taranov.ru/dfsroot/documents%20and%20settings/irebrov/local%20settings/temporary%20internet%20files/olk18/new%20ver.xls
301 Moved Permanently 338 B URL HTTP/1.1 taranov.ru/dfsroot/documents%20and%20settings/irebrov/local%20settings/temporary%20internet%20files/olk18/new%20ver.xls
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7770da62cc9bfdc1dc22382c258825ad
29ab4748d9869367836ac32c73536cef90f76a35
7a1048a03588ff1da33b5c44e438d6ba467108496b3f0708c6ef9ffa872aa9c7
Analyzer Verdict Alert fortinet Malware
GET /dfsroot/documents%20and%20settings/irebrov/local%20settings/temporary%20internet%20files/olk18/new%20ver.xls HTTP/1.1
Host: taranov.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.14.1
Date: Wed, 28 Sep 2022 08:54:30 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 338
Connection: keep-alive
Location: http://www.taranov.ru/dfsroot/documents%20and%20settings/irebrov/local%20settings/temporary%20internet%20files/olk18/new%20ver.xls
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 08:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jf3nip8RdHcY3_Bkptf4rWNiN6_SfyJs7jqw1-2faU2Pwi_pFay3zw==
Age: 2332
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7fb7c70f7f4e2cee27eb0e7d875931f7
98fca3817a551b1daecebae103a48e718b8b5a53
2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7208
Expires: Wed, 28 Sep 2022 10:54:39 GMT
Date: Wed, 28 Sep 2022 08:54:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WbvYAPoHeW2O2VpWtHY9U9J4rdohloZrhj0_dBKxTDZNTlrAPXUkpg==
age: 84618
X-Firefox-Spdy: h2
www.taranov.ru/dfsroot/documents%20and%20settings/irebrov/local%20settings/temporary%20internet%20files/olk18/new%20ver.xls
302 Found 205 B URL HTTP/1.1 www.taranov.ru/dfsroot/documents%20and%20settings/irebrov/local%20settings/temporary%20internet%20files/olk18/new%20ver.xls
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 69263f7e0ee101705c61be7cbd4ca83c
e4759d6dfaa3181ef5cb4660d6002d297a48a2cd
cc31fde93e3d6eb65ee97a306b85cf8c946f8344100c59495fbd8f752f7ab44e
Analyzer Verdict Alert fortinet Malware
GET /dfsroot/documents%20and%20settings/irebrov/local%20settings/temporary%20internet%20files/olk18/new%20ver.xls HTTP/1.1
Host: www.taranov.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx/1.14.1
Date: Wed, 28 Sep 2022 08:54:31 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 205
Connection: keep-alive
Location: http://www.taranov.ru
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 08:54:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.taranov.ru/
200 OK 4.9 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (443), with CRLF, LF line terminators
Hash 65b166bed92206df6c1cc312cea06ffb
6c1b6d8ae4a2f4e35933b3196f882d5e623df618
f7267589459a54b01f5aed34b3fff6e581e8d75bba5743e0c26117f44ad75009
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.taranov.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 28 Sep 2022 08:54:31 GMT
Content-Type: text/html; charset=Windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Generator: Nucleus CMS v3.51
Set-Cookie: lastVisit=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
Content-Encoding: gzip
www.taranov.ru/skins/raspberry/style.css
200 OK 3.2 kB URL HTTP/1.1 www.taranov.ru/skins/raspberry/style.css
IP
File type HTML document, ASCII text, with CRLF line terminators
Hash 2557a281b70c197aa82a817c4f0e6808
707ad59b952cc42fe9353a6e81ea0b9c91b2111b
f0dd2a844e9f9b03b41c2b9c0175a9fdbc97c8e337b45092bbf5f09f265132a6
GET /skins/raspberry/style.css HTTP/1.1
Host: www.taranov.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.taranov.ru/
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 28 Sep 2022 08:54:31 GMT
Content-Type: text/css
Last-Modified: Wed, 20 Nov 2019 14:53:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5dd5537a-3183"
Expires: Sat, 29 Oct 2022 08:54:31 GMT
Cache-Control: max-age=2678400
Content-Encoding: gzip
pagead2.googlesyndication.com/pagead/show_ads.js
200 OK 40 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP
File type ASCII text, with very long lines (2320)
Hash 49793081775ed73743431a1d5d378bdd
895091be35230773865c470dbba659ca3dc27ac8
12854ffeb88a556a13a15d0dd98a86d9a4874407fdb4d8551f05353afb9253cc
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.taranov.ru/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Wed, 28 Sep 2022 08:54:31 GMT
Expires: Wed, 28 Sep 2022 08:54:31 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 146588099392466458
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 40166
X-XSS-Protection: 0
www.taranov.ru/media/1/TTT.jpg
200 OK 62 kB URL HTTP/1.1 www.taranov.ru/media/1/TTT.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=II*], progressive, precision 8, 500x333, components 3\012- data
Hash cd83960215ef26164f935b27e143443e
20025e5387ef50380a004c0f966c5bbaa62247b9
bfd0066639a7e4420748d5fcbdec21b7144601561a9fd50c458421b152bce47c
GET /media/1/TTT.jpg HTTP/1.1
Host: www.taranov.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.taranov.ru/
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 28 Sep 2022 08:54:31 GMT
Content-Type: image/jpeg
Content-Length: 62096
Last-Modified: Wed, 20 Nov 2019 14:53:52 GMT
Connection: keep-alive
ETag: "5dd55380-f290"
Expires: Sat, 29 Oct 2022 08:54:31 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
cdn-rtb.sape.ru/rtb-b/js/995/2/106995.js
200 OK 41 kB URL HTTP/1.1 cdn-rtb.sape.ru/rtb-b/js/995/2/106995.js
IP
File type ASCII text, with very long lines (5800)
Hash e4b1d0eca7ed2908672ba147d4557e2a
33be54e180c801e60277fc41a5a5288b6a458c83
8608e44cf42b0dfc7f67ff2dfec3d76d450f86d3ca35d9b8f0776cafb8a28a0a
GET /rtb-b/js/995/2/106995.js HTTP/1.1
Host: cdn-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.taranov.ru/
HTTP/1.1 200 OK
Server: openresty
Date: Wed, 28 Sep 2022 08:54:31 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: W/"04ce3c920ff2546e59d384216b6ca440"
Last-Modified: Tue, 27 Sep 2022 08:15:39 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 1718F4B0A3B2DD4A
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Content-Encoding: gzip
Expires: Wed, 28 Sep 2022 09:54:31 GMT
Cache-Control: max-age=3600
X-Cache-Status: HIT
www.taranov.ru/media/1/st_957s.jpg
200 OK 67 kB URL HTTP/1.1 www.taranov.ru/media/1/st_957s.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=13, height=330, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=500], baseline, precision 8, 500x330, components 3\012- data
Hash 1146e975af531c787475d218c54054c9
1af108ed18b2d9457b5db0d5e8a6e4a4fe78384f
6395efbe85617138dbc9167263d3b4ea835c28148c853e39ba8c96405be53495
GET /media/1/st_957s.jpg HTTP/1.1
Host: www.taranov.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.taranov.ru/
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 28 Sep 2022 08:54:31 GMT
Content-Type: image/jpeg
Content-Length: 66596
Last-Modified: Wed, 20 Nov 2019 14:53:52 GMT
Connection: keep-alive
ETag: "5dd55380-10424"
Expires: Sat, 29 Oct 2022 08:54:31 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
www.taranov.ru/skins/raspberry/img/header.jpg
200 OK 33 kB URL HTTP/1.1 www.taranov.ru/skins/raspberry/img/header.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 300x300, segment length 16, baseline, precision 8, 900x150, components 3\012- data
Hash 170e911c612163fa3995ac5907a01fcc
c3f0f51015a2ca440bb1f827e7f19916e1a461e6
21e6ee40eb4d36333185e4939cb9f092e1924af127637ced28f32a5c4d1d1f35
GET /skins/raspberry/img/header.jpg HTTP/1.1
Host: www.taranov.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.taranov.ru/skins/raspberry/style.css
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 28 Sep 2022 08:54:31 GMT
Content-Type: image/jpeg
Content-Length: 33388
Last-Modified: Wed, 20 Nov 2019 14:53:45 GMT
Connection: keep-alive
ETag: "5dd55379-826c"
Expires: Sat, 29 Oct 2022 08:54:31 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
www.taranov.ru/skins/raspberry/img/icon.jpg
200 OK 1.3 kB URL HTTP/1.1 www.taranov.ru/skins/raspberry/img/icon.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 45x60, components 3\012- data
Hash ad05df6c140c5b1f8673d220b8cc6d31
47dadc99d8f0206c97469cf898d57d5e8e74f086
3d1d17ea0c10f8cf967e5c58869ab5c7b35f673c11fd8817e529b73810663c35
GET /skins/raspberry/img/icon.jpg HTTP/1.1
Host: www.taranov.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.taranov.ru/skins/raspberry/style.css
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 28 Sep 2022 08:54:31 GMT
Content-Type: image/jpeg
Content-Length: 1283
Last-Modified: Wed, 20 Nov 2019 14:53:45 GMT
Connection: keep-alive
ETag: "5dd55379-503"
Expires: Sat, 29 Oct 2022 08:54:31 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
www.taranov.ru/skins/raspberry/img/icon_comments.gif
200 OK 70 B URL HTTP/1.1 www.taranov.ru/skins/raspberry/img/icon_comments.gif
IP
File type GIF image data, version 89a, 13 x 13\012- data
Hash 8baa2a95070d1524f1fa03605fc50654
a8358e913e00f7ac19a15d31e825bf419f893b67
6fcba8a1634008a6d19911f680a88c6b82a014d1bb74d9f72b6bdc5c8c78cee8
GET /skins/raspberry/img/icon_comments.gif HTTP/1.1
Host: www.taranov.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.taranov.ru/skins/raspberry/style.css
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 28 Sep 2022 08:54:31 GMT
Content-Type: image/gif
Content-Length: 70
Last-Modified: Wed, 20 Nov 2019 14:53:45 GMT
Connection: keep-alive
ETag: "5dd55379-46"
Expires: Sat, 29 Oct 2022 08:54:31 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
www.taranov.ru/skins/raspberry/img/h2bullet.gif
200 OK 1.1 kB URL HTTP/1.1 www.taranov.ru/skins/raspberry/img/h2bullet.gif
IP
File type GIF image data, version 89a, 22 x 22\012- data
Hash 0952e4ea1953cb3aaca8d49f7bf6fbc6
cc972fd1fa15f911bb645ab52ab94654026143fe
be48c43232c91906d830dcef2486bd20d17d0716493a0710a5d0ad88e8c84e7b
GET /skins/raspberry/img/h2bullet.gif HTTP/1.1
Host: www.taranov.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.taranov.ru/skins/raspberry/style.css
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 28 Sep 2022 08:54:31 GMT
Content-Type: image/gif
Content-Length: 1054
Last-Modified: Wed, 20 Nov 2019 14:53:45 GMT
Connection: keep-alive
ETag: "5dd55379-41e"
Expires: Sat, 29 Oct 2022 08:54:31 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
www.taranov.ru/skins/raspberry/img/bullet.jpg
200 OK 684 B URL HTTP/1.1 www.taranov.ru/skins/raspberry/img/bullet.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 9x9, components 3\012- data
Hash ef4a9d27491d209513e396ba2cd1ce61
bd25d490f80e26f85f8e334adee103a025f40cd5
88dd930275a5df285fa81498198073793c1529ce74d4115367ac10f30074fb6a
GET /skins/raspberry/img/bullet.jpg HTTP/1.1
Host: www.taranov.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.taranov.ru/skins/raspberry/style.css
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 28 Sep 2022 08:54:31 GMT
Content-Type: image/jpeg
Content-Length: 684
Last-Modified: Wed, 20 Nov 2019 14:53:45 GMT
Connection: keep-alive
ETag: "5dd55379-2ac"
Expires: Sat, 29 Oct 2022 08:54:31 GMT
Cache-Control: max-age=2678400
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4ba8f7fdbd4d1d5ed592e1ebc1d0217f
78ecb7a9a8ae7135ff6049f5d5ff10dfa0ea96aa
b3ec1d236f8500a59b1b331ccd64b85aa580b3325dd4b3e2bb5b4cb287ceb962
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B3EC1D236F8500A59B1B331CCD64B85AA580B3325DD4B3E2BB5B4CB287CEB962"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8411
Expires: Wed, 28 Sep 2022 11:14:42 GMT
Date: Wed, 28 Sep 2022 08:54:31 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 28 Sep 2022 08:29:33 GMT
Expires: Wed, 28 Sep 2022 09:22:54 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xLi8kczW-lwTlZRuTJUhbllcbsXGwcBDEn2Bzf_6e2ZSuCCjDw4iXA==
Age: 1498
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4ba8f7fdbd4d1d5ed592e1ebc1d0217f
78ecb7a9a8ae7135ff6049f5d5ff10dfa0ea96aa
b3ec1d236f8500a59b1b331ccd64b85aa580b3325dd4b3e2bb5b4cb287ceb962
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B3EC1D236F8500A59B1B331CCD64B85AA580B3325DD4B3E2BB5B4CB287CEB962"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8411
Expires: Wed, 28 Sep 2022 11:14:42 GMT
Date: Wed, 28 Sep 2022 08:54:31 GMT
Connection: keep-alive
www.acint.net/aci.js
200 OK 7.5 kB IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1408)
Hash ae0aab6c5a2ae2e1168e74f6e6ae4741
2c00f69ee4bbe2ec96c0f7bb33b5f827a6195af8
a47a88a9b6c7635e5074c25c6e3c92f399fdf8772376e94f077167241e59f9de
GET /aci.js HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:31 GMT
content-type: application/x-javascript
content-length: 7461
last-modified: Mon, 29 Nov 2021 13:21:32 GMT
etag: "61a4d3dc-1d25"
content-encoding: gzip
expires: Wed, 28 Sep 2022 20:54:31 GMT
cache-control: max-age=43200
X-Firefox-Spdy: h2
www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A700491%2C%22ev%22%3A%22vis0%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A700491%2C%22ev%22%3A%22vis0%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A700491%2C%22ev%22%3A%22vis0%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:31 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=fwAAAWM0C8e8ZgDWEn3cAjIHpJyEADCkFK99ogZMV81sMnbF; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A0%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A0%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A0%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:31 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=sAkJCmM0C8dw7wDkRLzFAsfb2Y4J/0+zpTAr62RrvxHPKZDi; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A0%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A1062%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A0%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A1062%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A0%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A1062%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:31 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=LgR5GmM0C8eRTQDUEaZhAi4D/8sod2feeBubXLNxR2686vp1; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A700491%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A700491%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A700491%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:31 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=LgRybWM0C8e8ZgDVOVR2Ara9fY5UjQsoCH1THrT/OyeEnby+; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/pxl/1?dp=16&id=106995.700491.164138895.0.0.0&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269
200 OK 43 B URL HTTP/2 www.acint.net/pxl/1?dp=16&id=106995.700491.164138895.0.0.0&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pxl/1?dp=16&id=106995.700491.164138895.0.0.0&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:31 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=fwAAAWM0C8e8ZgDWEn4qAvec8EBt2Z+e+aTj3qLwjaNCkjy1; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A700491%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A700491%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A700491%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:31 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/mc/?dp=10
302 Moved Temporarily 142 B IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.taranov.ru/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Wed, 28 Sep 2022 08:54:31 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/mc/?dp=10
