Overview

URLalexey.at.ua/load/12-1-0-38
IP 193.109.247.239 (Russia)
ASN#204343 Compubyte Limited
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Access lock_open
Report completed2022-11-29 22:09:38 UTC
StatusLoading report..
IDS alerts0
Blocklist alert2
urlquery alerts No alerts detected
Tags None

Domain Summary (31)

Fully Qualifying Domain Name Rank First Seen Last Seen Sent bytes Received bytes IP Comment
push.services.mozilla.com (1) 2140 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 606 127 52.88.220.109
absoluteroute.com (1) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 397 140502 193.200.64.20
alexey.at.ua (22) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 10810 167422 193.109.247.239
content-signature-2.cdn.mozilla.net (1) 1152 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 413 5844 34.160.144.191
mc.yandex.ru (4) 2672 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 4637 77629 93.158.134.119
fonts.googleapis.com (1) 8877 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 398 1773 142.250.74.106
firefox.settings.services.mozilla.com (2) 867 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 782 2372 34.102.187.140
dmpprof.com (1) 19328 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 425 942 85.192.12.173
img-getpocket.cdn.mozilla.net (6) 1631 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 3287 49517 34.120.237.76
r3.o.lencr.org (19) 344 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 6422 16839 23.36.77.32
rot.spotsniper.ru (2) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 730 716 31.172.81.158
www.gstatic.com (1) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 435 168101 142.250.74.35
dmg.digitaltarget.ru (2) 21471 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 912 1392 185.15.175.131
fcgi4.gnezdo.ru (2) 69027 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 850 1322 93.95.102.105
ocsp2.globalsign.com (2) 1544 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 714 3794 104.18.21.226
hdbcode.com (7) 402014 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 3798 18808 31.220.27.135
themes.googleusercontent.com (1) 9661 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 489 61208 142.250.74.97
z.cdn.adtarget.me (1) 31288 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 403 95 212.32.253.229
i.cdnkimg.com (6) 8049 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 2697 354413 45.133.44.37
s.viitjcfx.com (12) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 13242 2556 31.220.27.155
contile.services.mozilla.com (1) 1114 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 333 229 34.117.237.239
ocsp.pki.goog (7) 175 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 2401 4900 142.250.74.131
uuidksinc.net (1) 3420 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 538 2218 31.220.27.134
news.2xclick.ru (1) 134052 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 357 29589 93.95.100.117
s4.ucoz.net (18) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 7060 76469 193.109.247.239
ocsp.digicert.com (2) 86 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 682 1089 93.184.220.29
www.google.com (1) 7 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 403 1193 142.250.74.132
counter.yadro.ru (4) 7275 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 1964 1380 88.212.201.198
s.uuidksinc.net (2) 3423 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 916 656 31.220.27.134
ads.go2net.com.ua (1) 194952 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 431 478 146.0.227.107
fonts.gstatic.com (3) 0 0001-01-01T00:00:00Z 0001-01-01T00:00:00Z 1437 43766 216.58.207.227

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-29 medium alexey.at.ua/load/12-1-0-38 Phishing
2022-11-29 medium alexey.at.ua/load/12-1-0-38 Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 193.109.247.239
Date UQ / IDS / BL URL IP
2023-06-02 03:40:38 UTC 0 - 3 - 0 allforall.at.ua/_ld/0/60_Crack.rar 193.109.247.239
2023-05-24 18:33:07 UTC 0 - 33 - 15 fallenang.clan.su/publ/ 193.109.247.239
2023-05-21 21:16:52 UTC 0 - 37 - 12 tk3.clan.su/forum/10-111-585-16-1212314980 193.109.247.239
2023-05-16 23:42:18 UTC 0 - 22 - 4 solanka.ucoz.ru 193.109.247.239
2023-05-13 04:15:41 UTC 0 - 30 - 11 moon.clan.su/ 193.109.247.239


Last 5 reports on ASN: Compubyte Limited
Date UQ / IDS / BL URL IP
2023-06-04 00:56:28 UTC 0 - 9 - 0 winhacker.at.ua/_ld/0/1_Winlocker_Build.rar 193.109.246.5
2023-06-04 00:35:57 UTC 0 - 8 - 0 universalengeni.at.ua/Randomkeys/RandomKeys.rar 193.109.246.6
2023-06-03 18:47:00 UTC 0 - 35 - 0 world-weapon.at.ua/ 193.109.246.46
2023-06-03 15:47:36 UTC 0 - 5 - 0 baklaniv.at.ua/MC/lekcija_04.pdf 193.109.247.61
2023-06-03 14:09:01 UTC 0 - 3 - 0 chessvdk.narod.ru/rating/Rating.xls 193.109.247.229


Last 5 reports on domain: at.ua
Date UQ / IDS / BL URL IP
2023-06-04 00:56:28 UTC 0 - 9 - 0 winhacker.at.ua/_ld/0/1_Winlocker_Build.rar 193.109.246.5
2023-06-04 00:35:57 UTC 0 - 8 - 0 universalengeni.at.ua/Randomkeys/RandomKeys.rar 193.109.246.6
2023-06-03 18:47:00 UTC 0 - 35 - 0 world-weapon.at.ua/ 193.109.246.46
2023-06-03 15:47:36 UTC 0 - 5 - 0 baklaniv.at.ua/MC/lekcija_04.pdf 193.109.247.61
2023-06-03 13:10:08 UTC 0 - 11 - 0 callofduty-fan.at.ua/_ld/0 193.109.246.49


No other reports with similar screenshot

JavaScript

Executed Scripts (31)

