wp1.j1139809.pkzyp.spectrum.myjino.ru/wp-admin/maint/dhl/card.php
81.177.6.77200 OK 1.1 kB URL HTTP/1.1 wp1.j1139809.pkzyp.spectrum.myjino.ru/wp-admin/maint/dhl/card.php
IP 81.177.6.77:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (823), with no line terminators
Hash 284e1a55efe78211a06485040ab3e204
b5d41ecc28e849eb4855973c15ef174c22f59c70
2c0f9d11bf0cd8ee5c92846cb20a784fe9645b82ab295f023062e1391aa094f4
Analyzer Verdict Alert fortinet Phishing
GET /wp-admin/maint/dhl/card.php HTTP/1.1
Host: wp1.j1139809.pkzyp.spectrum.myjino.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 11:40:19 GMT
Content-Type: text/html
Content-Length: 1088
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ef6d323da0ad155f526b4a57c2e46ccc
71686b19b3ca049b9b66f8740284c552a3f61a20
99e2f56075a08f133a9d1d0122ab9ef2d9eaa61e18f46994e52e21a8a53203f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "99E2F56075A08F133A9D1D0122AB9EF2D9EAA61E18F46994E52E21A8A53203F3"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20593
Expires: Wed, 12 Oct 2022 17:23:32 GMT
Date: Wed, 12 Oct 2022 11:40:19 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
54.230.111.65200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 3f17af4e8a1739eda4a518039f4892f9
c3feba08ae7e8f57e0fe9bcd2ebedea6bda67cbb
c485b09cad08b5233fe8753682faf59219fe0d18fcc34d90dc88fb0971295f5f
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 12 Oct 2022 10:49:13 GMT
Expires: Wed, 12 Oct 2022 11:32:41 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Slzijpo1QVkX-3kYL-qja-Rn-vLTT8uiZf6HdnKHWswNUnzeLhNsMA==
Age: 3066
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cf115053c2c98937c2d3c1bba367d815
dfcf225bde5123f0476e6b319823136fa77537f6
e5748cb4844096548cf4c2d8d5bee9e245035c4632ae1a59bfd3b2d99bd4cd9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E5748CB4844096548CF4C2D8D5BEE9E245035C4632AE1A59BFD3B2D99BD4CD9B"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3267
Expires: Wed, 12 Oct 2022 12:34:46 GMT
Date: Wed, 12 Oct 2022 11:40:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NgjWH5oiO0yyFI1wMa9ABQUsDvBwaWs2gB6dkHaQDhn3Orbl7VF4poeNsydTrZPvqudGCfYwQzU=
x-amz-request-id: T5A8XAKAX604JT5R
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 12 Oct 2022 11:01:15 GMT
age: 2344
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 12 Oct 2022 11:40:19 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
parking-static.jino.ru/static/main.js?1.25.2
195.161.41.160200 OK 38 kB URL HTTP/1.1 parking-static.jino.ru/static/main.js?1.25.2
IP 195.161.41.160:0
File type Unicode text, UTF-8 text, with very long lines (53499)
Hash 99c0daaba6d8f59d1c5efe8395d9fd1c
6394af2c138858c61f106ddade577d8db6a881a4
b8bd3ba8bcb2a190dfbfa854ec3aff35fc0de0ddafd8bcbf111837a2b81bb1c0
GET /static/main.js?1.25.2 HTTP/1.1
Host: parking-static.jino.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
HTTP/1.1 200 OK
Server: nginx/1.20.0
Date: Wed, 12 Oct 2022 11:40:19 GMT
Content-Type: application/javascript
Last-Modified: Sat, 26 Oct 1985 08:15:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"1dc09d84-1b823"
Content-Encoding: gzip
parking-static.jino.ru/static/components/page/logo.svg
195.161.41.160200 OK 1.2 kB URL HTTP/1.1 parking-static.jino.ru/static/components/page/logo.svg
IP 195.161.41.160:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2507)
Hash 6bc4c474e37a3265224af683a8ff6924
b47e6af3421707f3ba2f57edd6d6b62f41c51f37
ab28becd588b95987e612d86522226cbbfb8dd18b98fb76043a9d41457e67e87
GET /static/components/page/logo.svg HTTP/1.1
Host: parking-static.jino.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
HTTP/1.1 200 OK
Server: nginx/1.20.0
Date: Wed, 12 Oct 2022 11:40:20 GMT
Content-Type: image/svg+xml
Last-Modified: Sat, 26 Oct 1985 08:15:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"1dc09d84-a26"
Content-Encoding: gzip
parking-static.jino.ru/static/components/page/icons/page_error.svg
195.161.41.160200 OK 724 B URL HTTP/1.1 parking-static.jino.ru/static/components/page/icons/page_error.svg
IP 195.161.41.160:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (724), with no line terminators
Hash aeda2ffdebc3c56fa1ea13485304df56
6e114e18eb059d9bbce0bc5614aafeacca872d94
415ca0c5c9edef0fdecb9e5d039a69942dfaa3b741ce409b7204f3d38584d4b1
GET /static/components/page/icons/page_error.svg HTTP/1.1
Host: parking-static.jino.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
