Report - test.personne.ru/h3x2h682

Report Overview

Submitted URL
test.personne.ru/h3x2h682
IP
92.63.109.74
ASN
#29182 JSC IOT
Submitted
2023-06-06 20:57:51
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
4
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
test.personne.ru	unknown	2005-01-20	2016-10-07	2023-05-18	2.4 kB	290 kB	92.63.109.74
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-06-06	3.7 kB	7.7 kB	142.250.74.131
bitrix.info	39143	2002-11-14	2014-07-18	2023-06-06	730 B	3.8 kB	54.154.255.216
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-06-06	1.8 kB	66 kB	216.58.207.227
www.googletagmanager.com	75	2011-11-11	2013-05-22	2023-06-06	877 B	147 kB	142.250.74.40
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-06-06	472 B	32 kB	142.250.74.106
www.google.no	25607	2001-02-26	2016-04-05	2023-06-06	523 B	578 B	142.250.74.163
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2023-06-06	1.4 kB	872 B	216.239.34.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-06-06 20:57:32	high	92.63.109.74	Client IP	ET HUNTING Self-Signed Cert O=XX Observed
2023-06-06 20:57:32	high	92.63.109.74	Client IP	ET HUNTING Self-Signed Cert O=XX Observed
2023-06-06 20:57:33	low	Client IP	Internal IP	ET INFO URL Shortening Service Domain in DNS Lookup (vk .com)
2023-06-06 20:57:33	low	Client IP	Internal IP	ET INFO URL Shortening Service Domain in DNS Lookup (vk .com)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	test.personne.ru/h3x2h682	403 B	2023-06-06	2023-11-12
Pretty URL test.personne.ru/h3x2h682 IP 92.63.109.74 ASN #29182 JSC IOT Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-06 22:57:54 Last Seen2023-11-12 08:44:05 Times Seen3 Hash f75f4b56aa5e5215d2e47c33efb5a5d0 005086211656b1dee687f02fb25065695579163e cdd1ad87c477d5223c9f87ee1960c2d96b25f6827a46affc746f30348c8b06ab Loading...

	bitrix.info/ba.js	6.7 kB	2023-03-07	2024-04-24
Pretty URL bitrix.info/ba.js IP 54.154.255.216 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:15 Last Seen2024-04-24 19:50:26 Times Seen2013 Hash 1704091e9eb2522effa5baa97cee26a0 5a4ee9ebe22e0e6c35de6ca6b7f8cbeea40c71d4 897c58672b375fd206d4df4ccd71a3fa3e29f739f4db5251b94895ad015f9710 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MDLJPW7	170 kB	2023-06-06	2023-06-06
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MDLJPW7 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 22:57:54 Last Seen2023-06-06 22:57:54 Times Seen2 Hash be23da5fdd4a3a27306023026b218fdd d8dfaaf2ef5a1e34d8e68cc4ea97e4a33b93c35b 53fcdcaa6117e8069550838b91d6e7b7a891d115eff1b87fb98d2c19a05c5b15 Loading...

	unknown	433 B	2023-06-06	2023-11-12
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 22:57:54 Last Seen2023-11-12 08:44:05 Times Seen3 Hash a6671f91a41ad90eeb3a2f7a9496432a 2c44441673afb8d3461bbecae7642680a94d4c0d adf4ca2ebc92a671dc02951f992cf36834715bbd3dfd67926826bed221ef05f8 Loading...

	www.googletagmanager.com/gtag/js?id=G-NQ83EEW680&l=dataLayer&cx=c	247 kB	2023-06-06	2023-06-06
Pretty URL www.googletagmanager.com/gtag/js?id=G-NQ83EEW680&l=dataLayer&cx=c IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 22:57:54 Last Seen2023-06-06 22:57:54 Times Seen2 Hash 96e207f1f66a7ac275f3d9636e9a2d92 7f318e403c25059c39c8dc7bcc06e26f8b289671 bcc10910164c01c7edb2fee04526ed1bf671bdf6d77174a56f0577b8fd18dac3 Loading...

	test.personne.ru/bitrix/cache/js/s2/personne-epsilon/template_eeee21f602feac5bda3aad0786fd4acb/template_eeee21f602feac5bda3aad0786fd4acb_v1.js?1670208202164027	164 kB	2023-06-06	2023-11-12
Pretty URL test.personne.ru/bitrix/cache/js/s2/personne-epsilon/template_eeee21f602feac5bda3aad0786fd4acb/template_eeee21f602feac5bda3aad0786fd4acb_v1.js?1670208202164027 IP 92.63.109.74 ASN #29182 JSC IOT Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 22:57:54 Last Seen2023-11-12 08:44:05 Times Seen6 Hash 6e1c17371992ae566ae0a4c468a57ae1 8e76266e354107e2ba3f809cc70fd1cbf26dab53 aec3d1b222a72d71dacb6c055f9b59b0f75602e379524b79066b25dae90a64c1 Loading...

