675322168&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675322168&sct=1&seg=0&dl=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&dt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&en=page_view&_fv=2&_nsi=1&_ss=2&_c=1&_ee=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-QNZ8ZPS9TD>m=2oe1u0&_p=710811802&_gaz=1&cid=1943197854.1675322168&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675322168&sct=1&seg=0&dl=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&dt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&en=page_view&_fv=2&_nsi=1&_ss=2&_c=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://www.ksv.biz.ua
date: Thu, 02 Feb 2023 07:15:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.viitjcfx.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=?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
200 OK 74 B URL HTTP/2 s.viitjcfx.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=?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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=?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:44 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
mc.yandex.ru/watch/53858797?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1335%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A3%3Adp%3A0%3Als%3A1064628353293%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322169%3Ac%3A1%3Arn%3A809766265%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C1249%2C5%2C%2C%2C%2C1681%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322169%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/53858797?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1335%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A3%3Adp%3A0%3Als%3A1064628353293%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322169%3Ac%3A1%3Arn%3A809766265%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C1249%2C5%2C%2C%2C%2C1681%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322169%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch/53858797?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1335%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A3%3Adp%3A0%3Als%3A1064628353293%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322169%3Ac%3A1%3Arn%3A809766265%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C1249%2C5%2C%2C%2C%2C1681%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322169%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/53858797/1?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1335%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A3%3Adp%3A0%3Als%3A1064628353293%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322169%3Ac%3A1%3Arn%3A809766265%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C1249%2C5%2C%2C%2C%2C1681%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322169%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Thu, 02 Feb 2023 07:15:43 GMT
access-control-allow-origin: http://www.ksv.biz.ua
set-cookie: yabs-sid=363337461675322143; Path=/; SameSite=None; Secure
i=Y7IhMomphJjl4pE0P6Mpwdpie34h6DnwcdFHVwNwnklq7Fj7Dm7M/JuRVo6PP5TSZribsv+6SOi8zDwgNxxPTCM7728=; Expires=Sun, 30-Jan-2033 07:15:43 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=7984061091675322143; Expires=Fri, 02-Feb-2024 07:15:43 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=7984061091675322143; Expires=Fri, 02-Feb-2024 07:15:43 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706858143.yc.1675322143#1706858143.yrts.1675322143#1706858143.yrtsi.1675322143; Expires=Fri, 02-Feb-2024 07:15:43 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 02-Feb-2023 07:15:43 GMT
last-modified: Thu, 02-Feb-2023 07:15:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
s.viitjcfx.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=
200 OK 74 B URL HTTP/2 s.viitjcfx.com/i/1/pniesytfbv5fwadhpn4fa2cnmzvaw6kranxhm7ctmjfw3jjjcrddqxtyfucgitlhmaffw3yhmn7xywlamdqyuk3ju2rpfj5qt2xypk2tcco4z7myjb5wk2diarjwaiijrotytf6i3t7yvojzeh3pjo6rjui5blf4ra6tdlr33rhas2nl4cjvaicdid53tb7yi4a222z2hiygsmswj5fwdich2rjttwliwsver63aqktxlerz4htmjmkjtzqljxopnhieq7pdksdkjkpdlycyob63ndufgjz7cuqaw3t5c4wqeqbuhi4e6myxhf6u47kgazth26ctp4lccicucyff2objeijt2rztn5jr4jllei3aauzcaj4twyjaebvqg532cmcawiirj4irysdphagvazbndavfubz6lesa46beay2ruhibgebfq6yaa4rqqpbzgnbbqitff4vxevtdhztce2zphjisc63geurtghrhb4wa4ryebeztq2ireabw6cqap4xbao2zbbgto23tf4hqazqhafgbucdbcrfsopidc4ksedq7gabds4jzd56dshdgcfrt4lizj45q4xb3cupfeoj6mmmuudigmarto6jibi3tkilxd4vxgf3cauzaifatdzyh6csehyidweqsguzdo4babvqwibypaass2obzpm4d2ryqfu5fanbacisgyaybi5ssumqznffamakzdroagmzchyrsinyyg5xr4jcwgewr6lrhgbtqa7zngfarw7jzeuubw3abbqbciqbmc4bdamiodvtqyijhjieqo6bvdq2b2p3qbqjxgoa7dabtygldemex2a3cg4oryby3eiksq3bllneampbdb4ps4fjfnqxdwyqbpmgcehq2dypxolrma4axy6icayqsypltbywww3y4d5mtqoynfnztqxsqciddcvthbnrdgvrbhnqam735hmzsojrdjystyxtadmrrcozpemshaordieibkkrhbjetoiappeqqgiyzpaytqplzeqabgilnmigs2urxje7tc6roavngaprheapboabubedcmaj6eqjtwgzmmuqhkoqioeoryjragyybwg2ja4br6oakmyxbgnismihtgddtaygbenr4bmyqu2ywevntior7ha2tyezdp4ldw6rfpyatmkijeiphsobmovrcqmrfa4oraykugnngczjchqdsiplfp5oskpdrmy5twkqybmth6qalbrsgeea6gi4dkeb3p4mdybtafv6toircdbsuwhqbma3sgozkmjgdupccdeovwijieywsqcrhg5adgxlncj4twgzjaaqtc3t7fbcqc7q4bjsduoiepqrfsxqepq4rq2ilhvtuwmabbmnrygjfoymsi3y4giugofi3aixb4jyeabyqulcpoaxcqxduamkqo6y5eb6rqeaigqbcuei4pmibjgsxod5wau6aku56qsdd5jl73fwl7b53iu4kstbzuvnhjkavfcsvkfvbyk53krhuwylqetn3qb7dnmyqghap2fjpn3pj4szzntnjwbfkgusrowe4cnydryrdy5cik344dej2n4mq2zs3on2sti5nfrjpkhkbnhheuz6r5wlvahrzk35fikuzmnikavsq3bf63omzzzgowu3qmm2f27k4afsh3w3ckpqfp2rz5fve77smjlivg4fekhs4ptuuktgu625b4jl57gskmdomytgdmvfoquedf3iw2m7wjpkkpppgklrdzbxzs27jjto2klafbxeb6k24rknqwspfdkcq5y5zg3jgmyea2fy7eett4trkanztqhyakaus2gydtbggq===
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET /i/1/pniesytfbv5fwadhpn4fa2cnmzvaw6kranxhm7ctmjfw3jjjcrddqxtyfucgitlhmaffw3yhmn7xywlamdqyuk3ju2rpfj5qt2xypk2tcco4z7myjb5wk2diarjwaiijrotytf6i3t7yvojzeh3pjo6rjui5blf4ra6tdlr33rhas2nl4cjvaicdid53tb7yi4a222z2hiygsmswj5fwdich2rjttwliwsver63aqktxlerz4htmjmkjtzqljxopnhieq7pdksdkjkpdlycyob63ndufgjz7cuqaw3t5c4wqeqbuhi4e6myxhf6u47kgazth26ctp4lccicucyff2objeijt2rztn5jr4jllei3aauzcaj4twyjaebvqg532cmcawiirj4irysdphagvazbndavfubz6lesa46beay2ruhibgebfq6yaa4rqqpbzgnbbqitff4vxevtdhztce2zphjisc63geurtghrhb4wa4ryebeztq2ireabw6cqap4xbao2zbbgto23tf4hqazqhafgbucdbcrfsopidc4ksedq7gabds4jzd56dshdgcfrt4lizj45q4xb3cupfeoj6mmmuudigmarto6jibi3tkilxd4vxgf3cauzaifatdzyh6csehyidweqsguzdo4babvqwibypaass2obzpm4d2ryqfu5fanbacisgyaybi5ssumqznffamakzdroagmzchyrsinyyg5xr4jcwgewr6lrhgbtqa7zngfarw7jzeuubw3abbqbciqbmc4bdamiodvtqyijhjieqo6bvdq2b2p3qbqjxgoa7dabtygldemex2a3cg4oryby3eiksq3bllneampbdb4ps4fjfnqxdwyqbpmgcehq2dypxolrma4axy6icayqsypltbywww3y4d5mtqoynfnztqxsqciddcvthbnrdgvrbhnqam735hmzsojrdjystyxtadmrrcozpemshaordieibkkrhbjetoiappeqqgiyzpaytqplzeqabgilnmigs2urxje7tc6roavngaprheapboabubedcmaj6eqjtwgzmmuqhkoqioeoryjragyybwg2ja4br6oakmyxbgnismihtgddtaygbenr4bmyqu2ywevntior7ha2tyezdp4ldw6rfpyatmkijeiphsobmovrcqmrfa4oraykugnngczjchqdsiplfp5oskpdrmy5twkqybmth6qalbrsgeea6gi4dkeb3p4mdybtafv6toircdbsuwhqbma3sgozkmjgdupccdeovwijieywsqcrhg5adgxlncj4twgzjaaqtc3t7fbcqc7q4bjsduoiepqrfsxqepq4rq2ilhvtuwmabbmnrygjfoymsi3y4giugofi3aixb4jyeabyqulcpoaxcqxduamkqo6y5eb6rqeaigqbcuei4pmibjgsxod5wau6aku56qsdd5jl73fwl7b53iu4kstbzuvnhjkavfcsvkfvbyk53krhuwylqetn3qb7dnmyqghap2fjpn3pj4szzntnjwbfkgusrowe4cnydryrdy5cik344dej2n4mq2zs3on2sti5nfrjpkhkbnhheuz6r5wlvahrzk35fikuzmnikavsq3bf63omzzzgowu3qmm2f27k4afsh3w3ckpqfp2rz5fve77smjlivg4fekhs4ptuuktgu625b4jl57gskmdomytgdmvfoquedf3iw2m7wjpkkpppgklrdzbxzs27jjto2klafbxeb6k24rknqwspfdkcq5y5zg3jgmyea2fy7eett4trkanztqhyakaus2gydtbggq=== HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:44 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fc797e4e4215c50a42918f78bf25dd9b
3a9d446065eb8b0d530dab59538a290125b4647b
9fe7badd15d6591176c688dafa284fdf9d8f991109e0c3a9e56a17d8c61efd2e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9FE7BADD15D6591176C688DAFA284FDF9D8F991109E0C3A9E56A17D8C61EFD2E"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5890
Expires: Thu, 02 Feb 2023 08:53:54 GMT
Date: Thu, 02 Feb 2023 07:15:44 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20085