HTTP/1.1 200 OK
Server: nginx/1.20.0
Date: Wed, 12 Oct 2022 11:40:20 GMT
Content-Type: image/svg+xml
Content-Length: 724
Last-Modified: Sat, 26 Oct 1985 08:15:00 GMT
Connection: keep-alive
ETag: "1dc09d84-2d4"
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.65200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Wed, 12 Oct 2022 11:29:41 GMT
Cache-Control: max-age=3600
Expires: Wed, 12 Oct 2022 11:44:13 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qGETVqg7S70VBaPPWnefmigY1-wZDY_6V1-JTrTPETuuRSsXsCSwTQ==
Age: 639
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6aa87992c22825f5fcc91ebecec5fc28
39c7b2dc4de78f39df2aae18c65ae36c24afe01b
5c699576edf3f796b9124b6e33d8fe4811968e5537c9cafc2ce2c14c71995b37
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C699576EDF3F796B9124B6E33D8FE4811968E5537C9CAFC2CE2C14C71995B37"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20274
Expires: Wed, 12 Oct 2022 17:18:14 GMT
Date: Wed, 12 Oct 2022 11:40:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6aa87992c22825f5fcc91ebecec5fc28
39c7b2dc4de78f39df2aae18c65ae36c24afe01b
5c699576edf3f796b9124b6e33d8fe4811968e5537c9cafc2ce2c14c71995b37
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C699576EDF3F796B9124B6E33D8FE4811968E5537C9CAFC2CE2C14C71995B37"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20274
Expires: Wed, 12 Oct 2022 17:18:14 GMT
Date: Wed, 12 Oct 2022 11:40:20 GMT
Connection: keep-alive
jino.ru/static/lib/fonts/ptsans-sub/ptsans-bold.woff2
195.161.41.61200 OK 65 kB URL HTTP/2 jino.ru/static/lib/fonts/ptsans-sub/ptsans-bold.woff2
IP 195.161.41.61:0
File type Web Open Font Format (Version 2), TrueType, length 64688, version 2.328\012- data
Hash d9c1b50aaa270ee8db756550b1db087a
b6e9f4bdadf34d026adc9e347aea5e3a517a56e6
5417217722baa6f09ac21cc56eda3521dd08cc00b3fcecbb80ca764748f63578
GET /static/lib/fonts/ptsans-sub/ptsans-bold.woff2 HTTP/1.1
Host: jino.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://wp1.j1139809.pkzyp.spectrum.myjino.ru
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-type: application/octet-stream
date: Wed, 12 Oct 2022 11:40:20 GMT
etag: "633d83db-fcb0"
expires: Thu, 12 Oct 2023 11:40:20 GMT
last-modified: Wed, 05 Oct 2022 13:17:15 GMT
server: nginx/1.10.3
content-length: 64688
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 63604bda613d148120c491e2f095255f
0fc63ecaff8a0f36dc2a82f3fb187725d0064d69
8478a84e8513fb9afb0d1c369b668bd37ca98943a624ac3a3a69165536bd1748
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 20
Cache-Control: max-age=160009
Content-Type: application/ocsp-response
Date: Wed, 12 Oct 2022 11:40:20 GMT
Etag: "63467599-1d7"
Expires: Fri, 14 Oct 2022 08:07:09 GMT
Last-Modified: Wed, 12 Oct 2022 08:06:49 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
wp1.j1139809.pkzyp.spectrum.myjino.ru/favicon.ico
81.177.6.77403 Forbidden 204 B URL HTTP/1.1 wp1.j1139809.pkzyp.spectrum.myjino.ru/favicon.ico
IP 81.177.6.77:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 55e8ab470521e93506174f2c803c0d1e
463d4b479350ec397a55439d27a5224d33964bb1
d74290f6c708e81257086bd28f4c4beb1f36914b777b909627eb1da1ad48faff
GET /favicon.ico HTTP/1.1
Host: wp1.j1139809.pkzyp.spectrum.myjino.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/wp-admin/maint/dhl/card.php
HTTP/1.1 403 Forbidden
Date: Wed, 12 Oct 2022 11:40:20 GMT
Content-Type: text/html
Content-Length: 204
Connection: keep-alive
jino.ru/static/lib/fonts/ptsans-sub/ptsans-regular.woff2
195.161.41.61200 OK 62 kB URL HTTP/2 jino.ru/static/lib/fonts/ptsans-sub/ptsans-regular.woff2
IP 195.161.41.61:0
File type Web Open Font Format (Version 2), TrueType, length 61600, version 2.328\012- data
Hash 5d12c58fffdb5ac7fd41f05ee0180a8e
b147b184608a46e13bd50c9f7b2e9bede4eba085
84baa1b0c5914a65ef3b6049d5d06cd64c44eb35151e6558940d505b9c5ad8af
GET /static/lib/fonts/ptsans-sub/ptsans-regular.woff2 HTTP/1.1
Host: jino.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://wp1.j1139809.pkzyp.spectrum.myjino.ru
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-type: application/octet-stream
date: Wed, 12 Oct 2022 11:40:20 GMT
etag: "633d83db-f0a0"
expires: Thu, 12 Oct 2023 11:40:20 GMT
last-modified: Wed, 05 Oct 2022 13:17:15 GMT
server: nginx/1.10.3
content-length: 61600
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/watch.js
87.250.250.119302 Moved temporarily 0 B URL HTTP/1.1 mc.yandex.ru/metrika/watch.js