www.acint.net/hit/?v=0.4.0&uid=106afeec-ed78-476e-be4f-f8c2078c592f&dp=10&tz=%2B00%3A00&nc=84091872&u=http%3A%2F%2Fwww.taranov.ru%2F&r=&rs=1280x1024&t=%D0%9A%D1%83%D0%BB%D0%B8%D0%BD%D0%B0%D1%80%D0%B8%D1%8F%20%D0%98%D0%B2%D0%B0%D0%BD%D0%B0%20%D0%A2%D0%B0%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%D0%B0%20-%20%D0%A0%D0%B5%D1%86%D0%B5%D0%BF%D1%82%D1%8B%20%D1%81%D0%BB%D0%B0%D0%B4%D0%BE%D1%81%D1%82%D0%B5%D0%B9%20%D0%B8%20%D0%B4%D0%B5%D1%81%D0%B5%D1%80%D1%82%D0%BE%D0%B2&oE=1&oP=1&dT=2022-09-28T08%3A54%3A29.425&fu=6beaefe8-5f03-4932-9e16-558147f5257b
302 Moved Temporarily 142 B URL HTTP/1.1 www.acint.net/hit/?v=0.4.0&uid=106afeec-ed78-476e-be4f-f8c2078c592f&dp=10&tz=%2B00%3A00&nc=84091872&u=http%3A%2F%2Fwww.taranov.ru%2F&r=&rs=1280x1024&t=%D0%9A%D1%83%D0%BB%D0%B8%D0%BD%D0%B0%D1%80%D0%B8%D1%8F%20%D0%98%D0%B2%D0%B0%D0%BD%D0%B0%20%D0%A2%D0%B0%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%D0%B0%20-%20%D0%A0%D0%B5%D1%86%D0%B5%D0%BF%D1%82%D1%8B%20%D1%81%D0%BB%D0%B0%D0%B4%D0%BE%D1%81%D1%82%D0%B5%D0%B9%20%D0%B8%20%D0%B4%D0%B5%D1%81%D0%B5%D1%80%D1%82%D0%BE%D0%B2&oE=1&oP=1&dT=2022-09-28T08%3A54%3A29.425&fu=6beaefe8-5f03-4932-9e16-558147f5257b
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /hit/?v=0.4.0&uid=106afeec-ed78-476e-be4f-f8c2078c592f&dp=10&tz=%2B00%3A00&nc=84091872&u=http%3A%2F%2Fwww.taranov.ru%2F&r=&rs=1280x1024&t=%D0%9A%D1%83%D0%BB%D0%B8%D0%BD%D0%B0%D1%80%D0%B8%D1%8F%20%D0%98%D0%B2%D0%B0%D0%BD%D0%B0%20%D0%A2%D0%B0%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%D0%B0%20-%20%D0%A0%D0%B5%D1%86%D0%B5%D0%BF%D1%82%D1%8B%20%D1%81%D0%BB%D0%B0%D0%B4%D0%BE%D1%81%D1%82%D0%B5%D0%B9%20%D0%B8%20%D0%B4%D0%B5%D1%81%D0%B5%D1%80%D1%82%D0%BE%D0%B2&oE=1&oP=1&dT=2022-09-28T08%3A54%3A29.425&fu=6beaefe8-5f03-4932-9e16-558147f5257b HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.taranov.ru/
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Wed, 28 Sep 2022 08:54:31 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/hit/?v=0.4.0&uid=106afeec-ed78-476e-be4f-f8c2078c592f&dp=10&tz=%2B00%3A00&nc=84091872&u=http%3A%2F%2Fwww.taranov.ru%2F&r=&rs=1280x1024&t=%D0%9A%D1%83%D0%BB%D0%B8%D0%BD%D0%B0%D1%80%D0%B8%D1%8F%20%D0%98%D0%B2%D0%B0%D0%BD%D0%B0%20%D0%A2%D0%B0%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%D0%B0%20-%20%D0%A0%D0%B5%D1%86%D0%B5%D0%BF%D1%82%D1%8B%20%D1%81%D0%BB%D0%B0%D0%B4%D0%BE%D1%81%D1%82%D0%B5%D0%B9%20%D0%B8%20%D0%B4%D0%B5%D1%81%D0%B5%D1%80%D1%82%D0%BE%D0%B2&oE=1&oP=1&dT=2022-09-28T08%3A54%3A29.425&fu=6beaefe8-5f03-4932-9e16-558147f5257b
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 63449bf7eaa399f0857c456a48d74855
5915d9ca251576ccb7f219daad1798572dfc5581
0152086418b20ed86c03519b195f284a2c95bd7620139f16be5aa6c6667e8c29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0152086418B20ED86C03519B195F284A2C95BD7620139F16BE5AA6C6667E8C29"
Last-Modified: Tue, 27 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16897
Expires: Wed, 28 Sep 2022 13:36:08 GMT
Date: Wed, 28 Sep 2022 08:54:31 GMT
Connection: keep-alive
www.acint.net/pxl/1?dp=16&id=106995.700492.164138904.0.0.0&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269
200 OK 43 B URL HTTP/2 www.acint.net/pxl/1?dp=16&id=106995.700492.164138904.0.0.0&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pxl/1?dp=16&id=106995.700492.164138904.0.0.0&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355269 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:31 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/hit/?v=0.4.0&uid=106afeec-ed78-476e-be4f-f8c2078c592f&dp=10&tz=%2B00%3A00&nc=84091872&u=http%3A%2F%2Fwww.taranov.ru%2F&r=&rs=1280x1024&t=%D0%9A%D1%83%D0%BB%D0%B8%D0%BD%D0%B0%D1%80%D0%B8%D1%8F%20%D0%98%D0%B2%D0%B0%D0%BD%D0%B0%20%D0%A2%D0%B0%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%D0%B0%20-%20%D0%A0%D0%B5%D1%86%D0%B5%D0%BF%D1%82%D1%8B%20%D1%81%D0%BB%D0%B0%D0%B4%D0%BE%D1%81%D1%82%D0%B5%D0%B9%20%D0%B8%20%D0%B4%D0%B5%D1%81%D0%B5%D1%80%D1%82%D0%BE%D0%B2&oE=1&oP=1&dT=2022-09-28T08%3A54%3A29.425&fu=6beaefe8-5f03-4932-9e16-558147f5257b
200 OK 43 B URL HTTP/2 www.acint.net/hit/?v=0.4.0&uid=106afeec-ed78-476e-be4f-f8c2078c592f&dp=10&tz=%2B00%3A00&nc=84091872&u=http%3A%2F%2Fwww.taranov.ru%2F&r=&rs=1280x1024&t=%D0%9A%D1%83%D0%BB%D0%B8%D0%BD%D0%B0%D1%80%D0%B8%D1%8F%20%D0%98%D0%B2%D0%B0%D0%BD%D0%B0%20%D0%A2%D0%B0%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%D0%B0%20-%20%D0%A0%D0%B5%D1%86%D0%B5%D0%BF%D1%82%D1%8B%20%D1%81%D0%BB%D0%B0%D0%B4%D0%BE%D1%81%D1%82%D0%B5%D0%B9%20%D0%B8%20%D0%B4%D0%B5%D1%81%D0%B5%D1%80%D1%82%D0%BE%D0%B2&oE=1&oP=1&dT=2022-09-28T08%3A54%3A29.425&fu=6beaefe8-5f03-4932-9e16-558147f5257b
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hit/?v=0.4.0&uid=106afeec-ed78-476e-be4f-f8c2078c592f&dp=10&tz=%2B00%3A00&nc=84091872&u=http%3A%2F%2Fwww.taranov.ru%2F&r=&rs=1280x1024&t=%D0%9A%D1%83%D0%BB%D0%B8%D0%BD%D0%B0%D1%80%D0%B8%D1%8F%20%D0%98%D0%B2%D0%B0%D0%BD%D0%B0%20%D0%A2%D0%B0%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%D0%B0%20-%20%D0%A0%D0%B5%D1%86%D0%B5%D0%BF%D1%82%D1%8B%20%D1%81%D0%BB%D0%B0%D0%B4%D0%BE%D1%81%D1%82%D0%B5%D0%B9%20%D0%B8%20%D0%B4%D0%B5%D1%81%D0%B5%D1%80%D1%82%D0%BE%D0%B2&oE=1&oP=1&dT=2022-09-28T08%3A54%3A29.425&fu=6beaefe8-5f03-4932-9e16-558147f5257b HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.taranov.ru/
Connection: keep-alive
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:31 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ssp-rtb.sape.ru/data/?callback=sapeRTB_63340bc56_28886405&srtbid=106995&scids=164138895&sx=1268&sy=939&ref=&u=http%3A%2F%2Fwww.taranov.ru%2F&allimps=0&fl=0&v=3&tz=%2B00%3A00
200 OK 50 B URL HTTP/1.1 ssp-rtb.sape.ru/data/?callback=sapeRTB_63340bc56_28886405&srtbid=106995&scids=164138895&sx=1268&sy=939&ref=&u=http%3A%2F%2Fwww.taranov.ru%2F&allimps=0&fl=0&v=3&tz=%2B00%3A00
IP
File type ASCII text, with no line terminators
Hash 41d5ceed9b0172975d70870af57aacfd
3f974abc234d61750734810d1928713988051dd0
4b381e736745e1cda73120a2be30f3a3db446c6c90fae55b601e148aa576dc4b
GET /data/?callback=sapeRTB_63340bc56_28886405&srtbid=106995&scids=164138895&sx=1268&sy=939&ref=&u=http%3A%2F%2Fwww.taranov.ru%2F&allimps=0&fl=0&v=3&tz=%2B00%3A00 HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 50
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Content-Encoding: gzip
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=wQO4iGM0C8gIywBObnLUAlYqxkowmTIOStpa+Piqj0D7Ru4x; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None
ocsp.digicert.com/
200 OK 471 B IP
Hash c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6520
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:32 GMT
Last-Modified: Wed, 28 Sep 2022 07:05:52 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
302 Moved Temporarily 142 B URL HTTP/1.1 ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=CFB803C1C80B34634200F8AF0250C741
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=wQO4z2M0C8iv+ABCQcdQAvaSxlONxZvMrXeGfI2IDLJvi21Q; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None
ocsp.digicert.com/
200 OK 280 B IP
Hash e3fd0fb0c07470b45e5477a9177cfd94
70bade5b1e91dcaeb0bdc2e1fbb76b57e3e203b0
2d513a5007fc2dec60ab066a41a088ea5a163fc3fc105b82ab7107be716f6d5e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6374
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:32 GMT
Last-Modified: Wed, 28 Sep 2022 07:08:19 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 280
www.acint.net/pxl/3?dp=16&id=106995.700491.164138895.0.0.0&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355270
200 OK 43 B URL HTTP/2 www.acint.net/pxl/3?dp=16&id=106995.700491.164138895.0.0.0&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355270
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pxl/3?dp=16&id=106995.700491.164138895.0.0.0&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355270 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; cSyncDp7v2=1664355271; cSyncDp14v3=1664355271; cSyncDp17=1664355271; cSyncDp32=1664355271; cSyncDp45v3=1664355271; cSyncDp53=1664355271; cSyncDp54v2=1664355271; cSyncDp62=1664355271; cSyncDp67v2=1664355271; cSyncDp68=1664355271; cSyncDp71=1664355271; cSyncDp77=1664355271; cSyncDp84=1664355271; cSyncDp85=1664355271; cSyncDp95v3=1664355271; cSyncDp101=1664355271; cSyncDp104v2=1664355271; cSyncDp107=1664355271; cSyncDp110=1664355271; cSyncDp111v2=1664355271; cSyncDp112v2=1664355271; cSyncDp125v2=1664355271; cSyncDp126=1664355271; cSyncDp127=1664355271; cSyncDp129=1664355271; cSyncDp136v2=1664355271; cSyncDp138=1664355271; cSyncDp144=1664355271; cSyncDp146=1664355271; cSyncDp148=1664355271; cSyncDp149=1664355271; cSyncDp151=1664355271; cSyncDp178=1664355271; cSyncDp179=1664355271; cSyncDp186=1664355271; cSyncDp221=1664355271
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
dm-eu.hybrid.ai/match?id=106&vid=1A79042EC70B3463D4004D9102C2A611
204 No Content 0 B URL HTTP/2 dm-eu.hybrid.ai/match?id=106&vid=1A79042EC70B3463D4004D9102C2A611
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=106&vid=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 28 Sep 2022 08:54:32 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=dab42047253f15885140; expires=Thu, 28 Sep 2023 08:54:31 GMT; domain=.hybrid.ai; path=/; samesite=none
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 520
x-xss-protection: 1; mode=block
access-control-allow-origin: *
server: Hybrid Web Server
X-Firefox-Spdy: h2
a.utraff.com/sync?ssp=sape
204 No Content 0 B URL HTTP/2 a.utraff.com/sync?ssp=sape
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=sape HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Fri, 28 Oct 2022 11:54:32 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Fri, 28 Oct 2022 11:54:32 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=16PvU9MzHSXH%2F3gXq2mYyFcuyPqdyTk3W7MehKpsP7VcRqc8s1vyCowVCdhI1zf7IIRCmB0CTwFrqxd4S0k2c0WztKPqIEKEzn%2F11MadDHdtuzhmripY3oSGQf0bhCE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 751b4142a8e21bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.taranov.ru/favicon.ico
302 Found 205 B URL HTTP/1.1 www.taranov.ru/favicon.ico
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 69263f7e0ee101705c61be7cbd4ca83c
e4759d6dfaa3181ef5cb4660d6002d297a48a2cd
cc31fde93e3d6eb65ee97a306b85cf8c946f8344100c59495fbd8f752f7ab44e
GET /favicon.ico HTTP/1.1
Host: www.taranov.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.taranov.ru/
Cookie: fid=6beaefe8-5f03-4932-9e16-558147f5257b
HTTP/1.1 302 Found
Server: nginx/1.14.1
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 205
Connection: keep-alive
Location: http://www.taranov.ru
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9bdcfcfc1d299171765f8a778deabaf6
218d29dcd9d17ac7693b5f7ce37d827b21cc53e5
1d3b837a90506ae8380c065e0ea82ea37d0d28eaaa638f94f56cc99c656fb9ea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D3B837A90506AE8380C065E0EA82EA37D0D28EAAA638F94F56CC99C656FB9EA"
Last-Modified: Mon, 26 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3691
Expires: Wed, 28 Sep 2022 09:56:03 GMT
Date: Wed, 28 Sep 2022 08:54:32 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 772b3e5730f255bf1c9df2e6660a9efe
4d2513e851b38b24ba4bf1b873efaa44215b6745
dd731f2c380dd6922953331bef0bbb35f556c2b4d5eaa72e44960fa5167abe34
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD731F2C380DD6922953331BEF0BBB35F556C2B4D5EAA72E44960FA5167ABE34"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14902
Expires: Wed, 28 Sep 2022 13:02:54 GMT
Date: Wed, 28 Sep 2022 08:54:32 GMT
Connection: keep-alive
sync.upravel.com/sape/sync
302 Found 0 B URL HTTP/2 sync.upravel.com/sape/sync
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1664355272269;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1664355272269;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d6d3ddb59c44535bd05d8bce91e4e0ee
47fd85d5d0a0052347f45297d186a5253ff62f88
06234610a598215afd431090967575d372673a2001ee7993e383a825be302e07
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "06234610A598215AFD431090967575D372673A2001EE7993E383A825BE302E07"
Last-Modified: Tue, 27 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4109
Expires: Wed, 28 Sep 2022 10:03:01 GMT
Date: Wed, 28 Sep 2022 08:54:32 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5e3075fd11903cc150ab603432add54c
f16ce73ef2306ec3037dd1d2397b732e9cce9e0d
7ad313d8dd0deffef42ba3d5230fdb2cad64772748476f294f41011944056aeb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7AD313D8DD0DEFFEF42BA3D5230FDB2CAD64772748476F294F41011944056AEB"
Last-Modified: Tue, 27 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9869
Expires: Wed, 28 Sep 2022 11:39:01 GMT
Date: Wed, 28 Sep 2022 08:54:32 GMT
Connection: keep-alive
ocsp.globalsign.com/gseccovsslca2018
200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash f045266274f4c8bb3fb7309b1c4a12dc
60e81c60c9b3a9ac5c04b9a0541b0441f4149c70
b538dc7c1845913f5bb66bad99bf13f5c80acaf7ce5003c0f2c9028ba023bd6f
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sun, 02 Oct 2022 06:34:01 GMT
ETag: "60e81c60c9b3a9ac5c04b9a0541b0441f4149c70"
Last-Modified: Wed, 28 Sep 2022 06:34:02 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1028
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 751b4143ce50b511-OSL
acint.net/match?dp=14&euid=CFB803C1C80B34634200F8AF0250C741
200 OK 43 B URL HTTP/2 acint.net/match?dp=14&euid=CFB803C1C80B34634200F8AF0250C741
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=CFB803C1C80B34634200F8AF0250C741 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; cSyncDp7v2=1664355271; cSyncDp14v3=1664355271; cSyncDp17=1664355271; cSyncDp32=1664355271; cSyncDp45v3=1664355271; cSyncDp53=1664355271; cSyncDp54v2=1664355271; cSyncDp62=1664355271; cSyncDp67v2=1664355271; cSyncDp68=1664355271; cSyncDp71=1664355271; cSyncDp77=1664355271; cSyncDp84=1664355271; cSyncDp85=1664355271; cSyncDp95v3=1664355271; cSyncDp101=1664355271; cSyncDp104v2=1664355271; cSyncDp107=1664355271; cSyncDp110=1664355271; cSyncDp111v2=1664355271; cSyncDp112v2=1664355271; cSyncDp125v2=1664355271; cSyncDp126=1664355271; cSyncDp127=1664355271; cSyncDp129=1664355271; cSyncDp136v2=1664355271; cSyncDp138=1664355271; cSyncDp144=1664355271; cSyncDp146=1664355271; cSyncDp148=1664355271; cSyncDp149=1664355271; cSyncDp151=1664355271; cSyncDp178=1664355271; cSyncDp179=1664355271; cSyncDp186=1664355271; cSyncDp221=1664355271
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6c90ac9cd0f5ab80aac7b5c2de59dd18
a23b17626f7d97216bd5a4fc3facd90b42253eda
4f7110cb7d9b7a3f36e1b7c576955a5a9f79ebc6d0d8383a62e367ac7287d432
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4F7110CB7D9B7A3F36E1B7C576955A5A9F79EBC6D0D8383A62E367AC7287D432"
Last-Modified: Mon, 26 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11053
Expires: Wed, 28 Sep 2022 11:58:45 GMT
Date: Wed, 28 Sep 2022 08:54:32 GMT
Connection: keep-alive
sync.republer.com/match?dsp=sape
204 No Content 0 B URL HTTP/2 sync.republer.com/match?dsp=sape
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?dsp=sape HTTP/1.1
Host: sync.republer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 28 Sep 2022 08:54:32 GMT
strict-transport-security: max-age=0
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209220101/show_ads_impl_with_ama_fy2021.js?client=pub-2710681560546448&plah=www.taranov.ru
200 OK 126 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209220101/show_ads_impl_with_ama_fy2021.js?client=pub-2710681560546448&plah=www.taranov.ru
IP
File type ASCII text, with very long lines (5899)
Size 126 kB (125492 bytes)