Executed Evals (5)
#1 JavaScript::Eval (size: 15568) - SHA256: ac67106da7775f013b7cb9730c8cde5cfa186d74c2bff74fe27579bb046366be
/* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var q = function(b, R) {
            if ((R = (b = K.trustedTypes, null), !b) || !b.createPolicy) return R;
            try {
                R = b.createPolicy("bg", {
                    createHTML: O,
                    createScript: O,
                    createScriptURL: O
                })
            } catch (I) {
                K.console && K.console.error(I.message)
            }
            return R
        },
        K = this || self,
        O = function(b) {
            return b
        };
    (0, eval)(function(b, R) {
        return (R = q()) && 1 === b.eval(R.createScript("1")) ? function(I) {
            return R.createScript(I)
        } : function(I) {
            return "" + I
        }
    }(K)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var z=this||self,bo=function(b,I,K,O){(K=P((O=P(b),b)),x)(K,b,v(I,Z(O,b)))},R8=function(b,I,K){if("object"==(I=typeof b,I))if(b){if(b instanceof Array)return"array";if(b instanceof Object)return I;if("[object Window]"==(K=Object.prototype.toString.call(b),K))return"object";if("[object Array]"==K||"number"==typeof b.length&&"undefined"!=typeof b.splice&&"undefined"!=typeof b.propertyIsEnumerable&&!b.propertyIsEnumerable("splice"))return"array";if("[object Function]"==K||"undefined"!=typeof b.call&&"undefined"!=typeof b.propertyIsEnumerable&&!b.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==I&&"undefined"==typeof b.call)return"object";return I},Z=function(b,I){if(void 0===(I=I.K[b],I))throw[D,30,b];if(I.value)return I.create();return I.create(1*b*b+-48*b+-64),I.prototype},f=function(b,I){I.s=((I.s?I.s+"~":"E:")+b.message+":"+b.stack).slice(0,2048)},I8=function(b,I){(I.push(b[0]<<24|b[1]<<16|b[2]<<8|b[3]),I.push(b[4]<<24|b[5]<<16|b[6]<<8|b[7]),I).push(b[8]<<24|b[9]<<16|b[10]<<8|b[11])},O1=function(b,I,K,O){function y(){}return{invoke:(O=K2(b,(K=void 0,function(R){y&&(I&&J(I),K=R,y(),y=void 0)}),!!I)[0],function(R,w,q,N){function u(){K(function(M){J(function(){R(M)})},q)}if(!w)return w=O(q),R&&R(w),w;K?u():(N=y,y=function(){(N(),J)(u)})})}},yj=function(b,I,K,O){return Z(356,(k(319,(wl(b,(O=Z(319,b),b.H&&O<b.j?(k(319,b,b.j),qO(b,K)):k(319,b,K),I)),b),O),b))},A=function(b,I,K,O,y,R,w,q,N){if(O.L+=((w=(y=(N=(R=(q=(K||O.i++,0<O.P&&O.I)&&O.KI&&1>=O.v&&!O.C&&!O.g&&(!K||1<O.Z-b)&&0==document.hidden,4==O.i))||q?O.D():O.F,N-O.F),y>>14),O.V)&&(O.V^=w*(y<<2)),O.A=w||O.A,w),R||q)O.F=N,O.i=0;if(!q||N-O.X<O.P-(I?255:K?5:2))return false;return(k((I=Z((O.Z=b,K?351:319),O),319),O,O.j),O.R).push([zJ,I,K?b+1:b]),O.g=J,true},io=function(b,I){return I[b]<<24|I[(b|0)+1]<<16|I[(b|0)+2]<<8|I[(b|0)+3]},qO=function(b,I){k(319,((b.rt.push(b.K.slice()),b).K[319]=void 0,b),I)},V=function(b,I,K){I[k(K,b,I),uo]=2796},JW=function(b,I,K,O,y){for((b.pI=MO(b.h,((b.kG=(b.fI=b[E],o8),b).Q2=PW,{get:function(){return this.concat()}})),b).ju=p[b.h](b.pI,{value:{value:{}}}),y=[],O=0;128>O;O++)y[O]=String.fromCharCode(O);C(true,true,(l(((l([(V(b,(V(b,function(R,w){(w=Z(P(R),R),qO)(R.A,w)},(V(b,function(R,w,q,N){k((w=g((N=P(R),R)),q=P(R),q),R,Z(N,R)>>>w)},(k(97,(V((V(b,(k(230,b,(V(b,(b.uf=(k((k(162,b,(V(b,function(R,w,q,N){(N=Z((w=(q=(w=P(R),N=P(R),P(R)),Z)(w,R),N),R),k)(q,R,+(w==N))},(V(b,(V((V(b,(V(b,(V(b,(V(b,function(R){bo(R,1)},(k(17,((V(b,(b.HZ=(V(b,function(R,w){R=(w=P(R),Z(w,R.A)),R[0].removeEventListener(R[1],R[2],c)},(k(507,b,(V(b,function(R,w,q,N,u,M,H){for(u=(q=Z(92,(w=(H=mj((N=P(R),R)),""),R)),q.length),M=0;H--;)M=((M|0)+(mj(R)|0))%u,w+=y[q[M]];k(N,R,w)},((V(b,((V((k((k(366,(k(356,b,(V(b,(V(b,(V(b,(V((k(182,(k(305,(k((b.Su=(V(b,(V(b,function(R,w,q){A(w,false,true,R)||(w=P(R),q=P(R),k(q,R,function(N){return eval(N)}(xP(Z(w,R.A)))))},(V(b,function(R){HW(R,4)},(k((b.s=(b.DP=(b.L=1,b.G=void 0,b.rt=[],b.KI=false,(b.W=void 0,b.Y=0,b.X=(b.o=(b.A=b,[]),b.l=(b.v=0,O=(b.g=null,b.j=0,(b.S=(b.N=false,void 0),b.wt=0,window).performance)||{},(b.P=0,b).I=!(b.Z=8001,1),b.H=[],[]),(b.i=void 0,b.U=25,b.C=void 0,b.R=[],(b.V=void 0,b).RQ=function(R){this.A=R},b).K=[],0),(b.F=0,O).timeOrigin||(O.timing||{}).navigationStart)||0),void 0),319),b,0),k(351,b,0),475)),168)),function(R,w,q){0!=(q=Z((w=P(R),q=P(R),q),R),Z(w,R))&&k(319,R,q)}),342),0),253),b,[]),b),b),b),0),b),function(R){bo(R,4)},267),function(R,w,q,N,u){(q=(u=Z((w=Z((u=P((q=(N=(w=P(R),P)(R),P)(R),R)),w),R.A),u),R),N=Z(N,R),Z)(q,R),0)!==w&&(q=vW(1,R,u,q,w,N),w.addEventListener(N,q,c),k(182,R,[w,N,q]))}),261),function(R,w,q,N,u){(w=(q=P((N=(u=P(R),P)(R),R)),P(R)),q=Z(q,R),w=Z(w,R),N=Z(N,R),k)(u,R,vW(w,R,q,N))}),222),function(R,w,q,N){(w=P((N=(q=P(R),P)(R),R)),k)(w,R,Z(q,R)||Z(N,R))}),381),{})),b),0),270),b,z),b),function(R){Zb(R,3)},395),V)(b,function(R,w,q){k((q=Z((w=P((q=P(R),R)),q),R),q=R8(q),w),R,q)},405),function(R,w,q,N){!A(w,false,true,R)&&(w=rl(R),q=w.J,N=w.AN,R.A==R||q==R.RQ&&N==R)&&(k(w.aQ,R,q.apply(N,w.O)),R.F=R.D())}),234),V)(b,function(R){Zb(R,4)},203),335)),[160,0,0])),206)),0),function(){}),503),V)(b,function(R,w,q,N,u,M,H,r,m,L,X,G){function Q(n,h){for(;q<n;)G|=g(R)<<q,q+=8;return h=G&(1<<n)-1,q-=n,G>>=n,h}for(X=(L=(q=G=(M=P(R),0),(Q(3)|0)+1),u=Q(5),N=0),m=[];N<u;N++)H=Q(1),m.push(H),X+=H?0:1;for(X=(w=(N=((X|0)-1).toString(2).length,[]),0);X<u;X++)m[X]||(w[X]=Q(N));for(N=0;N<u;N++)m[N]&&(w[N]=P(R));for(r=[];L--;)r.push(Z(P(R),R));V(R,function(n,h,Y,NO,t){for(h=(NO=[],0),Y=[];h<u;h++){if(t=w[h],!m[h]){for(;t>=Y.length;)Y.push(P(n));t=Y[t]}NO.push(t)}n.S=Db(n,(n.C=Db(n,r.slice()),NO))},M)},94),b),[]),367)),function(R,w,q,N){(N=Z((q=Z((w=(q=P(R),P)(R),q),R),w),R),k)(w,R,N+q)}),58),function(R,w,q,N,u,M){if(!A(w,true,true,R)){if("object"==R8((R=Z((M=(w=(M=(q=(w=(N=P(R),P)(R),P(R)),P(R)),Z)(w,R),Z)(M,R),q=Z(q,R),N),R),R))){for(u in N=[],R)N.push(u);R=N}for(N=(u=(q=0<q?q:1,0),R).length;u<N;u+=q)w(R.slice(u,(u|0)+(q|0)),M)}}),341),function(R,w,q,N){if(w=R.rt.pop()){for(q=g(R);0<q;q--)N=P(R),w[N]=R.K[N];R.K=(w[253]=R.K[253],w[97]=R.K[97],w)}else k(319,R,R.j)}),327),b),function(R,w,q){w=P(R),q=P(R),k(q,R,""+Z(w,R))},455),function(R,w,q,N,u){for(q=(u=P(R),w=mj(R),N=[],0);q<w;q++)N.push(g(R));k(u,R,N)}),34),117)),T)(4)),205),b,524),0),function(R,w,q,N){N=(w=P((q=(N=P(R),P(R)),R)),Z(N,R)),q=Z(q,R),k(w,R,N in q|0)}),79),[0,0,0])),function(R,w,q,N,u){(q=(u=(N=P(R),P(R)),P)(R),R).A==R&&(q=Z(q,R),w=Z(N,R),u=Z(u,R),w[u]=q,377==N&&(R.G=void 0,2==u&&(R.V=B(32,R,false),R.G=void 0)))}),474),b),function(R,w,q,N,u,M){A(w,false,true,R)||(N=rl(R.A),w=N.AN,M=N.O,q=N.J,u=M.length,N=N.aQ,w=0==u?new w[q]:1==u?new w[q](M[0]):2==u?new w[q](M[0],M[1]):3==u?new w[q](M[0],M[1],M[2]):4==u?new w[q](M[0],M[1],M[2],M[3]):2(),k(N,R,w))},317),b),2048),89)),473)),function(R,w,q,N){k((N=(q=Z((w=P((N=(q=P(R),P(R)),R)),q),R),Z(N,R)),w),R,q[N])}),380),uo)],b),l)([S,I],b),[f2,K]),b),b))},l=function(b,I){I.R.splice(0,0,b)},XO=function(b,I,K,O){try{O=b[((I|0)+2)%3],b[I]=(b[I]|0)-(b[((I|0)+1)%3]|0)-(O|0)^(1==I?O<<K:O>>>K)}catch(y){throw y;}},n2=function(b,I,K){if(3==b.length){for(K=0;3>K;K++)I[K]+=b[K];for(b=[13,8,13,12,16,5,3,10,15],K=0;9>K;K++)I[3](I,K%3,b[K])}},GJ=function(b,I,K,O,y){for(y=(K=K[3]|(O=K[2]|0,0),0);14>y;y++)I=I>>>8|I<<24,I+=b|0,K=K>>>8|K<<24,b=b<<3|b>>>29,I^=O+2298,K+=O|0,K^=y+2298,b^=I,O=O<<3|O>>>29,O^=K;return[b>>>24&255,b>>>16&255,b>>>8&255,b>>>0&255,I>>>24&255,I>>>16&255,I>>>8&255,I>>>0&255]},v=function(b,I,K,O){for(K=(b|0)-1,O=[];0<=K;K--)O[(b|0)-1-(K|0)]=I>>8*K&255;return O},wl=function(b,I,K,O,y,R){if(!b.s){b.v++;try{for(R=(y=(K=b.j,void 0),0);--I;)try{if((O=void 0,b).C)y=hW(b,b.C);else{if(R=Z(319,b),R>=K)break;O=P((k(351,b,R),b)),y=Z(O,b)}A((y&&y[$P]&2048?y(b,I):e([D,21,O],b,0),I),false,false,b)}catch(w){Z(205,b)?e(w,b,22):k(205,b,w)}if(!I){if(b.CI){b.v--,wl(b,216630971487);return}e([D,33],b,0)}}catch(w){try{e(w,b,22)}catch(q){f(q,b)}}b.v--}},rl=function(b,I,K,O,y,R){for(R=(K=((O=(I=b[kP]||{},P(b)),I.aQ=P(b),I).O=[],b.A==b?(g(b)|0)-1:1),P(b)),y=0;y<K;y++)I.O.push(P(b));for(;K--;)I.O[K]=Z(I.O[K],b);return(I.J=Z(O,b),I).AN=Z(R,b),I},vW=function(b,I,K,O,y,R){function w(){if(I.A==I){if(I.K){var q=[F,O,K,void 0,y,R,arguments];if(2==b)var N=C(false,false,(l(q,I),I));else if(1==b){var u=!I.R.length;(l(q,I),u)&&C(false,false,I)}else N=AW(I,q);return N}y&&R&&y.removeEventListener(R,w,c)}}return w},E1=function(b,I,K,O,y,R,w,q){return O=[-9,-48,48,29,-71,-79,O,-95,27,81],R=Vj,q=b&7,y=p[K.h](K.pI),y[K.h]=function(N){q+=(w=N,6+7*b),q&=7},y.concat=function(N){return(w=(N=(N=-46*I*I*w- -2208*I*w+(N=I%16+1,1*I*I*N)+q+46*w*w+O[q+27&7]*I*N- -2944*w+(R()|0)*N-N*w,O)[N],void 0),O[(q+21&7)+(b&2)]=N,O)[q+(b&2)]=-48,N},y},C=function(b,I,K,O,y,R){if(K.R.length){K.I=(K.KI=(K.I&&0(),b),true);try{y=K.D(),K.F=y,K.X=y,K.i=0,O=p2(b,K),R=K.D()-K.X,K.Y+=R,R<(I?0:10)||0>=K.U--||(R=Math.floor(R),K.o.push(254>=R?R:254))}finally{K.I=false}return O}},J=z.requestIdleCallback?function(b){requestIdleCallback(function(){b()},{timeout:4})}:z.setImmediate?function(b){setImmediate(b)}:function(b){setTimeout(b,0)},e=function(b,I,K,O,y,R){if(!I.N){if((b=(K=(0==(R=Z(253,((O=void 0,b)&&b[0]===D&&(O=b[2],K=b[1],b=void 0),I)),R).length&&(y=Z(351,I)>>3,R.push(K,y>>8&255,y&255),void 0!