Date: Thu, 02 Feb 2023 05:43:14 GMT
Expires: Thu, 02 Feb 2023 07:43:14 GMT
Cache-Control: public, max-age=7200
Age: 5550
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
fcgi4.gnezdo.ru/cookie_matching/kadam/0GFvOYslvcjAnPK1yUOQ/?redirect=1
204 No Content 0 B URL HTTP/2 fcgi4.gnezdo.ru/cookie_matching/kadam/0GFvOYslvcjAnPK1yUOQ/?redirect=1
IP
ASN #48347 JSC Mediasoft ekspert
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie_matching/kadam/0GFvOYslvcjAnPK1yUOQ/?redirect=1 HTTP/1.1
Host: fcgi4.gnezdo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uuidksinc.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 02 Feb 2023 07:15:44 GMT
set-cookie: uid=XV9maWPbYyA8ciUSmPQKAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash a53dcb8afdb6c9a7d9c7da4e0aa68c07
c80e6ee5faa2c75ce041bd2015b20187ab38a7e1
f818a064cee4e9ba9570d4416c02ecb69472d45a6f67e3a5fb0ea5b3135ac8b0
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Mon, 06 Feb 2023 05:02:42 GMT
ETag: "c80e6ee5faa2c75ce041bd2015b20187ab38a7e1"
Last-Modified: Thu, 02 Feb 2023 05:02:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2070
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7931232a6c4c1c12-OSL
stats.g.doubleclick.net/g/collect?v=2&tid=G-XFFR1556Y1&cid=1943197854.1675322168>m=2oe1u0&aip=1
204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-XFFR1556Y1&cid=1943197854.1675322168>m=2oe1u0&aip=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-XFFR1556Y1&cid=1943197854.1675322168>m=2oe1u0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://www.ksv.biz.ua
date: Thu, 02 Feb 2023 07:15:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
kraken.rambler.ru/cnt/?et=pv&v=3.13.6i&pid=2484633&tid=t1.2484633.555361072.1675322168220&rid=1675322168.219-228342594&fid=pA8AAENKs1e4GYz8AQlryQA%3D&eid=796721682254884&aduid=495e88fd-ecd7-4757-84df-ad86bb58d005&aduidsc=ksv.biz.ua&stid=1890626154_1675322168221&sn=1&sen=1&ce=1&bs=1268x939&rf&en=UTF-8&pt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&sr=1280x1024&cd=24-bit&la=en-US&ja=0&acn=Mozilla&an=Netscape&pl=Linux%20x86_64&tz=0&le=0&ct=web&url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&lv&exp=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&rn=489357708
200 OK 595 B URL HTTP/2 kraken.rambler.ru/cnt/?et=pv&v=3.13.6i&pid=2484633&tid=t1.2484633.555361072.1675322168220&rid=1675322168.219-228342594&fid=pA8AAENKs1e4GYz8AQlryQA%3D&eid=796721682254884&aduid=495e88fd-ecd7-4757-84df-ad86bb58d005&aduidsc=ksv.biz.ua&stid=1890626154_1675322168221&sn=1&sen=1&ce=1&bs=1268x939&rf&en=UTF-8&pt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&sr=1280x1024&cd=24-bit&la=en-US&ja=0&acn=Mozilla&an=Netscape&pl=Linux%20x86_64&tz=0&le=0&ct=web&url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&lv&exp=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&rn=489357708
IP
ASN #24638 Rambler Internet Holding LLC
File type GIF image data, version 87a, 88 x 31\012- data
Hash db3c90620e09faf82ef51812e281487f
63cfc55377748a884f4e96d026f815211c54c79b
8ab5acadc0c66fd737b9ee5e671e9975dc79436ec68c54d922537cf88f6999a5
GET /cnt/?et=pv&v=3.13.6i&pid=2484633&tid=t1.2484633.555361072.1675322168220&rid=1675322168.219-228342594&fid=pA8AAENKs1e4GYz8AQlryQA%3D&eid=796721682254884&aduid=495e88fd-ecd7-4757-84df-ad86bb58d005&aduidsc=ksv.biz.ua&stid=1890626154_1675322168221&sn=1&sen=1&ce=1&bs=1268x939&rf&en=UTF-8&pt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&sr=1280x1024&cd=24-bit&la=en-US&ja=0&acn=Mozilla&an=Netscape&pl=Linux%20x86_64&tz=0&le=0&ct=web&url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&lv&exp=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&rn=489357708 HTTP/1.1
Host: kraken.rambler.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.4
date: Thu, 02 Feb 2023 07:15:44 GMT
content-type: image/gif
content-length: 595
last-modified: Tue, 12 Nov 2019 12:50:59 GMT
etag: "5dcaaab3-253"
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: content-type
access-control-allow-credentials: true
x-srv: 0kraken-prod0001.ad.rambler.tech
set-cookie: ruid=1CIAACBj22OEg86vAS3yqwB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
proto_uid=1CIAACBj22OEg86vAS3yqwB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d.uuidksinc.net/match/386/?remote_uid=Z53DLRv_XJyD
200 OK 74 B URL HTTP/2 d.uuidksinc.net/match/386/?remote_uid=Z53DLRv_XJyD
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET /match/386/?remote_uid=Z53DLRv_XJyD HTTP/1.1
Host: d.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uuidksinc.net/
Connection: keep-alive
Cookie: jcsuuid=0GFvOYslvcjAnPK1yUOQ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Thu, 02 Feb 2023 07:15:44 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
kraken.rambler.ru/cnt/v2/?event_type=base&event_name=page_view&project_id=2484633&session_id=1890626154_1675322168221&session_number=1&session_event_number=1&version=3.13.6i&counter_type=web&experiment=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&top100_id=t1.2484633.555361072.1675322168220&adtech_uid=495e88fd-ecd7-4757-84df-ad86bb58d005&adtech_uid_scope=ksv.biz.ua&fingerprint=pA8AAENKs1e4GYz8AQlryQA%3D&url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&request_id=1675322168.219-228342594&event_id=136221682251229&meta=%7B%22title%22%3A%22%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV%22%2C%22referer%22%3A%22%22%2C%22screen_size%22%3A%221280x1024%22%2C%22browser_size%22%3A%221268x939%22%2C%22color_depth%22%3A%2224-bit%22%2C%22language%22%3A%22en-US%22%2C%22browser%22%3A%22Netscape%22%2C%22platform%22%3A%22Linux%20x86_64%22%2C%22timezone%22%3A%220%22%7D&rn=512845085
200 OK 595 B URL HTTP/2 kraken.rambler.ru/cnt/v2/?event_type=base&event_name=page_view&project_id=2484633&session_id=1890626154_1675322168221&session_number=1&session_event_number=1&version=3.13.6i&counter_type=web&experiment=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&top100_id=t1.2484633.555361072.1675322168220&adtech_uid=495e88fd-ecd7-4757-84df-ad86bb58d005&adtech_uid_scope=ksv.biz.ua&fingerprint=pA8AAENKs1e4GYz8AQlryQA%3D&url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&request_id=1675322168.219-228342594&event_id=136221682251229&meta=%7B%22title%22%3A%22%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV%22%2C%22referer%22%3A%22%22%2C%22screen_size%22%3A%221280x1024%22%2C%22browser_size%22%3A%221268x939%22%2C%22color_depth%22%3A%2224-bit%22%2C%22language%22%3A%22en-US%22%2C%22browser%22%3A%22Netscape%22%2C%22platform%22%3A%22Linux%20x86_64%22%2C%22timezone%22%3A%220%22%7D&rn=512845085
IP
ASN #24638 Rambler Internet Holding LLC
File type GIF image data, version 87a, 88 x 31\012- data
Hash db3c90620e09faf82ef51812e281487f
63cfc55377748a884f4e96d026f815211c54c79b
8ab5acadc0c66fd737b9ee5e671e9975dc79436ec68c54d922537cf88f6999a5
GET /cnt/v2/?event_type=base&event_name=page_view&project_id=2484633&session_id=1890626154_1675322168221&session_number=1&session_event_number=1&version=3.13.6i&counter_type=web&experiment=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&top100_id=t1.2484633.555361072.1675322168220&adtech_uid=495e88fd-ecd7-4757-84df-ad86bb58d005&adtech_uid_scope=ksv.biz.ua&fingerprint=pA8AAENKs1e4GYz8AQlryQA%3D&url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&request_id=1675322168.219-228342594&event_id=136221682251229&meta=%7B%22title%22%3A%22%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV%22%2C%22referer%22%3A%22%22%2C%22screen_size%22%3A%221280x1024%22%2C%22browser_size%22%3A%221268x939%22%2C%22color_depth%22%3A%2224-bit%22%2C%22language%22%3A%22en-US%22%2C%22browser%22%3A%22Netscape%22%2C%22platform%22%3A%22Linux%20x86_64%22%2C%22timezone%22%3A%220%22%7D&rn=512845085 HTTP/1.1
Host: kraken.rambler.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.4
date: Thu, 02 Feb 2023 07:15:44 GMT
content-type: image/gif
content-length: 595
last-modified: Tue, 12 Nov 2019 12:50:59 GMT
etag: "5dcaaab3-253"
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: content-type
access-control-allow-credentials: true
x-srv: 0kraken-prod0001.ad.rambler.tech
set-cookie: ruid=1CIAACBj22OEg86vAS7yqwB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