IP 87.250.250.119:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
HTTP/1.1 302 Moved temporarily
Content-Length: 0
Location: https://mc.yandex.ru/metrika/watch.js
cache.betweendigital.com/sections/2/2497410.js
151.236.81.147200 OK 3.0 kB URL HTTP/1.1 cache.betweendigital.com/sections/2/2497410.js
IP 151.236.81.147:0
File type Unicode text, UTF-8 text, with very long lines (394), with CR, LF line terminators
Hash 7b37e2cb57bc79532f3c0ed96abf8d51
a83c8836233295bb2f34e542f6ec7b43c8d8cb8d
5de0bd717f90fc2132ed80a419703d5ca316de9d5c675fec4df32f47589da009
GET /sections/2/2497410.js HTTP/1.1
Host: cache.betweendigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 11:40:20 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 14 Apr 2022 14:03:03 GMT
ETag: W/"62582997-2377"
Content-Encoding: gzip
X-CDN-Edge-Cache: HIT
X-CDN-Edge-Id: 236
X-CDN-Request-Id: 2a385a252af2c80ec08b4d6059e8dc45
cache.betweendigital.com/code/1x1.gif
151.236.81.147200 OK 43 B URL HTTP/1.1 cache.betweendigital.com/code/1x1.gif
IP 151.236.81.147:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /code/1x1.gif HTTP/1.1
Host: cache.betweendigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 11:40:20 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Last-Modified: Tue, 08 Oct 2019 15:27:01 GMT
ETag: "5d9caac5-2b"
X-CDN-Edge-Cache: HIT
X-CDN-Edge-Id: 236
X-CDN-Request-Id: 65aa5fece23727098eac011f0c3fd50e
Accept-Ranges: bytes
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 85dcf9b19d453d6bcb03a5b5ec9ed754
fcaa6651f3ec6c83faa8d5f5cc248ae544fbb0fb
3ccc3d0dc34d627bdcd9d74e7d7bbeac0fd8d4fd40f15864f21f8da7b1335000
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 11:40:20 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sun, 16 Oct 2022 07:50:19 GMT
ETag: "fcaa6651f3ec6c83faa8d5f5cc248ae544fbb0fb"
Last-Modified: Wed, 12 Oct 2022 07:50:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1707
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 758f8f64090dfab8-OSL
cache.betweendigital.com/code/async_rtb.js
151.236.81.147200 OK 85 kB URL HTTP/1.1 cache.betweendigital.com/code/async_rtb.js
IP 151.236.81.147:0
File type Unicode text, UTF-8 text, with very long lines (65388), with no line terminators
Hash 3851f14bf6683c4c472666ec2687e11c
e5cdd3a1c22c4682cfcf437f9d40a74a2fdff15d
a54ed04696b9351bea5d844ffd107c1c61841bcac7e4fbdbb4a20262a3e3db87
GET /code/async_rtb.js HTTP/1.1
Host: cache.betweendigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 12 Oct 2022 11:40:20 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 30 Sep 2022 20:57:41 GMT
ETag: W/"63375845-4cea3"
Cache-Control: public, max-age=7200, immutable
Content-Encoding: gzip
X-CDN-Edge-Cache: HIT
X-CDN-Edge-Id: 236
X-CDN-Request-Id: 79812abc2be7f47efe9c53b6926be7ff
mc.yandex.ru/metrika/watch.js
87.250.250.119200 OK 58 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP 87.250.250.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash 460146be452f208c1f6522551302a015
b0fa6e22cabc464df86ead41b64ef8611f0a2864
79cc70749200e05b4080f11d05ff2e544e15f4fd2571013619f0f3d88e0c28ea
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 57462
date: Wed, 12 Oct 2022 11:40:20 GMT
access-control-allow-origin: *
etag: "633fab48-e076"
expires: Wed, 12 Oct 2022 12:40:20 GMT
last-modified: Fri, 07 Oct 2022 07:30:00 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
pixel.yabidos.com/fltiukqt.js?qid=53532313f523632313f5436393&cid=964&p=BX&s=http://wp1.j1139809.pkzyp.spectrum.myjino.ru&x=&nci=&adtg=2497410&nai=&si=&pn=&h=&w=&bp=&pp=&ci=&ip=&ai=&di=&mm=&os=&ua=&lat=&lon=
104.16.201.58200 OK 1.6 kB URL HTTP/2 pixel.yabidos.com/fltiukqt.js?qid=53532313f523632313f5436393&cid=964&p=BX&s=http://wp1.j1139809.pkzyp.spectrum.myjino.ru&x=&nci=&adtg=2497410&nai=&si=&pn=&h=&w=&bp=&pp=&ci=&ip=&ai=&di=&mm=&os=&ua=&lat=&lon=
IP 104.16.201.58:0
File type ASCII text, with very long lines (3553)
Hash 2cf0e76f8c42b71535783c61d51156df
94ce2042927b2aa2f472672adadc7e5ffab3e78e
da941f235eeb36d3165129dfc2a25271aca37f763ebc568cb9586cf2704f1689
GET /fltiukqt.js?qid=53532313f523632313f5436393&cid=964&p=BX&s=http://wp1.j1139809.pkzyp.spectrum.myjino.ru&x=&nci=&adtg=2497410&nai=&si=&pn=&h=&w=&bp=&pp=&ci=&ip=&ai=&di=&mm=&os=&ua=&lat=&lon= HTTP/1.1
Host: pixel.yabidos.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 12 Oct 2022 11:40:20 GMT
content-type: application/javascript
content-length: 1597