=O&&R.push(O&255)),""),b&&(b.message&&(K+=b.message),b.stack&&(K+=":"+b.stack)),Z)(97,I),3)<b){I.A=(K=(b-=(K=K.slice(0,(b|0)-3),(K.length|0)+3),Qj)(K),O=I.A,I);try{x(162,I,v(2,K.length).concat(K),9)}finally{I.A=O}}k(97,I,b)}},HW=function(b,I,K,O){for(K=(O=P(b),0);0<I;I--)K=K<<8|g(b);k(O,b,K)},FO=function(b,I){return I(function(K){K(b)}),[function(){return b}]},cW=function(b,I,K){return I.B(function(O){K=O},false,b),K},x=function(b,I,K,O,y,R){if(I.A==I)for(R=Z(b,I),162==b?(b=function(w,q,N,u){if((u=(q=R.length,(q|0)-4>>3),R.hN)!=u){u=(u<<(N=[0,0,y[R.hN=u,1],y[2]],3))-4;try{R.bf=GJ(io(u,R),io((u|0)+4,R),N)}catch(M){throw M;}}R.push(R.bf[q&7]^w)},y=Z(230,I)):b=function(w){R.push(w)},O&&b(O&255),I=K.length,O=0;O<I;O++)b(K[O])},TJ=function(b,I){if((I=(b=null,z).trustedTypes,!I)||!I.createPolicy)return b;try{b=I.createPolicy("bg",{createHTML:gl,createScript:gl,createScriptURL:gl})}catch(K){z.console&&z.console.error(K.message)}return b},p2=function(b,I,K,O){for(;I.R.length;){K=(I.g=null,I).R.pop();try{O=AW(I,K)}catch(y){f(y,I)}if(b&&I.g){b=I.g,b(function(){C(true,true,I)});break}}return O},AW=function(b,I,K,O,y){if(O=I[0],O==W)b.U=25,b.u(I);else if(O==E){K=I[1];try{y=b.s||b.u(I)}catch(R){f(R,b),y=b.s}K(y)}else if(O==zJ)b.u(I);else if(O==S)b.u(I);else if(O==f2){try{for(y=0;y<b.l.length;y++)try{K=b.l[y],K[0][K[1]](K[2])}catch(R){}}catch(R){}(0,I[b.l=[],1])(function(R,w){b.B(R,true,w)},function(R){l([$P],(R=!b.R.length,b)),R&&C(true,false,b)})}else{if(O==F)return y=I[2],k(332,b,I[6]),k(356,b,y),b.u(I);O==$P?(b.H=[],b.K=null,b.o=[]):O==uo&&"loading"===z.document.readyState&&(b.g=function(R,w){function q(){w||(w=true,R())}z.document.addEventListener("DOMContentLoaded",q,(w=false,c)),z.addEventListener("load",q,c)})}},MO=function(b,I){return p[b](p.prototype,{pop:I,call:I,splice:I,document:I,replace:I,prototype:I,length:I,propertyIsEnumerable:I,floor:I,console:I,parent:I,stack:I})},Db=function(b,I,K){return K=p[b.h](b.ju),K[b.h]=function(){return I},K.concat=function(O){I=O},K},a,Zb=function(b,I,K,O,y){(((y=(K=P((I&=(O=I&3,4),y=P(b),b)),Z)(y,b),I)&&(y=Qj(""+y)),O)&&x(K,b,v(2,y.length)),x)(K,b,y)},B=function(b,I,K,O,y,R,w,q,N,u,M,H,r,m){if((r=Z(319,I),r)>=I.j)throw[D,31];for(w=r,u=(H=I.fI.length,b),q=0;0<u;)M=w%8,R=8-(M|0),N=w>>3,R=R<u?R:u,O=I.H[N],K&&(y=I,y.G!=w>>6&&(y.G=w>>6,m=Z(377,y),y.W=GJ(y.V,y.G,[0,0,m[1],m[2]])),O^=I.W[N&H]),q|=(O>>8-(M|0)-(R|0)&(1<<R)-1)<<(u|0)-(R|0),w+=R,u-=R;return k(319,I,(K=q,(r|0)+(b|0))),K},P=function(b,I){if(b.C)return hW(b,b.S);return(I=B(8,b,true),I)&128&&(I^=128,b=B(2,b,true),I=(I<<2)+(b|0)),I},d,k=function(b,I,K){if(319==b||351==b)I.K[b]?I.K[b].concat(K):I.K[b]=Db(I,K);else{if(I.N&&377!=b)return;507==b||162==b||17==b||253==b||230==b?I.K[b]||(I.K[b]=E1(54,b,I,K)):I.K[b]=E1(137,b,I,K)}377==b&&(I.V=B(32,I,false),I.G=void 0)},Qj=function(b,I,K,O,y){for(y=(I=K=(b=b.replace(/\\r\\n/g,"\\n"),0),[]);I<b.length;I++)O=b.charCodeAt(I),128>O?y[K++]=O:(2048>O?y[K++]=O>>6|192:(55296==(O&64512)&&I+1<b.length&&56320==(b.charCodeAt(I+1)&64512)?(O=65536+((O&1023)<<10)+(b.charCodeAt(++I)&1023),y[K++]=O>>18|240,y[K++]=O>>12&63|128):y[K++]=O>>12|224,y[K++]=O>>6&63|128),y[K++]=O&63|128);return y},g=function(b){return b.C?hW(b,b.S):B(8,b,true)},T=function(b,I){for(I=[];b--;)I.push(255*Math.random()|0);return I},mj=function(b,I){return(I=g(b),I)&128&&(I=I&127|g(b)<<7),I},K2=function(b,I,K,O){return(O=d[b.substring(0,3)+"_"])?O(b.substring(3),I,K):FO(b,I)},c={passive:true,capture:true},gl=function(b){return b},U=function(b,I,K){K=this;try{JW(this,b,I)}catch(O){f(O,this),I(function(y){y(K.s)})}},hW=function(b,I){return(I=I.create().shift(),b.C.create().length||b.S.create().length)||(b.C=void 0,b.S=void 0),I},kP=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),zJ=[],f2=[],$P=((U.prototype.FY=void 0,U).prototype.T="toString",U.prototype.CI=false,[]),W=(U.prototype.eu=void 0,[]),E=[],S=[],uo=[],D={},F=[],p=(((I8,T,XO,function(){})(n2),U.prototype).h="create",D.constructor),Vj=((a=U.prototype,a.nI=function(b,I,K,O,y,R){for(R=[],K=O=0;K<b.length;K++)for(O+=I,y=y<<I|b[K];7<O;)O-=8,R.push(y>>O&255);return R},a).GP=function(b,I,K){return b^((I=(I^=I<<13,I^=I>>17,(I^I<<5)&K))||(I=1),I)},void 0),PW=(((a.D=(a.B=(a.Mm=function(){return Math.floor(this.Y+(this.D()-this.X))},a.dt=function(){return Math.floor(this.D())},a.Oj=function(b,I,K,O,y){for(y=O=0;y<b.length;y++)O+=b.charCodeAt(y),O+=O<<10,O^=O>>6;return O=(b=(O+=O<<3,O^=O>>11,O)+(O<<15)>>>0,new Number(b&(1<<I)-1)),O[0]=(b>>>I)%K,O},function(b,I,K,O,y){if(K="array"===R8(K)?K:[K],this.s)b(this.s);else try{y=[],O=!this.R.length,l([W,y,K],this),l([E,b,y],this),I&&!O||C(I,true,this)}catch(R){f(R,this),b(this.s)}}),(window.performance||{}).now?function(){return this.DP+window.performance.now()}:function(){return+new Date}),U.prototype.u=function(b,I){return Vj=(I=(b={},{}),function(){return I==b?-64:-17}),function(K,O,y,R,w,q,N,u,M,H,r,m,L,X,G){I=(u=I,b);try{if(y=K[0],y==S){L=K[1];try{for(M=H=(R=(q=atob(L),[]),0);H<q.length;H++)O=q.charCodeAt(H),255<O&&(R[M++]=O&255,O>>=8),R[M++]=O;this.H=R,this.j=this.H.length<<3,k(377,this,[0,0,0])}catch(Q){e(Q,this,17);return}wl(this,8001)}else if(y==W)K[1].push(Z(97,this),Z(162,this).length,Z(17,this).length,Z(507,this).length),k(356,this,K[2]),this.K[376]&&yj(this,8001,Z(376,this));else{if(y==E){(X=(G=v(2,((H=K[2],Z(507,this)).length|0)+2),this).A,this).A=this;try{w=Z(253,this),0<w.length&&x(507,this,v(2,w.length).concat(w),10),x(507,this,v(1,this.L),109),x(507,this,v(1,this[E].length)),q=0,N=Z(162,this),q+=Z(366,this)&2047,q-=(Z(507,this).length|0)+5,4<N.length&&(q-=(N.length|0)+3),0<q&&x(507,this,v(2,q).concat(T(q)),15),4<N.length&&x(507,this,v(2,N.length).concat(N),156)}finally{this.A=X}if(r=((M=T(2).concat(Z(507,this)),M)[1]=M[0]^6,M[3]=M[1]^G[0],M[4]=M[1]^G[1],this).sj(M))r="!"+r;else for(q=0,r="";q<M.length;q++)m=M[q][this.T](16),1==m.length&&(m="0"+m),r+=m;return Z(507,(Z(((k(97,(R=r,this),H.shift()),Z)(162,this).length=H.shift(),17),this).length=H.shift(),this)).length=H.shift(),R}if(y==zJ)yj(this,K[2],K[1]);else if(y==F)return yj(this,8001,K[1])}}finally{I=u}}}(),U.prototype).V2=0,U.prototype).sj=function(b,I,K,O){if(I=window.btoa){for(O=(K=0,"");K<b.length;K+=8192)O+=String.fromCharCode.apply(null,b.slice(K,K+8192));b=I(O).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else b=void 0;return b},U.prototype.XY=0,/./),o8,BW=S.pop.bind((U.prototype[f2]=[0,0,1,1,0,1,1],U.prototype[W])),xP=(o8=MO(U.prototype.h,(PW[U.prototype.T]=BW,{get:BW})),U.prototype.gt=void 0,function(b,I){return(I=TJ())&&1===b.eval(I.createScript("1"))?function(K){return I.createScript(K)}:function(K){return""+K}}(z));(40<(d=z.botguard||(z.botguard={}),d.m)||(d.m=41,d.bg=O1,d.a=K2),d).LDL_=function(b,I,K){return[(K=new U(b,I),function(O){return cW(O,K)})]};}).call(this);'));
}).call(this);
#2 JavaScript::Eval (size: 15879) - SHA256: 31260859ea68251c43f530d161e4a902654b7ede7e28fbfce7e9cd8406af9738
(function() {
    var z = this || self,
        bo = function(b, I, K, O) {
            (K = P((O = P(b), b)), x)(K, b, v(I, Z(O, b)))
        },
        R8 = function(b, I, K) {
            if ("object" == (I = typeof b, I))
                if (b) {
                    if (b instanceof Array) return "array";
                    if (b instanceof Object) return I;
                    if ("[object Window]" == (K = Object.prototype.toString.call(b), K)) return "object";
                    if ("[object Array]" == K || "number" == typeof b.length && "undefined" != typeof b.splice && "undefined" != typeof b.propertyIsEnumerable && !b.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == K || "undefined" != typeof b.call && "undefined" != typeof b.propertyIsEnumerable && !b.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == I && "undefined" == typeof b.call) return "object";
            return I
        },
        Z = function(b, I) {
            if (void 0 === (I = I.K[b], I)) throw [D, 30, b];
            if (I.value) return I.create();
            return I.create(1 * b * b + -48 * b + -64), I.prototype
        },
        f = function(b, I) {
            I.s = ((I.s ? I.s + "~" : "E:") + b.message + ":" + b.stack).slice(0, 2048)
        },
        I8 = function(b, I) {
            (I.push(b[0] << 24 | b[1] << 16 | b[2] << 8 | b[3]), I.push(b[4] << 24 | b[5] << 16 | b[6] << 8 | b[7]), I).push(b[8] << 24 | b[9] << 16 | b[10] << 8 | b[11])
        },
        O1 = function(b, I, K, O) {
            function y() {}
            return {
                invoke: (O = K2(b, (K = void 0, function(R) {