proto_uid=1CIAACBj22OEg86vAS7yqwB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
accept-ranges: bytes
X-Firefox-Spdy: h2
fcgi4.gnezdo.ru/cookie_matching/kadam_resell/0GFvOYslvcjAnPK1yUOQ/?redirect=1
204 No Content 0 B URL HTTP/2 fcgi4.gnezdo.ru/cookie_matching/kadam_resell/0GFvOYslvcjAnPK1yUOQ/?redirect=1
IP
ASN #48347 JSC Mediasoft ekspert
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie_matching/kadam_resell/0GFvOYslvcjAnPK1yUOQ/?redirect=1 HTTP/1.1
Host: fcgi4.gnezdo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uuidksinc.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 02 Feb 2023 07:15:44 GMT
set-cookie: uid=XV9maWPbYyA8ciUSmPQQAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
X-Firefox-Spdy: h2
dmg.digitaltarget.ru/1/6573/i/i?a=662&e=0GFvOYslvcjAnPK1yUOQ&i=0.03351054356375416
307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/6573/i/i?a=662&e=0GFvOYslvcjAnPK1yUOQ&i=0.03351054356375416
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/6573/i/i?a=662&e=0GFvOYslvcjAnPK1yUOQ&i=0.03351054356375416 HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uuidksinc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/6573/i/i?call_source=awg&ts=1675322144389&a=662&e=0GFvOYslvcjAnPK1yUOQ&i=0.03351054356375416
Set-Cookie: viuserid=s2y9KIsbGazYMsv7LzX8; Max-Age=93312000; Expires=Sat, 17 Jan 2026 07:15:44 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
counter.yadro.ru/hit;ucoz_topline_worldwide?rhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/%3Fai1pbZ8w2EX6%255EJaWnyqY09Hv43F3a9DnBAWwTYvhI47%253B7VMn9GD8vdyBU0abMGN5cm5AM95DxNKrL5fpkLSw;1675322169008
200 OK 43 B URL HTTP/1.1 counter.yadro.ru/hit;ucoz_topline_worldwide?rhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/%3Fai1pbZ8w2EX6%255EJaWnyqY09Hv43F3a9DnBAWwTYvhI47%253B7VMn9GD8vdyBU0abMGN5cm5AM95DxNKrL5fpkLSw;1675322169008
IP
ASN #39134 United Network LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit;ucoz_topline_worldwide?rhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/%3Fai1pbZ8w2EX6%255EJaWnyqY09Hv43F3a9DnBAWwTYvhI47%253B7VMn9GD8vdyBU0abMGN5cm5AM95DxNKrL5fpkLSw;1675322169008 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Tue, 01 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
mc.yandex.ru/metrika/tag.js
200 OK 74 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash a236c7014c1f1a1e52d356f59e5d665a
b66c638eb2346287364c37725819bbab1f409d66
ad2d57579e453af0eac49156840bcd1dcfbd802a82135af98f41f714d7e698f2
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 73769
date: Thu, 02 Feb 2023 07:15:44 GMT
access-control-allow-origin: *
etag: "63c93a4b-12029"
expires: Thu, 02 Feb 2023 08:15:44 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 02 Feb 2023 07:15:44 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Thu, 02 Feb 2023 08:15:44 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
counter.yadro.ru/hit;ucoznet?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322167852
302 Moved Temporarily 32 B URL HTTP/1.1 counter.yadro.ru/hit;ucoznet?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322167852
IP
ASN #39134 United Network LLC
File type HTML document, ASCII text
Hash 3e9c09a8c5a87f266e047a596f48578c
07d7b1940b7e3f9a3db43197458f9b8ef18a6bce
57fad7ae62012ff4a38ecb6045ac6e8e3a070a33bbd033b21ab6cad3566d9254
GET /hit;ucoznet?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322167852 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 302 Moved Temporarily
Date: Thu, 02 Feb 2023 07:15:44 GMT
Server: 0W/0.8c
Content-Type: text/html
Location: https://counter.yadro.ru/hit;ucoznet?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322167852
Content-Length: 32
Expires: Tue, 01 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
stats.g.doubleclick.net/g/collect?v=2&tid=G-QNZ8ZPS9TD&cid=1943197854.1675322168>m=2oe1u0&aip=1
204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-QNZ8ZPS9TD&cid=1943197854.1675322168>m=2oe1u0&aip=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-QNZ8ZPS9TD&cid=1943197854.1675322168>m=2oe1u0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://www.ksv.biz.ua
date: Thu, 02 Feb 2023 07:15:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vk.com/share.php?act=count&index=0&url=http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&callback=uSocialShare.uShare.CallbackRegistry.cb260757
301 Moved Permanently 164 B URL HTTP/1.1 vk.com/share.php?act=count&index=0&url=http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&callback=uSocialShare.uShare.CallbackRegistry.cb260757
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 6d359f551ba4cb27d59e94a6cddaec09
d230318bd921ad8167c2eb9dfdc7b1d7d2c7373f
9ecd8531025e89f5e1ca23d81203a9feddbd5b4b75ca79c9868cb53762293bc8
GET /share.php?act=count&index=0&url=http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&callback=uSocialShare.uShare.CallbackRegistry.cb260757 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 301 Moved Permanently
Server: kittenx
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Type: text/html
Content-Length: 164
Connection: keep-alive
Location: https://vk.com/share.php?act=count&index=0&url=http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&callback=uSocialShare.uShare.CallbackRegistry.cb260757
X-Frontend: front220004
Access-Control-Expose-Headers: X-Frontend
www.google-analytics.com/j/collect?v=1&_v=j99&a=710811802&t=pageview&_s=1&dl=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&ul=en-us&de=UTF-8&dt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_utma=105968665.56780934.1675322168.1675322168.1675322168.1&_utmz=105968665.1675322168.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)&_utmht=1675322169491&_u=IADCAAABAAAAACAAI~&jid=1078195011&gjid=136758068&cid=1943197854.1675322168&tid=UA-10424129-1&_gid=1724923808.1675322169&_r=1&_slc=1&z=1733971828
200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=710811802&t=pageview&_s=1&dl=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&ul=en-us&de=UTF-8&dt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_utma=105968665.56780934.1675322168.1675322168.1675322168.1&_utmz=105968665.1675322168.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)&_utmht=1675322169491&_u=IADCAAABAAAAACAAI~&jid=1078195011&gjid=136758068&cid=1943197854.1675322168&tid=UA-10424129-1&_gid=1724923808.1675322169&_r=1&_slc=1&z=1733971828
IP
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=710811802&t=pageview&_s=1&dl=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&ul=en-us&de=UTF-8&dt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_utma=105968665.56780934.1675322168.1675322168.1675322168.1&_utmz=105968665.1675322168.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)&_utmht=1675322169491&_u=IADCAAABAAAAACAAI~&jid=1078195011&gjid=136758068&cid=1943197854.1675322168&tid=UA-10424129-1&_gid=1724923808.1675322169&_r=1&_slc=1&z=1733971828 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://www.ksv.biz.ua
date: Thu, 02 Feb 2023 07:15:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=710811802&t=pageview&_s=1&dl=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&ul=en-us&de=UTF-8&dt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_utma=105968665.56780934.1675322168.1675322168.1675322168.1&_utmz=105968665.1675322168.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)&_utmht=1675322169497&_u=YADCAUABAAAAACAAI~&jid=1102084508&gjid=1977064095&cid=1943197854.1675322168&tid=UA-10424129-1&_gid=1242122030.1675322169&_r=1>m=2ou1u0&z=438872934
200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=710811802&t=pageview&_s=1&dl=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&ul=en-us&de=UTF-8&dt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_utma=105968665.56780934.1675322168.1675322168.1675322168.1&_utmz=105968665.1675322168.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)&_utmht=1675322169497&_u=YADCAUABAAAAACAAI~&jid=1102084508&gjid=1977064095&cid=1943197854.1675322168&tid=UA-10424129-1&_gid=1242122030.1675322169&_r=1>m=2ou1u0&z=438872934
IP