last-modified: Wed, 12 Oct 2022 01:08:40 GMT
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 1271
expires: Wed, 12 Oct 2022 13:40:20 GMT
cache-control: public, max-age=7200
accept-ranges: bytes
server: cloudflare
cf-ray: 758f8f64ebea0afa-OSL
X-Firefox-Spdy: h2
pre.glotgrx.com/impimg.gif?cb=1665574820577&qid=53532313f523632313f5436393&cid=964&s=http://wp1.j1139809.pkzyp.spectrum.myjino.ru&p=BX&x=&adtg=2497410&nsi=&si=&nci=&nai=&ua=Mozilla/5.0%20(X11;%20Linux%20x86_64;%20rv:96.0)%20Gecko/20100101%20Firefox/96.0&ai=&flsrc=1
104.16.120.195200 OK 26 B URL HTTP/1.1 pre.glotgrx.com/impimg.gif?cb=1665574820577&qid=53532313f523632313f5436393&cid=964&s=http://wp1.j1139809.pkzyp.spectrum.myjino.ru&p=BX&x=&adtg=2497410&nsi=&si=&nci=&nai=&ua=Mozilla/5.0%20(X11;%20Linux%20x86_64;%20rv:96.0)%20Gecko/20100101%20Firefox/96.0&ai=&flsrc=1
IP 104.16.120.195:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6a43099d5c8fe991a7aa7ebaca53069d
5bce2f0d57305c58c7b05bfce29ebb39a18f5570
3b7b8a4b411ddf8db9bacc2f3aabf406f8e4c0c087829b336ca331c40adfdff1
GET /impimg.gif?cb=1665574820577&qid=53532313f523632313f5436393&cid=964&s=http://wp1.j1139809.pkzyp.spectrum.myjino.ru&p=BX&x=&adtg=2497410&nsi=&si=&nci=&nai=&ua=Mozilla/5.0%20(X11;%20Linux%20x86_64;%20rv:96.0)%20Gecko/20100101%20Firefox/96.0&ai=&flsrc=1 HTTP/1.1
Host: pre.glotgrx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
HTTP/1.1 200 OK
Date: Wed, 12 Oct 2022 11:40:20 GMT
Content-Type: image/gif
Content-Length: 26
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 00:35:18 GMT
CF-Cache-Status: HIT
Age: 4352
Expires: Wed, 12 Oct 2022 13:40:20 GMT
Cache-Control: public, max-age=7200
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 758f8f650adeb4f9-OSL
push.services.mozilla.com/
54.187.146.10101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.146.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3XEa77gVKsizCJevElSLxQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: t3fFBzMSLqGtMt58ErRE7hp8Jvo=
mc.yandex.ru/metrika/advert.gif
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 12 Oct 2022 11:40:20 GMT
access-control-allow-origin: *
etag: "633fab48-2b"
expires: Wed, 12 Oct 2022 12:40:20 GMT
accept-ranges: bytes
last-modified: Fri, 07 Oct 2022 07:30:00 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/25328195/1?wmode=7&page-url=http%3A%2F%2Fwp1.j1139809.pkzyp.spectrum.myjino.ru%2Fwp-admin%2Fmaint%2Fdhl%2Fcard.php&charset=utf-8&site-info=%7B%22page%22%3A%22techdomain%22%2C%22jsVersion%22%3A%221.41.3%22%2C%22htmlVersion%22%3A%221.25.2%22%7D&ut=noindex&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afp%3A670%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A408142057934%3Ahid%3A394250511%3Az%3A0%3Ai%3A20221012114020%3Aet%3A1665574821%3Ac%3A1%3Arn%3A524153393%3Arqn%3A1%3Au%3A16655748216757215%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A83%2C47%2C45%2C2%2C-4%2C0%2C%2C444%2C2%2C%2C%2C%2C698%3Ans%3A1665574819249%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665574821%3At%3ACaution&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
87.250.250.119200 OK 407 B URL HTTP/2 mc.yandex.ru/watch/25328195/1?wmode=7&page-url=http%3A%2F%2Fwp1.j1139809.pkzyp.spectrum.myjino.ru%2Fwp-admin%2Fmaint%2Fdhl%2Fcard.php&charset=utf-8&site-info=%7B%22page%22%3A%22techdomain%22%2C%22jsVersion%22%3A%221.41.3%22%2C%22htmlVersion%22%3A%221.25.2%22%7D&ut=noindex&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afp%3A670%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A408142057934%3Ahid%3A394250511%3Az%3A0%3Ai%3A20221012114020%3Aet%3A1665574821%3Ac%3A1%3Arn%3A524153393%3Arqn%3A1%3Au%3A16655748216757215%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A83%2C47%2C45%2C2%2C-4%2C0%2C%2C444%2C2%2C%2C%2C%2C698%3Ans%3A1665574819249%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665574821%3At%3ACaution&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
IP 87.250.250.119:0
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash 1d1fee72f6421fbf180cf595bed088ba
f7bc07007d7832844603859816ee3e3eeed1bb71
770bec4a9a4b8d086f25a0f5c05890e5298fec7f0c61ad5ab9c13decdfce9135