Hash 67abda359c932675ecac2506b1d52b82
c8ac83f25d713627f0455621f480840bff334f96
445efbc02cdb5fd4060fcb7038ff9ed5248b868308c05efee32e20f9c0d2f4f1
GET /pagead/managed/js/adsense/m202209220101/show_ads_impl_with_ama_fy2021.js?client=pub-2710681560546448&plah=www.taranov.ru HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 28 Sep 2022 08:54:32 GMT
expires: Wed, 28 Sep 2022 08:54:32 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 5246032000326404500
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 125492
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stat.adlabs.ru/merge_gpsid/?sid=50&id=1A79042EC70B3463D4004D9102C2A611
302 Found 0 B URL HTTP/2 stat.adlabs.ru/merge_gpsid/?sid=50&id=1A79042EC70B3463D4004D9102C2A611
IP
ASN #201009 Centre of server systems Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge_gpsid/?sid=50&id=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: stat.adlabs.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 28 Sep 2022 08:42:02 GMT
content-length: 0
location: //adlmerge.com/merge_gpsid/?sid=50&id=1A79042EC70B3463D4004D9102C2A611
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 668e7163919445c00798cc20b85350f7
2b57ef1ebdc873a19bd2deb8a7aa1c5e915283d1
a35265fc895082c3f19fedacd320990df05278c73fb11797b992811fbecb517b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A35265FC895082C3F19FEDACD320990DF05278C73FB11797B992811FBECB517B"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11181
Expires: Wed, 28 Sep 2022 12:00:53 GMT
Date: Wed, 28 Sep 2022 08:54:32 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YYE3NNtR6t4NESSqR6gImA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: f1FuA6Z4oo45kk1hUkiNNAAXlYc=
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
302 Found 0 B URL HTTP/1.1 ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Wed, 28 Sep 2022 08:54:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.acint.net/match?dp=95&euid=NBPZHLDD
Set-Cookie: uid=NBPZHLDD; Expires=Wed, 28 Sep 2032 00:00:00 GMT; mf2=1; Expires=Fri, 28 Oct 2022 00:00:00 GMT;
s.uuidksinc.net/match/396/?remote_uid=1A79042EC70B3463D4004D9102C2A611
302 Found 0 B URL HTTP/2 s.uuidksinc.net/match/396/?remote_uid=1A79042EC70B3463D4004D9102C2A611
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.19.0
date: Wed, 28 Sep 2022 08:54:32 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=pbJHKgiPOkNsUgC3jNDe
set-cookie: jcsuuid=pbJHKgiPOkNsUgC3jNDe; expires=Thu, 28 Sep 2023 08:54:32 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1A79042EC70B3463D4004D9102C2A611
302 Found 0 B URL HTTP/2 sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1A79042EC70B3463D4004D9102C2A611
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 28 Sep 2022 08:54:32 GMT
content-length: 0
expires: 0
cache-control: private, no-cache, no-store, no-cache=Set-Cookie, proxy-revalidate
set-cookie: uid=2b691310-3f0b-11ed-8677-901b0e934d81; Version=1; Path=/; Domain=.1dmp.io; Expires=Thu, 28 Sep 2023 08:54:32 GMT; SameSite=None; Secure
uid-legacy=2b691310-3f0b-11ed-8677-901b0e934d81; Version=1; Path=/; Domain=.1dmp.io; Expires=Thu, 28 Sep 2023 08:54:32 GMT
location: /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1A79042EC70B3463D4004D9102C2A611&cs=1
X-Firefox-Spdy: h2
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
302 Found 0 B URL HTTP/2 sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: session_tptc=1664355272269
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/png
content-length: 0
location: https://84102a6a-7510-412d-8e7c-abb5d63e208c.sync.upravel.com/sape/sync?ud_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyIsImh0dHBzOi8vd3d3LmFjaW50Lm5ldC8iXX19
set-cookie: user_id=84102a6a-7510-412d-8e7c-abb5d63e208c;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=84102a6a-7510-412d-8e7c-abb5d63e208c;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c0749aff60150fe94054fd92e1ae58b7
8566774460e83c8ec1e8fe7e3e22f878d59e2833
7ea1cee9ac8d3d78270991c4c20d608d4e8282f277e2cb2cb1e74b6071a9066d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7EA1CEE9AC8D3D78270991C4C20D608D4E8282F277E2CB2CB1E74B6071A9066D"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5140
Expires: Wed, 28 Sep 2022 10:20:12 GMT
Date: Wed, 28 Sep 2022 08:54:32 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 280 B IP
Hash e3fd0fb0c07470b45e5477a9177cfd94
70bade5b1e91dcaeb0bdc2e1fbb76b57e3e203b0
2d513a5007fc2dec60ab066a41a088ea5a163fc3fc105b82ab7107be716f6d5e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6374
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:32 GMT
Last-Modified: Wed, 28 Sep 2022 07:08:19 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 280
ut.rktch.com/matchspm?pi=1000005&pui=1A79042EC70B3463D4004D9102C2A611
302 Found 0 B URL HTTP/1.1 ut.rktch.com/matchspm?pi=1000005&pui=1A79042EC70B3463D4004D9102C2A611
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /matchspm?pi=1000005&pui=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: ut.rktch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.22.0
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Length: 0
Connection: keep-alive
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
Set-Cookie: b_uid=5fac73dba1cb047f7d6c204f3ba1c2b3a161; Max-Age=2592000; Expires=Fri, 28 Oct 2022 08:54:32 GMT; Domain=rktch.com; Secure; SameSite=None
Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Content-Type, Accept, Authorization
Access-Control-Allow-Credentials: true
mc.yandex.ru/metrika/watch.js
200 OK 57 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (570)
Hash 44366cc385a5c0f49df4f22b71434b42
3f56349f8a3fff52e28a3300052bdc2bde97371c
485ba52769d75db2ed79f65318d37070d09ce3441680aa22caa10ae3cdcb45cd
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 57285
date: Wed, 28 Sep 2022 08:54:32 GMT
access-control-allow-origin: *
etag: "632d6d03-dfc5"
expires: Wed, 28 Sep 2022 09:54:32 GMT
last-modified: Fri, 23 Sep 2022 11:23:31 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sap1&uid=1A79042EC70B3463D4004D9102C2A611
302 Moved Temporarily 0 B URL HTTP/1.1 sync.bumlam.com/?src=sap1&uid=1A79042EC70B3463D4004D9102C2A611
IP
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQyYjZlZWFlMi0zZjBiLTExZWQtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Tue, 23 Sep 2042 08:54:32 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARjIl9CZBmIgMUE3OTA0MkVDNzBCMzQ2M0Q0MDA0RDkxMDJDMkE2MTGiARArburiPwsR7YbgACWQwGR8
ETag: 2b6eeae2-3f0b-11ed-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
ocsp.sectigo.com/
200 OK 471 B IP
Hash 704fadce938bda623c3d5b0e5f7e559b
3cd43b1b901958dbdc3b2697251332928597c3b7
85eed717f7720ae6e061b7b035ff6d07d17dbc8ef9876f2f87af8c17a48941a5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 15:41:04 GMT
Expires: Tue, 04 Oct 2022 15:41:03 GMT
Etag: "3cd43b1b901958dbdc3b2697251332928597c3b7"
Cache-Control: max-age=542190,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751b41446d67b52d-OSL
www.acint.net/match?dp=95&euid=NBPZHLDD
200 OK 43 B URL HTTP/2 www.acint.net/match?dp=95&euid=NBPZHLDD
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=95&euid=NBPZHLDD HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; cSyncDp7v2=1664355271; cSyncDp14v3=1664355271; cSyncDp17=1664355271; cSyncDp32=1664355271; cSyncDp45v3=1664355271; cSyncDp53=1664355271; cSyncDp54v2=1664355271; cSyncDp62=1664355271; cSyncDp67v2=1664355271; cSyncDp68=1664355271; cSyncDp71=1664355271; cSyncDp77=1664355271; cSyncDp84=1664355271; cSyncDp85=1664355271; cSyncDp95v3=1664355271; cSyncDp101=1664355271; cSyncDp104v2=1664355271; cSyncDp107=1664355271; cSyncDp110=1664355271; cSyncDp111v2=1664355271; cSyncDp112v2=1664355271; cSyncDp125v2=1664355271; cSyncDp126=1664355271; cSyncDp127=1664355271; cSyncDp129=1664355271; cSyncDp136v2=1664355271; cSyncDp138=1664355271; cSyncDp144=1664355271; cSyncDp146=1664355271; cSyncDp148=1664355271; cSyncDp149=1664355271; cSyncDp151=1664355271; cSyncDp178=1664355271; cSyncDp179=1664355271; cSyncDp186=1664355271; cSyncDp221=1664355271
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.dmp.otm-r.com/match/sape?id=1A79042EC70B3463D4004D9102C2A611
204 No Content 0 B URL HTTP/2 sync.dmp.otm-r.com/match/sape?id=1A79042EC70B3463D4004D9102C2A611
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.17.6
date: Wed, 28 Sep 2022 08:54:32 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1A79042EC70B3463D4004D9102C2A611&cs=1
200 OK 35 B URL HTTP/2 sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1A79042EC70B3463D4004D9102C2A611&cs=1
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1A79042EC70B3463D4004D9102C2A611&cs=1 HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: uid=2b691310-3f0b-11ed-8677-901b0e934d81
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
content-length: 35
expires: 0
cache-control: private, no-cache, no-store, no-cache=Set-Cookie, proxy-revalidate
set-cookie: uid=2b691310-3f0b-11ed-8677-901b0e934d81; Version=1; Path=/; Domain=.1dmp.io; Expires=Thu, 28 Sep 2023 08:54:32 GMT; SameSite=None; Secure
uid-legacy=2b691310-3f0b-11ed-8677-901b0e934d81; Version=1; Path=/; Domain=.1dmp.io; Expires=Thu, 28 Sep 2023 08:54:32 GMT
X-Firefox-Spdy: h2
1a79042ec70b3463d4004d9102c2a611-sp.ops.beeline.ru/p?ssp=sp&id=1A79042EC70B3463D4004D9102C2A611
301 Moved Permanently 0 B URL HTTP/2 1a79042ec70b3463d4004d9102c2a611-sp.ops.beeline.ru/p?ssp=sp&id=1A79042EC70B3463D4004D9102C2A611
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&id=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: 1a79042ec70b3463d4004d9102c2a611-sp.ops.beeline.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 28 Sep 2022 08:54:32 GMT
content-length: 0
location: https://www.acint.net/match?dp=111&euid=4cc17381-4f62-463b-b691-0e0f8d351732
access-control-allow-origin: *
cache-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: BeeAID=4cc17381-4f62-463b-b691-0e0f8d351732; expires=Tue, 19 Sep 2023 08:54:32 GMT; domain=ops.beeline.ru; path=/; secure; SameSite=None
access-control-allow-credentials: true, true
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS, GET, HEAD, POST, OPTIONS, PUT, DELETE
access-control-allow-headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
x-route: http://upstream_cookiesync
x-host: 192.168.152.62
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nr.bidderstack.com/sape/cm?user_id=1A79042EC70B3463D4004D9102C2A611
200 OK 44 B URL HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=1A79042EC70B3463D4004D9102C2A611
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash f9d60352c70a2ba15616d1c9421f3844
e9abc8bea7721a4b6a50295850d13c515006a95c
82cb517a8f80c91dfcec543c6d140deb3baaf463ea9e77655475096eba7bc7d9
GET /sape/cm?user_id=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: image/gif
Content-Length: 44
Connection: keep-alive
Set-Cookie: uid=e9e93887-0f4b-416e-816e-aa784fc677b2; domain=.bidderstack.com; path=/; expires=Thu, 28-Sep-2023 08:54:32 GMT;
Access-Control-Allow-Credentials: true
mediatoday.ru/core/match.gif?s=32&id=1A79042EC70B3463D4004D9102C2A611
200 OK 43 B URL HTTP/2 mediatoday.ru/core/match.gif?s=32&id=1A79042EC70B3463D4004D9102C2A611
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /core/match.gif?s=32&id=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: mediatoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.22.0
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
content-length: 43
p3p: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
cache-control: no-cache, max-age=0, must-revalidate, no-store
pragma: no-cache
expires: Thursday, 01-Jan-1970 00:00:00 GMT
set-cookie: idntfy=VUKHBymokYKu62D; expires=Sat, 25-Sep-2032 08:54:32 GMT; domain=mediatoday.ru; path=/core; SameSite=None; Secure
X-Firefox-Spdy: h2
www.acint.net/match?dp=127&euid=pbJHKgiPOkNsUgC3jNDe
200 OK 43 B URL HTTP/2 www.acint.net/match?dp=127&euid=pbJHKgiPOkNsUgC3jNDe
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=127&euid=pbJHKgiPOkNsUgC3jNDe HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; cSyncDp7v2=1664355271; cSyncDp14v3=1664355271; cSyncDp17=1664355271; cSyncDp32=1664355271; cSyncDp45v3=1664355271; cSyncDp53=1664355271; cSyncDp54v2=1664355271; cSyncDp62=1664355271; cSyncDp67v2=1664355271; cSyncDp68=1664355271; cSyncDp71=1664355271; cSyncDp77=1664355271; cSyncDp84=1664355271; cSyncDp85=1664355271; cSyncDp95v3=1664355271; cSyncDp101=1664355271; cSyncDp104v2=1664355271; cSyncDp107=1664355271; cSyncDp110=1664355271; cSyncDp111v2=1664355271; cSyncDp112v2=1664355271; cSyncDp125v2=1664355271; cSyncDp126=1664355271; cSyncDp127=1664355271; cSyncDp129=1664355271; cSyncDp136v2=1664355271; cSyncDp138=1664355271; cSyncDp144=1664355271; cSyncDp146=1664355271; cSyncDp148=1664355271; cSyncDp149=1664355271; cSyncDp151=1664355271; cSyncDp178=1664355271; cSyncDp179=1664355271; cSyncDp186=1664355271; cSyncDp221=1664355271
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=129&euid=0rhiq52p5d
200 OK 43 B URL HTTP/2 www.acint.net/match?dp=129&euid=0rhiq52p5d
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=129&euid=0rhiq52p5d HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; cSyncDp7v2=1664355271; cSyncDp14v3=1664355271; cSyncDp17=1664355271; cSyncDp32=1664355271; cSyncDp45v3=1664355271; cSyncDp53=1664355271; cSyncDp54v2=1664355271; cSyncDp62=1664355271; cSyncDp67v2=1664355271; cSyncDp68=1664355271; cSyncDp71=1664355271; cSyncDp77=1664355271; cSyncDp84=1664355271; cSyncDp85=1664355271; cSyncDp95v3=1664355271; cSyncDp101=1664355271; cSyncDp104v2=1664355271; cSyncDp107=1664355271; cSyncDp110=1664355271; cSyncDp111v2=1664355271; cSyncDp112v2=1664355271; cSyncDp125v2=1664355271; cSyncDp126=1664355271; cSyncDp127=1664355271; cSyncDp129=1664355271; cSyncDp136v2=1664355271; cSyncDp138=1664355271; cSyncDp144=1664355271; cSyncDp146=1664355271; cSyncDp148=1664355271; cSyncDp149=1664355271; cSyncDp151=1664355271; cSyncDp178=1664355271; cSyncDp179=1664355271; cSyncDp186=1664355271; cSyncDp221=1664355271
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
cs.agency2.ru/p?ssp=sp&uid=1A79042EC70B3463D4004D9102C2A611
301 Moved Permanently 0 B URL HTTP/1.1 cs.agency2.ru/p?ssp=sp&uid=1A79042EC70B3463D4004D9102C2A611
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&uid=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=4530d9c0-73f4-439e-8455-9029947d2917
Set-Cookie: uuid=4530d9c0-73f4-439e-8455-9029947d2917; expires=Tue, 19 Sep 2023 08:54:32 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
ocsp.sectigo.com/
200 OK 471 B IP
Hash 96e1a54f8b04ca53fe0e73f041a2ce39
3e393e9db2de6713ae8048c706fb3d1ad2e1594b
b1f5e335313df2a7085397abb43a58a7f247906f4aeed510a1c14a0fe67b5858
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 25 Sep 2022 11:26:46 GMT
Expires: Sun, 02 Oct 2022 11:26:45 GMT
Etag: "3e393e9db2de6713ae8048c706fb3d1ad2e1594b"
Cache-Control: max-age=354132,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751b4144cdcbb52d-OSL
ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
302 Found 0 B URL HTTP/2 ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
IP
ASN #48096 Enterprise Cloud Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://acint.net/match?dp=110&euid=88ff1aef99884c099e8812b4efa0fd6e
server: Kestrel
set-cookie: adlm_userId=88ff1aef99884c099e8812b4efa0fd6e; expires=Wed, 27 Sep 2023 21:00:00 GMT; path=/; SameSite=None; secure
date: Wed, 28 Sep 2022 08:54:32 GMT
content-length: 0
X-Firefox-Spdy: h2
exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