                    y && (I && J(I), K = R, y(), y = void 0)
                }), !!I)[0], function(R, w, q, N) {
                    function u() {
                        K(function(M) {
                            J(function() {
                                R(M)
                            })
                        }, q)
                    }
                    if (!w) return w = O(q), R && R(w), w;
                    K ? u() : (N = y, y = function() {
                        (N(), J)(u)
                    })
                })
            }
        },
        yj = function(b, I, K, O) {
            return Z(356, (k(319, (wl(b, (O = Z(319, b), b.H && O < b.j ? (k(319, b, b.j), qO(b, K)) : k(319, b, K), I)), b), O), b))
        },
        A = function(b, I, K, O, y, R, w, q, N) {
            if (O.L += ((w = (y = (N = (R = (q = (K || O.i++, 0 < O.P && O.I) && O.KI && 1 >= O.v && !O.C && !O.g && (!K || 1 < O.Z - b) && 0 == document.hidden, 4 == O.i)) || q ? O.D() : O.F, N - O.F), y >> 14), O.V) && (O.V ^= w * (y << 2)), O.A = w || O.A, w), R || q) O.F = N, O.i = 0;
            if (!q || N - O.X < O.P - (I ? 255 : K ? 5 : 2)) return false;
            return (k((I = Z((O.Z = b, K ? 351 : 319), O), 319), O, O.j), O.R).push([zJ, I, K ? b + 1 : b]), O.g = J, true
        },
        io = function(b, I) {
            return I[b] << 24 | I[(b | 0) + 1] << 16 | I[(b | 0) + 2] << 8 | I[(b | 0) + 3]
        },
        qO = function(b, I) {
            k(319, ((b.rt.push(b.K.slice()), b).K[319] = void 0, b), I)
        },
        V = function(b, I, K) {
            I[k(K, b, I), uo] = 2796
        },
        JW = function(b, I, K, O, y) {
            for ((b.pI = MO(b.h, ((b.kG = (b.fI = b[E], o8), b).Q2 = PW, {get: function() {
                        return this.concat()
                    }
                })), b).ju = p[b.h](b.pI, {
                    value: {
                        value: {}
                    }
                }), y = [], O = 0; 128 > O; O++) y[O] = String.fromCharCode(O);
            C(true, true, (l(((l([(V(b, (V(b, function(R, w) {
                (w = Z(P(R), R), qO)(R.A, w)
            }, (V(b, function(R, w, q, N) {
                k((w = g((N = P(R), R)), q = P(R), q), R, Z(N, R) >>> w)
            }, (k(97, (V((V(b, (k(230, b, (V(b, (b.uf = (k((k(162, b, (V(b, function(R, w, q, N) {
                (N = Z((w = (q = (w = P(R), N = P(R), P(R)), Z)(w, R), N), R), k)(q, R, +(w == N))
            }, (V(b, (V((V(b, (V(b, (V(b, (V(b, function(R) {
                bo(R, 1)
            }, (k(17, ((V(b, (b.HZ = (V(b, function(R, w) {
                R = (w = P(R), Z(w, R.A)), R[0].removeEventListener(R[1], R[2], c)
            }, (k(507, b, (V(b, function(R, w, q, N, u, M, H) {
                for (u = (q = Z(92, (w = (H = mj((N = P(R), R)), ""), R)), q.length), M = 0; H--;) M = ((M | 0) + (mj(R) | 0)) % u, w += y[q[M]];
                k(N, R, w)
            }, ((V(b, ((V((k((k(366, (k(356, b, (V(b, (V(b, (V(b, (V((k(182, (k(305, (k((b.Su = (V(b, (V(b, function(R, w, q) {
                A(w, false, true, R) || (w = P(R), q = P(R), k(q, R, function(N) {
                    return eval(N)
                }(xP(Z(w, R.A)))))
            }, (V(b, function(R) {
                HW(R, 4)
            }, (k((b.s = (b.DP = (b.L = 1, b.G = void 0, b.rt = [], b.KI = false, (b.W = void 0, b.Y = 0, b.X = (b.o = (b.A = b, []), b.l = (b.v = 0, O = (b.g = null, b.j = 0, (b.S = (b.N = false, void 0), b.wt = 0, window).performance) || {}, (b.P = 0, b).I = !(b.Z = 8001, 1), b.H = [], []), (b.i = void 0, b.U = 25, b.C = void 0, b.R = [], (b.V = void 0, b).RQ = function(R) {
                this.A = R
            }, b).K = [], 0), (b.F = 0, O).timeOrigin || (O.timing || {}).navigationStart) || 0), void 0), 319), b, 0), k(351, b, 0), 475)), 168)), function(R, w, q) {
                0 != (q = Z((w = P(R), q = P(R), q), R), Z(w, R)) && k(319, R, q)
            }), 342), 0), 253), b, []), b), b), b), 0), b), function(R) {
                bo(R, 4)
            }, 267), function(R, w, q, N, u) {
                (q = (u = Z((w = Z((u = P((q = (N = (w = P(R), P)(R), P)(R), R)), w), R.A), u), R), N = Z(N, R), Z)(q, R), 0) !== w && (q = vW(1, R, u, q, w, N), w.addEventListener(N, q, c), k(182, R, [w, N, q]))
            }), 261), function(R, w, q, N, u) {
                (w = (q = P((N = (u = P(R), P)(R), R)), P(R)), q = Z(q, R), w = Z(w, R), N = Z(N, R), k)(u, R, vW(w, R, q, N))
            }), 222), function(R, w, q, N) {
                (w = P((N = (q = P(R), P)(R), R)), k)(w, R, Z(q, R) || Z(N, R))
            }), 381), {})), b), 0), 270), b, z), b), function(R) {
                Zb(R, 3)
            }, 395), V)(b, function(R, w, q) {
                k((q = Z((w = P((q = P(R), R)), q), R), q = R8(q), w), R, q)
            }, 405), function(R, w, q, N) {
                !A(w, false, true, R) && (w = rl(R), q = w.J, N = w.AN, R.A == R || q == R.RQ && N == R) && (k(w.aQ, R, q.apply(N, w.O)), R.F = R.D())
            }), 234), V)(b, function(R) {
                Zb(R, 4)
            }, 203), 335)), [160, 0, 0])), 206)), 0), function() {}), 503), V)(b, function(R, w, q, N, u, M, H, r, m, L, X, G) {
                function Q(n, h) {
                    for (; q < n;) G |= g(R) << q, q += 8;
                    return h = G & (1 << n) - 1, q -= n, G >>= n, h
                }
                for (X = (L = (q = G = (M = P(R), 0), (Q(3) | 0) + 1), u = Q(5), N = 0), m = []; N < u; N++) H = Q(1), m.push(H), X += H ? 0 : 1;
                for (X = (w = (N = ((X | 0) - 1).toString(2).length, []), 0); X < u; X++) m[X] || (w[X] = Q(N));
                for (N = 0; N < u; N++) m[N] && (w[N] = P(R));
                for (r = []; L--;) r.push(Z(P(R), R));
                V(R, function(n, h, Y, NO, t) {
                    for (h = (NO = [], 0), Y = []; h < u; h++) {
                        if (t = w[h], !m[h]) {
                            for (; t >= Y.length;) Y.push(P(n));
                            t = Y[t]
                        }
                        NO.push(t)
                    }
                    n.S = Db(n, (n.C = Db(n, r.slice()), NO))
                }, M)
            }, 94), b), []), 367)), function(R, w, q, N) {
                (N = Z((q = Z((w = (q = P(R), P)(R), q), R), w), R), k)(w, R, N + q)
            }), 58), function(R, w, q, N, u, M) {
                if (!A(w, true, true, R)) {
                    if ("object" == R8((R = Z((M = (w = (M = (q = (w = (N = P(R), P)(R), P(R)), P(R)), Z)(w, R), Z)(M, R), q = Z(q, R), N), R), R))) {
                        for (u in N = [], R) N.push(u);
                        R = N
                    }
                    for (N = (u = (q = 0 < q ? q : 1, 0), R).length; u < N; u += q) w(R.slice(u, (u | 0) + (q | 0)), M)
                }
            }), 341), function(R, w, q, N) {
                if (w = R.rt.pop()) {
                    for (q = g(R); 0 < q; q--) N = P(R), w[N] = R.K[N];
                    R.K = (w[253] = R.K[253], w[97] = R.K[97], w)
                } else k(319, R, R.j)
            }), 327), b), function(R, w, q) {
                w = P(R), q = P(R), k(q, R, "" + Z(w, R))
            }, 455), function(R, w, q, N, u) {
                for (q = (u = P(R), w = mj(R), N = [], 0); q < w; q++) N.push(g(R));
                k(u, R, N)
            }), 34), 117)), T)(4)), 205), b, 524), 0), function(R, w, q, N) {
                N = (w = P((q = (N = P(R), P(R)), R)), Z(N, R)), q = Z(q, R), k(w, R, N in q | 0)
            }), 79), [0, 0, 0])), function(R, w, q, N, u) {
                (q = (u = (N = P(R), P(R)), P)(R), R).A == R && (q = Z(q, R), w = Z(N, R), u = Z(u, R), w[u] = q, 377 == N && (R.G = void 0, 2 == u && (R.V = B(32, R, false), R.G = void 0)))
            }), 474), b), function(R, w, q, N, u, M) {
                A(w, false, true, R) || (N = rl(R.A), w = N.AN, M = N.O, q = N.J, u = M.length, N = N.aQ, w = 0 == u ? new w[q] : 1 == u ? new w[q](M[0]) : 2 == u ? new w[q](M[0], M[1]) : 3 == u ? new w[q](M[0], M[1], M[2]) : 4 == u ? new w[q](M[0], M[1], M[2], M[3]) : 2(), k(N, R, w))
            }, 317), b), 2048), 89)), 473)), function(R, w, q, N) {
                k((N = (q = Z((w = P((N = (q = P(R), P(R)), R)), q), R), Z(N, R)), w), R, q[N])
            }), 380), uo)], b), l)([S, I], b), [f2, K]), b), b))
        },
        l = function(b, I) {
            I.R.splice(0, 0, b)
        },
        XO = function(b, I, K, O) {
            try {
                O = b[((I | 0) + 2) % 3], b[I] = (b[I] | 0) - (b[((I | 0) + 1) % 3] | 0) - (O | 0) ^ (1 == I ? O << K : O >>> K)
            } catch (y) {
                throw y;
            }
        },
        n2 = function(b, I, K) {
            if (3 == b.length) {
                for (K = 0; 3 > K; K++) I[K] += b[K];
                for (b = [13, 8, 13, 12, 16, 5, 3, 10, 15], K = 0; 9 > K; K++) I[3](I, K % 3, b[K])