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j99&a=710811802&t=pageview&_s=1&dl=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&ul=en-us&de=UTF-8&dt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_utma=105968665.56780934.1675322168.1675322168.1675322168.1&_utmz=105968665.1675322168.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)&_utmht=1675322169497&_u=YADCAUABAAAAACAAI~&jid=1102084508&gjid=1977064095&cid=1943197854.1675322168&tid=UA-10424129-1&_gid=1242122030.1675322169&_r=1>m=2ou1u0&z=438872934 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://www.ksv.biz.ua
date: Thu, 02 Feb 2023 07:15:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
File type ASCII text, with very long lines (4879)
Hash ff4191ba0d246318de44834c5a20c717
6b113ccb1196a902a75dd27e2230bd1759b92792
dfaa5f04d922684b07cc43cef591306ac8d4ed8aa52863060efdf423d537b4ec
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 02 Feb 2023 07:15:44 GMT
expires: Thu, 02 Feb 2023 07:15:44 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 13144028271497407320
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50112
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1403866564&utmhn=www.ksv.biz.ua&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&utmhid=710811802&utmr=-&utmp=%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&utmht=1675322168352&utmac=UA-10424129-1&utmcc=__utma%3D105968665.56780934.1675322168.1675322168.1675322168.1%3B%2B__utmz%3D105968665.1675322168.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=758339248&utmredir=1&utmu=DAAAAAAAAAAAAAAAAAAAAAAE~
302 Found 368 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1403866564&utmhn=www.ksv.biz.ua&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&utmhid=710811802&utmr=-&utmp=%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&utmht=1675322168352&utmac=UA-10424129-1&utmcc=__utma%3D105968665.56780934.1675322168.1675322168.1675322168.1%3B%2B__utmz%3D105968665.1675322168.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=758339248&utmredir=1&utmu=DAAAAAAAAAAAAAAAAAAAAAAE~
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 70b750d1ed559e3c566d7252d0e1d129
365e19b787ef0574ffa47978f0bfbd6ac037c936
3058df47e8fdcf6597f36ea508650fc1fad869bafaf22a63c42b099f8942df6b
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1403866564&utmhn=www.ksv.biz.ua&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&utmhid=710811802&utmr=-&utmp=%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&utmht=1675322168352&utmac=UA-10424129-1&utmcc=__utma%3D105968665.56780934.1675322168.1675322168.1675322168.1%3B%2B__utmz%3D105968665.1675322168.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=758339248&utmredir=1&utmu=DAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 302 Found
Location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-10424129-1&cid=56780934.1675322168&jid=758339248&_v=5.7.2&z=1403866564
Access-Control-Allow-Origin: *
Date: Thu, 02 Feb 2023 07:15:44 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
Server: Golfe2
Content-Length: 368
counter.yadro.ru/hit;ucoz_desktop_ad?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322167853
302 Moved Temporarily 32 B URL HTTP/1.1 counter.yadro.ru/hit;ucoz_desktop_ad?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322167853
IP
ASN #39134 United Network LLC
File type HTML document, ASCII text
Hash 3e9c09a8c5a87f266e047a596f48578c
07d7b1940b7e3f9a3db43197458f9b8ef18a6bce
57fad7ae62012ff4a38ecb6045ac6e8e3a070a33bbd033b21ab6cad3566d9254
GET /hit;ucoz_desktop_ad?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322167853 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 302 Moved Temporarily
Date: Thu, 02 Feb 2023 07:15:44 GMT
Server: 0W/0.8c
Content-Type: text/html
Location: https://counter.yadro.ru/hit;ucoz_desktop_ad?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322167853
Content-Length: 32
Expires: Tue, 01 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/watch/539821/1?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1116112669516%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322168%3Ac%3A1%3Arn%3A450656654%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322168%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
200 OK 407 B URL HTTP/2 mc.yandex.ru/watch/539821/1?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1116112669516%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322168%3Ac%3A1%3Arn%3A450656654%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322168%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash 3a09cd514ed506ba979fbe41af379db0
e09894c81076b6706924170a7cf251039e2c33f9
fa2bed62dc6035e4a8afab151a3e174db4988fe980d10577b4758c5bd9274073
GET /watch/539821/1?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1116112669516%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322168%3Ac%3A1%3Arn%3A450656654%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322168%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.ksv.biz.ua
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 407
date: Thu, 02 Feb 2023 07:15:44 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://www.ksv.biz.ua
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 02-Feb-2023 07:15:44 GMT
last-modified: Thu, 02-Feb-2023 07:15:44 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11855
Expires: Thu, 02 Feb 2023 10:33:19 GMT
Date: Thu, 02 Feb 2023 07:15:44 GMT
Connection: keep-alive
counter.yadro.ru/hit?t57.6;r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;0.05806808996376911
302 Moved Temporarily 32 B URL HTTP/1.1 counter.yadro.ru/hit?t57.6;r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;0.05806808996376911
IP
ASN #39134 United Network LLC
File type HTML document, ASCII text
Hash 3e9c09a8c5a87f266e047a596f48578c
07d7b1940b7e3f9a3db43197458f9b8ef18a6bce
57fad7ae62012ff4a38ecb6045ac6e8e3a070a33bbd033b21ab6cad3566d9254
GET /hit?t57.6;r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;0.05806808996376911 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 302 Moved Temporarily
Date: Thu, 02 Feb 2023 07:15:44 GMT
Server: 0W/0.8c
Content-Type: text/html
Location: https://counter.yadro.ru/hit?t57.6;r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;0.05806808996376911
Content-Length: 32
Expires: Tue, 01 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg
200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4392f298c9e98515493f1235810838f
b89eebf2b8adac69487262100b07da8bc171ecf7
b368d87d3a0fe4e1a8ddc82bed704b3056ad2874b8d325111b399b18807c1e5e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbaa9536b-a4e6-42f5-99dd-75298eecbbb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 15656
x-amzn-requestid: 6723d22f-8b16-4fb2-af92-9b3257fc2a1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIHpRoAMFRYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-03b1c6646f63ba716a6298e1;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: alMHzjwJbGegz4F76t9-EhIhCUHgQngtgiZgMo2_MxAIrXqsNxWxBg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 08:16:33 GMT
age: 82751
etag: "b89eebf2b8adac69487262100b07da8bc171ecf7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f85742f336de59ca88f7f964a8b33f4
0fc7177f8cb06421a8807e93989f651bda743567
fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: 79840c68-3e99-428d-9c01-9e4a93a34486
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdUzH1-oAMFiwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc1e-5bb93c5126aaff474900da63;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Mc8C-oesi4njIn2K2f56GKuyt6erRJAqCU-B4InhTD8oIoqo4s5-Fg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:43 GMT
age: 32221
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd8c5ba-bd1b-4dda-ae36-680f02b388f8.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd8c5ba-bd1b-4dda-ae36-680f02b388f8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b91a1323efe4b01a2d1a2e8485117934
43d04a554f6ef512e7b21ac09287efc0e4e5efee
393e3ab81aee9fda022d06c25789be66e56aaf56f81b0514ab5dfec445087bdf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd8c5ba-bd1b-4dda-ae36-680f02b388f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10807