301 Moved Permanently 115 B URL HTTP/2 exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
IP
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash f0475de7f3c3c96cacb0860469f94cfd
8f58b6e6089a24d5434422dee6e864d7d3f84f64
cc6b15874f5c98a943dec72a7e00817283d6b8bba2eac2b8c8c353ef11e84080
GET /cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: text/html; charset=utf-8
content-length: 115
location: https://www.acint.net/match?dp=126&euid=1a938d1e-26e3-48d1-4f9b-43f5b3c751ce
serverid: TODO
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d2b6207a1cd7f5179c47f7e16228f295
e737e5dadf05b89bda9219404108cb3058c827ff
01de1ffa9539bf4fb62b9a213191a22e088336992673a81188d187af144aed4e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01DE1FFA9539BF4FB62B9A213191A22E088336992673A81188D187AF144AED4E"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11566
Expires: Wed, 28 Sep 2022 12:07:18 GMT
Date: Wed, 28 Sep 2022 08:54:32 GMT
Connection: keep-alive
sync.bumlam.com/?src=sap1&s_data=CAIQARjIl9CZBmIgMUE3OTA0MkVDNzBCMzQ2M0Q0MDA0RDkxMDJDMkE2MTGiARArburiPwsR7YbgACWQwGR8
200 OK 0 B URL HTTP/1.1 sync.bumlam.com/?src=sap1&s_data=CAIQARjIl9CZBmIgMUE3OTA0MkVDNzBCMzQ2M0Q0MDA0RDkxMDJDMkE2MTGiARArburiPwsR7YbgACWQwGR8
IP
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&s_data=CAIQARjIl9CZBmIgMUE3OTA0MkVDNzBCMzQ2M0Q0MDA0RDkxMDJDMkE2MTGiARArburiPwsR7YbgACWQwGR8 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQyYjZlZWFlMi0zZjBiLTExZWQtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQyYjZlZWFlMi0zZjBiLTExZWQtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Tue, 23 Sep 2042 08:54:32 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ef12641bb4d59312b43f4f06ae2cee73
5450eaf271bf466e6aa58b63d52b49b66c5f4a6f
894fd5dabf39c09179591f3305d88ef71eb467ddeb1fc5c568dc377c3a1317d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash be52dbe2d47697a7f007d69c486b77b4
fe445ea87749e97423e7865bc559ad78f672a62d
65d16df2b3095c658d2bdf39b06d57486967bba7b43c43108e5025d7af5b7ab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.taranov.ru
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.taranov.ru
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.taranov.ru HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 28 Sep 2022 08:54:32 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4f9b485cf94d88ef8c835c0f1a9dd397
07ef0ce794ab8cd9f0b1564c5f2ac4acb18f8f83
b396d74e533e944041f2737e98f2c872f772bd19a328cfac562f28c82438a1fc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=www.taranov.ru
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.taranov.ru
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.taranov.ru HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 28 Sep 2022 08:54:32 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=www.taranov.ru&callback=_gfp_s_&client=ca-pub-2710681560546448
200 OK 200 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=www.taranov.ru&callback=_gfp_s_&client=ca-pub-2710681560546448
IP
File type ASCII text, with no line terminators
Hash 4e748d9a30914053377df83839c262a0
3a3b808d0d3f7cefdf7f08212e66383a419b2af2
96363f64ecf540a628b28cc73e32f3749e669a55c4d2e76a5f46a5133ec3370d
GET /gampad/cookie.js?domain=www.taranov.ru&callback=_gfp_s_&client=ca-pub-2710681560546448 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 28 Sep 2022 08:54:32 GMT
server: cafe
cache-control: private
content-length: 200
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dmp.gotechnology.io/match/sape?id=1A79042EC70B3463D4004D9102C2A611
302 Found 0 B URL HTTP/2 dmp.gotechnology.io/match/sape?id=1A79042EC70B3463D4004D9102C2A611
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 28 Sep 2022 08:54:32 GMT
content-length: 0
location: https://dmp.gotechnology.io/match/sape?id=1A79042EC70B3463D4004D9102C2A611&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ef12641bb4d59312b43f4f06ae2cee73
5450eaf271bf466e6aa58b63d52b49b66c5f4a6f
894fd5dabf39c09179591f3305d88ef71eb467ddeb1fc5c568dc377c3a1317d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
84102a6a-7510-412d-8e7c-abb5d63e208c.sync.upravel.com/sape/sync?ud_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyIsImh0dHBzOi8vd3d3LmFjaW50Lm5ldC8iXX19
302 Found 0 B URL HTTP/2 84102a6a-7510-412d-8e7c-abb5d63e208c.sync.upravel.com/sape/sync?ud_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyIsImh0dHBzOi8vd3d3LmFjaW50Lm5ldC8iXX19
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?ud_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyIsImh0dHBzOi8vd3d3LmFjaW50Lm5ldC8iXX19 HTTP/1.1
Host: 84102a6a-7510-412d-8e7c-abb5d63e208c.sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: session_tptc=1664355272269; user_id=84102a6a-7510-412d-8e7c-abb5d63e208c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=84102a6a-7510-412d-8e7c-abb5d63e208c;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=84102a6a-7510-412d-8e7c-abb5d63e208c;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/match?dp=71&euid=84102a6a-7510-412d-8e7c-abb5d63e208c
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash be52dbe2d47697a7f007d69c486b77b4
fe445ea87749e97423e7865bc559ad78f672a62d
65d16df2b3095c658d2bdf39b06d57486967bba7b43c43108e5025d7af5b7ab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4f9b485cf94d88ef8c835c0f1a9dd397
07ef0ce794ab8cd9f0b1564c5f2ac4acb18f8f83
b396d74e533e944041f2737e98f2c872f772bd19a328cfac562f28c82438a1fc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.acint.net/match?dp=111&euid=4cc17381-4f62-463b-b691-0e0f8d351732
200 OK 43 B URL HTTP/2 www.acint.net/match?dp=111&euid=4cc17381-4f62-463b-b691-0e0f8d351732
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=111&euid=4cc17381-4f62-463b-b691-0e0f8d351732 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; cSyncDp7v2=1664355271; cSyncDp14v3=1664355271; cSyncDp17=1664355271; cSyncDp32=1664355271; cSyncDp45v3=1664355271; cSyncDp53=1664355271; cSyncDp54v2=1664355271; cSyncDp62=1664355271; cSyncDp67v2=1664355271; cSyncDp68=1664355271; cSyncDp71=1664355271; cSyncDp77=1664355271; cSyncDp84=1664355271; cSyncDp85=1664355271; cSyncDp95v3=1664355271; cSyncDp101=1664355271; cSyncDp104v2=1664355271; cSyncDp107=1664355271; cSyncDp110=1664355271; cSyncDp111v2=1664355271; cSyncDp112v2=1664355271; cSyncDp125v2=1664355271; cSyncDp126=1664355271; cSyncDp127=1664355271; cSyncDp129=1664355271; cSyncDp136v2=1664355271; cSyncDp138=1664355271; cSyncDp144=1664355271; cSyncDp146=1664355271; cSyncDp148=1664355271; cSyncDp149=1664355271; cSyncDp151=1664355271; cSyncDp178=1664355271; cSyncDp179=1664355271; cSyncDp186=1664355271; cSyncDp221=1664355271
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
acint.net/match?dp=110&euid=88ff1aef99884c099e8812b4efa0fd6e
200 OK 43 B URL HTTP/2 acint.net/match?dp=110&euid=88ff1aef99884c099e8812b4efa0fd6e
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=110&euid=88ff1aef99884c099e8812b4efa0fd6e HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; cSyncDp7v2=1664355271; cSyncDp14v3=1664355271; cSyncDp17=1664355271; cSyncDp32=1664355271; cSyncDp45v3=1664355271; cSyncDp53=1664355271; cSyncDp54v2=1664355271; cSyncDp62=1664355271; cSyncDp67v2=1664355271; cSyncDp68=1664355271; cSyncDp71=1664355271; cSyncDp77=1664355271; cSyncDp84=1664355271; cSyncDp85=1664355271; cSyncDp95v3=1664355271; cSyncDp101=1664355271; cSyncDp104v2=1664355271; cSyncDp107=1664355271; cSyncDp110=1664355271; cSyncDp111v2=1664355271; cSyncDp112v2=1664355271; cSyncDp125v2=1664355271; cSyncDp126=1664355271; cSyncDp127=1664355271; cSyncDp129=1664355271; cSyncDp136v2=1664355271; cSyncDp138=1664355271; cSyncDp144=1664355271; cSyncDp146=1664355271; cSyncDp148=1664355271; cSyncDp149=1664355271; cSyncDp151=1664355271; cSyncDp178=1664355271; cSyncDp179=1664355271; cSyncDp186=1664355271; cSyncDp221=1664355271
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=186&euid=4530d9c0-73f4-439e-8455-9029947d2917
200 OK 43 B URL HTTP/2 www.acint.net/match?dp=186&euid=4530d9c0-73f4-439e-8455-9029947d2917
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=186&euid=4530d9c0-73f4-439e-8455-9029947d2917 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; cSyncDp7v2=1664355271; cSyncDp14v3=1664355271; cSyncDp17=1664355271; cSyncDp32=1664355271; cSyncDp45v3=1664355271; cSyncDp53=1664355271; cSyncDp54v2=1664355271; cSyncDp62=1664355271; cSyncDp67v2=1664355271; cSyncDp68=1664355271; cSyncDp71=1664355271; cSyncDp77=1664355271; cSyncDp84=1664355271; cSyncDp85=1664355271; cSyncDp95v3=1664355271; cSyncDp101=1664355271; cSyncDp104v2=1664355271; cSyncDp107=1664355271; cSyncDp110=1664355271; cSyncDp111v2=1664355271; cSyncDp112v2=1664355271; cSyncDp125v2=1664355271; cSyncDp126=1664355271; cSyncDp127=1664355271; cSyncDp129=1664355271; cSyncDp136v2=1664355271; cSyncDp138=1664355271; cSyncDp144=1664355271; cSyncDp146=1664355271; cSyncDp148=1664355271; cSyncDp149=1664355271; cSyncDp151=1664355271; cSyncDp178=1664355271; cSyncDp179=1664355271; cSyncDp186=1664355271; cSyncDp221=1664355271
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=126&euid=1a938d1e-26e3-48d1-4f9b-43f5b3c751ce
200 OK 43 B URL HTTP/2 www.acint.net/match?dp=126&euid=1a938d1e-26e3-48d1-4f9b-43f5b3c751ce
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=126&euid=1a938d1e-26e3-48d1-4f9b-43f5b3c751ce HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; cSyncDp7v2=1664355271; cSyncDp14v3=1664355271; cSyncDp17=1664355271; cSyncDp32=1664355271; cSyncDp45v3=1664355271; cSyncDp53=1664355271; cSyncDp54v2=1664355271; cSyncDp62=1664355271; cSyncDp67v2=1664355271; cSyncDp68=1664355271; cSyncDp71=1664355271; cSyncDp77=1664355271; cSyncDp84=1664355271; cSyncDp85=1664355271; cSyncDp95v3=1664355271; cSyncDp101=1664355271; cSyncDp104v2=1664355271; cSyncDp107=1664355271; cSyncDp110=1664355271; cSyncDp111v2=1664355271; cSyncDp112v2=1664355271; cSyncDp125v2=1664355271; cSyncDp126=1664355271; cSyncDp127=1664355271; cSyncDp129=1664355271; cSyncDp136v2=1664355271; cSyncDp138=1664355271; cSyncDp144=1664355271; cSyncDp146=1664355271; cSyncDp148=1664355271; cSyncDp149=1664355271; cSyncDp151=1664355271; cSyncDp178=1664355271; cSyncDp179=1664355271; cSyncDp186=1664355271; cSyncDp221=1664355271
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.yandex.ru/watch/71281900/1?wmode=7&page-url=http%3A%2F%2Fwww.taranov.ru%2F&charset=utf-8&site-info=%7B%22site_id%22%3A106995%2C%22srtb_sid%22%3A%2263340bc5-3df3-b86r-1b01-iic1qyyhzywz%22%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afp%3A764%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A853169068302%3Ahid%3A262375458%3Az%3A0%3Ai%3A20220928085430%3Aet%3A1664355270%3Ac%3A1%3Arn%3A170872698%3Arqn%3A1%3Au%3A1664355270731416898%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C0%2C56%2C0%2C515%2C0%2C%2C342%2C54%2C%2C%2C%2C934%3Ans%3A1664355268377%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664355270%3At%3A%D0%9A%D1%83%D0%BB%D0%B8%D0%BD%D0%B0%D1%80%D0%B8%D1%8F%20%D0%98%D0%B2%D0%B0%D0%BD%D0%B0%20%D0%A2%D0%B0%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%D0%B0%20-%20%D0%A0%D0%B5%D1%86%D0%B5%D0%BF%D1%82%D1%8B%20%D1%81%D0%BB%D0%B0%D0%B4%D0%BE%D1%81%D1%82%D0%B5%D0%B9%20%D0%B8%20%D0%B4%D0%B5%D1%81%D0%B5%D1%80%D1%82%D0%BE%D0%B2&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
200 OK 400 B URL HTTP/2 mc.yandex.ru/watch/71281900/1?wmode=7&page-url=http%3A%2F%2Fwww.taranov.ru%2F&charset=utf-8&site-info=%7B%22site_id%22%3A106995%2C%22srtb_sid%22%3A%2263340bc5-3df3-b86r-1b01-iic1qyyhzywz%22%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afp%3A764%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A853169068302%3Ahid%3A262375458%3Az%3A0%3Ai%3A20220928085430%3Aet%3A1664355270%3Ac%3A1%3Arn%3A170872698%3Arqn%3A1%3Au%3A1664355270731416898%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C0%2C56%2C0%2C515%2C0%2C%2C342%2C54%2C%2C%2C%2C934%3Ans%3A1664355268377%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664355270%3At%3A%D0%9A%D1%83%D0%BB%D0%B8%D0%BD%D0%B0%D1%80%D0%B8%D1%8F%20%D0%98%D0%B2%D0%B0%D0%BD%D0%B0%20%D0%A2%D0%B0%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%D0%B0%20-%20%D0%A0%D0%B5%D1%86%D0%B5%D0%BF%D1%82%D1%8B%20%D1%81%D0%BB%D0%B0%D0%B4%D0%BE%D1%81%D1%82%D0%B5%D0%B9%20%D0%B8%20%D0%B4%D0%B5%D1%81%D0%B5%D1%80%D1%82%D0%BE%D0%B2&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash 6d4891cc931ea57d3b48b3b49bb19a79
ff65694adf59102f7fb8dc4081f38581bfcb096c
d0ffd575cf0aacfbc9d124699bdd8faaddc016e085b0a05ef69b71ea2af01d6a
GET /watch/71281900/1?wmode=7&page-url=http%3A%2F%2Fwww.taranov.ru%2F&charset=utf-8&site-info=%7B%22site_id%22%3A106995%2C%22srtb_sid%22%3A%2263340bc5-3df3-b86r-1b01-iic1qyyhzywz%22%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afp%3A764%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A853169068302%3Ahid%3A262375458%3Az%3A0%3Ai%3A20220928085430%3Aet%3A1664355270%3Ac%3A1%3Arn%3A170872698%3Arqn%3A1%3Au%3A1664355270731416898%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C0%2C56%2C0%2C515%2C0%2C%2C342%2C54%2C%2C%2C%2C934%3Ans%3A1664355268377%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664355270%3At%3A%D0%9A%D1%83%D0%BB%D0%B8%D0%BD%D0%B0%D1%80%D0%B8%D1%8F%20%D0%98%D0%B2%D0%B0%D0%BD%D0%B0%20%D0%A2%D0%B0%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%D0%B0%20-%20%D0%A0%D0%B5%D1%86%D0%B5%D0%BF%D1%82%D1%8B%20%D1%81%D0%BB%D0%B0%D0%B4%D0%BE%D1%81%D1%82%D0%B5%D0%B9%20%D0%B8%20%D0%B4%D0%B5%D1%81%D0%B5%D1%80%D1%82%D0%BE%D0%B2&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.taranov.ru
Referer: http://www.taranov.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Wed, 28 Sep 2022 08:54:32 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://www.taranov.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 28-Sep-2022 08:54:32 GMT
last-modified: Wed, 28-Sep-2022 08:54:32 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.acint.net/match?dp=71&euid=84102a6a-7510-412d-8e7c-abb5d63e208c
200 OK 43 B URL HTTP/2 www.acint.net/match?dp=71&euid=84102a6a-7510-412d-8e7c-abb5d63e208c
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=71&euid=84102a6a-7510-412d-8e7c-abb5d63e208c HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; cSyncDp7v2=1664355271; cSyncDp14v3=1664355271; cSyncDp17=1664355271; cSyncDp32=1664355271; cSyncDp45v3=1664355271; cSyncDp53=1664355271; cSyncDp54v2=1664355271; cSyncDp62=1664355271; cSyncDp67v2=1664355271; cSyncDp68=1664355271; cSyncDp71=1664355271; cSyncDp77=1664355271; cSyncDp84=1664355271; cSyncDp85=1664355271; cSyncDp95v3=1664355271; cSyncDp101=1664355271; cSyncDp104v2=1664355271; cSyncDp107=1664355271; cSyncDp110=1664355271; cSyncDp111v2=1664355271; cSyncDp112v2=1664355271; cSyncDp125v2=1664355271; cSyncDp126=1664355271; cSyncDp127=1664355271; cSyncDp129=1664355271; cSyncDp136v2=1664355271; cSyncDp138=1664355271; cSyncDp144=1664355271; cSyncDp146=1664355271; cSyncDp148=1664355271; cSyncDp149=1664355271; cSyncDp151=1664355271; cSyncDp178=1664355271; cSyncDp179=1664355271; cSyncDp186=1664355271; cSyncDp221=1664355271
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
dmp.gotechnology.io/match/sape?id=1A79042EC70B3463D4004D9102C2A611&chk=1
302 Found 0 B URL HTTP/2 dmp.gotechnology.io/match/sape?id=1A79042EC70B3463D4004D9102C2A611&chk=1
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1A79042EC70B3463D4004D9102C2A611&chk=1 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 28 Sep 2022 08:54:32 GMT
content-length: 0