            }
        },
        GJ = function(b, I, K, O, y) {
            for (y = (K = K[3] | (O = K[2] | 0, 0), 0); 14 > y; y++) I = I >>> 8 | I << 24, I += b | 0, K = K >>> 8 | K << 24, b = b << 3 | b >>> 29, I ^= O + 2298, K += O | 0, K ^= y + 2298, b ^= I, O = O << 3 | O >>> 29, O ^= K;
            return [b >>> 24 & 255, b >>> 16 & 255, b >>> 8 & 255, b >>> 0 & 255, I >>> 24 & 255, I >>> 16 & 255, I >>> 8 & 255, I >>> 0 & 255]
        },
        v = function(b, I, K, O) {
            for (K = (b | 0) - 1, O = []; 0 <= K; K--) O[(b | 0) - 1 - (K | 0)] = I >> 8 * K & 255;
            return O
        },
        wl = function(b, I, K, O, y, R) {
            if (!b.s) {
                b.v++;
                try {
                    for (R = (y = (K = b.j, void 0), 0); --I;) try {
                        if ((O = void 0, b).C) y = hW(b, b.C);
                        else {
                            if (R = Z(319, b), R >= K) break;
                            O = P((k(351, b, R), b)), y = Z(O, b)
                        }
                        A((y && y[$P] & 2048 ? y(b, I) : e([D, 21, O], b, 0), I), false, false, b)
                    } catch (w) {
                        Z(205, b) ? e(w, b, 22) : k(205, b, w)
                    }
                    if (!I) {
                        if (b.CI) {
                            b.v--, wl(b, 216630971487);
                            return
                        }
                        e([D, 33], b, 0)
                    }
                } catch (w) {
                    try {
                        e(w, b, 22)
                    } catch (q) {
                        f(q, b)
                    }
                }
                b.v--
            }
        },
        rl = function(b, I, K, O, y, R) {
            for (R = (K = ((O = (I = b[kP] || {}, P(b)), I.aQ = P(b), I).O = [], b.A == b ? (g(b) | 0) - 1 : 1), P(b)), y = 0; y < K; y++) I.O.push(P(b));
            for (; K--;) I.O[K] = Z(I.O[K], b);
            return (I.J = Z(O, b), I).AN = Z(R, b), I
        },
        vW = function(b, I, K, O, y, R) {
            function w() {
                if (I.A == I) {
                    if (I.K) {
                        var q = [F, O, K, void 0, y, R, arguments];
                        if (2 == b) var N = C(false, false, (l(q, I), I));
                        else if (1 == b) {
                            var u = !I.R.length;
                            (l(q, I), u) && C(false, false, I)
                        } else N = AW(I, q);
                        return N
                    }
                    y && R && y.removeEventListener(R, w, c)
                }
            }
            return w
        },
        E1 = function(b, I, K, O, y, R, w, q) {
            return O = [-9, -48, 48, 29, -71, -79, O, -95, 27, 81], R = Vj, q = b & 7, y = p[K.h](K.pI), y[K.h] = function(N) {
                q += (w = N, 6 + 7 * b), q &= 7
            }, y.concat = function(N) {
                return (w = (N = (N = -46 * I * I * w - -2208 * I * w + (N = I % 16 + 1, 1 * I * I * N) + q + 46 * w * w + O[q + 27 & 7] * I * N - -2944 * w + (R() | 0) * N - N * w, O)[N], void 0), O[(q + 21 & 7) + (b & 2)] = N, O)[q + (b & 2)] = -48, N
            }, y
        },
        C = function(b, I, K, O, y, R) {
            if (K.R.length) {
                K.I = (K.KI = (K.I && 0(), b), true);
                try {
                    y = K.D(), K.F = y, K.X = y, K.i = 0, O = p2(b, K), R = K.D() - K.X, K.Y += R, R < (I ? 0 : 10) || 0 >= K.U-- || (R = Math.floor(R), K.o.push(254 >= R ? R : 254))
                } finally {
                    K.I = false
                }
                return O
            }
        },
        J = z.requestIdleCallback ? function(b) {
            requestIdleCallback(function() {
                b()
            }, {
                timeout: 4
            })
        } : z.setImmediate ? function(b) {
            setImmediate(b)
        } : function(b) {
            setTimeout(b, 0)
        },
        e = function(b, I, K, O, y, R) {
            if (!I.N) {
                if ((b = (K = (0 == (R = Z(253, ((O = void 0, b) && b[0] === D && (O = b[2], K = b[1], b = void 0), I)), R).length && (y = Z(351, I) >> 3, R.push(K, y >> 8 & 255, y & 255), void 0 != O && R.push(O & 255)), ""), b && (b.message && (K += b.message), b.stack && (K += ":" + b.stack)), Z)(97, I), 3) < b) {
                    I.A = (K = (b -= (K = K.slice(0, (b | 0) - 3), (K.length | 0) + 3), Qj)(K), O = I.A, I);
                    try {
                        x(162, I, v(2, K.length).concat(K), 9)
                    } finally {
                        I.A = O
                    }
                }
                k(97, I, b)
            }
        },
        HW = function(b, I, K, O) {
            for (K = (O = P(b), 0); 0 < I; I--) K = K << 8 | g(b);
            k(O, b, K)
        },
        FO = function(b, I) {
            return I(function(K) {
                K(b)
            }), [function() {
                return b
            }]
        },
        cW = function(b, I, K) {
            return I.B(function(O) {
                K = O
            }, false, b), K
        },
        x = function(b, I, K, O, y, R) {
            if (I.A == I)
                for (R = Z(b, I), 162 == b ? (b = function(w, q, N, u) {
                        if ((u = (q = R.length, (q | 0) - 4 >> 3), R.hN) != u) {
                            u = (u << (N = [0, 0, y[R.hN = u, 1], y[2]], 3)) - 4;
                            try {
                                R.bf = GJ(io(u, R), io((u | 0) + 4, R), N)
                            } catch (M) {
                                throw M;
                            }
                        }
                        R.push(R.bf[q & 7] ^ w)
                    }, y = Z(230, I)) : b = function(w) {
                        R.push(w)
                    }, O && b(O & 255), I = K.length, O = 0; O < I; O++) b(K[O])
        },
        TJ = function(b, I) {
            if ((I = (b = null, z).trustedTypes, !I) || !I.createPolicy) return b;
            try {
                b = I.createPolicy("bg", {
                    createHTML: gl,
                    createScript: gl,
                    createScriptURL: gl
                })
            } catch (K) {
                z.console && z.console.error(K.message)
            }
            return b
        },
        p2 = function(b, I, K, O) {
            for (; I.R.length;) {
                K = (I.g = null, I).R.pop();
                try {
                    O = AW(I, K)
                } catch (y) {
                    f(y, I)
                }
                if (b && I.g) {
                    b = I.g, b(function() {
                        C(true, true, I)
                    });
                    break
                }
            }
            return O
        },
        AW = function(b, I, K, O, y) {
            if (O = I[0], O == W) b.U = 25, b.u(I);
            else if (O == E) {
                K = I[1];
                try {
                    y = b.s || b.u(I)
                } catch (R) {
                    f(R, b), y = b.s
                }
                K(y)
            } else if (O == zJ) b.u(I);
            else if (O == S) b.u(I);
            else if (O == f2) {
                try {
                    for (y = 0; y < b.l.length; y++) try {
                        K = b.l[y], K[0][K[1]](K[2])
                    } catch (R) {}
                } catch (R) {}(0, I[b.l = [], 1])(function(R, w) {
                    b.B(R, true, w)
                }, function(R) {
                    l([$P], (R = !b.R.length, b)), R && C(true, false, b)
                })
            } else {
                if (O == F) return y = I[2], k(332, b, I[6]), k(356, b, y), b.u(I);
                O == $P ? (b.H = [], b.K = null, b.o = []) : O == uo && "loading" === z.document.readyState && (b.g = function(R, w) {
                    function q() {
                        w || (w = true, R())
                    }
                    z.document.addEventListener("DOMContentLoaded", q, (w = false, c)), z.addEventListener("load", q, c)
                })
            }
        },
        MO = function(b, I) {
            return p[b](p.prototype, {
                pop: I,
                call: I,
                splice: I,
                document: I,
                replace: I,
                prototype: I,
                length: I,
                propertyIsEnumerable: I,
                floor: I,
                console: I,
                parent: I,
                stack: I
            })
        },
        Db = function(b, I, K) {
            return K = p[b.h](b.ju), K[b.h] = function() {
                return I