x-amzn-requestid: 9fff89ce-35f7-4b09-b766-6e65b4586c10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ5PHm7oAMFdfw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bd07-0ed090976c8a74542e225f4c;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FESYmaA4l_a_3Md_9_0DZyzRCVPPIujyejd6lAO0pWS2bfwLzUsjfA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:02:27 GMT
age: 797
etag: "43d04a554f6ef512e7b21ac09287efc0e4e5efee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dac6192-89b0-4161-86a2-38f3998a1bc4.jpeg
200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dac6192-89b0-4161-86a2-38f3998a1bc4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f1d06527f75868ea84da730b7c8b5660
6c0cb65a477d6bc7d013529411d5735bd39e3d46
2ff4fb12b9ac4dff67bf89cc69f1bfce3ffa738696f904172044a5a537a704c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dac6192-89b0-4161-86a2-38f3998a1bc4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6783
x-amzn-requestid: 5ab60169-ec65-483a-828b-3312c74ee4b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BGjqoAMFV6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-73a465244f89adaa27626246;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: S012XKdrl7ID1qnfD-G2fcAxWoseP_mAnaDi12Y-UmdBW8yXgGlpgQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:46 GMT
age: 32218
etag: "6c0cb65a477d6bc7d013529411d5735bd39e3d46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fcgi4.gnezdo.ru/cookie_matching/kadam/0GFvOYslvcjAnPK1yUOQ
302 Found 32 B URL HTTP/2 fcgi4.gnezdo.ru/cookie_matching/kadam/0GFvOYslvcjAnPK1yUOQ
IP
ASN #48347 JSC Mediasoft ekspert
File type HTML document, ASCII text
Hash 3e9c09a8c5a87f266e047a596f48578c
07d7b1940b7e3f9a3db43197458f9b8ef18a6bce
57fad7ae62012ff4a38ecb6045ac6e8e3a070a33bbd033b21ab6cad3566d9254
GET /cookie_matching/kadam/0GFvOYslvcjAnPK1yUOQ HTTP/1.1
Host: fcgi4.gnezdo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uuidksinc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 02 Feb 2023 07:15:44 GMT
location: https://fcgi4.gnezdo.ru/cookie_matching/kadam/0GFvOYslvcjAnPK1yUOQ/?redirect=1
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With
access-control-allow-credentials: true
set-cookie: uid=XV9maWPbYyA8ciUSmPPvAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 86664b4d1fc27ba7b5bff8a245604326
b8c7ef73101a497b6c78ad59aafe66a391fdc3fa
e4596faadf14051299036a79632951d90183dd0635293687edef11985799a752
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4814
x-amzn-requestid: 90da23ab-2c54-40ec-8e26-bdf4eeb1e27b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKWFpvoAMFyPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-70c4cb89413ed6bd44731d76;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: htcecPD3kYwCPwPPCqgVuXnCuKo6TTKntzaB2xFID5fvBXpZQe463A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:38 GMT
age: 33366
etag: "b8c7ef73101a497b6c78ad59aafe66a391fdc3fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r.i.ua/s?u232167&p89&n0.7512421031281932&c1&d24&w1280&h1024&rwww.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
200 OK 978 B URL HTTP/1.1 r.i.ua/s?u232167&p89&n0.7512421031281932&c1&d24&w1280&h1024&rwww.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
IP
File type PNG image data, 88 x 31, 8-bit colormap, non-interlaced\012- data
Hash bba262a2a0e271f92aa3c19314b0427a
b60fc57fa419c9022d1de44a4c9527124abdca30
bbacbb96c6bf86d909294897d7ede6f6348033bd07da4a489dda3e3539481e43
GET /s?u232167&p89&n0.7512421031281932&c1&d24&w1280&h1024&rwww.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760 HTTP/1.1
Host: r.i.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, must-revalidate
Expires: 0
Pragma: no-cache
P3P: policyref="http://i.i.ua/w3c/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
CF-Cache-Status: DYNAMIC
Set-Cookie: U=4a2d9d363db6320; SameSite=None; expires=Tue, 01-Feb-2028 07:15:44 GMT; path=/
__cf_bm=v4jF1PRZCMnnDhCaLQZm0uYjm1AiKxY.WG1hj6PVaFw-1675322144-0-AUE9w59GvUM80VbXD46Gu9vL3cUuN5d6nFJxVZTuoAtSEfz/A1l6DsMCchCSNMIjnkoVOZucV+ir0I8paZqZUKM=; path=/; expires=Thu, 02-Feb-23 07:45:44 GMT; domain=.i.ua; HttpOnly; SameSite=None
Server: cloudflare
CF-RAY: 7931232b9c53b523-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-XFFR1556Y1&cid=1943197854.1675322168>m=2oe1u0&aip=1&z=1812793669
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-XFFR1556Y1&cid=1943197854.1675322168>m=2oe1u0&aip=1&z=1812793669
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-XFFR1556Y1&cid=1943197854.1675322168>m=2oe1u0&aip=1&z=1812793669 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 07:15:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-QNZ8ZPS9TD&cid=1943197854.1675322168>m=2oe1u0&aip=1&z=274476752
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-QNZ8ZPS9TD&cid=1943197854.1675322168>m=2oe1u0&aip=1&z=274476752
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-QNZ8ZPS9TD&cid=1943197854.1675322168>m=2oe1u0&aip=1&z=274476752 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 07:15:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15425
Expires: Thu, 02 Feb 2023 11:32:49 GMT
Date: Thu, 02 Feb 2023 07:15:44 GMT
Connection: keep-alive
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 9b6442f69b92a278cada88d71ff63e53
3c52d87ddb1d418465c138b46a5bf8baaaa45b17
c28c07621a88b4e580a6094feb9db87430721540d3533b79067c6452eca778ef
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 06 Feb 2023 03:16:02 GMT
ETag: "3c52d87ddb1d418465c138b46a5bf8baaaa45b17"
Last-Modified: Thu, 02 Feb 2023 03:16:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1932
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7931232c1800b4ee-OSL
ocsp.sectigo.com/
200 OK 471 B IP
Hash 2f59b9826b587ec88c538c4e0fdda68f
a9569ad568776c896099e2e7b4291dbe7101cb9b
76812d4ae48f41904eb3722fb49c463d4287d81fa7a9ea5d28687ddb3a546931
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 02:03:25 GMT
Expires: Wed, 08 Feb 2023 02:03:24 GMT
Etag: "a9569ad568776c896099e2e7b4291dbe7101cb9b"
Cache-Control: max-age=499059,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7931232ab9ec0b41-OSL
counter.yadro.ru/hit;ucoznet?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322167852
200 OK 43 B URL HTTP/1.1 counter.yadro.ru/hit;ucoznet?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322167852
IP
ASN #39134 United Network LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit;ucoznet?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322167852 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Tue, 01 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
dmg.digitaltarget.ru/awg/custom/6573/i/i?call_source=awg&ts=1675322144389&a=662&e=0GFvOYslvcjAnPK1yUOQ&i=0.03351054356375416
200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/6573/i/i?call_source=awg&ts=1675322144389&a=662&e=0GFvOYslvcjAnPK1yUOQ&i=0.03351054356375416
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/6573/i/i?call_source=awg&ts=1675322144389&a=662&e=0GFvOYslvcjAnPK1yUOQ&i=0.03351054356375416 HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uuidksinc.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
hit39.hotlog.ru/cgi-bin/hotlog/count?0.4827983631255355&s=2163561&im=700&r=&pg=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&j=N&wh=1280x1024&px=24&js=1.3
404 Not Found 19 B URL HTTP/1.1 hit39.hotlog.ru/cgi-bin/hotlog/count?0.4827983631255355&s=2163561&im=700&r=&pg=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&j=N&wh=1280x1024&px=24&js=1.3
IP
ASN #12695 LLC Digital Network
Hash 595e88012a6521aae3e12cbebe76eb9e
da3968197e7bf67aa45a77515b52ba2710c5fc34
b16e15764b8bc06c5c3f9f19bc8b99fa48e7894aa5a6ccdad65da49bbf564793
GET /cgi-bin/hotlog/count?0.4827983631255355&s=2163561&im=700&r=&pg=http%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&j=N&wh=1280x1024&px=24&js=1.3 HTTP/1.1
Host: hit39.hotlog.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 404 Not Found
Content-Type: text/plain; charset=utf-8
X-Content-Type-Options: nosniff
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Length: 19
www.ksv.biz.ua/favicon.ico
200 OK 894 B URL HTTP/1.1 www.ksv.biz.ua/favicon.ico
IP
ASN #39572 DataWeb Global Group B.V.