location: https://ads.betweendigital.com/match?bidder_id=98&external_user_id=NTlmZDdjNTAwMWY2MWQ3Ng
set-cookie: pid=NTlmZDdjNTAwMWY2MWQ3Ng; expires=Thu, 28 Sep 2023 08:54:32 GMT; domain=.gotechnology.io; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 28 Sep 2022 08:54:32 GMT
access-control-allow-origin: *
etag: "632d6d03-2b"
expires: Wed, 28 Sep 2022 09:54:32 GMT
accept-ranges: bytes
last-modified: Fri, 23 Sep 2022 11:23:31 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash 381642c6d3899f1cd248273e9e2d10cb
cae8714eb1b919b591a0b3cd12cbc64cab448849
0ab7b76758e8d9ac06b16a434f901123cd4a434e42f5ab5a2b0abac73f118a3d
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 02 Oct 2022 07:05:36 GMT
ETag: "cae8714eb1b919b591a0b3cd12cbc64cab448849"
Last-Modified: Wed, 28 Sep 2022 07:05:37 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2603
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 751b41471aedb511-OSL
df.c4.ba.a1.top.mail.ru/counter?id=1724189;t=60;js=13;r=;j=false;s=1280*1024;d=24;rand=0.3403436710308535
302 Moved Temporarily 0 B URL HTTP/1.1 df.c4.ba.a1.top.mail.ru/counter?id=1724189;t=60;js=13;r=;j=false;s=1280*1024;d=24;rand=0.3403436710308535
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /counter?id=1724189;t=60;js=13;r=;j=false;s=1280*1024;d=24;rand=0.3403436710308535 HTTP/1.1
Host: df.c4.ba.a1.top.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.taranov.ru/
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=60
Location: https://top-fwz1.mail.ru/counter?id=1724189;t=60;js=13;r=;j=false;s=1280*1024;d=24;rand=0.3403436710308535
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, HEAD, PUT, OPTIONS
Access-Control-Allow-Headers: *
AMP-Access-Control-Allow-Source-Origin: *
Access-Control-Expose-Headers: AMP-Access-Control-Allow-Source-Origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
P3P: CP="NOI DSP COR NID CUR PSA OUR NOR"
Cache-Control: private, no-cache, no-store, max-age=0
Pragma: no-cache
Accept-CH: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
Accept-CH-Lifetime: 86400
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash 381642c6d3899f1cd248273e9e2d10cb
cae8714eb1b919b591a0b3cd12cbc64cab448849
0ab7b76758e8d9ac06b16a434f901123cd4a434e42f5ab5a2b0abac73f118a3d
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sun, 02 Oct 2022 07:05:36 GMT
ETag: "cae8714eb1b919b591a0b3cd12cbc64cab448849"
Last-Modified: Wed, 28 Sep 2022 07:05:37 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2603
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 751b41473b0fb511-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash b136a198d3e3ea2583518132f3f68fd3
430877df5ccfc02082a7a42fb7e4a8563eea4415
7d469ee860c8f18a28d74ec08b33efe6005e292095e538c1400f5091832f75ac
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 04:09:16 GMT
Expires: Tue, 04 Oct 2022 04:09:15 GMT
Etag: "430877df5ccfc02082a7a42fb7e4a8563eea4415"
Cache-Control: max-age=500682,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751b41470815b52d-OSL
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
302 Moved Temporarily 0 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-6093675139; expires=Fri, 27 Sep 2024 08:54:32 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-6093675139
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1A79042EC70B3463D4004D9102C2A611
200 OK 42 B URL HTTP/1.1 ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1A79042EC70B3463D4004D9102C2A611
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cgi-bin/sync.cgi?dsp_id=153&external_id=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ocsp.usertrust.com/
200 OK 472 B IP
Hash 095cc13120b6204c4c431eb9b6a1c5fb
49ba0b6490cf20f9a06398c7d3cb1e35483d678a
159f2a56dc518743e70b1397c01ec71b79fbe27927b8421fedd5abf4af99cd13
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 04:18:21 GMT
Expires: Mon, 03 Oct 2022 04:18:20 GMT
Etag: "49ba0b6490cf20f9a06398c7d3cb1e35483d678a"
Cache-Control: max-age=603637,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 131
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 751b41476f04b50c-OSL
www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A700491%2C%22ev%22%3A%22vis100%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355270
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A700491%2C%22ev%22%3A%22vis100%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355270
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=14&cd=%7B%22st%22%3A106995%2C%22sc%22%3A0%2C%22pl%22%3A700491%2C%22ev%22%3A%22vis100%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355270 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; cSyncDp7v2=1664355271; cSyncDp14v3=1664355271; cSyncDp17=1664355271; cSyncDp32=1664355271; cSyncDp45v3=1664355271; cSyncDp53=1664355271; cSyncDp54v2=1664355271; cSyncDp62=1664355271; cSyncDp67v2=1664355271; cSyncDp68=1664355271; cSyncDp71=1664355271; cSyncDp77=1664355271; cSyncDp84=1664355271; cSyncDp85=1664355271; cSyncDp95v3=1664355271; cSyncDp101=1664355271; cSyncDp104v2=1664355271; cSyncDp107=1664355271; cSyncDp110=1664355271; cSyncDp111v2=1664355271; cSyncDp112v2=1664355271; cSyncDp125v2=1664355271; cSyncDp126=1664355271; cSyncDp127=1664355271; cSyncDp129=1664355271; cSyncDp136v2=1664355271; cSyncDp138=1664355271; cSyncDp144=1664355271; cSyncDp146=1664355271; cSyncDp148=1664355271; cSyncDp149=1664355271; cSyncDp151=1664355271; cSyncDp178=1664355271; cSyncDp179=1664355271; cSyncDp186=1664355271; cSyncDp221=1664355271
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:32 GMT; Path=/; Domain=.betweendigital.com
tuuid=d77da824-a798-520f-86a7-ad77e593a6bf; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:32 GMT; Path=/; Domain=.betweendigital.com
ut=YzQLyAANWfjPr46XxM9IjhuJpl6G745iEUydTw==; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:32 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
status.geotrust.com/
200 OK 278 B IP
Hash 4fad74340139759d7172fb9db7816330
5ba6ce839f38db6864617f134716b23256709fec
c15fadf6ddd00d1878152a6f5bc97ce670a3a5853cfb93ff7f99e49b0e238856
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3868
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:32 GMT
Last-Modified: Wed, 28 Sep 2022 07:50:04 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 278
fcgi4.gnezdo.ru/cookie_matching_ssp/Sape-dsp/1A79042EC70B3463D4004D9102C2A611
204 No Content 0 B URL HTTP/2 fcgi4.gnezdo.ru/cookie_matching_ssp/Sape-dsp/1A79042EC70B3463D4004D9102C2A611
IP
ASN #48347 JSC Mediasoft ekspert
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie_matching_ssp/Sape-dsp/1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: fcgi4.gnezdo.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 28 Sep 2022 08:54:32 GMT
set-cookie: uid=XV9maWM0C8g6I4Y1N0AQAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
X-Firefox-Spdy: h2
sape-sync.rutarget.ru/sync
302 Moved Temporarily 0 B URL HTTP/1.1 sape-sync.rutarget.ru/sync
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync HTTP/1.1
Host: sape-sync.rutarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Length: 0
Connection: close
Location: https://www.acint.net/match?dp=104&euid=c2CWzu4EFEeU
P3P: CP="This is not a P3P policy. Please visit http://rutarget.ru/p3p/ to get more information."
Set-Cookie: userId=c2CWzu4EFEeU; Path=/; Domain=.rutarget.ru; Expires=Mon, 27 Mar 2023 08:54:32 GMT; SameSite=None; Secure
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash 948ba22d5280e286c22258728853c922
520ef94aa61806f6a7c29a0828bdaabd1e5636d5
24861b0923c4a810ad61a1956c0cd0d666eb7ae964e4b0b311bad1768ce1f17a
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sun, 02 Oct 2022 06:58:14 GMT
ETag: "520ef94aa61806f6a7c29a0828bdaabd1e5636d5"
Last-Modified: Wed, 28 Sep 2022 06:58:15 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 465
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 751b4147c970b505-OSL
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-6093675139
302 Moved Temporarily 40 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-6093675139
IP
File type ASCII text, with CRLF line terminators
Hash 251630b588179b239e8fab1ac9ef6d3a
91b91a97bc481dd2bbd5e0f3fea6ba1c4e843882
c95661e0ef6975b1df5361695a439f71a021d72c345023c3e668e84f35b3c38b
GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-6093675139 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="//adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Fri, 27 Sep 2024 08:54:32 GMT; path=/; domain=.adriver.ru;
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
Location: https://www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:32 GMT; Path=/; Domain=.betweendigital.com
tuuid=76701bb6-a5b1-520f-9e25-65bbfd116e73; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:32 GMT; Path=/; Domain=.betweendigital.com
ut=YzQLyAAODahSE_FiVW8BZY6NvhBzqYDhxlfHxw==; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:32 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-2710681560546448&output=html&h=60&slotname=5571641336&adk=470676839&adf=2484149752&pi=t.ma~as.5571641336&w=468&lmt=1664355270&url=http%3A%2F%2Fwww.taranov.ru%2F&wgl=1&dt=1664355269202&bpp=21&bdt=225&idt=858&shv=r20220922&mjsv=m202209220101&ptt=5&saldr=sa&abxe=1&correlator=6351897039843&frm=20&pv=2&ga_vid=1058470913.1664355270&ga_sid=1664355270&ga_hid=1630074702&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=260&ady=225&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31069958%2C42531705&oid=2&pvsid=3381195340909842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7Co%7CoEe%7C&abl=NS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=vItzV0FApl&p=http%3A//www.taranov.ru&dtd=991
200 OK 29 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-2710681560546448&output=html&h=60&slotname=5571641336&adk=470676839&adf=2484149752&pi=t.ma~as.5571641336&w=468&lmt=1664355270&url=http%3A%2F%2Fwww.taranov.ru%2F&wgl=1&dt=1664355269202&bpp=21&bdt=225&idt=858&shv=r20220922&mjsv=m202209220101&ptt=5&saldr=sa&abxe=1&correlator=6351897039843&frm=20&pv=2&ga_vid=1058470913.1664355270&ga_sid=1664355270&ga_hid=1630074702&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=260&ady=225&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31069958%2C42531705&oid=2&pvsid=3381195340909842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7Co%7CoEe%7C&abl=NS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=vItzV0FApl&p=http%3A//www.taranov.ru&dtd=991
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65019), with no line terminators
Hash 9413d752ec453cef4956f296eb53d7a6
e99514301e9cf08917ef73464aad6b8d61a2b45f
e41e900c6e659a9b88db7c914755c6f9445fc7d9a09df5135b2d38164172dd01
GET /pagead/ads?client=ca-pub-2710681560546448&output=html&h=60&slotname=5571641336&adk=470676839&adf=2484149752&pi=t.ma~as.5571641336&w=468&lmt=1664355270&url=http%3A%2F%2Fwww.taranov.ru%2F&wgl=1&dt=1664355269202&bpp=21&bdt=225&idt=858&shv=r20220922&mjsv=m202209220101&ptt=5&saldr=sa&abxe=1&correlator=6351897039843&frm=20&pv=2&ga_vid=1058470913.1664355270&ga_sid=1664355270&ga_hid=1630074702&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=260&ady=225&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31069958%2C42531705&oid=2&pvsid=3381195340909842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7Co%7CoEe%7C&abl=NS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=vItzV0FApl&p=http%3A//www.taranov.ru&dtd=991 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Wed, 28 Sep 2022 08:54:32 GMT
server: cafe
content-length: 28680
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 28-Sep-2022 09:09:32 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Wed, 28 Sep 2022 08:54:32 GMT
cache-control: private
X-Firefox-Spdy: h2
status.thawte.com/
200 OK 471 B IP
Hash 09bc2e50beef65d44365eca6ecd7903b
b7959d42513fe3e0519000f22136020bb75584c2
382c237bf31b08165a0ef6da452b9ec0f75c75d70d7ac5a9ddcc56a6fd4788f0
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1364
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:32 GMT
Last-Modified: Wed, 28 Sep 2022 08:31:48 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ad.mail.ru/cm.gif?p=48&id=1A79042EC70B3463D4004D9102C2A611
200 OK 43 B URL HTTP/2 ad.mail.ru/cm.gif?p=48&id=1A79042EC70B3463D4004D9102C2A611
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cm.gif?p=48&id=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
content-length: 43
set-cookie: VID=0xkOGp1kU3oC002BfZ3DOEYC:::0-0-0-84e6488:CAASEAgoRcivY1728hJ63YNaNyMaYOSbbnKnvmyVO7CsIfDad0b4MufrGuIwJ3-XF9OQBHS-U_NkiDYH5mDFaZb_5vztUyfvUuTNozqjz4Ovv_TgEaU-bG_b164w_csxooJiuy7Jf2xCHnK3bp7pZ5NzjNTxww; path=/; expires=Fri, 29-Sep-23 08:54:32 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
expires: Wed, 28 Sep 2022 14:54:32 GMT
cache-control: max-age=21600
last-modified: Wed, 28 Sep 2022 08:54:32 GMT
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 4e9f3bf119ebfd1451272d736356913c
f0f5869b19b785d9358aff0283d2549277ec4da6
6f1f2e918fd1cbe10b2510b6772e1fdc9151487716635d80019fbffe92bb1f31
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 02 Oct 2022 07:34:32 GMT
ETag: "f0f5869b19b785d9358aff0283d2549277ec4da6"
Last-Modified: Wed, 28 Sep 2022 07:34:33 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 75
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 751b4147fbfab511-OSL
mc.yandex.ru/watch/71281900?wmode=7&page-url=http%3A%2F%2Fwww.taranov.ru%2F&charset=utf-8&site-info=%7B%22site_id%22%3A106995%2C%22srtb_sid%22%3A%2263340bc5-3df3-b86r-1b01-iic1qyyhzywz%22%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afp%3A764%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A853169068302%3Ahid%3A262375458%3Az%3A0%3Ai%3A20220928085430%3Aet%3A1664355270%3Ac%3A1%3Arn%3A170872698%3Arqn%3A1%3Au%3A1664355270731416898%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C0%2C56%2C0%2C515%2C0%2C%2C342%2C54%2C%2C%2C%2C934%3Ans%3A1664355268377%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664355270%3At%3A%D0%9A%D1%83%D0%BB%D0%B8%D0%BD%D0%B0%D1%80%D0%B8%D1%8F%20%D0%98%D0%B2%D0%B0%D0%BD%D0%B0%20%D0%A2%D0%B0%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%D0%B0%20-%20%D0%A0%D0%B5%D1%86%D0%B5%D0%BF%D1%82%D1%8B%20%D1%81%D0%BB%D0%B0%D0%B4%D0%BE%D1%81%D1%82%D0%B5%D0%B9%20%D0%B8%20%D0%B4%D0%B5%D1%81%D0%B5%D1%80%D1%82%D0%BE%D0%B2&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/71281900?wmode=7&page-url=http%3A%2F%2Fwww.taranov.ru%2F&charset=utf-8&site-info=%7B%22site_id%22%3A106995%2C%22srtb_sid%22%3A%2263340bc5-3df3-b86r-1b01-iic1qyyhzywz%22%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afp%3A764%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A853169068302%3Ahid%3A262375458%3Az%3A0%3Ai%3A20220928085430%3Aet%3A1664355270%3Ac%3A1%3Arn%3A170872698%3Arqn%3A1%3Au%3A1664355270731416898%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C0%2C56%2C0%2C515%2C0%2C%2C342%2C54%2C%2C%2C%2C934%3Ans%3A1664355268377%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664355270%3At%3A%D0%9A%D1%83%D0%BB%D0%B8%D0%BD%D0%B0%D1%80%D0%B8%D1%8F%20%D0%98%D0%B2%D0%B0%D0%BD%D0%B0%20%D0%A2%D0%B0%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%D0%B0%20-%20%D0%A0%D0%B5%D1%86%D0%B5%D0%BF%D1%82%D1%8B%20%D1%81%D0%BB%D0%B0%D0%B4%D0%BE%D1%81%D1%82%D0%B5%D0%B9%20%D0%B8%20%D0%B4%D0%B5%D1%81%D0%B5%D1%80%D1%82%D0%BE%D0%B2&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch/71281900?wmode=7&page-url=http%3A%2F%2Fwww.taranov.ru%2F&charset=utf-8&site-info=%7B%22site_id%22%3A106995%2C%22srtb_sid%22%3A%2263340bc5-3df3-b86r-1b01-iic1qyyhzywz%22%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afp%3A764%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A853169068302%3Ahid%3A262375458%3Az%3A0%3Ai%3A20220928085430%3Aet%3A1664355270%3Ac%3A1%3Arn%3A170872698%3Arqn%3A1%3Au%3A1664355270731416898%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C0%2C56%2C0%2C515%2C0%2C%2C342%2C54%2C%2C%2C%2C934%3Ans%3A1664355268377%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664355270%3At%3A%D0%9A%D1%83%D0%BB%D0%B8%D0%BD%D0%B0%D1%80%D0%B8%D1%8F%20%D0%98%D0%B2%D0%B0%D0%BD%D0%B0%20%D0%A2%D0%B0%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%D0%B0%20-%20%D0%A0%D0%B5%D1%86%D0%B5%D0%BF%D1%82%D1%8B%20%D1%81%D0%BB%D0%B0%D0%B4%D0%BE%D1%81%D1%82%D0%B5%D0%B9%20%D0%B8%20%D0%B4%D0%B5%D1%81%D0%B5%D1%80%D1%82%D0%BE%D0%B2&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.taranov.ru