	test.personne.ru/h3x2h682	349 B	2023-06-06	2023-11-12
Pretty URL test.personne.ru/h3x2h682 IP 92.63.109.74 ASN #29182 JSC IOT Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-06 22:57:54 Last Seen2023-11-12 08:44:05 Times Seen3 Hash e7cd0b5379a3c6ad4593a89167974756 e3f8d8e3681aac8a990d2c9779be5b06f189c8d7 b8fb9144a8359f93dc9c85d3094a0f9acaa06cba43973d0b3ab5b72268392ac2 Loading...

HTTP Transactions (27)

	URL	IP	Response	Size
	test.personne.ru/h3x2h682	92.63.109.74		47 kB
URL User Request GET test.personne.ru/h3x2h682 IP 92.63.109.74:0 ASN #29182 JSC IOT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2310), with CRLF, LF line terminators Size 47 kB (47352 bytes) Hash 2c7325a292ece85721e68afc1385d9a2 96bd21f6ff6d1ef5ef229e498b4742bb38b5fbbb 8315aa94d44cf25eb9fde5a37c7907765b2326448560b371b1170665cb93ed55 HTTP Headers `GET /h3x2h682 HTTP/1.1 Host: test.personne.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 404 Not Found Server: nginx/1.16.0 Date: Tue, 06 Jun 2023 20:57:33 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA" X-Powered-CMS: Bitrix Site Manager (81a9d37026984df604fe636b67dde769) Set-Cookie: PHPSESSID=bUuzfe8MQY2j4ZMJaPiVQbx3Ttrt9dFC; path=/; domain=personne.ru; HttpOnly Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache

	test.personne.ru/bitrix/cache/css/s2/personne-epsilon/page_6b370fbf298756f163f80b91c7482485/page_6b370fbf298756f163f80b91c7482485_v1.css?1664702833333	92.63.109.74	200 OK	333 B
URL GET HTTP/1.1 test.personne.ru/bitrix/cache/css/s2/personne-epsilon/page_6b370fbf298756f163f80b91c7482485/page_6b370fbf298756f163f80b91c7482485_v1.css?1664702833333 IP 92.63.109.74:80 ASN #29182 JSC IOT Requested by http://test.personne.ru/h3x2h682 File type ASCII text Size 333 B (333 bytes) Hash de63f3ce95b5523822b760de130485a3 f2b96f8c03c53c8bfd422d33fd6ddc80443a4796 205695062f0697ea30534f86fbaf2deec6c07de9059b796a1ec26cb973061406 HTTP Headers GET /bitrix/cache/css/s2/personne-epsilon/page_6b370fbf298756f163f80b91c7482485/page_6b370fbf298756f163f80b91c7482485_v1.css?1664702833333 HTTP/1.1 Host: test.personne.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://test.personne.ru/h3x2h682 Cookie: PHPSESSID=bUuzfe8MQY2j4ZMJaPiVQbx3Ttrt9dFC Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx/1.16.0 Date: Tue, 06 Jun 2023 20:57:33 GMT Content-Type: text/css Content-Length: 333 Last-Modified: Sun, 02 Oct 2022 09:27:13 GMT Connection: keep-alive ETag: "63395971-14d" Accept-Ranges: bytes`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash e658f45faae0edd26f5908c922167f73 33e4e65ccf9cb9b15a7a9f5fd0083f1cebfa7064 5cc8bb25c78320b6cafdc4a6a017081a2c953cb86e1a1dc45c8f8811798adbc5 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 20:57:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	test.personne.ru/bitrix/cache/css/s2/personne-epsilon/template_d83680f1f78b86def537b3063e536c70/template_d83680f1f78b86def537b3063e536c70_v1.css?167009340776268	92.63.109.74	200 OK	76 kB
URL GET HTTP/1.1 test.personne.ru/bitrix/cache/css/s2/personne-epsilon/template_d83680f1f78b86def537b3063e536c70/template_d83680f1f78b86def537b3063e536c70_v1.css?167009340776268 IP 92.63.109.74:80 ASN #29182 JSC IOT Requested by http://test.personne.ru/h3x2h682 File type assembler source, ASCII text, with very long lines (2054), with CRLF, LF line terminators Size 76 kB (76268 bytes) Hash e91354647c1a6d4f1bc2dda65f7e2154 f62c5b901a7a731654d60b23c34aec44d35190b3 71c730f59b07f4ba082970928a6ea4616209048c6704ea47c0c16b4bafb7e2a2 HTTP Headers GET /bitrix/cache/css/s2/personne-epsilon/template_d83680f1f78b86def537b3063e536c70/template_d83680f1f78b86def537b3063e536c70_v1.css?167009340776268 HTTP/1.1 Host: test.personne.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://test.personne.ru/h3x2h682 Cookie: PHPSESSID=bUuzfe8MQY2j4ZMJaPiVQbx3Ttrt9dFC Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx/1.16.0 Date: Tue, 06 Jun 2023 20:57:33 GMT Content-Type: text/css Content-Length: 76268 Last-Modified: Sat, 03 Dec 2022 18:50:07 GMT Connection: keep-alive ETag: "638b9a5f-129ec" Accept-Ranges: bytes`