            }, K.concat = function(O) {
                I = O
            }, K
        },
        a, Zb = function(b, I, K, O, y) {
            (((y = (K = P((I &= (O = I & 3, 4), y = P(b), b)), Z)(y, b), I) && (y = Qj("" + y)), O) && x(K, b, v(2, y.length)), x)(K, b, y)
        },
        B = function(b, I, K, O, y, R, w, q, N, u, M, H, r, m) {
            if ((r = Z(319, I), r) >= I.j) throw [D, 31];
            for (w = r, u = (H = I.fI.length, b), q = 0; 0 < u;) M = w % 8, R = 8 - (M | 0), N = w >> 3, R = R < u ? R : u, O = I.H[N], K && (y = I, y.G != w >> 6 && (y.G = w >> 6, m = Z(377, y), y.W = GJ(y.V, y.G, [0, 0, m[1], m[2]])), O ^= I.W[N & H]), q |= (O >> 8 - (M | 0) - (R | 0) & (1 << R) - 1) << (u | 0) - (R | 0), w += R, u -= R;
            return k(319, I, (K = q, (r | 0) + (b | 0))), K
        },
        P = function(b, I) {
            if (b.C) return hW(b, b.S);
            return (I = B(8, b, true), I) & 128 && (I ^= 128, b = B(2, b, true), I = (I << 2) + (b | 0)), I
        },
        d, k = function(b, I, K) {
            if (319 == b || 351 == b) I.K[b] ? I.K[b].concat(K) : I.K[b] = Db(I, K);
            else {
                if (I.N && 377 != b) return;
                507 == b || 162 == b || 17 == b || 253 == b || 230 == b ? I.K[b] || (I.K[b] = E1(54, b, I, K)) : I.K[b] = E1(137, b, I, K)
            }
            377 == b && (I.V = B(32, I, false), I.G = void 0)
        },
        Qj = function(b, I, K, O, y) {
            for (y = (I = K = (b = b.replace(/\r\n/g, "\n"), 0), []); I < b.length; I++) O = b.charCodeAt(I), 128 > O ? y[K++] = O : (2048 > O ? y[K++] = O >> 6 | 192 : (55296 == (O & 64512) && I + 1 < b.length && 56320 == (b.charCodeAt(I + 1) & 64512) ? (O = 65536 + ((O & 1023) << 10) + (b.charCodeAt(++I) & 1023), y[K++] = O >> 18 | 240, y[K++] = O >> 12 & 63 | 128) : y[K++] = O >> 12 | 224, y[K++] = O >> 6 & 63 | 128), y[K++] = O & 63 | 128);
            return y
        },
        g = function(b) {
            return b.C ? hW(b, b.S) : B(8, b, true)
        },
        T = function(b, I) {
            for (I = []; b--;) I.push(255 * Math.random() | 0);
            return I
        },
        mj = function(b, I) {
            return (I = g(b), I) & 128 && (I = I & 127 | g(b) << 7), I
        },
        K2 = function(b, I, K, O) {
            return (O = d[b.substring(0, 3) + "_"]) ? O(b.substring(3), I, K) : FO(b, I)
        },
        c = {
            passive: true,
            capture: true
        },
        gl = function(b) {
            return b
        },
        U = function(b, I, K) {
            K = this;
            try {
                JW(this, b, I)
            } catch (O) {
                f(O, this), I(function(y) {
                    y(K.s)
                })
            }
        },
        hW = function(b, I) {
            return (I = I.create().shift(), b.C.create().length || b.S.create().length) || (b.C = void 0, b.S = void 0), I
        },
        kP = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        zJ = [],
        f2 = [],
        $P = ((U.prototype.FY = void 0, U).prototype.T = "toString", U.prototype.CI = false, []),
        W = (U.prototype.eu = void 0, []),
        E = [],
        S = [],
        uo = [],
        D = {},
        F = [],
        p = (((I8, T, XO, function() {})(n2), U.prototype).h = "create", D.constructor),
        Vj = ((a = U.prototype, a.nI = function(b, I, K, O, y, R) {
            for (R = [], K = O = 0; K < b.length; K++)
                for (O += I, y = y << I | b[K]; 7 < O;) O -= 8, R.push(y >> O & 255);
            return R
        }, a).GP = function(b, I, K) {
            return b ^ ((I = (I ^= I << 13, I ^= I >> 17, (I ^ I << 5) & K)) || (I = 1), I)
        }, void 0),
        PW = (((a.D = (a.B = (a.Mm = function() {
            return Math.floor(this.Y + (this.D() - this.X))
        }, a.dt = function() {
            return Math.floor(this.D())
        }, a.Oj = function(b, I, K, O, y) {
            for (y = O = 0; y < b.length; y++) O += b.charCodeAt(y), O += O << 10, O ^= O >> 6;
            return O = (b = (O += O << 3, O ^= O >> 11, O) + (O << 15) >>> 0, new Number(b & (1 << I) - 1)), O[0] = (b >>> I) % K, O
        }, function(b, I, K, O, y) {
            if (K = "array" === R8(K) ? K : [K], this.s) b(this.s);
            else try {
                y = [], O = !this.R.length, l([W, y, K], this), l([E, b, y], this), I && !O || C(I, true, this)
            } catch (R) {
                f(R, this), b(this.s)
            }
        }), (window.performance || {}).now ? function() {
            return this.DP + window.performance.now()
        } : function() {
            return +new Date
        }), U.prototype.u = function(b, I) {
            return Vj = (I = (b = {}, {}), function() {
                    return I == b ? -64 : -17
                }),
                function(K, O, y, R, w, q, N, u, M, H, r, m, L, X, G) {
                    I = (u = I, b);
                    try {
                        if (y = K[0], y == S) {
                            L = K[1];
                            try {
                                for (M = H = (R = (q = atob(L), []), 0); H < q.length; H++) O = q.charCodeAt(H), 255 < O && (R[M++] = O & 255, O >>= 8), R[M++] = O;
                                this.H = R, this.j = this.H.length << 3, k(377, this, [0, 0, 0])
                            } catch (Q) {
                                e(Q, this, 17);
                                return
                            }
                            wl(this, 8001)
                        } else if (y == W) K[1].push(Z(97, this), Z(162, this).length, Z(17, this).length, Z(507, this).length), k(356, this, K[2]), this.K[376] && yj(this, 8001, Z(376, this));
                        else {
                            if (y == E) {
                                (X = (G = v(2, ((H = K[2], Z(507, this)).length | 0) + 2), this).A, this).A = this;
                                try {
                                    w = Z(253, this), 0 < w.length && x(507, this, v(2, w.length).concat(w), 10), x(507, this, v(1, this.L), 109), x(507, this, v(1, this[E].length)), q = 0, N = Z(162, this), q += Z(366, this) & 2047, q -= (Z(507, this).length | 0) + 5, 4 < N.length && (q -= (N.length | 0) + 3), 0 < q && x(507, this, v(2, q).concat(T(q)), 15), 4 < N.length && x(507, this, v(2, N.length).concat(N), 156)
                                } finally {
                                    this.A = X
                                }
                                if (r = ((M = T(2).concat(Z(507, this)), M)[1] = M[0] ^ 6, M[3] = M[1] ^ G[0], M[4] = M[1] ^ G[1], this).sj(M)) r = "!" + r;
                                else
                                    for (q = 0, r = ""; q < M.length; q++) m = M[q][this.T](16), 1 == m.length && (m = "0" + m), r += m;
                                return Z(507, (Z(((k(97, (R = r, this), H.shift()), Z)(162, this).length = H.shift(), 17), this).length = H.shift(), this)).length = H.shift(), R
                            }
                            if (y == zJ) yj(this, K[2], K[1]);
                            else if (y == F) return yj(this, 8001, K[1])
                        }
                    } finally {
                        I = u
                    }
                }
        }(), U.prototype).V2 = 0, U.prototype).sj = function(b, I, K, O) {
            if (I = window.btoa) {
                for (O = (K = 0, ""); K < b.length; K += 8192) O += String.fromCharCode.apply(null, b.slice(K, K + 8192));
                b = I(O).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
            } else b = void 0;
            return b
        }, U.prototype.XY = 0, /./),
        o8, BW = S.pop.bind((U.prototype[f2] = [0, 0, 1, 1, 0, 1, 1], U.prototype[W])),
        xP = (o8 = MO(U.prototype.h, (PW[U.prototype.T] = BW, {get: BW
        })), U.prototype.gt = void 0, function(b, I) {
            return (I = TJ()) && 1 === b.eval(I.createScript("1")) ? function(K) {
                return I.createScript(K)
            } : function(K) {
                return "" + K
            }
        }(z));
    (40 < (d = z.botguard || (z.botguard = {}), d.m) || (d.m = 41, d.bg = O1, d.a = K2), d).LDL_ = function(b, I, K) {
        return [(K = new U(b, I), function(O) {
            return cW(O, K)
        })]
    };
}).call(this);
#3 JavaScript::Eval (size: 22) - SHA256: d8fc182869d21957579c2a09eae263e41ab53e4c30c4ffa96d93584a64eb6f77
0,
function(R) {
    HW(R, 2)
}
#4 JavaScript::Eval (size: 22) - SHA256: c4e7ca158015332be1df536c970a209b44cb4744fae720ed1caaefdc87f37f93
0,
function(R) {
    HW(R, 1)
}
#5 JavaScript::Eval (size: 64) - SHA256: 14ed98b8b82987bce49c9e6a0f9b620434ec92ad83e9815037257823fe34071e
0,
function(R, w, q) {
    k((q = (w = (q = P(R), P(R)), R).K[q] && Z(q, R), w), R, q)
}