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/71281900/1?wmode=7&page-url=http%3A%2F%2Fwww.taranov.ru%2F&charset=utf-8&site-info=%7B%22site_id%22%3A106995%2C%22srtb_sid%22%3A%2263340bc5-3df3-b86r-1b01-iic1qyyhzywz%22%7D&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aasbylctlprmpze3hff9a0%3Afp%3A764%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A853169068302%3Ahid%3A262375458%3Az%3A0%3Ai%3A20220928085430%3Aet%3A1664355270%3Ac%3A1%3Arn%3A170872698%3Arqn%3A1%3Au%3A1664355270731416898%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A0%2C0%2C56%2C0%2C515%2C0%2C%2C342%2C54%2C%2C%2C%2C934%3Ans%3A1664355268377%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1664355270%3At%3A%D0%9A%D1%83%D0%BB%D0%B8%D0%BD%D0%B0%D1%80%D0%B8%D1%8F%20%D0%98%D0%B2%D0%B0%D0%BD%D0%B0%20%D0%A2%D0%B0%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%D0%B0%20-%20%D0%A0%D0%B5%D1%86%D0%B5%D0%BF%D1%82%D1%8B%20%D1%81%D0%BB%D0%B0%D0%B4%D0%BE%D1%81%D1%82%D0%B5%D0%B9%20%D0%B8%20%D0%B4%D0%B5%D1%81%D0%B5%D1%80%D1%82%D0%BE%D0%B2&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Wed, 28 Sep 2022 08:54:32 GMT
access-control-allow-origin: http://www.taranov.ru
set-cookie: yandexuid=790025271664355272; Expires=Thu, 28-Sep-2023 08:54:32 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=790025271664355272; Expires=Thu, 28-Sep-2023 08:54:32 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1715822711664355272; Path=/; SameSite=None; Secure
i=EYDkzbFwT7GWZxxwLaUvN75FSWNcUAwPmTiufPQPd5Hc2vXMTDKJiAY44Q2B0AmmwHjiZa1vqFH00Qea9T0iBZSbeQg=; Expires=Sat, 25-Sep-2032 08:54:31 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1695891272.yrts.1664355272#1695891272.yrtsi.1664355272; Expires=Thu, 28-Sep-2023 08:54:32 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 28-Sep-2022 08:54:32 GMT
last-modified: Wed, 28-Sep-2022 08:54:32 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.acint.net/match?dp=104&euid=c2CWzu4EFEeU
200 OK 43 B URL HTTP/2 www.acint.net/match?dp=104&euid=c2CWzu4EFEeU
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=104&euid=c2CWzu4EFEeU HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; cSyncDp7v2=1664355271; cSyncDp14v3=1664355271; cSyncDp17=1664355271; cSyncDp32=1664355271; cSyncDp45v3=1664355271; cSyncDp53=1664355271; cSyncDp54v2=1664355271; cSyncDp62=1664355271; cSyncDp67v2=1664355271; cSyncDp68=1664355271; cSyncDp71=1664355271; cSyncDp77=1664355271; cSyncDp84=1664355271; cSyncDp85=1664355271; cSyncDp95v3=1664355271; cSyncDp101=1664355271; cSyncDp104v2=1664355271; cSyncDp107=1664355271; cSyncDp110=1664355271; cSyncDp111v2=1664355271; cSyncDp112v2=1664355271; cSyncDp125v2=1664355271; cSyncDp126=1664355271; cSyncDp127=1664355271; cSyncDp129=1664355271; cSyncDp136v2=1664355271; cSyncDp138=1664355271; cSyncDp144=1664355271; cSyncDp146=1664355271; cSyncDp148=1664355271; cSyncDp149=1664355271; cSyncDp151=1664355271; cSyncDp178=1664355271; cSyncDp179=1664355271; cSyncDp186=1664355271; cSyncDp221=1664355271
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
302 Found 154 B URL HTTP/2 www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; cSyncDp7v2=1664355271; cSyncDp14v3=1664355271; cSyncDp17=1664355271; cSyncDp32=1664355271; cSyncDp45v3=1664355271; cSyncDp53=1664355271; cSyncDp54v2=1664355271; cSyncDp62=1664355271; cSyncDp67v2=1664355271; cSyncDp68=1664355271; cSyncDp71=1664355271; cSyncDp77=1664355271; cSyncDp84=1664355271; cSyncDp85=1664355271; cSyncDp95v3=1664355271; cSyncDp101=1664355271; cSyncDp104v2=1664355271; cSyncDp107=1664355271; cSyncDp110=1664355271; cSyncDp111v2=1664355271; cSyncDp112v2=1664355271; cSyncDp125v2=1664355271; cSyncDp126=1664355271; cSyncDp127=1664355271; cSyncDp129=1664355271; cSyncDp136v2=1664355271; cSyncDp138=1664355271; cSyncDp144=1664355271; cSyncDp146=1664355271; cSyncDp148=1664355271; cSyncDp149=1664355271; cSyncDp151=1664355271; cSyncDp178=1664355271; cSyncDp179=1664355271; cSyncDp186=1664355271; cSyncDp221=1664355271
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: text/html
content-length: 154
location: https://ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1A79042EC70B3463D4004D9102C2A611
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 4e35295f1dde3a934b3587d8c40135f3
d5ea2dcc89bf04052b139d2ee78a48cde43dea83
2d259d4a586d5d835cb0b949b86e086db11ae2fd89a21597f1a973396715dd69
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sun, 02 Oct 2022 07:08:24 GMT
ETag: "d5ea2dcc89bf04052b139d2ee78a48cde43dea83"
Last-Modified: Wed, 28 Sep 2022 07:08:25 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2213
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 751b41483c2cb511-OSL
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
200 OK 44 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP
File type ASCII text, with very long lines (3498)
Hash f6b1f2456b44a6f219d0aed4e1a437e7
4c993a7a8f983d1b80b596b8aa65c6314bc8def7
05b89601f9c3a01b5c2efbe7a5cca69859e9c974e254501bb79d8d3a24c1267b
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 44528
date: Wed, 28 Sep 2022 08:54:32 GMT
expires: Wed, 28 Sep 2022 08:54:32 GMT
cache-control: private, max-age=3000
etag: "1664191987193040"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d620e69055fd2c49ce27500289dcb8b7
a3b4c67cd757bab2f10a2e5a3f9afc165db8cd35
f818ee7cc07da39e9ba6dc3078b65567e6e22d0354cde9acb57fce024ff2658c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F818EE7CC07DA39E9BA6DC3078B65567E6E22D0354CDE9ACB57FCE024FF2658C"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2774
Expires: Wed, 28 Sep 2022 09:40:47 GMT
Date: Wed, 28 Sep 2022 08:54:33 GMT
Connection: keep-alive
ocsp.sectigo.com/
200 OK 472 B IP
Hash b136a198d3e3ea2583518132f3f68fd3
430877df5ccfc02082a7a42fb7e4a8563eea4415
7d469ee860c8f18a28d74ec08b33efe6005e292095e538c1400f5091832f75ac
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 08:54:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 04:09:16 GMT
Expires: Tue, 04 Oct 2022 04:09:15 GMT
Etag: "430877df5ccfc02082a7a42fb7e4a8563eea4415"
Cache-Control: max-age=500682,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751b41474ad4b51e-OSL
px.adhigh.net/p/cm/sape?u=1A79042EC70B3463D4004D9102C2A611
302 Found 0 B URL HTTP/2 px.adhigh.net/p/cm/sape?u=1A79042EC70B3463D4004D9102C2A611
IP
ASN #48061 Limited Liability Company GPM Digital Technologies
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/cm/sape?u=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 28 Sep 2022 08:54:33 GMT
content-length: 0
x-backend-id: f22-ru
access-control-allow-origin: *
access-control-allow-credentials: true
set-cookie: gi_u=6p74F2L2Bef.AikABlGDg04JMQ;Path=/;Domain=.adhigh.net;Expires=Thu, 28-Sep-2023 08:54:33 GMT;Secure;SameSite=None
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
location: https://px.adhigh.net/p/cm/sape?u=1A79042EC70B3463D4004D9102C2A611&bounced=1
X-Firefox-Spdy: h2
ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1A79042EC70B3463D4004D9102C2A611
200 OK 42 B URL HTTP/1.1 ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1A79042EC70B3463D4004D9102C2A611
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cgi-bin/sync.cgi?ssp_id=43&external_id=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 08:54:32 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 042c38716faa379dfe35bfc0e350d539
f604c07161c10f251501fe5bf3ea534beb6ea865
2038294cc39316a8f13c431224609cd186f9e115b792f0b8f0f22f039c9d9ed8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 472 B IP
Hash b136a198d3e3ea2583518132f3f68fd3
430877df5ccfc02082a7a42fb7e4a8563eea4415
7d469ee860c8f18a28d74ec08b33efe6005e292095e538c1400f5091832f75ac
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 08:54:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 04:09:16 GMT
Expires: Tue, 04 Oct 2022 04:09:15 GMT
Etag: "430877df5ccfc02082a7a42fb7e4a8563eea4415"
Cache-Control: max-age=500681,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751b41477895b52d-OSL
ads.betweendigital.com/match?bidder_id=73&external_user_id=1A79042EC70B3463D4004D9102C2A611
302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=73&external_user_id=1A79042EC70B3463D4004D9102C2A611
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=73&external_user_id=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=73&external_user_id=1A79042EC70B3463D4004D9102C2A611&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:33 GMT; Path=/; Domain=.betweendigital.com
tuuid=c6d6b3b9-e68c-520f-b665-00c0d5510b09; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:33 GMT; Path=/; Domain=.betweendigital.com
ut=YzQLyQAA2sC63j4hJvlnE4Pd-3IhKORD6Vachw==; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:33 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
top-fwz1.mail.ru/counter?id=1724189;t=60;js=13;r=;j=false;s=1280*1024;d=24;rand=0.3403436710308535
302 Found 0 B URL HTTP/2 top-fwz1.mail.ru/counter?id=1724189;t=60;js=13;r=;j=false;s=1280*1024;d=24;rand=0.3403436710308535
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /counter?id=1724189;t=60;js=13;r=;j=false;s=1280*1024;d=24;rand=0.3403436710308535 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.taranov.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 28 Sep 2022 08:54:33 GMT
content-length: 0
location: https://top-fwz1.mail.ru/counter2?id=1724189;t=60;js=13;r=;j=false;s=1280*1024;d=24;rand=0.3403436710308535
set-cookie: FTID=1RMYgQ0tkIIC:1664355273:1724189:::; path=/; expires=Fri, 29-Sep-23 08:54:33 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 042c38716faa379dfe35bfc0e350d539
f604c07161c10f251501fe5bf3ea534beb6ea865
2038294cc39316a8f13c431224609cd186f9e115b792f0b8f0f22f039c9d9ed8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20220922/r20110914/abg_lite_fy2021.js
200 OK 9.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220922/r20110914/abg_lite_fy2021.js
IP
File type ASCII text, with very long lines (1624)
Hash f46cc3169ffbd99218f62616e2dc44ea
f44964026d2af9900a059c88967c9e8d067def45
9c82ae03291d76510460e1468338fd9303e25ccbf65e94c66e7a3e2173d7b29c
GET /pagead/js/r20220922/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9559
x-xss-protection: 0
date: Wed, 28 Sep 2022 08:38:22 GMT
expires: Wed, 12 Oct 2022 08:38:22 GMT
cache-control: public, max-age=1209600
etag: 12142024561622733046
content-type: text/javascript; charset=UTF-8
age: 971
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adlmerge.com/merge_gpsid/?sid=50&id=1A79042EC70B3463D4004D9102C2A611
200 OK 3.1 kB URL HTTP/2 adlmerge.com/merge_gpsid/?sid=50&id=1A79042EC70B3463D4004D9102C2A611
IP
ASN #60781 LeaseWeb Netherlands B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 10bc06d803eed358fc73b7b893964364
b57575627c9aee0094211ebaa44c3c26baa9a3ff
907548fb7181d4c5b41744a15d75a1b4f4d06a24fb9b1393236ca21b5477c2c9
GET /merge_gpsid/?sid=50&id=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: adlmerge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.16.0
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: image/gif
iseu: eu
X-Firefox-Spdy: h2
sm.rtb.mts.ru/match/second?ssp=30&exu=1A79042EC70B3463D4004D9102C2A611
301 Moved Permanently 0 B URL HTTP/1.1 sm.rtb.mts.ru/match/second?ssp=30&exu=1A79042EC70B3463D4004D9102C2A611
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/second?ssp=30&exu=1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 28 Sep 2022 08:54:33 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://tech.rtb.mts.ru/
px.adhigh.net/p/cm/sape?u=1A79042EC70B3463D4004D9102C2A611&bounced=1
200 OK 49 B URL HTTP/2 px.adhigh.net/p/cm/sape?u=1A79042EC70B3463D4004D9102C2A611&bounced=1
IP
ASN #48061 Limited Liability Company GPM Digital Technologies
File type GIF image data, version 89a, 1 x 1\012- data
Hash 889bc1fffc025af4685839fb516a0b8b
7f105137a4eafe93213ecd8cc34dd907c340467c
d0409a1b73dab4e29dc40f92fb431fa9133baa23b4a1ffae4897f39068110e32
GET /p/cm/sape?u=1A79042EC70B3463D4004D9102C2A611&bounced=1 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 08:54:33 GMT
content-type: image/gif
content-length: 49
x-backend-id: f22-ru
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220922/r20110914/client/qs_click_protection_fy2021.js
200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220922/r20110914/client/qs_click_protection_fy2021.js
IP
File type ASCII text, with very long lines (1494)
Hash d4c271459de87911060fd730756373be
9100e62d0d61513c1b489e47a6a35b84e8be4a25
b14fbcdbed0b02e9656b4d5ff183d84c25b076ac0b1087d2feb9254ee9ce8c24
GET /pagead/js/r20220922/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7553
x-xss-protection: 0
date: Wed, 28 Sep 2022 08:35:03 GMT
expires: Wed, 12 Oct 2022 08:35:03 GMT
cache-control: public, max-age=1209600
etag: 15375136450269253166
content-type: text/javascript; charset=UTF-8
age: 1170
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=98&external_user_id=NTlmZDdjNTAwMWY2MWQ3Ng
302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=98&external_user_id=NTlmZDdjNTAwMWY2MWQ3Ng
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=98&external_user_id=NTlmZDdjNTAwMWY2MWQ3Ng HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=98&external_user_id=NTlmZDdjNTAwMWY2MWQ3Ng&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:33 GMT; Path=/; Domain=.betweendigital.com
tuuid=27ef172b-0070-520f-9951-7bc9fa657000; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:33 GMT; Path=/; Domain=.betweendigital.com
ut=YzQLyQABcxgCAg0HDvpJOKrvUSqDzUBfTho9Yg==; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:33 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=73&external_user_id=1A79042EC70B3463D4004D9102C2A611&crf=1
200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=73&external_user_id=1A79042EC70B3463D4004D9102C2A611&crf=1
IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=73&external_user_id=1A79042EC70B3463D4004D9102C2A611&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:33 GMT; Path=/; Domain=.betweendigital.com
tuuid=117ee999-a564-520f-8901-e22bea35e9e2; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:33 GMT; Path=/; Domain=.betweendigital.com
ut=YzQLyQABtYDwkDuEEvtrdrgfPLYyqx8UMAvKEw==; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:33 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
top-fwz1.mail.ru/counter2?id=1724189;t=60;js=13;r=;j=false;s=1280*1024;d=24;rand=0.3403436710308535
200 OK 540 B URL HTTP/2 top-fwz1.mail.ru/counter2?id=1724189;t=60;js=13;r=;j=false;s=1280*1024;d=24;rand=0.3403436710308535
IP
File type GIF image data, version 87a, 88 x 31\012- data
Hash 1ce46540cc64e2d577c5e40982f8225e