	test.personne.ru/bitrix/cache/js/s2/personne-epsilon/template_eeee21f602feac5bda3aad0786fd4acb/template_eeee21f602feac5bda3aad0786fd4acb_v1.js?1670208202164027	92.63.109.74	200 OK	164 kB
URL GET HTTP/1.1 test.personne.ru/bitrix/cache/js/s2/personne-epsilon/template_eeee21f602feac5bda3aad0786fd4acb/template_eeee21f602feac5bda3aad0786fd4acb_v1.js?1670208202164027 IP 92.63.109.74:80 ASN #29182 JSC IOT Requested by http://test.personne.ru/h3x2h682 File type ASCII text, with very long lines (65192) Size 164 kB (164027 bytes) Hash 6e1c17371992ae566ae0a4c468a57ae1 8e76266e354107e2ba3f809cc70fd1cbf26dab53 aec3d1b222a72d71dacb6c055f9b59b0f75602e379524b79066b25dae90a64c1 HTTP Headers GET /bitrix/cache/js/s2/personne-epsilon/template_eeee21f602feac5bda3aad0786fd4acb/template_eeee21f602feac5bda3aad0786fd4acb_v1.js?1670208202164027 HTTP/1.1 Host: test.personne.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://test.personne.ru/h3x2h682 Cookie: PHPSESSID=bUuzfe8MQY2j4ZMJaPiVQbx3Ttrt9dFC Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx/1.16.0 Date: Tue, 06 Jun 2023 20:57:33 GMT Content-Type: application/javascript Content-Length: 164027 Last-Modified: Mon, 05 Dec 2022 02:43:22 GMT Connection: keep-alive ETag: "638d5aca-280bb" Accept-Ranges: bytes`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash e658f45faae0edd26f5908c922167f73 33e4e65ccf9cb9b15a7a9f5fd0083f1cebfa7064 5cc8bb25c78320b6cafdc4a6a017081a2c953cb86e1a1dc45c8f8811798adbc5 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 20:57:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash ce0ebcb6eab1a7dd3eab3a8147da0859 8164473145746d55203f9505ae8a1643350a79e3 b8771619cd596cd7015fdf1ff5e21e989535b3ba3d90f5efcd5867d85b98adcc HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 20:57:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	bitrix.info/ba.js	54.154.255.216	200 OK	3.0 kB
URL GET HTTP/1.1 bitrix.info/ba.js IP 54.154.255.216:80 ASN #16509 AMAZON-02 Requested by http://test.personne.ru/h3x2h682 File type ASCII text, with very long lines (6659), with no line terminators Size 3.0 kB (3008 bytes) Hash 1704091e9eb2522effa5baa97cee26a0 5a4ee9ebe22e0e6c35de6ca6b7f8cbeea40c71d4 897c58672b375fd206d4df4ccd71a3fa3e29f739f4db5251b94895ad015f9710 HTTP Headers `GET /ba.js HTTP/1.1 Host: bitrix.info User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://test.personne.ru/ Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Date: Tue, 06 Jun 2023 20:57:33 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Server: nginx/1.10.1 Last-Modified: Wed, 19 May 2021 09:38:44 GMT ETag: W/"60a4dca4-1a03" P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Set-Cookie: bx_user_id=a9cecd77331713c67cc2ca2b916aa445; expires=Fri, 03-Jun-33 20:57:33 GMT; path=/; domain=bitrix.info; SameSite=None; Secure Access-Control-Allow-Origin: * Expires: Thu, 08 Jun 2023 20:57:33 GMT Cache-Control: max-age=172800 Strict-Transport-Security: max-age=63072000 Content-Encoding: gzip