File type MS Windows icon resource - 1 icon, 16x16\012- data
Hash a3a0510761359bcc2613a45c76546d42
c66b17eac9b5b07d4c3242448b079adc2949128e
e50d733849b9ff216b9cb7d884bffe006c908a71106455f7a25f297fce487f32
GET /favicon.ico HTTP/1.1
Host: www.ksv.biz.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760
Cookie: 8ksvpu=+AIdY9tj; 8ksvuzll=1675322141; ucvid=sRy0M3cpFL; 8ksvpushi=1; _ym_uid=1675322168999051118; _ym_d=1675322168; adtech_uid=495e88fd-ecd7-4757-84df-ad86bb58d005%3Aksv.biz.ua; __utma=105968665.56780934.1675322168.1675322168.1675322168.1; __utmb=105968665.1.10.1675322168; __utmc=105968665; __utmz=105968665.1675322168.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1; kdSspUid=14f4eca0-701c-472c-a0ed-3a1434487f06; _ga_QNZ8ZPS9TD=GS1.1.1675322168.1.0.1675322168.60.0.0; _ga=GA1.1.1943197854.1675322168; _ga_XFFR1556Y1=GS1.1.1675322168.1.0.1675322168.60.0.0; s=1; __lx207266_load_cnt=1; __lx207266_load_tmr=0; __lx207266_load_tmr_pre=1675322168998; _ym_visorc=b
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:43 GMT
Content-Type: image/x-icon
Content-Length: 894
Last-Modified: Wed, 25 Feb 2009 14:44:31 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "49a5594f-37e"
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 86qoRJHXcrnBGi3REMF5q3ANzKdqEs5F3yFUBmiIt6SCbBVnhGe2Kw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:58:57 GMT
age: 33407
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
counter.yadro.ru/hit;ucoz_desktop_ad?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322167853
200 OK 43 B URL HTTP/1.1 counter.yadro.ru/hit;ucoz_desktop_ad?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322167853
IP
ASN #39134 United Network LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit;ucoz_desktop_ad?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322167853 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Tue, 01 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
ocsp2.globalsign.com/gsorganizationvalsha2g2
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash 2602c3d6d44068dee04e3137d9e3b225
92dde87b65f32d9f41c0ec99feb0e75a46126f0d
fa453477cfd059d573a56c189b31170967456ab4e6df5f90097c807c3899f67c
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Mon, 06 Feb 2023 04:44:11 GMT
ETag: "92dde87b65f32d9f41c0ec99feb0e75a46126f0d"
Last-Modified: Thu, 02 Feb 2023 04:44:12 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1992
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7931232c6daa1c12-OSL
ads.betweendigital.com/match?bidder_id=45004&callback_url=https%3A%2F%2Fkimberlite.io%2Frtb%2Fsync%2Fbetween2%3Fu%3D%24%7BUSER_ID%7D%26f%3Dhttps%253A%252F%252Fd.uuidksinc.net%252Fmatch%252F499%252F%253Fremote_uid%253DY9tjH6c2rcs%26n%3D1
302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=45004&callback_url=https%3A%2F%2Fkimberlite.io%2Frtb%2Fsync%2Fbetween2%3Fu%3D%24%7BUSER_ID%7D%26f%3Dhttps%253A%252F%252Fd.uuidksinc.net%252Fmatch%252F499%252F%253Fremote_uid%253DY9tjH6c2rcs%26n%3D1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=45004&callback_url=https%3A%2F%2Fkimberlite.io%2Frtb%2Fsync%2Fbetween2%3Fu%3D%24%7BUSER_ID%7D%26f%3Dhttps%253A%252F%252Fd.uuidksinc.net%252Fmatch%252F499%252F%253Fremote_uid%253DY9tjH6c2rcs%26n%3D1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=45004&callback_url=https%3A%2F%2Fkimberlite.io%2Frtb%2Fsync%2Fbetween2%3Fu%3D%24%7BUSER_ID%7D%26f%3Dhttps%253A%252F%252Fd.uuidksinc.net%252Fmatch%252F499%252F%253Fremote_uid%253DY9tjH6c2rcs%26n%3D1&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Fri, 02 Feb 2024 07:15:44 GMT; Path=/; Domain=.betweendigital.com
tuuid=ae10e5c7-5733-5221-97a1-6ee4f47a0dc4; Max-Age=31536000; Expires=Fri, 02 Feb 2024 07:15:44 GMT; Path=/; Domain=.betweendigital.com
ut=Y9tjIAAKrmD-wF4WHyQokA_zkPxifsBtDTu3cw==; Max-Age=31536000; Expires=Fri, 02 Feb 2024 07:15:44 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
counter.yadro.ru/hit?t57.6;r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;0.05806808996376911
200 OK 911 B URL HTTP/1.1 counter.yadro.ru/hit?t57.6;r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;0.05806808996376911
IP
ASN #39134 United Network LLC
File type GIF image data, version 89a, 88 x 31\012- data
Hash 127d76e24a038373a8428d869cc6c27d
ff4b0b97cf28c6e9cfa9ef3530eb4947957b782f
07af4360c2212cdb2437994bbb1cb31c63d0811357f21593893ecf0214c21f07
GET /hit?t57.6;r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;0.05806808996376911 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Type: image/gif
Content-Length: 911
Connection: keep-alive
Expires: Tue, 01 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
connect.mail.ru/share_count?url_list=http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&callback=0&func=mail&callback=uSocialShare.uShare.CallbackRegistry.cb761435
200 OK 104 B URL HTTP/1.1 connect.mail.ru/share_count?url_list=http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&callback=0&func=mail&callback=uSocialShare.uShare.CallbackRegistry.cb761435
IP
Hash 87b03d09c82922f905bd5dc9e0ea168d
b9224436ad2e5a0a36c79330cdf6b02f63406175
cc61d73040b68696edd942accb9fc61398ac4d2631bc86c275a07f07d156bde0
GET /share_count?url_list=http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&callback=0&func=mail&callback=uSocialShare.uShare.CallbackRegistry.cb761435 HTTP/1.1
Host: connect.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Type: text/javascript; charset=UTF-8
Content-Length: 104
Connection: keep-alive
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
x-webkit-csp-report-only: default-src https: 'unsafe-inline' 'unsafe-eval'; img-src https://* data: ; frame-src https://* about: javascript:
p3p: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
cache-control: no-cache, no-store, must-revalidate, private
x-envoy-upstream-service-time: 4
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash df4a6d84addba49571d9f6ae44c61a3f
28c8093de27e27645cf6dfd5ae93a62fc77b9be5
cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vk.com/share.php?act=count&index=0&url=http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&callback=uSocialShare.uShare.CallbackRegistry.cb260757
200 OK 41 B URL HTTP/2 vk.com/share.php?act=count&index=0&url=http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&callback=uSocialShare.uShare.CallbackRegistry.cb260757
IP
File type ASCII text, with no line terminators
Hash 6de86497641c67868bfddcbf5a8bf434
6065bb53c9addbda818a6b172597326ebc31e8dc
51d446e1b704e289975e53c6945dee986d432bb439d02a2afcee7ce1b5bddcf8
GET /share.php?act=count&index=0&url=http://www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760&callback=uSocialShare.uShare.CallbackRegistry.cb260757 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Thu, 02 Feb 2023 07:15:44 GMT
content-type: text/html; charset=windows-1251
content-length: 41
x-powered-by: KPHP/7.4.113225
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Sun, 04 Feb 2024 02:00:42 GMT; path=/; domain=.vk.com
remixstlid=9064993495910413030_HCWAF1eOeD5I0FM8I5LuBwiiTMH6vUCF40tmCwzvOqT; expires=Fri, 02 Feb 2024 07:15:44 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-encoding: gzip
x-frontend: front220007
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=45004&callback_url=https%3A%2F%2Fkimberlite.io%2Frtb%2Fsync%2Fbetween2%3Fu%3D%24%7BUSER_ID%7D%26f%3Dhttps%253A%252F%252Fd.uuidksinc.net%252Fmatch%252F499%252F%253Fremote_uid%253DY9tjH6c2rcs%26n%3D1&crf=1
200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=45004&callback_url=https%3A%2F%2Fkimberlite.io%2Frtb%2Fsync%2Fbetween2%3Fu%3D%24%7BUSER_ID%7D%26f%3Dhttps%253A%252F%252Fd.uuidksinc.net%252Fmatch%252F499%252F%253Fremote_uid%253DY9tjH6c2rcs%26n%3D1&crf=1
IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=45004&callback_url=https%3A%2F%2Fkimberlite.io%2Frtb%2Fsync%2Fbetween2%3Fu%3D%24%7BUSER_ID%7D%26f%3Dhttps%253A%252F%252Fd.uuidksinc.net%252Fmatch%252F499%252F%253Fremote_uid%253DY9tjH6c2rcs%26n%3D1&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Fri, 02 Feb 2024 07:15:44 GMT; Path=/; Domain=.betweendigital.com
tuuid=3e82a00c-a700-5221-9d35-e204feee8124; Max-Age=31536000; Expires=Fri, 02 Feb 2024 07:15:44 GMT; Path=/; Domain=.betweendigital.com
ut=Y9tjIAALZfgT1u3Fd-202fdpue4jivzpaqDgow==; Max-Age=31536000; Expires=Fri, 02 Feb 2024 07:15:44 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-10424129-1&cid=56780934.1675322168&jid=758339248&_v=5.7.2&z=1403866564
302 Found 0 B URL HTTP/2 www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-10424129-1&cid=56780934.1675322168&jid=758339248&_v=5.7.2&z=1403866564
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-10424129-1&cid=56780934.1675322168&jid=758339248&_v=5.7.2&z=1403866564 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 02 Feb 2023 07:15:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-10424129-1&cid=56780934.1675322168&jid=758339248&_v=5.7.2&z=1403866564&slf_rd=1&random=2008522815
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
counter.yadro.ru/hit;clickgate08?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322168573
200 OK 43 B URL HTTP/1.1 counter.yadro.ru/hit;clickgate08?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322168573
IP
ASN #39134 United Network LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit;clickgate08?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322168573 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 02 Feb 2023 07:15:44 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Tue, 01 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 07:15:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.clarity.ms/tag/bs33uuxxz8
200 OK 20 kB URL HTTP/2 www.clarity.ms/tag/bs33uuxxz8
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d4e72e476ebc6266a9efe0b6d6ee529f
684e3b9615d7f35a666ec5822b9a5db8e6c43be5
21a52a4604b442ab462a57c76820ac4df09fbd4fcda84a7210cccfeb1f530a95
GET /tag/bs33uuxxz8 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=f6156735b2654da694328fcbb6d50c05.20230202.20240202; expires=Fri, 02 Feb 2024 07:15:44 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
x-cache: CONFIG_NOCACHE
x-azure-ref: 0IGPbYwAAAAD8N983eDi2SbpdTHtqwcaVQ1BIMzBFREdFMDQwNwA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Thu, 02 Feb 2023 07:15:44 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:52:41 GMT
expires: Tue, 30 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 217384
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
200 OK 128 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 128352, version 1.0\012- data
Size 128 kB (128352 bytes)
Hash 53436aca8627a49f4deaaa44dc9e3c05
0bc0c675480d94ec7e8609dda6227f88c5d08d2c
8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1
GET /s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:41:33 GMT
expires: Fri, 02 Feb 2024 00:41:33 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 25 Aug 2022 00:26:06 GMT
content-type: font/woff2
age: 23652
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
d.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 574
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: http://www.ksv.biz.ua
access-control-allow-credentials: true
date: Thu, 02 Feb 2023 07:15:45 GMT
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
302 Found 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=CD35BAE4166543BDB1A4807222276EF7&RedC=c.clarity.ms&MXFR=30037705123F648A1D2165A9163F6A87
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=30037705123F648A1D2165A9163F6A87; domain=.clarity.ms; expires=Tue, 27-Feb-2024 07:15:45 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Thu, 02 Feb 2023 07:15:44 GMT
content-length: 0
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=CD35BAE4166543BDB1A4807222276EF7&RedC=c.clarity.ms&MXFR=30037705123F648A1D2165A9163F6A87
302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=CD35BAE4166543BDB1A4807222276EF7&RedC=c.clarity.ms&MXFR=30037705123F648A1D2165A9163F6A87
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=CD35BAE4166543BDB1A4807222276EF7&RedC=c.clarity.ms&MXFR=30037705123F648A1D2165A9163F6A87 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=CD35BAE4166543BDB1A4807222276EF7&MUID=31E2D26F8436627D1D37C0C385616378
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=31E2D26F8436627D1D37C0C385616378; domain=c.bing.com; expires=Tue, 27-Feb-2024 07:15:45 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9AF0A8CF43364C78B8D40ECB59A85D87 Ref B: OSL30EDGE0317 Ref C: 2023-02-02T07:15:45Z
date: Thu, 02 Feb 2023 07:15:44 GMT
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=CD35BAE4166543BDB1A4807222276EF7&MUID=31E2D26F8436627D1D37C0C385616378
200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=CD35BAE4166543BDB1A4807222276EF7&MUID=31E2D26F8436627D1D37C0C385616378
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=CD35BAE4166543BDB1A4807222276EF7&MUID=31E2D26F8436627D1D37C0C385616378 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 17 Jan 2023 20:36:49 GMT
accept-ranges: bytes
etag: "b1c8df6cb32ad91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Thu, 02-Feb-2023 07:25:45 GMT; path=/; SameSite=None; Secure;
date: Thu, 02 Feb 2023 07:15:44 GMT
content-length: 42
X-Firefox-Spdy: h2
d.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 107332
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: http://www.ksv.biz.ua
access-control-allow-credentials: true
date: Thu, 02 Feb 2023 07:15:45 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a803ab4e3d208f5f2f423789c4e2b979
15708b6218150e5f9d2970f2b3dd057f481ebb62
8b3c8774e9bba02ab66d2f2fc6a195a0e407f16e5a1b968c8eaa5b9d88628702
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B3C8774E9BBA02AB66D2F2FC6A195A0E407F16E5A1B968C8EAA5B9D88628702"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11935
Expires: Thu, 02 Feb 2023 10:34:40 GMT
Date: Thu, 02 Feb 2023 07:15:45 GMT
Connection: keep-alive
counter.yadro.ru/hit;desktop_click_load?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322170856
302 Moved Temporarily 32 B URL HTTP/1.1 counter.yadro.ru/hit;desktop_click_load?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322170856
IP
ASN #39134 United Network LLC
File type HTML document, ASCII text
Hash 3e9c09a8c5a87f266e047a596f48578c
07d7b1940b7e3f9a3db43197458f9b8ef18a6bce
57fad7ae62012ff4a38ecb6045ac6e8e3a070a33bbd033b21ab6cad3566d9254
GET /hit;desktop_click_load?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322170856 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
HTTP/1.1 302 Moved Temporarily
Date: Thu, 02 Feb 2023 07:15:45 GMT
Server: 0W/0.8c
Content-Type: text/html
Location: https://counter.yadro.ru/hit;desktop_click_load?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322170856
Content-Length: 32
Expires: Tue, 01 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
counter.yadro.ru/hit;desktop_click_load?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322170856
200 OK 43 B URL HTTP/1.1 counter.yadro.ru/hit;desktop_click_load?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322170856
IP
ASN #39134 United Network LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit;desktop_click_load?r;s1280*1024*24;uhttp%3A//www.ksv.biz.ua/publ/dstu/dstu_4378_2005/3-1-0-760;1675322170856 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 02 Feb 2023 07:15:45 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Tue, 01 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
dominantroute.com/bens/vinos.js?23433&u=null&a=0.05618757631006133
200 OK 140 kB URL HTTP/1.1 dominantroute.com/bens/vinos.js?23433&u=null&a=0.05618757631006133
IP
ASN #6681 Rozetka Sp. z o.o.