b939a78b324ad00e5656e895ddd87c224816d66f
c65caac6a25ef44c2717fe904b3d7c0f588b693a65905e5fc353decf97580e3a
GET /counter2?id=1724189;t=60;js=13;r=;j=false;s=1280*1024;d=24;rand=0.3403436710308535 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.taranov.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 08:54:33 GMT
content-type: image/gif
content-length: 540
set-cookie: FTID=1RMYgQ0tkIIC:1664355273:1724189:::; path=/; expires=Fri, 29-Sep-23 08:54:33 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=98&external_user_id=NTlmZDdjNTAwMWY2MWQ3Ng&crf=1
200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=98&external_user_id=NTlmZDdjNTAwMWY2MWQ3Ng&crf=1
IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=98&external_user_id=NTlmZDdjNTAwMWY2MWQ3Ng&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:33 GMT; Path=/; Domain=.betweendigital.com
tuuid=0e01c624-d291-520f-841d-ecb8e729e771; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:33 GMT; Path=/; Domain=.betweendigital.com
ut=YzQLyQACJsig_1PhIU-evJykrffSSLwdKRUlVw==; Max-Age=31536000; Expires=Thu, 28 Sep 2023 08:54:33 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-2710681560546448&output=html&h=280&slotname=1174883296&adk=2553427016&adf=3242202670&pi=t.ma~as.1174883296&w=336&lmt=1664355270&url=http%3A%2F%2Fwww.taranov.ru%2F&wgl=1&dt=1664355269254&bpp=16&bdt=278&idt=991&shv=r20220922&mjsv=m202209220101&ptt=5&saldr=sa&abxe=1&cookie=ID%3D940f7166d2a1e3c7-22ec752f30ce0021%3AT%3D1664355272%3ART%3D1664355272%3AS%3DALNI_MYUeG53qwVRds2K_BqXxPqZ5nEcHw&prev_slotnames=5571641336&correlator=6351897039843&frm=20&pv=1&ga_vid=1058470913.1664355270&ga_sid=1664355270&ga_hid=1630074702&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=326&ady=863&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31069958%2C42531705&oid=2&pvsid=3381195340909842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CoEe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=U4X8JFywyA&p=http%3A//www.taranov.ru&dtd=1036
200 OK 29 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-2710681560546448&output=html&h=280&slotname=1174883296&adk=2553427016&adf=3242202670&pi=t.ma~as.1174883296&w=336&lmt=1664355270&url=http%3A%2F%2Fwww.taranov.ru%2F&wgl=1&dt=1664355269254&bpp=16&bdt=278&idt=991&shv=r20220922&mjsv=m202209220101&ptt=5&saldr=sa&abxe=1&cookie=ID%3D940f7166d2a1e3c7-22ec752f30ce0021%3AT%3D1664355272%3ART%3D1664355272%3AS%3DALNI_MYUeG53qwVRds2K_BqXxPqZ5nEcHw&prev_slotnames=5571641336&correlator=6351897039843&frm=20&pv=1&ga_vid=1058470913.1664355270&ga_sid=1664355270&ga_hid=1630074702&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=326&ady=863&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31069958%2C42531705&oid=2&pvsid=3381195340909842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CoEe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=U4X8JFywyA&p=http%3A//www.taranov.ru&dtd=1036
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65019), with no line terminators
Hash 8732094dfb8d83e451b4e68245031353
d65fdd38783974064e1398de5c9083928a082d80
ae5e01ea8264dbc2d956997018b8e960155c8ba23e1d5b65f0b5c8457e0f84aa
GET /pagead/ads?client=ca-pub-2710681560546448&output=html&h=280&slotname=1174883296&adk=2553427016&adf=3242202670&pi=t.ma~as.1174883296&w=336&lmt=1664355270&url=http%3A%2F%2Fwww.taranov.ru%2F&wgl=1&dt=1664355269254&bpp=16&bdt=278&idt=991&shv=r20220922&mjsv=m202209220101&ptt=5&saldr=sa&abxe=1&cookie=ID%3D940f7166d2a1e3c7-22ec752f30ce0021%3AT%3D1664355272%3ART%3D1664355272%3AS%3DALNI_MYUeG53qwVRds2K_BqXxPqZ5nEcHw&prev_slotnames=5571641336&correlator=6351897039843&frm=20&pv=1&ga_vid=1058470913.1664355270&ga_sid=1664355270&ga_hid=1630074702&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=326&ady=863&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842%2C31069958%2C42531705&oid=2&pvsid=3381195340909842&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=o%7C%7CoEe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=U4X8JFywyA&p=http%3A//www.taranov.ru&dtd=1036 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Wed, 28 Sep 2022 08:54:33 GMT
server: cafe
content-length: 29282
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 28-Sep-2022 09:09:32 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Wed, 28 Sep 2022 08:54:33 GMT
cache-control: private
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 68c35c28c9c13cf2e9c6e6f204b35fc0
f3304b5fd40e250d969071ce611ff0d9ce26be93
5a0c4bc7f3afef994cf3ba6f678b98713b30562d256e5461ba2436188d4a3dcd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 08:54:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 27 Sep 2022 14:18:44 GMT
Expires: Tue, 04 Oct 2022 14:18:43 GMT
Etag: "f3304b5fd40e250d969071ce611ff0d9ce26be93"
Cache-Control: max-age=537249,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751b41487a2db505-OSL
an.yandex.ru/mapuid/sapeis/1A79042EC70B3463D4004D9102C2A611?redir-setuniq=1
200 OK 16 kB URL HTTP/2 an.yandex.ru/mapuid/sapeis/1A79042EC70B3463D4004D9102C2A611?redir-setuniq=1
IP
Hash 600808771fbd95ac5dc4f0eb3fba1bb4
68cc1d9262408e2616b6389617801d1ce48d57b9
202e8fc96a9ef6202ea27eb43d1a708d8483454fd28dab49478e9ff613128544
GET /mapuid/sapeis/1A79042EC70B3463D4004D9102C2A611?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Wed, 28 Sep 2022 08:54:33 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 28 Sep 2022 08:54:33 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Wed, 28 Sep 2022 08:54:33 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5e01e4cfb215a3f052b4c716bc77c1a6
6e63b3e883051319571310c44b87591f0312d83f
aebb544e0762c6c3eb289d85c20299baa3f742dc46cfa5bcc33ac6df411285ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn-rtb.sape.ru/js/vast/player.min.js
200 OK 50 kB URL HTTP/2 cdn-rtb.sape.ru/js/vast/player.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash c5adc03342715f995538a2d5d4b0eca0
1661dba25acf5fed99f02eb284b52e1838c1eb77
9bfef5d81bf28e7ab2ca64052c7f986db61a903bd2a92d2365ab1f76e58691bd
GET /js/vast/player.min.js HTTP/1.1
Host: cdn-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:32 GMT
content-type: text/javascript
content-security-policy: block-all-mixed-content
etag: W/"af856922ff467590a5fca2f0fb02e919"
last-modified: Tue, 27 Sep 2022 08:10:25 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 1718F1CC876433EC
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
expires: Thu, 29 Sep 2022 08:54:32 GMT
cache-control: max-age=86400
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
x-cache-status: HIT
X-Firefox-Spdy: h2
www.google.com/pagead/drt/ui
302 Found 0 B URL HTTP/2 www.google.com/pagead/drt/ui
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/ui HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 28 Sep 2022 08:54:33 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/drt/ui
302 Found 0 B URL HTTP/2 www.google.com/pagead/drt/ui
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/ui HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 28 Sep 2022 08:54:33 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/measurement/l?ebcid=ALh7CaTmJPnOWCbDb5tWW5iIqN5fUWCxHecsfjP9vY9T7kln9B6jRBN_BQ7myNFAkSYatQPcmFI_1NMMkQwf1WVhGGbZVaKEcQ
204 No Content 0 B URL HTTP/2 www.google.com/ads/measurement/l?ebcid=ALh7CaTmJPnOWCbDb5tWW5iIqN5fUWCxHecsfjP9vY9T7kln9B6jRBN_BQ7myNFAkSYatQPcmFI_1NMMkQwf1WVhGGbZVaKEcQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaTmJPnOWCbDb5tWW5iIqN5fUWCxHecsfjP9vY9T7kln9B6jRBN_BQ7myNFAkSYatQPcmFI_1NMMkQwf1WVhGGbZVaKEcQ HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Wed, 28 Sep 2022 08:54:33 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
p4-h5fy2qtvecqpc-p25nsjtjbuhbohrn-if-v6exp3-v4.metric.gstatic.com/v6exp3/redir.html
200 OK 204 B URL HTTP/2 p4-h5fy2qtvecqpc-p25nsjtjbuhbohrn-if-v6exp3-v4.metric.gstatic.com/v6exp3/redir.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c6891edfd0ab8f3bb00c5ec6ce3cf3f8
dd9f0f6f07d0cdcd4daf2c7bc0610d0ceb5f5c49
683d262199af8dd0c91397eeb1a64a465877298459d3cd613e96fbd3255cafab
GET /v6exp3/redir.html HTTP/1.1
Host: p4-h5fy2qtvecqpc-p25nsjtjbuhbohrn-if-v6exp3-v4.metric.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy-report-only: script-src 'nonce-o7N6gRyP5Zu4a1bjaki5oA' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/static-on-bigtable; base-uri 'none'
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 204
date: Wed, 28 Sep 2022 08:54:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Mon, 02 Dec 2019 20:15:00 GMT
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
x01.aidata.io/0.gif?pid=9401454&id=1A79042EC70B3463D4004D9102C2A611&bounce=1
204 No Content 0 B URL HTTP/2 x01.aidata.io/0.gif?pid=9401454&id=1A79042EC70B3463D4004D9102C2A611&bounce=1
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=9401454&id=1A79042EC70B3463D4004D9102C2A611&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 28 Sep 2022 08:54:33 GMT
expires: Wed, 28 Sep 2022 08:54:32 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Wed, 28 Sep 2022 08:54:32 GMT
set-cookie: __upin=ML+k8OFLm9qDGqa+ko8bsA;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1664355273;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
p4-h5fy2qtvecqpc-p25nsjtjbuhbohrn-if-v6exp3-v4.metric.gstatic.com/v6exp3/iframe.html
200 OK 1.9 kB URL HTTP/2 p4-h5fy2qtvecqpc-p25nsjtjbuhbohrn-if-v6exp3-v4.metric.gstatic.com/v6exp3/iframe.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2801)
Hash 11e6d3d09a1d5342529ebe7260710fd4
1a5f8c3ee83f2f75e768c8c6d3f207d8475f55bd
fa41090552108aa3300d9f618693ad91a1c4834c6261be8578764adc32550ac4
GET /v6exp3/iframe.html HTTP/1.1
Host: p4-h5fy2qtvecqpc-p25nsjtjbuhbohrn-if-v6exp3-v4.metric.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://p4-h5fy2qtvecqpc-p25nsjtjbuhbohrn-if-v6exp3-v4.metric.gstatic.com/v6exp3/redir.html
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/html
content-security-policy-report-only: script-src 'nonce-Jyzg3RyP-IjDUSEr-EEtlA' 'report-sample' 'strict-dynamic' 'unsafe-eval' 'unsafe-inline' http: https:; object-src 'none'; report-uri https://csp.withgoogle.com/csp/static-on-bigtable; base-uri 'none'
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1861
date: Wed, 28 Sep 2022 08:54:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Thu, 29 Apr 2021 21:38:00 GMT
x-content-type-options: nosniff
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 08:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tech.rtb.mts.ru/
204 No Content 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: tech.rtb.mts.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.20.2
Date: Wed, 28 Sep 2022 08:54:33 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Set-Cookie: mts_id=f22e1d70-0ae6-4f3d-b115-6688f30b813a; Domain=mts.ru; expires=Fri, 06 Aug 2032 08:54:33 GMT; SameSite=None; Secure
mts_id_last_sync=1664355273; Domain=mts.ru; expires=Fri, 06 Aug 2032 08:54:33 GMT; SameSite=None; Secure
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a8444315e9f84e4a547b08110266ad0e
fe9b5d8ee778dd3dc354e1d7947b760a33a2545f
396637c614c1ebec1726a49477720d1f14a859ff28931003238958a969c0b5c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "396637C614C1EBEC1726A49477720D1F14A859FF28931003238958A969C0B5C3"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8895
Expires: Wed, 28 Sep 2022 11:22:48 GMT
Date: Wed, 28 Sep 2022 08:54:33 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a8444315e9f84e4a547b08110266ad0e
fe9b5d8ee778dd3dc354e1d7947b760a33a2545f
396637c614c1ebec1726a49477720d1f14a859ff28931003238958a969c0b5c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "396637C614C1EBEC1726A49477720D1F14A859FF28931003238958A969C0B5C3"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8895
Expires: Wed, 28 Sep 2022 11:22:48 GMT
Date: Wed, 28 Sep 2022 08:54:33 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10177
Expires: Wed, 28 Sep 2022 11:44:10 GMT
Date: Wed, 28 Sep 2022 08:54:33 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10177
Expires: Wed, 28 Sep 2022 11:44:10 GMT
Date: Wed, 28 Sep 2022 08:54:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f1c3f99-416b-41d1-a46a-b033a0c3c4e0.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f1c3f99-416b-41d1-a46a-b033a0c3c4e0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 028eb76f8e04e6b5d209c0e42b00bd20
251777479f84b43885fe63cc2627269590cafb15
8bb6374e64f6d2303f8d1af261e1d74af01b61ef49964295bd35c3350c72d09f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f1c3f99-416b-41d1-a46a-b033a0c3c4e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11543
x-amzn-requestid: 1d16ab89-2c8d-4c5b-a4dd-e22d3c7eccdb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI37hEnnIAMFTYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336d16-74ff11ed7bd3eace611ac20d;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:37:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: g-9Qy83NyV9AqmIXXT-JAyx3fqEceoDucPcdMLnC11wqDqDK9hcCKg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:57:21 GMT
age: 39432
etag: "251777479f84b43885fe63cc2627269590cafb15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee83d08d024d127fad5918e1ffacb78b
8ad289a77705358ab660b6123e9d90de991b6c13
aaab3590ef3777ce8b7a9a34f18866fa20ecaa554cbcdcdb3f1fa3c34c88ceb4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11314
x-amzn-requestid: 9f410158-cd1a-45a9-9e86-4005b25577e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4Hw7oAMFpAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-70683c681f22a3b6103fcb4a;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: l9IinQYCcQV_iymSArIEnOWgbmLlmVqz94402zcsmga5Bp3Sty7QRg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:49 GMT
age: 40424
etag: "8ad289a77705358ab660b6123e9d90de991b6c13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: af82c8d6-950c-4933-87e3-7bbb15cb1ac8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HOaoAMFoPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-77e0ecc522de575e40f429b3;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rD5LsVDLQkaomG1nCGZGihbdlWKMCjUYNC2kRyAjJesJEOEBSj8Q3A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 40050
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff14e2acf-9d43-48bc-ab80-1dc73fa7dfc8.webp
200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff14e2acf-9d43-48bc-ab80-1dc73fa7dfc8.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c301dff6ddda16fd64692c19173cfa8c
2afdfb716192540a61327137706462c53588bf23
fd0f33a778fec87dbfa323ffa6b24ca5f94aa16d102e62683ad54b759208058b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff14e2acf-9d43-48bc-ab80-1dc73fa7dfc8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5377
x-amzn-requestid: 28ddd5cd-c299-4b36-98be-b6dbeaadc1ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI4KRGo7oAMFUiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336d74-27ebe6e974ee5b7d06227fca;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _yH8kTWHHDU-LcnNz0fjoHkPhf6dRP7p7QydoE3DNu4fJhDpEkxPrg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:50:17 GMT
age: 39856
etag: "2afdfb716192540a61327137706462c53588bf23"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc40456fc-e6ad-484b-8754-8b2b0e7abc7c.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc40456fc-e6ad-484b-8754-8b2b0e7abc7c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1fa8cb4f4be5057788cd1a2a4d0e76d6
1aec1d67a36867bee8069a144fb1b0d95ff2cb54