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 82d60e5c89d861bf88494c1b30123a7d 696454de610c86434fca82187d45b770aa712b74 1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 20:57:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7txR-tCKQ.woff2	216.58.207.227	200 OK	16 kB
URL GET HTTP/2 fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7txR-tCKQ.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by http://test.personne.ru/h3x2h682 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 16456, version 1.0\012- data Size 16 kB (16456 bytes) Hash 809d12f02c9e9bb843726aace54da84b e23393cae24a488948fcfb4f1d2736685903f9fe 7b4b167b91ef75ffef70987432ff073e5d54c80295c5b3dbeecdbbfad0700336 HTTP Headers GET /s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7txR-tCKQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://test.personne.ru DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 16456 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 Jun 2023 01:05:40 GMT expires: Fri, 31 May 2024 01:05:40 GMT cache-control: public, max-age=31536000 age: 503513 last-modified: Thu, 27 Apr 2023 01:31:46 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 82d60e5c89d861bf88494c1b30123a7d 696454de610c86434fca82187d45b770aa712b74 1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 20:57:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 82d60e5c89d861bf88494c1b30123a7d 696454de610c86434fca82187d45b770aa712b74 1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 20:57:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtm.js?id=GTM-MDLJPW7	142.250.74.40	200 OK	61 kB
URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MDLJPW7 IP 142.250.74.40:443 ASN #15169 GOOGLE Requested by http://test.personne.ru/h3x2h682 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT File type Unicode text, UTF-8 text, with very long lines (6709) Size 61 kB (60853 bytes) Hash be23da5fdd4a3a27306023026b218fdd d8dfaaf2ef5a1e34d8e68cc4ea97e4a33b93c35b 53fcdcaa6117e8069550838b91d6e7b7a891d115eff1b87fb98d2c19a05c5b15 HTTP Headers `GET /gtm.js?id=GTM-MDLJPW7 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://test.personne.ru/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 06 Jun 2023 20:57:33 GMT expires: Tue, 06 Jun 2023 20:57:33 GMT cache-control: private, max-age=900 last-modified: Tue, 06 Jun 2023 19:35:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 60853 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 82d60e5c89d861bf88494c1b30123a7d 696454de610c86434fca82187d45b770aa712b74 1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 20:57:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	bitrix.info/bx_stat	54.154.255.216	406 Not Acceptable	10 B
URL POST HTTP/1.1 bitrix.info/bx_stat IP 54.154.255.216:80 ASN #16509 AMAZON-02 Requested by http://test.personne.ru/h3x2h682 File type JSON data\012- , ASCII text, with no line terminators Size 10 B (10 bytes) Hash 190f0ca90ef9d8f401ed505b8e377411 12ad51bbdfcc081a984bbff898a0d47cc29a61dc bb54369234516c2f2469a9989fce0f73145879defec57a2b276b5b1e0bf92336 HTTP Headers `POST /bx_stat HTTP/1.1 Host: bitrix.info User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/x-www-form-urlencoded Content-Length: 230 Origin: http://test.personne.ru DNT: 1 Connection: keep-alive Referer: http://test.personne.ru/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 406 Not Acceptable Date: Tue, 06 Jun 2023 20:57:33 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive Server: nginx/1.10.1 Access-Control-Allow-Origin: http://test.personne.ru`