File type ASCII text, with very long lines (727)
Size 140 kB (140153 bytes)
Hash 2a82e622a3dce2d85875dc3e74c55593
5c0b0fe7c4a3c2e9cedd4c5dac2fc05cbaef3ea1
3b5b9aa2fb30712078b4c238792311beb0479d5483b95b1ea2a5f4a2b74a57f0
GET /bens/vinos.js?23433&u=null&a=0.05618757631006133 HTTP/1.1
Host: dominantroute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 07:15:45 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NON DSP COR CURa TIA"
Set-Cookie: uuid=16753217661532635802; expires=Sat, 01-Feb-2025 07:15:45 GMT; Max-Age=63072000; path=/; samesite=None; domain=.dominantroute.com; secure
d.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 235418
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: http://www.ksv.biz.ua
access-control-allow-credentials: true
date: Thu, 02 Feb 2023 07:15:47 GMT
X-Firefox-Spdy: h2
counter.rambler.ru/top100.jcn?2484633
200 OK 0 B URL HTTP/2 counter.rambler.ru/top100.jcn?2484633
IP
ASN #24638 Rambler Internet Holding LLC
GET /top100.jcn?2484633 HTTP/1.1
Host: counter.rambler.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.ksv.biz.ua/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.4
date: Thu, 02 Feb 2023 07:15:42 GMT
content-type: application/octet-stream
set-cookie: ruid=1CIAAB5j22OEg86vAWPxqwB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
proto_uid=1CIAAB5j22OEg86vAWPxqwB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
X-Firefox-Spdy: h2
key-cdn.printfriendly.com/api/v3/domain_settings/a?callback=pfMod.saveDSSettings&hostname=www.ksv.biz.ua&client_version=client
200 OK 0 B URL HTTP/2 key-cdn.printfriendly.com/api/v3/domain_settings/a?callback=pfMod.saveDSSettings&hostname=www.ksv.biz.ua&client_version=client
IP
ASN #34989 ServeTheWorld AS
GET /api/v3/domain_settings/a?callback=pfMod.saveDSSettings&hostname=www.ksv.biz.ua&client_version=client HTTP/1.1
Host: key-cdn.printfriendly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 07:15:44 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 1170691
cdn-uid: c46cf0ce-de12-43ee-84e2-564af22e66fd
cdn-requestcountrycode: NO
alt-svc: h3=":443"; ma=2592000
cache-control: public, max-age=3600
etag: W/"9a16adfd6501ee212185125f1bf41bf1"
x-request-id: aad2e44b-a9e6-42f6-8d31-67ef27d2cb04
x-runtime: 0.013537
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/02/2023 07:15:44
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 7399e14422a4320e946d1b6e2c20f7d5
cdn-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2
usocial.pro/usocial/usocial.js
200 OK 0 B URL HTTP/2 usocial.pro/usocial/usocial.js
IP
GET /usocial/usocial.js HTTP/1.1
Host: usocial.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=nFtZnmPj4eDi3oYBDyqo; Domain=.usocial.pro; HttpOnly; Path=/; Expires=Fri, 02-Feb-2024 07:15:42 GMT
date: Thu, 02 Feb 2023 07:15:42 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.24
content-encoding: br
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20230131/r20190131/zrt_lookup.html
200 OK 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230131/r20190131/zrt_lookup.html
IP
GET /pagead/html/r20230131/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:56:08 GMT
expires: Thu, 16 Feb 2023 00:56:08 GMT
cache-control: public, max-age=1209600
age: 22776
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/539821?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1116112669516%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322168%3Ac%3A1%3Arn%3A450656654%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322168%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/539821?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1116112669516%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322168%3Ac%3A1%3Arn%3A450656654%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322168%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP
GET /watch/539821?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1116112669516%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322168%3Ac%3A1%3Arn%3A450656654%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322168%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/539821/1?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqlg6e9sjiwxr6f2njdv%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A1116112669516%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322168%3Ac%3A1%3Arn%3A450656654%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C%2C%2C%2C%2C%2C%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322168%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Thu, 02 Feb 2023 07:15:44 GMT
access-control-allow-origin: http://www.ksv.biz.ua
set-cookie: yabs-sid=2404128291675322144; Path=/; SameSite=None; Secure
i=yfc9QlGO485b1GvAkYWCvTNO91zH2e0WcNdBlx2TZFlIr3VBB5DW+lDlue+lpocYg8X2t3Wp0rpB/5LLUm8ug1WTvaE=; Expires=Sun, 30-Jan-2033 07:15:39 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=2350626331675322144; Expires=Fri, 02-Feb-2024 07:15:44 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=2350626331675322144; Expires=Fri, 02-Feb-2024 07:15:44 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706858144.yc.1675322144#1706858144.yrts.1675322144#1706858144.yrtsi.1675322144; Expires=Fri, 02-Feb-2024 07:15:44 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 02-Feb-2023 07:15:44 GMT
last-modified: Thu, 02-Feb-2023 07:15:44 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/73418029?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1335%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A1600218222354%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322169%3Ac%3A1%3Arn%3A765903252%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C1249%2C5%2C%2C%2C%2C1681%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322169%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/73418029?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1335%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A1600218222354%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322169%3Ac%3A1%3Arn%3A765903252%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C1249%2C5%2C%2C%2C%2C1681%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322169%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP
GET /watch/73418029?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1335%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A1600218222354%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322169%3Ac%3A1%3Arn%3A765903252%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C1249%2C5%2C%2C%2C%2C1681%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322169%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.ksv.biz.ua
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/73418029/1?wmode=7&page-url=http%3A%2F%2Fwww.ksv.biz.ua%2Fpubl%2Fdstu%2Fdstu_4378_2005%2F3-1-0-760&charset=utf-8&browser-info=pv%3A1%3Avf%3A14qzoz81s4a176hik6jd9j%3Afp%3A1335%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A960%3Acn%3A2%3Adp%3A0%3Als%3A1600218222354%3Ahid%3A105352653%3Az%3A0%3Ai%3A20230202071608%3Aet%3A1675322169%3Ac%3A1%3Arn%3A765903252%3Arqn%3A1%3Au%3A1675322168999051118%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A25%2C102%2C223%2C0%2C-5%2C0%2C%2C1249%2C5%2C%2C%2C%2C1681%3Aco%3A0%3Ans%3A1675322166891%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675322169%3At%3A%D0%94%D0%A1%D0%A2%D0%A3%204378%3A2005%20-%20%D0%94%D0%A1%D0%A2%D0%A3%20-%20%D0%94%D0%A1%D0%A2%D0%A3%2C%20%D0%93%D0%9E%D0%A1%D0%A2%20%D1%82%D0%B0%20%D1%96%D0%BD%D1%88%D0%B0%20%D0%B4%D0%BE%D0%BA%D1%83%D0%BC%D0%B5%D0%BD%D1%82%D0%B0%D1%86%D1%96%D1%8F%20-%20%D0%9F%D0%9F%20KSV&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Thu, 02 Feb 2023 07:15:43 GMT
access-control-allow-origin: http://www.ksv.biz.ua
set-cookie: yabs-sid=1036084191675322143; Path=/; SameSite=None; Secure
i=KK1kpY/pUuXN1IM3iJtzi2gjDHugkJ0W6ylPn1113aG+D0IFZhH9M8TCPrufd8RudfUpOg6RhUhqa8oTCybxmYAYsOY=; Expires=Sun, 30-Jan-2033 07:15:42 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=9772904091675322143; Expires=Fri, 02-Feb-2024 07:15:43 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=9772904091675322143; Expires=Fri, 02-Feb-2024 07:15:43 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1706858143.yc.1675322143#1706858143.yrts.1675322143#1706858143.yrtsi.1675322143; Expires=Fri, 02-Feb-2024 07:15:43 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 02-Feb-2023 07:15:43 GMT
last-modified: Thu, 02-Feb-2023 07:15:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto&display=swap
IP
GET /css2?family=Roboto&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.ksv.biz.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 07:15:43 GMT
date: Thu, 02 Feb 2023 07:15:43 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
213.174.157.194
188.42.191.196
94.100.180.54
104.18.20.226
31.220.27.155
23.36.76.226
93.171.200.49
93.184.220.29
188.114.97.1
62.149.26.52
31.172.81.158