5193131db8040ef254554d59109002ec7b8cfc2eab1e872b63e5f65db7cf5105
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc40456fc-e6ad-484b-8754-8b2b0e7abc7c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5944
x-amzn-requestid: 040b4452-4120-4ae5-9ad2-c5b341abbb13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI34BFdmIAMFmew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336cff-103adde82b57535e4f3fb16a;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:37:04 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: q03mXCSikJcsTBGqk1Xq7452EiDz4t9PFbp5Qj4xwobiFgqtPwGCBw==
via: 1.1 d2575afea3774df33dcf5e5ff475025e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 23:06:54 GMT
age: 35259
etag: "1aec1d67a36867bee8069a144fb1b0d95ff2cb54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32ba25b9-e398-414a-9dde-2f155c8c15f3.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32ba25b9-e398-414a-9dde-2f155c8c15f3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash be4273ebf3ccd4e408ed8f336d5120e5
cff7127ee9309fcc0ad5143112ef832667ba8be0
37dfdb5cf400e8bf3f314c67a641dd5fcba0f3937ff7249d2819a498436bafb4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32ba25b9-e398-414a-9dde-2f155c8c15f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9407
x-amzn-requestid: 97cabe42-e11e-47ee-bb7b-d193b703ddad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPEpmIAMF_AA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-3d8db9cc3ff1d8305fae4d24;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 3upcqY5Ak2VMUrhEKOdfnd9jrX9R_Gt_g5Avyn3xVIhfQGiao4sl8A==
via: 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:49:11 GMT
age: 39922
etag: "cff7127ee9309fcc0ad5143112ef832667ba8be0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dmg.digitaltarget.ru/1/1093/i/i?i=483386312797698.555268278369183&a=77&e=1A79042EC70B3463D4004D9102C2A611&pref=http%3A%2F%2Fwww.taranov.ru%2F&c=ss:77.up:1A79042EC70B3463D4004D9102C2A611.sync:up.xdua:dueTsHZt6sJXkAxztDwLAkjj.xps:xpsFU5nnT8eVswCLhMOa7YZcz.dn:acint__net.adcm:hit.tg:adcmjs_noorient
307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/1093/i/i?i=483386312797698.555268278369183&a=77&e=1A79042EC70B3463D4004D9102C2A611&pref=http%3A%2F%2Fwww.taranov.ru%2F&c=ss:77.up:1A79042EC70B3463D4004D9102C2A611.sync:up.xdua:dueTsHZt6sJXkAxztDwLAkjj.xps:xpsFU5nnT8eVswCLhMOa7YZcz.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/1093/i/i?i=483386312797698.555268278369183&a=77&e=1A79042EC70B3463D4004D9102C2A611&pref=http%3A%2F%2Fwww.taranov.ru%2F&c=ss:77.up:1A79042EC70B3463D4004D9102C2A611.sync:up.xdua:dueTsHZt6sJXkAxztDwLAkjj.xps:xpsFU5nnT8eVswCLhMOa7YZcz.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Wed, 28 Sep 2022 08:54:33 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&i=483386312797698.555268278369183&a=77&e=1A79042EC70B3463D4004D9102C2A611&pref=http%3A%2F%2Fwww.taranov.ru%2F&c=ss:77.up:1A79042EC70B3463D4004D9102C2A611.sync:up.xdua:dueTsHZt6sJXkAxztDwLAkjj.xps:xpsFU5nnT8eVswCLhMOa7YZcz.dn:acint__net.adcm:hit.tg:adcmjs_noorient
Set-Cookie: viuserid=n9axiBXJSSNZ9UH7LavL; Max-Age=93312000; Expires=Fri, 12 Sep 2025 08:54:33 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/1/1093/i/i?i=483386312797698.535698908337536&a=77&e=1A79042EC70B3463D4004D9102C2A611&pref=http%3A%2F%2Fwww.taranov.ru%2F&c=ss:77.up:1A79042EC70B3463D4004D9102C2A611.sync:up.xdua:dueTsHZt6sJXkAxztDwLAkjj.xps:xpsFU5nnT8eVswCLhMOa7YZcz.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/1093/i/i?i=483386312797698.535698908337536&a=77&e=1A79042EC70B3463D4004D9102C2A611&pref=http%3A%2F%2Fwww.taranov.ru%2F&c=ss:77.up:1A79042EC70B3463D4004D9102C2A611.sync:up.xdua:dueTsHZt6sJXkAxztDwLAkjj.xps:xpsFU5nnT8eVswCLhMOa7YZcz.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/1093/i/i?i=483386312797698.535698908337536&a=77&e=1A79042EC70B3463D4004D9102C2A611&pref=http%3A%2F%2Fwww.taranov.ru%2F&c=ss:77.up:1A79042EC70B3463D4004D9102C2A611.sync:up.xdua:dueTsHZt6sJXkAxztDwLAkjj.xps:xpsFU5nnT8eVswCLhMOa7YZcz.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Wed, 28 Sep 2022 08:54:33 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&i=483386312797698.535698908337536&a=77&e=1A79042EC70B3463D4004D9102C2A611&pref=http%3A%2F%2Fwww.taranov.ru%2F&c=ss:77.up:1A79042EC70B3463D4004D9102C2A611.sync:up.xdua:dueTsHZt6sJXkAxztDwLAkjj.xps:xpsFU5nnT8eVswCLhMOa7YZcz.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
Set-Cookie: viuserid=-5-n1SVJjMEEk6A77hpB; Max-Age=93312000; Expires=Fri, 12 Sep 2025 08:54:33 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&i=483386312797698.555268278369183&a=77&e=1A79042EC70B3463D4004D9102C2A611&pref=http%3A%2F%2Fwww.taranov.ru%2F&c=ss:77.up:1A79042EC70B3463D4004D9102C2A611.sync:up.xdua:dueTsHZt6sJXkAxztDwLAkjj.xps:xpsFU5nnT8eVswCLhMOa7YZcz.dn:acint__net.adcm:hit.tg:adcmjs_noorient
200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&i=483386312797698.555268278369183&a=77&e=1A79042EC70B3463D4004D9102C2A611&pref=http%3A%2F%2Fwww.taranov.ru%2F&c=ss:77.up:1A79042EC70B3463D4004D9102C2A611.sync:up.xdua:dueTsHZt6sJXkAxztDwLAkjj.xps:xpsFU5nnT8eVswCLhMOa7YZcz.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/1093/i/i?call_source=awg&i=483386312797698.555268278369183&a=77&e=1A79042EC70B3463D4004D9102C2A611&pref=http%3A%2F%2Fwww.taranov.ru%2F&c=ss:77.up:1A79042EC70B3463D4004D9102C2A611.sync:up.xdua:dueTsHZt6sJXkAxztDwLAkjj.xps:xpsFU5nnT8eVswCLhMOa7YZcz.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 08:54:33 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&i=483386312797698.535698908337536&a=77&e=1A79042EC70B3463D4004D9102C2A611&pref=http%3A%2F%2Fwww.taranov.ru%2F&c=ss:77.up:1A79042EC70B3463D4004D9102C2A611.sync:up.xdua:dueTsHZt6sJXkAxztDwLAkjj.xps:xpsFU5nnT8eVswCLhMOa7YZcz.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&i=483386312797698.535698908337536&a=77&e=1A79042EC70B3463D4004D9102C2A611&pref=http%3A%2F%2Fwww.taranov.ru%2F&c=ss:77.up:1A79042EC70B3463D4004D9102C2A611.sync:up.xdua:dueTsHZt6sJXkAxztDwLAkjj.xps:xpsFU5nnT8eVswCLhMOa7YZcz.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/1093/i/i?call_source=awg&i=483386312797698.535698908337536&a=77&e=1A79042EC70B3463D4004D9102C2A611&pref=http%3A%2F%2Fwww.taranov.ru%2F&c=ss:77.up:1A79042EC70B3463D4004D9102C2A611.sync:up.xdua:dueTsHZt6sJXkAxztDwLAkjj.xps:xpsFU5nnT8eVswCLhMOa7YZcz.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 08:54:33 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 3
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
302 Found 0 B URL HTTP/2 redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: Weborama Collect Frontend
date: Wed, 28 Sep 2022 08:54:33 GMT
content-length: 0
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=26351301
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Wed, 28 Sep 2022 08:54:33 GMT
set-cookie: AFFICHE_W=vSocvAJ1VJG911; expires=Thu, 26 Oct 2023 08:54:33 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=26351301
204 No Content 0 B URL HTTP/2 redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=26351301
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=26351301 HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: Weborama Collect Frontend
date: Wed, 28 Sep 2022 08:54:33 GMT
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Wed, 28 Sep 2022 08:54:33 GMT
set-cookie: AFFICHE_W=; expires=Tue, 10 Nov 2009 23:00:00 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 89ff0f8e885e5753adf45398f2a47735
0def7fe4e1b5cf94e39ba7380ff7305f42dc0a80
a84027b0dc5c677a3c1b9c4a170ade383f3d67ff0c9286c93696c8206a5a7af8
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 28 Sep 2022 08:54:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 27 Sep 2022 23:37:55 GMT
Expires: Wed, 28 Sep 2022 23:37:55 GMT
ETag: "0def7fe4e1b5cf94e39ba7380ff7305f42dc0a80"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.acint.net/ping/?v=0.4.0&uid=106afeec-ed78-476e-be4f-f8c2078c592f&dp=10&tz=%2B00%3A00&nc=93035095&dT=2022-09-28T08%3A54%3A32.449
302 Moved Temporarily 142 B URL HTTP/1.1 www.acint.net/ping/?v=0.4.0&uid=106afeec-ed78-476e-be4f-f8c2078c592f&dp=10&tz=%2B00%3A00&nc=93035095&dT=2022-09-28T08%3A54%3A32.449
IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /ping/?v=0.4.0&uid=106afeec-ed78-476e-be4f-f8c2078c592f&dp=10&tz=%2B00%3A00&nc=93035095&dT=2022-09-28T08%3A54%3A32.449 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.taranov.ru/
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Wed, 28 Sep 2022 08:54:34 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/ping/?v=0.4.0&uid=106afeec-ed78-476e-be4f-f8c2078c592f&dp=10&tz=%2B00%3A00&nc=93035095&dT=2022-09-28T08%3A54%3A32.449
www.acint.net/ping/?v=0.4.0&uid=106afeec-ed78-476e-be4f-f8c2078c592f&dp=10&tz=%2B00%3A00&nc=93035095&dT=2022-09-28T08%3A54%3A32.449
200 OK 43 B URL HTTP/2 www.acint.net/ping/?v=0.4.0&uid=106afeec-ed78-476e-be4f-f8c2078c592f&dp=10&tz=%2B00%3A00&nc=93035095&dT=2022-09-28T08%3A54%3A32.449
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /ping/?v=0.4.0&uid=106afeec-ed78-476e-be4f-f8c2078c592f&dp=10&tz=%2B00%3A00&nc=93035095&dT=2022-09-28T08%3A54%3A32.449 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.taranov.ru/
Connection: keep-alive
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; cSyncDp7v2=1664355271; cSyncDp14v3=1664355271; cSyncDp17=1664355271; cSyncDp32=1664355271; cSyncDp45v3=1664355271; cSyncDp53=1664355271; cSyncDp54v2=1664355271; cSyncDp62=1664355271; cSyncDp67v2=1664355271; cSyncDp68=1664355271; cSyncDp71=1664355271; cSyncDp77=1664355271; cSyncDp84=1664355271; cSyncDp85=1664355271; cSyncDp95v3=1664355271; cSyncDp101=1664355271; cSyncDp104v2=1664355271; cSyncDp107=1664355271; cSyncDp110=1664355271; cSyncDp111v2=1664355271; cSyncDp112v2=1664355271; cSyncDp125v2=1664355271; cSyncDp126=1664355271; cSyncDp127=1664355271; cSyncDp129=1664355271; cSyncDp136v2=1664355271; cSyncDp138=1664355271; cSyncDp144=1664355271; cSyncDp146=1664355271; cSyncDp148=1664355271; cSyncDp149=1664355271; cSyncDp151=1664355271; cSyncDp178=1664355271; cSyncDp179=1664355271; cSyncDp186=1664355271; cSyncDp221=1664355271
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:34 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 89ff0f8e885e5753adf45398f2a47735
0def7fe4e1b5cf94e39ba7380ff7305f42dc0a80
a84027b0dc5c677a3c1b9c4a170ade383f3d67ff0c9286c93696c8206a5a7af8
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Wed, 28 Sep 2022 08:54:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 27 Sep 2022 23:37:55 GMT
Expires: Wed, 28 Sep 2022 23:37:55 GMT
ETag: "0def7fe4e1b5cf94e39ba7380ff7305f42dc0a80"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.acint.net/rtbw/1?dp=16&cd=%7B%22st%22%3A106995%2C%22sc%22%3A164138904%2C%22pl%22%3A700492%2C%22ev%22%3A%22adTime%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A8%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355278
200 OK 43 B URL HTTP/2 www.acint.net/rtbw/1?dp=16&cd=%7B%22st%22%3A106995%2C%22sc%22%3A164138904%2C%22pl%22%3A700492%2C%22ev%22%3A%22adTime%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A8%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355278
IP
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /rtbw/1?dp=16&cd=%7B%22st%22%3A106995%2C%22sc%22%3A164138904%2C%22pl%22%3A700492%2C%22ev%22%3A%22adTime%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A8%7D&sid=63340bc5-3df3-b86r-1b01-iic1qyyhzywz&ref=http%3A%2F%2Fwww.taranov.ru%2F&r=1664355278 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.taranov.ru/
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9; cSyncDp7v2=1664355271; cSyncDp14v3=1664355271; cSyncDp17=1664355271; cSyncDp32=1664355271; cSyncDp45v3=1664355271; cSyncDp53=1664355271; cSyncDp54v2=1664355271; cSyncDp62=1664355271; cSyncDp67v2=1664355271; cSyncDp68=1664355271; cSyncDp71=1664355271; cSyncDp77=1664355271; cSyncDp84=1664355271; cSyncDp85=1664355271; cSyncDp95v3=1664355271; cSyncDp101=1664355271; cSyncDp104v2=1664355271; cSyncDp107=1664355271; cSyncDp110=1664355271; cSyncDp111v2=1664355271; cSyncDp112v2=1664355271; cSyncDp125v2=1664355271; cSyncDp126=1664355271; cSyncDp127=1664355271; cSyncDp129=1664355271; cSyncDp136v2=1664355271; cSyncDp138=1664355271; cSyncDp144=1664355271; cSyncDp146=1664355271; cSyncDp148=1664355271; cSyncDp149=1664355271; cSyncDp151=1664355271; cSyncDp178=1664355271; cSyncDp179=1664355271; cSyncDp186=1664355271; cSyncDp221=1664355271
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:40 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/sapeis/1A79042EC70B3463D4004D9102C2A611
302 Found 0 B URL HTTP/2 an.yandex.ru/mapuid/sapeis/1A79042EC70B3463D4004D9102C2A611
IP
GET /mapuid/sapeis/1A79042EC70B3463D4004D9102C2A611 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/sapeis/1A79042EC70B3463D4004D9102C2A611?redir-setuniq=1
date: Wed, 28 Sep 2022 08:54:33 GMT
set-cookie: yandexuid=4992564851664355273; domain=.yandex.ru; path=/; expires=Sat, 25-Sep-2032 08:54:33 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 28 Sep 2022 08:54:33 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Wed, 28 Sep 2022 08:54:33 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.acint.net/mc/?dp=10
200 OK 0 B IP
ASN #24940 Hetzner Online GmbH
GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.taranov.ru/
Connection: keep-alive
Cookie: aid=LgR5GmM0C8eRTQDUEabCApDtT41o/i11J5N1focheU3rHdP9
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 28 Sep 2022 08:54:31 GMT
content-type: text/html
set-cookie: cSyncDp7v2=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp14v3=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp32=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v3=1664355271; expires=Thu, 29-Sep-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp54v2=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v2=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp77=1664355271; expires=Wed, 12-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp84=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v3=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp101=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1664355271; expires=Wed, 12-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp111v2=1664355271; expires=Wed, 12-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp112v2=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v2=1664355271; expires=Thu, 13-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v2=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp138=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp144=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp178=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp179=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp221=1664355271; expires=Fri, 28-Oct-22 08:54:31 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2
ssp.bidvol.com/usersync?dspcsid=8&redirect=1
302 Found 0 B URL HTTP/2 ssp.bidvol.com/usersync?dspcsid=8&redirect=1
IP
ASN #24940 Hetzner Online GmbH
GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.23.0
date: Wed, 28 Sep 2022 08:54:32 GMT
x-request-id: 279df5c6-0747-43cb-ab2d-f304c7b44667
set-cookie: bvuid=0rhiq52p5d; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=0rhiq52p5d; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
location: https://www.acint.net/match?dp=129&euid=0rhiq52p5d
X-Firefox-Spdy: h2
92.53.96.109
31.172.81.172
104.18.32.68
93.184.220.29
142.250.74.98
95.211.66.35
23.36.77.32
188.42.191.196
65.108.1.47