	fonts.googleapis.com/css2?family=Lora&family=Nunito+Sans:wght@400;600&display=swap	142.250.74.106	200 OK	32 kB
URL GET HTTP/2 fonts.googleapis.com/css2?family=Lora&family=Nunito+Sans:wght@400;600&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by http://test.personne.ru/h3x2h682 Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type gzip compressed data, max compression\012- data Size 32 kB (31776 bytes) Hash 544a53833e04d7a1342ce495766e9ba0 cd757969b30277fac7fdb76516629e94a0d5dacc 7ba8785729b9bbd3cc487c880ac8a2799122c518cca20de9f0c780b123a627da HTTP Headers `GET /css2?family=Lora&family=Nunito+Sans:wght@400;600&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://test.personne.ru/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 06 Jun 2023 20:57:33 GMT date: Tue, 06 Jun 2023 20:57:33 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7txR-tCKQ.woff2	216.58.207.227	200 OK	16 kB
URL GET HTTP/2 fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7txR-tCKQ.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by http://test.personne.ru/h3x2h682 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 16456, version 1.0\012- data Size 16 kB (16456 bytes) Hash 809d12f02c9e9bb843726aace54da84b e23393cae24a488948fcfb4f1d2736685903f9fe 7b4b167b91ef75ffef70987432ff073e5d54c80295c5b3dbeecdbbfad0700336 HTTP Headers GET /s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7txR-tCKQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://test.personne.ru DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 16456 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 Jun 2023 01:05:40 GMT expires: Fri, 31 May 2024 01:05:40 GMT cache-control: public, max-age=31536000 age: 503513 last-modified: Thu, 27 Apr 2023 01:31:46 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2	216.58.207.227	200 OK	31 kB
URL GET HTTP/2 fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by http://test.personne.ru/h3x2h682 Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 31052, version 1.0\012- data Size 31 kB (31052 bytes) Hash 5c4f357d4926fc197d43abc63b7fca8c 686af7000d038d7479ed36b48a8ebb0ea9b98aea 1393acc632c160def86b45c2521c8ee742b7e6239d0d90fb95f51d55cf48b9c3 HTTP Headers GET /s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://test.personne.ru DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 31052 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 Jun 2023 04:04:54 GMT expires: Fri, 31 May 2024 04:04:54 GMT cache-control: public, max-age=31536000 age: 492759 last-modified: Thu, 27 Apr 2023 00:27:41 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash ce0ebcb6eab1a7dd3eab3a8147da0859 8164473145746d55203f9505ae8a1643350a79e3 b8771619cd596cd7015fdf1ff5e21e989535b3ba3d90f5efcd5867d85b98adcc HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 20:57:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 82d60e5c89d861bf88494c1b30123a7d 696454de610c86434fca82187d45b770aa712b74 1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 20:57:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	test.personne.ru/local/templates/personne-epsilon/favicon.svg	92.63.109.74	200 OK	600 B
URL GET HTTP/1.1 test.personne.ru/local/templates/personne-epsilon/favicon.svg IP 92.63.109.74:80 ASN #29182 JSC IOT Requested by http://test.personne.ru/h3x2h682 File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (359) Size 600 B (600 bytes) Hash 8d55c1b769175f4991bdc97e5e2a6124 90f0c85ab0ab01f68fe3c74684b721f497a601b9 d93b19940c8865d183c0179675a3a00f22f02158f029db3650f059761e8d3a3a HTTP Headers `GET /local/templates/personne-epsilon/favicon.svg HTTP/1.1 Host: test.personne.ru User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://test.personne.ru/h3x2h682 Cookie: PHPSESSID=bUuzfe8MQY2j4ZMJaPiVQbx3Ttrt9dFC Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx/1.16.0 Date: Tue, 06 Jun 2023 20:57:33 GMT Content-Type: image/svg+xml Content-Length: 600 Last-Modified: Wed, 30 Nov 2022 13:10:36 GMT Connection: keep-alive ETag: "6387564c-258" Accept-Ranges: bytes`