GET /watch/25328195/1?wmode=7&page-url=http%3A%2F%2Fwp1.j1139809.pkzyp.spectrum.myjino.ru%2Fwp-admin%2Fmaint%2Fdhl%2Fcard.php&charset=utf-8&site-info=%7B%22page%22%3A%22techdomain%22%2C%22jsVersion%22%3A%221.41.3%22%2C%22htmlVersion%22%3A%221.25.2%22%7D&ut=noindex&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afp%3A670%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A408142057934%3Ahid%3A394250511%3Az%3A0%3Ai%3A20221012114020%3Aet%3A1665574821%3Ac%3A1%3Arn%3A524153393%3Arqn%3A1%3Au%3A16655748216757215%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A83%2C47%2C45%2C2%2C-4%2C0%2C%2C444%2C2%2C%2C%2C%2C698%3Ans%3A1665574819249%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665574821%3At%3ACaution&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://wp1.j1139809.pkzyp.spectrum.myjino.ru
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 407
date: Wed, 12 Oct 2022 11:40:20 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://wp1.j1139809.pkzyp.spectrum.myjino.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 12-Oct-2022 11:40:20 GMT
last-modified: Wed, 12-Oct-2022 11:40:20 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/25328195/1?page-url=http%3A%2F%2Fwp1.j1139809.pkzyp.spectrum.myjino.ru%2Fwp-admin%2Fmaint%2Fdhl%2Fcard.php&charset=utf-8&ut=noindex&hittoken=1665574820_301d866cb7602eea4309b24552265804c70792fe3d7586b46d087769148ec500&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A408142057934%3Ahid%3A394250511%3Az%3A0%3Ai%3A20221012114020%3Aet%3A1665574821%3Ac%3A1%3Arn%3A115568059%3Arqn%3A2%3Au%3A16655748216757215%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Apri%3A1%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C1439%2C1439%2C0%2C%3Ans%3A1665574819249%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1665574821&t=gdpr(14)mc(p-2)clc(0-0-0)aw(1)rqnt(2)rqnl(1)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/25328195/1?page-url=http%3A%2F%2Fwp1.j1139809.pkzyp.spectrum.myjino.ru%2Fwp-admin%2Fmaint%2Fdhl%2Fcard.php&charset=utf-8&ut=noindex&hittoken=1665574820_301d866cb7602eea4309b24552265804c70792fe3d7586b46d087769148ec500&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A408142057934%3Ahid%3A394250511%3Az%3A0%3Ai%3A20221012114020%3Aet%3A1665574821%3Ac%3A1%3Arn%3A115568059%3Arqn%3A2%3Au%3A16655748216757215%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Apri%3A1%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C1439%2C1439%2C0%2C%3Ans%3A1665574819249%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1665574821&t=gdpr(14)mc(p-2)clc(0-0-0)aw(1)rqnt(2)rqnl(1)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/25328195/1?page-url=http%3A%2F%2Fwp1.j1139809.pkzyp.spectrum.myjino.ru%2Fwp-admin%2Fmaint%2Fdhl%2Fcard.php&charset=utf-8&ut=noindex&hittoken=1665574820_301d866cb7602eea4309b24552265804c70792fe3d7586b46d087769148ec500&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A408142057934%3Ahid%3A394250511%3Az%3A0%3Ai%3A20221012114020%3Aet%3A1665574821%3Ac%3A1%3Arn%3A115568059%3Arqn%3A2%3Au%3A16655748216757215%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Apri%3A1%3Ads%3A%2C%2C%2C%2C%2C%2C%2C%2C%2C1439%2C1439%2C0%2C%3Ans%3A1665574819249%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1665574821&t=gdpr(14)mc(p-2)clc(0-0-0)aw(1)rqnt(2)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 80
Origin: http://wp1.j1139809.pkzyp.spectrum.myjino.ru
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 12 Oct 2022 11:40:20 GMT
access-control-allow-origin: http://wp1.j1139809.pkzyp.spectrum.myjino.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 12-Oct-2022 11:40:20 GMT
last-modified: Wed, 12-Oct-2022 11:40:20 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/25328195/1?page-url=http%3A%2F%2Fwp1.j1139809.pkzyp.spectrum.myjino.ru%2Fwp-admin%2Fmaint%2Fdhl%2Fcard.php&charset=utf-8&ut=noindex&hittoken=1665574820_301d866cb7602eea4309b24552265804c70792fe3d7586b46d087769148ec500&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A408142057934%3Ahid%3A394250511%3Az%3A0%3Ai%3A20221012114020%3Aet%3A1665574821%3Ac%3A1%3Arn%3A278896499%3Arqn%3A3%3Au%3A16655748216757215%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Apri%3A1%3Ans%3A1665574819249%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1665574821&t=gdpr(14)mc(p-2)clc(0-0-0)aw(1)rqnt(3)rqnl(1)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/25328195/1?page-url=http%3A%2F%2Fwp1.j1139809.pkzyp.spectrum.myjino.ru%2Fwp-admin%2Fmaint%2Fdhl%2Fcard.php&charset=utf-8&ut=noindex&hittoken=1665574820_301d866cb7602eea4309b24552265804c70792fe3d7586b46d087769148ec500&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A408142057934%3Ahid%3A394250511%3Az%3A0%3Ai%3A20221012114020%3Aet%3A1665574821%3Ac