Executed Writes (2)
#1 JavaScript::Write (size: 152) - SHA256: 6887ab5beb82890d571c8f7c9d474bde94d3912e2b59247bab0fe77d408a026a
< div id = "mainadsdv"
style = "width: 0;height: 0;position: fixed;right: 0px;top: 0px;z-index: 2147483647;margin: 0px;padding: 0px;background: none;" > < /div>
#2 JavaScript::Write (size: 53) - SHA256: a24de8443787f9498ef4bf21a1f249a2dd7a888050f0491997f968a4a21bc5d7
< input type = "hidden"
name = "sos"
value = "3113879047" / >

HTTP Transactions (135)


Request Response
 
                                        
                                            GET /load/12-1-0-38 HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 301 Moved Permanently 

                                            
                                                
Content-Type: text/html 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:37 GMT 

                                            
                                                
Content-Length: 178 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
Location: https://alexey.at.ua/load/12-1-0-38 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators

                                                Size:   178

                                                Md5:    cd2e0e43980a00fb6a2742d3afd803b8

                                                Sha1:   81ffbd1712afe8cdf138b570c0fc9934742c33c1

                                                Sha256: bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

                                        

                                        
                                            

                                            

                                            
                                                Blocklists:

                                                
                                                      - fortinet: Phishing

                                                
                                            
                                            
                                            

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32" 

                                            
                                                
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=7640 

                                            
                                                
Expires: Wed, 30 Nov 2022 00:16:46 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:26 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             93.184.220.29

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/html 

                                            
                                            
                                            

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Age: 4090 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:26 GMT 

                                            
                                                
Etag: "638650c5-37" 

                                            
                                                
Last-Modified: Tue, 29 Nov 2022 18:34:45 GMT 

                                            
                                                
Server: ECS (ska/F70D) 

                                            
                                                
X-Cache: HIT 

                                            
                                                
Content-Length: 55 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  HTML document, ASCII text

                                                Size:   55

                                                Md5:    9f073354411bbaf7a319b1519f10b4b7

                                                Sha1:   571498f38548829bf186f49f5be9d5fa6e689a68

                                                Sha256: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a

                                        

                                        
                                        


                                
                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.102.187.140

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json 

                                            
                                            
                                            

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type 

                                            
                                                
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
content-length: 939 

                                            
                                                
via: 1.1 google 

                                            
                                                
date: Tue, 29 Nov 2022 21:17:55 GMT 

                                            
                                                
cache-control: public,max-age=3600 

                                            
                                                
age: 3091 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    14cd9a0afb6ba9a763651d5112760d1e

                                                Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa

                                                Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C" 

                                            
                                                
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=9821 

                                            
                                                
Expires: Wed, 30 Nov 2022 00:53:07 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:26 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 

                                        
                                            
Host: content-signature-2.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.160.144.191

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: binary/octet-stream 

                                            
                                            
                                            

                                            
                                                
x-amz-id-2: LnUtbEOt9k5MOIY1NKziUqLYHDOYDW8SfoM1AVfpodbGJvWIT5C3LIb6FKzcydCK8E2z7d9glyw= 

                                            
                                                
x-amz-request-id: KWPAJHVTK73QRD4T 

                                            
                                                
content-disposition: attachment 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
server: AmazonS3 

                                            
                                                
content-length: 5348 

                                            
                                                
via: 1.1 google 

                                            
                                                
date: Tue, 29 Nov 2022 21:45:37 GMT 

                                            
                                                
age: 1429 

                                            
                                                
last-modified: Thu, 10 Nov 2022 09:21:27 GMT 

                                            
                                                
etag: "9ebddc2b260d081ebbefee47c037cb28" 

                                            
                                                
cache-control: public,max-age=3600 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PEM certificate\012- , ASCII text

                                                Size:   5348

                                                Md5:    9ebddc2b260d081ebbefee47c037cb28

                                                Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39

                                                Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

                                        

                                        
                                        


                                
                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.117.237.239

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:26 GMT 

                                            
                                                
content-length: 12 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
via: 1.1 google 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        

                                        
                                        


                                
                                        
                                            GET /load/12-1-0-38 HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/html; charset=UTF-8 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:37 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
Set-Cookie: 2alexeyuCoz=; path=/; expires=Sun, 29-Nov-2020 22:09:38 GMT; Secure; HttpOnly; domain=.alexey.at.ua
2alexeyld=JgAig4Zj; path=/; expires=Wed, 29-Nov-2023 22:09:38 GMT; Secure; domain=.alexey.at.ua
2alexeyuzll=1669759778; path=/; expires=Wed, 29-Nov-2023 22:09:38 GMT; Secure; domain=.alexey.at.ua
2alexeypushi=1; path=/; expires=Wed, 30-Nov-2022 21:09:38 GMT; Secure 

                                            
                                                
Pragma: no-cache 

                                            
                                                
Vary: host 

                                            
                                                
Last-Modified: Mon, 31 Dec 2007 11:17:41 GMT 

                                            
                                                
Cache-Control: no-cache,no-store, private 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1468), with CRLF, LF line terminators

                                                Size:   9121

                                                Md5:    d2e5e9a47d0a15d445e74c89f71bd3f5

                                                Sha1:   ffd1e6cebdfddeaac6f3e6fb983a5e40346d0fea

                                                Sha256: fa8d549eb9bd406afa49bc4a4b11599197e777ffadaf24315dd966acf8a85f3b

                                        

                                        
                                            

                                            

                                            
                                                Blocklists:

                                                
                                                      - fortinet: Phishing

                                                
                                            
                                            
                                            

                                        
                                        


                                
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.102.187.140

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json 

                                            
                                            
                                            

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type 

                                            
                                                
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
content-length: 329 

                                            
                                                
via: 1.1 google 

                                            
                                                
date: Tue, 29 Nov 2022 22:08:56 GMT 

                                            
                                                
cache-control: public,max-age=3600 

                                            
                                                
age: 31 

                                            
                                                
last-modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                            
                                                
etag: "1648230346554" 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                        

                                        
                                        


                                
                                        
                                            GET /?ATRnb2%3BtpG%5ESfErYkVHiQwXBLXeXH%3BnFHWvDkGpSmpg2IGqhhf35I33R%5EplF3Tvb3MdNbEbBRFGKhnS6IXQLgdS4Ggm%5EXQMikY2w2A86Gm4wqRe22Wmjp9lPhlHv0dKDs9%5ElPK1Anz2NzCYrexg7bO6L5bhNCmW7eczvG88%21EkP1zA2Twly%217%21CQn4RYFU1ll0py0048C0%3BItWwSUUoo HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/load/12-1-0-38 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/javascript; charset=UTF-8 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:37 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
Cache-Control: no-cache, no-store, private 

                                            
                                                
Pragma: no-cache 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text

                                                Size:   1154

                                                Md5:    c4d00801d7fee999c5e31dd9a2449b75

                                                Sha1:   11c79e3e709e534f9d9d679e2b546ebadd29c31e

                                                Sha256: 5770feb66473b454ae9fdec8e4a543650f6f154d54f2c74100cce743f602e24c

                                        

                                        
                                        


                                
                                        
                                            GET /.s/src/ulightbox/ulightbox.min.css HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/load/12-1-0-38 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/css 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:37 GMT 

                                            
                                                
Last-Modified: Tue, 24 May 2022 12:36:45 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: W/"628cd15d-11c8" 

                                            
                                                
Expires: Mon, 19 Dec 2022 22:09:37 GMT 

                                            
                                                
Cache-Control: max-age=1728000 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (4552), with no line terminators