	www.googletagmanager.com/gtag/js?id=G-NQ83EEW680&l=dataLayer&cx=c	142.250.74.40	200 OK	85 kB
URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-NQ83EEW680&l=dataLayer&cx=c IP 142.250.74.40:443 ASN #15169 GOOGLE Requested by http://test.personne.ru/h3x2h682 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT File type Unicode text, UTF-8 text, with very long lines (4537) Size 85 kB (84639 bytes) Hash 96e207f1f66a7ac275f3d9636e9a2d92 7f318e403c25059c39c8dc7bcc06e26f8b289671 bcc10910164c01c7edb2fee04526ed1bf671bdf6d77174a56f0577b8fd18dac3 HTTP Headers `GET /gtag/js?id=G-NQ83EEW680&l=dataLayer&cx=c HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://test.personne.ru/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 06 Jun 2023 20:57:33 GMT expires: Tue, 06 Jun 2023 20:57:33 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 84639 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 35986eefb8831c2da0701e8c3a895c44 0773dc9f6f5c4aaeb511f4ec826aa628b47a6dc9 0c2cd3045859b0fc9a00eee2a486f946d11a84d4045cf8bfb46d3b5455b15dc8 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 20:57:34 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-NQ83EEW680&cid=647572056.1686085054&gtm=45je3650&aip=1&z=543024690	142.250.74.163	200 OK	42 B
URL GET HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-NQ83EEW680&cid=647572056.1686085054&gtm=45je3650&aip=1&z=543024690 IP 142.250.74.163:443 ASN #15169 GOOGLE Requested by http://test.personne.ru/h3x2h682 Certificate IssuerGoogle Trust Services LLC Subject.google.no Fingerprint21:0A:07:7D:46:C8:E2:9C:FF:DD:13:5F:61:67:E7:07:A9:0D:75:16 ValidityFri, 19 May 2023 12:59:38 GMT - Fri, 11 Aug 2023 12:59:37 GMT File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-NQ83EEW680&cid=647572056.1686085054&gtm=45je3650&aip=1&z=543024690 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://test.personne.ru/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Tue, 06 Jun 2023 20:57:34 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 35986eefb8831c2da0701e8c3a895c44 0773dc9f6f5c4aaeb511f4ec826aa628b47a6dc9 0c2cd3045859b0fc9a00eee2a486f946d11a84d4045cf8bfb46d3b5455b15dc8 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 20:57:34 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	region1.analytics.google.com/g/collect?v=2&tid=G-NQ83EEW680&gtm=45je3650&_p=317592774&_gaz=1&cid=647572056.1686085054&ul=en-us&sr=1280x1024&_s=1&sid=1686085053&sct=1&seg=0&dl=http%3A%2F%2Ftest.personne.ru%2Fh3x2h682&dt=%D0%90%D1%80%D0%B5%D0%BD%D0%B4%D0%B0&en=page_view&_fv=1&_nsi=1&_ss=1	216.239.34.36	204 No Content	0 B
URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-NQ83EEW680&gtm=45je3650&_p=317592774&_gaz=1&cid=647572056.1686085054&ul=en-us&sr=1280x1024&_s=1&sid=1686085053&sct=1&seg=0&dl=http%3A%2F%2Ftest.personne.ru%2Fh3x2h682&dt=%D0%90%D1%80%D0%B5%D0%BD%D0%B4%D0%B0&en=page_view&_fv=1&_nsi=1&_ss=1 IP 216.239.34.36:443 ASN #15169 GOOGLE Requested by http://test.personne.ru/h3x2h682 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-NQ83EEW680&gtm=45je3650&_p=317592774&_gaz=1&cid=647572056.1686085054&ul=en-us&sr=1280x1024&_s=1&sid=1686085053&sct=1&seg=0&dl=http%3A%2F%2Ftest.personne.ru%2Fh3x2h682&dt=%D0%90%D1%80%D0%B5%D0%BD%D0%B4%D0%B0&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1 Host: region1.analytics.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://test.personne.ru DNT: 1 Connection: keep-alive Referer: http://test.personne.ru/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: http://test.personne.ru date: Tue, 06 Jun 2023 20:57:34 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	region1.analytics.google.com/g/collect?v=2&tid=G-NQ83EEW680&gtm=45je3650&_p=317592774&cid=647572056.1686085054&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1686085053&sct=1&seg=0&dl=http%3A%2F%2Ftest.personne.ru%2Fh3x2h682&dt=%D0%90%D1%80%D0%B5%D0%BD%D0%B4%D0%B0&en=scroll&epn.percent_scrolled=90	216.239.34.36	204 No Content	0 B
URL POST HTTP/3 region1.analytics.google.com/g/collect?v=2&tid=G-NQ83EEW680&gtm=45je3650&_p=317592774&cid=647572056.1686085054&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1686085053&sct=1&seg=0&dl=http%3A%2F%2Ftest.personne.ru%2Fh3x2h682&dt=%D0%90%D1%80%D0%B5%D0%BD%D0%B4%D0%B0&en=scroll&epn.percent_scrolled=90 IP 216.239.34.36:443 ASN #15169 GOOGLE Requested by http://test.personne.ru/h3x2h682 Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-NQ83EEW680&gtm=45je3650&_p=317592774&cid=647572056.1686085054&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1686085053&sct=1&seg=0&dl=http%3A%2F%2Ftest.personne.ru%2Fh3x2h682&dt=%D0%90%D1%80%D0%B5%D0%BD%D0%B4%D0%B0&en=scroll&epn.percent_scrolled=90 HTTP/1.1 Host: region1.analytics.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://test.personne.ru DNT: 1 Connection: keep-alive Referer: http://test.personne.ru/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 TE: trailers `HTTP/3 204 No Content access-control-allow-origin: http://test.personne.ru date: Tue, 06 Jun 2023 20:57:39 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (27)

URL User Request GET

IP

ASN

File type

Size

Hash

HTTP Headers