%3A1%3Arn%3A278896499%3Arqn%3A3%3Au%3A16655748216757215%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Apri%3A1%3Ans%3A1665574819249%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1665574821&t=gdpr(14)mc(p-2)clc(0-0-0)aw(1)rqnt(3)rqnl(1)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/25328195/1?page-url=http%3A%2F%2Fwp1.j1139809.pkzyp.spectrum.myjino.ru%2Fwp-admin%2Fmaint%2Fdhl%2Fcard.php&charset=utf-8&ut=noindex&hittoken=1665574820_301d866cb7602eea4309b24552265804c70792fe3d7586b46d087769148ec500&browser-info=pa%3A1%3Aar%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A408142057934%3Ahid%3A394250511%3Az%3A0%3Ai%3A20221012114020%3Aet%3A1665574821%3Ac%3A1%3Arn%3A278896499%3Arqn%3A3%3Au%3A16655748216757215%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Apri%3A1%3Ans%3A1665574819249%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1665574821&t=gdpr(14)mc(p-2)clc(0-0-0)aw(1)rqnt(3)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 53
Origin: http://wp1.j1139809.pkzyp.spectrum.myjino.ru
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 12 Oct 2022 11:40:20 GMT
access-control-allow-origin: http://wp1.j1139809.pkzyp.spectrum.myjino.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 12-Oct-2022 11:40:20 GMT
last-modified: Wed, 12-Oct-2022 11:40:20 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ads.betweendigital.com/vpaid?s=2497410&maxd=30&mind=5&w=640&h=360&startdelay=0&jst=v&rr=direct&pos=atf&frl=0&fl=0&r_seq=0&foc=1
188.42.191.196200 OK 27 B URL HTTP/1.1 ads.betweendigital.com/vpaid?s=2497410&maxd=30&mind=5&w=640&h=360&startdelay=0&jst=v&rr=direct&pos=atf&frl=0&fl=0&r_seq=0&foc=1
IP 188.42.191.196:0
File type ASCII text, with no line terminators
Hash 5f631db49306435ae8cdb4d0c36f1263
f8b283d1f2a7b552120b9878d8f15e977aa683b4
a71702232a771b558b12f8c0012a15f5652b500fd2e33464d283406cee36754d
GET /vpaid?s=2497410&maxd=30&mind=5&w=640&h=360&startdelay=0&jst=v&rr=direct&pos=atf&frl=0&fl=0&r_seq=0&foc=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://wp1.j1139809.pkzyp.spectrum.myjino.ru
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
HTTP/1.1 200 OK
content-type: text/xml
cache-control: no-cache, no-store, max-age=0, must-revalidate
access-control-allow-origin: http://wp1.j1139809.pkzyp.spectrum.myjino.ru
access-control-allow-credentials: true
content-length: 27
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18782
Expires: Wed, 12 Oct 2022 16:53:23 GMT
Date: Wed, 12 Oct 2022 11:40:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18782
Expires: Wed, 12 Oct 2022 16:53:23 GMT
Date: Wed, 12 Oct 2022 11:40:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18782
Expires: Wed, 12 Oct 2022 16:53:23 GMT
Date: Wed, 12 Oct 2022 11:40:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18782
Expires: Wed, 12 Oct 2022 16:53:23 GMT
Date: Wed, 12 Oct 2022 11:40:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18782
Expires: Wed, 12 Oct 2022 16:53:23 GMT
Date: Wed, 12 Oct 2022 11:40:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fece197fe-b9f6-4fd7-9f1f-0167fe4259ce.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fece197fe-b9f6-4fd7-9f1f-0167fe4259ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a262392688d01838edbe02f500679711
f9be0ceee7f5b14e1f17ab938596977cde016e63
f1555b8b9f4363bdae50d426e8601ff5d3d07605259c2e289006e16a10f4b5fb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fece197fe-b9f6-4fd7-9f1f-0167fe4259ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9359
x-amzn-requestid: adbd5dff-817b-4fa1-b935-300d7ebb0f3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3BPxHtuIAMF5jg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e264-1950f5c44861d16c43b2a71c;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:38:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JNxqAnPn5goAisqZzvZpea9u6MVOEUTqHqh_rlrQSZg770oMAtk5Zw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 22:08:55 GMT
age: 48686
etag: "f9be0ceee7f5b14e1f17ab938596977cde016e63"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd952f4-819b-4d3c-91a1-0f9020bae81c.png
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd952f4-819b-4d3c-91a1-0f9020bae81c.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d31330d47548d966e50813d7e2253551
ec0a371cca2d4e43f3375dd6b699478c5af62884
309f2cf9ccd62d5c2fd8713836b602317875f4273ef560f3bf3d681aa868b9d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd952f4-819b-4d3c-91a1-0f9020bae81c.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9325
x-amzn-requestid: 6a0388e5-97d6-42f4-b54d-a3f4826f2293
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZxMaDE2JoAMFieg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63438dd9-76ff69230ce03c033b35a4c4;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 03:13:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: oUdj3LVRzke7i9j4pQRCGqss6LC-l1Qf4gvtAnrM9ZH1Bzu6Adezuw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 04:00:51 GMT
age: 27570
etag: "ec0a371cca2d4e43f3375dd6b699478c5af62884"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5d5a2a4-e4d4-4f11-8cb5-c320f1078b2f.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5d5a2a4-e4d4-4f11-8cb5-c320f1078b2f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4f78379e6bde371b492c950402bcc39e
53a7502d8932c515aa09055c5cf8f2d2242e4398
241016bbd3cebc009f63dff2773c1c7fdb68fa941ab62b368d5e023b9155fa37
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5d5a2a4-e4d4-4f11-8cb5-c320f1078b2f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5252
x-amzn-requestid: b4ef9c4f-7ca4-42c9-a928-b0b8aa3cc695
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3BUaEtBoAMF8Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e282-455619be605fa91977c66df7;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:39:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zg4cBw3GML5OoCmS3yOEMdwKHFgl4fulcLN0Eqp4ttYBPj3umRY9lg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 22:34:25 GMT
age: 47156
etag: "53a7502d8932c515aa09055c5cf8f2d2242e4398"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b15495e3e13c06fd0d67523870405ed
3cb8b43735e86c93733affa10818c47693c80fce
f65edddef18295076f79a48e9a6c95d07ed244a2ae618cb4229b6c1bd434cd57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F829a81b7-8a2b-4381-a830-9c534e3312fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12187
x-amzn-requestid: e0271885-6c76-4a8c-98a2-4df8ee86a688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZzuA_FmaoAMF3AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6344906c-6fe5dce86e61bd8027759559;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:36:44 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: EZGQpzHMraEgNLgISszTWzRR7-4lgWEGH191UOYac6qPnLkrTjnNnQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 04:14:52 GMT
age: 26729
etag: "3cb8b43735e86c93733affa10818c47693c80fce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb346a582-22c0-4785-8cff-aa89fd5eefb6.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb346a582-22c0-4785-8cff-aa89fd5eefb6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f42ff23003d006daab01a5317a8231a7
918aac143d82bf543ee326bd26a7c256ffb2d7de
f3d97dd5f258fa504cd4e2274e702126f521e11a903cb23974809563b6f0e9cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb346a582-22c0-4785-8cff-aa89fd5eefb6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11116
x-amzn-requestid: 56e8fcb1-77ce-4b86-bc89-d0c68d564539
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3AkiGkvoAMFmiA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6345e150-1c5c41db4c614cd766b82ef4;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 21:34:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0fGlW3iuuVzY6_VMl3MpX9PoqzpY-CoNPlJey79E9_NQXkLj3crcVg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 21:49:24 GMT
age: 49857
etag: "918aac143d82bf543ee326bd26a7c256ffb2d7de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F637b45e2-fd12-4472-b5d2-eb8ef3a57f1f.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F637b45e2-fd12-4472-b5d2-eb8ef3a57f1f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bbd344ccb235ebd609f2516f24227dfd
a494be7ce790c6f4079cb0edf4d12baba71d8cac
cd040d7878d316d9929ec08655c6ea30994d363edd8c3f5111b9e2407d079be2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F637b45e2-fd12-4472-b5d2-eb8ef3a57f1f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3881
x-amzn-requestid: cf010a67-b76d-4205-9d51-011517870cd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjAd9GAToAMFStQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633de125-6ceb184864e024315f549694;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 19:55:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 89OwG27zJsr9KiiEccE5P0KDPHuBEmfcPF6bfRmyc7szIc6mw3fQAw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 12 Oct 2022 05:05:20 GMT
age: 23701
etag: "a494be7ce790c6f4079cb0edf4d12baba71d8cac"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc.yandex.ru/watch/25328195?wmode=7&page-url=http%3A%2F%2Fwp1.j1139809.pkzyp.spectrum.myjino.ru%2Fwp-admin%2Fmaint%2Fdhl%2Fcard.php&charset=utf-8&site-info=%7B%22page%22%3A%22techdomain%22%2C%22jsVersion%22%3A%221.41.3%22%2C%22htmlVersion%22%3A%221.25.2%22%7D&ut=noindex&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afp%3A670%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A408142057934%3Ahid%3A394250511%3Az%3A0%3Ai%3A20221012114020%3Aet%3A1665574821%3Ac%3A1%3Arn%3A524153393%3Arqn%3A1%3Au%3A16655748216757215%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A83%2C47%2C45%2C2%2C-4%2C0%2C%2C444%2C2%2C%2C%2C%2C698%3Ans%3A1665574819249%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665574821%3At%3ACaution&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
87.250.250.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/25328195?wmode=7&page-url=http%3A%2F%2Fwp1.j1139809.pkzyp.spectrum.myjino.ru%2Fwp-admin%2Fmaint%2Fdhl%2Fcard.php&charset=utf-8&site-info=%7B%22page%22%3A%22techdomain%22%2C%22jsVersion%22%3A%221.41.3%22%2C%22htmlVersion%22%3A%221.25.2%22%7D&ut=noindex&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afp%3A670%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A408142057934%3Ahid%3A394250511%3Az%3A0%3Ai%3A20221012114020%3Aet%3A1665574821%3Ac%3A1%3Arn%3A524153393%3Arqn%3A1%3Au%3A16655748216757215%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A83%2C47%2C45%2C2%2C-4%2C0%2C%2C444%2C2%2C%2C%2C%2C698%3Ans%3A1665574819249%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665574821%3At%3ACaution&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
IP 87.250.250.119:0
GET /watch/25328195?wmode=7&page-url=http%3A%2F%2Fwp1.j1139809.pkzyp.spectrum.myjino.ru%2Fwp-admin%2Fmaint%2Fdhl%2Fcard.php&charset=utf-8&site-info=%7B%22page%22%3A%22techdomain%22%2C%22jsVersion%22%3A%221.41.3%22%2C%22htmlVersion%22%3A%221.25.2%22%7D&ut=noindex&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afp%3A670%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A408142057934%3Ahid%3A394250511%3Az%3A0%3Ai%3A20221012114020%3Aet%3A1665574821%3Ac%3A1%3Arn%3A524153393%3Arqn%3A1%3Au%3A16655748216757215%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A83%2C47%2C45%2C2%2C-4%2C0%2C%2C444%2C2%2C%2C%2C%2C698%3Ans%3A1665574819249%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665574821%3At%3ACaution&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://wp1.j1139809.pkzyp.spectrum.myjino.ru
Connection: keep-alive
Referer: http://wp1.j1139809.pkzyp.spectrum.myjino.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/25328195/1?wmode=7&page-url=http%3A%2F%2Fwp1.j1139809.pkzyp.spectrum.myjino.ru%2Fwp-admin%2Fmaint%2Fdhl%2Fcard.php&charset=utf-8&site-info=%7B%22page%22%3A%22techdomain%22%2C%22jsVersion%22%3A%221.41.3%22%2C%22htmlVersion%22%3A%221.25.2%22%7D&ut=noindex&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A8lptml46owy1i81m1iing%3Afp%3A670%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A912%3Acn%3A1%3Adp%3A0%3Als%3A408142057934%3Ahid%3A394250511%3Az%3A0%3Ai%3A20221012114020%3Aet%3A1665574821%3Ac%3A1%3Arn%3A524153393%3Arqn%3A1%3Au%3A16655748216757215%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A83%2C47%2C45%2C2%2C-4%2C0%2C%2C444%2C2%2C%2C%2C%2C698%3Ans%3A1665574819249%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665574821%3At%3ACaution&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Wed, 12 Oct 2022 11:40:20 GMT
access-control-allow-origin: http://wp1.j1139809.pkzyp.spectrum.myjino.ru
set-cookie: yandexuid=3915067361665574820; Expires=Thu, 12-Oct-2023 11:40:20 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=3915067361665574820; Expires=Thu, 12-Oct-2023 11:40:20 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=2327820441665574820; Path=/; SameSite=None; Secure
i=KPcNjgXjK9nXhbp/AN/5Xlr4NUlX7PRbdHkVYE1UtBsVjSNT0Ny3LKHwGEMfY6Ac6KGyf/iX3LC/DJdac3c2mGH2aJI=; Expires=Sat, 09-Oct-2032 11:40:17 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1697110820.yrts.1665574820#1697110820.yrtsi.1665574820; Expires=Thu, 12-Oct-2023 11:40:20 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 12-Oct-2022 11:40:20 GMT
last-modified: Wed, 12-Oct-2022 11:40:20 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2