                                                Size:   1359

                                                Md5:    9c03edbcbefe3eea8902981444de96f7

                                                Sha1:   ca39997a1765ab084fb7e6740858176b9385c4ca

                                                Sha256: 8487aa6ee4bd261bdf1f5b681cf96d347cd980ed45183c5a2a9571db6c891a08

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             93.184.220.29

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Age: 5316 

                                            
                                                
Cache-Control: max-age=131157 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:27 GMT 

                                            
                                                
Etag: "6385cba8-1d7" 

                                            
                                                
Expires: Thu, 01 Dec 2022 10:35:24 GMT 

                                            
                                                
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT 

                                            
                                                
Server: ECS (ska/F70D) 

                                            
                                                
X-Cache: HIT 

                                            
                                                
Content-Length: 471 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.131

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:27 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /.s/src/base.min.css HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/load/12-1-0-38 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/css 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:37 GMT 

                                            
                                                
Last-Modified: Tue, 11 Oct 2022 13:44:47 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: W/"6345734f-5f7b" 

                                            
                                                
Expires: Mon, 19 Dec 2022 22:09:37 GMT 

                                            
                                                
Cache-Control: max-age=1728000 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (24443), with no line terminators

                                                Size:   6143

                                                Md5:    629527310ba26cfc236c016e14662321

                                                Sha1:   7a87daed5934db9729f12653e67c8de9d4365d58

                                                Sha256: 134e836199a74c0b501c4e1a46dd3625f4696dc608d1052136ee455c2c2d2509

                                        

                                        
                                        


                                
                                        
                                            GET /.s/src/layer1.min.css HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/load/12-1-0-38 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/css 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:37 GMT 

                                            
                                                
Last-Modified: Tue, 11 Oct 2022 12:50:21 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: W/"6345668d-552f" 

                                            
                                                
Expires: Mon, 19 Dec 2022 22:09:37 GMT 

                                            
                                                
Cache-Control: max-age=1728000 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (21807), with no line terminators

                                                Size:   5232

                                                Md5:    aa017676ddebc3b0781dcce2765bc76f

                                                Sha1:   84db82417e830add59665c1db082e42036f836ae

                                                Sha256: 78909e6f81a534662da6fc6555fda7bef97bc2da03b8a23bb4b1aadfcc818a87

                                        

                                        
                                        


                                
                                        
                                            GET /.s/src/social.css HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/load/12-1-0-38 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/css 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:37 GMT 

                                            
                                                
Last-Modified: Wed, 01 Dec 2021 11:13:55 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: W/"61a758f3-9b8" 

                                            
                                                
Expires: Mon, 19 Dec 2022 22:09:37 GMT 

                                            
                                                
Cache-Control: max-age=1728000 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (442)

                                                Size:   610

                                                Md5:    af855dcd18719bcf0da15a9029755af1

                                                Sha1:   d74d0ed8d96f2ebe46a7671564bf80eea6865103

                                                Sha256: 9add1a323772a7c09260b63a21732472cb0204105c1d2bee763ea1429f0e26e9

                                        

                                        
                                        


                                
                                        
                                            GET /?F97ZyyKe1I5fKCm%5E8UPcCEiZLS2v2DCCVsSCbgKiuLsvLQmq5vX%3BLIbsYA3pSHK7rAm3YPndl6M8eSRaEKbMIGJJ69uiwKRPFLcYJJUIeKP9g%21sWUScOUxX%5EjCQIOvufJiFpzRZOj%5El2dnqkOtrbbIPlGKfQOTaxy7UIqL3B%5EdJMeQ3Kx%3BuTqz7SyhFxDNXBJBsq%3BRUdkiusQ579Oqso HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/load/12-1-0-38 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/javascript; charset=UTF-8 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:37 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
Cache-Control: no-cache, no-store, private 

                                            
                                                
Pragma: no-cache 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text

                                                Size:   811

                                                Md5:    4a33e7cd7558f3f5a86d0fc27aee8c90

                                                Sha1:   50fc0ad44d3917690997ca278091e53d0d575362

                                                Sha256: d6304d22c2821d367e3697cb9fa4e6dbeb093b8634fccd35312664d30d72b330

                                        

                                        
                                        


                                
                                        
                                            GET /recaptcha/api.js?onload=reCallback&render=explicit&hl=ru HTTP/1.1 

                                        
                                            
Host: www.google.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.132

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: text/javascript; charset=UTF-8 

                                            
                                            
                                            

                                            
                                                
expires: Tue, 29 Nov 2022 22:09:27 GMT 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:27 GMT 

                                            
                                                
cache-control: private, max-age=300 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
content-encoding: gzip 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-frame-options: SAMEORIGIN 

                                            
                                                
content-security-policy: frame-ancestors 'self' 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
content-length: 579 

                                            
                                                
server: GSE 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (905), with no line terminators

                                                Size:   579

                                                Md5:    fe0e23ea2d335147e24f50690aa39c7c

                                                Sha1:   ef74d6655ba8efb294f7ed55e6be16d315381edd

                                                Sha256: fcccb37edb611bf2580bf74646d25e4fb3660d305c66de3c8571bedfc2dac228

                                        

                                        
                                        


                                
                                        
                                            GET /.s/src/ulightbox/ulightbox.min.js HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/load/12-1-0-38 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/javascript 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:37 GMT 

                                            
                                                
Last-Modified: Tue, 24 May 2022 12:36:45 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: W/"628cd15d-5713" 

                                            
                                                
Expires: Mon, 19 Dec 2022 22:09:37 GMT 

                                            
                                                
Cache-Control: max-age=1728000 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (22291), with no line terminators

                                                Size:   7632

                                                Md5:    3bb3aaa5262067cec461b32298975b05

                                                Sha1:   4e11bfe49cd05fcdbd1e692fc87788da07e62161

                                                Sha256: 61fa91bb508bfda7ee487ffaf0e38aa71cfab1ce78bb108d6c6140dc9b35ab22

                                        

                                        
                                        


                                
                                        
                                            GET /.s/src/jquery-1.12.4.min.js HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/load/12-1-0-38 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/javascript 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:37 GMT 

                                            
                                                
Last-Modified: Thu, 01 Sep 2022 17:43:57 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: W/"6310ef5d-17b8b" 

                                            
                                                
Expires: Mon, 19 Dec 2022 22:09:37 GMT 

                                            
                                                
Cache-Control: max-age=1728000 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (32077)

                                                Size:   33793

                                                Md5:    eed194bd33958fd0768352b877915a40

                                                Sha1:   db7a4073a53efb53155652219d948940efe6baa7

                                                Sha256: 9eaac8a63f3851efef83bd151a558f6c8d8e6bb75c7725625cf8892b6312aa06

                                        

                                        
                                        


                                
                                        
                                            GET /loader.js HTTP/1.1 

                                        
                                            
Host: news.2xclick.ru 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             93.95.100.117

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/javascript 

                                            
                                            
                                            

                                            
                                                
Server: nginx/1.10.3 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:27 GMT 

                                            
                                                
Content-Length: 29044 

                                            
                                                
Last-Modified: Tue, 29 Nov 2022 06:43:04 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
ETag: "6385a9f8-7174" 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
Expires: Wed, 30 Nov 2022 22:09:27 GMT 

                                            
                                                
Cache-Control: max-age=86400 

                                            
                                                
Access-Control-Allow-Origin: * 

                                            
                                                
Set-Cookie: uid=XV9kdWOGgxd3OQaHqQ0ZAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; secure; SameSite=none 

                                            
                                                
P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  Unicode text, UTF-8 text, with very long lines (649)

                                                Size:   29044

                                                Md5:    127a0a50fc95b4364a75e889c6ec4e2b

                                                Sha1:   861e4bbb26788dace734880efe6bc8bf97c78cd4

                                                Sha256: c366cd31521a348b9e5eb1a29126086a7894de17df5bfc8c6273a0dc32d395a4

                                        

                                        
                                        


                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.131

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:27 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /.s/src/uwnd.min.js HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/load/12-1-0-38 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/javascript 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:37 GMT 

                                            
                                                
Last-Modified: Mon, 25 Apr 2022 10:32:26 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: W/"626678ba-3334b" 

                                            
                                                
Expires: Mon, 19 Dec 2022 22:09:37 GMT 

                                            
                                                
Cache-Control: max-age=1728000 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (65536), with no line terminators

                                                Size:   56796

                                                Md5:    20adfead3a54ad11599adb1bab3d6fc6

                                                Sha1:   23bb516448d5c643cb186ad9aec426388aa79dfd

                                                Sha256: b49b11429b509cf608a66bbcebc13cf63fa444b998c1a678d1bebfe33f7c2ff4

                                        

                                        
                                        


                                
                                        
                                            GET /src/css/927.css HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/css 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Last-Modified: Wed, 26 May 2021 12:20:25 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: W/"60ae3d09-4364" 

                                            
                                                
Expires: Fri, 09 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=864000 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text

                                                Size:   3725

                                                Md5:    9807a7632f255ac8a6cd5c8e0960a1c0

                                                Sha1:   c42eb29d0ecd483bf82d88944da899f0a3cf2095

                                                Sha256: a71b0e6d10aa49a19d419a28a55230024cae45c7db239075b1e176cbc6dae506

                                        

                                        
                                        


                                
                                        
                                            GET /cgi/uutils.fcg?a=uSD&ca=2&ug=999&isp=0&r=0.187806504986078 HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/javascript; charset=UTF-8 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /t/947/h.gif HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 75 

                                            
                                                
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "56cc5c4f-4b" 

                                            
                                                
Expires: Thu, 29 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=2592000 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 11 x 10\012- data

                                                Size:   75

                                                Md5:    c7dce6296f3837652225ac42b5c5fb20

                                                Sha1:   b98d6f84bc0f525263222ac23cbd9fa588ffbca0

                                                Sha256: f5530fbafda6f77d17ab8116297aa01bae025c64a637b153f91e0ab50bce2b50

                                        

                                        
                                        


                                
                                        
                                            GET /t/947/e.gif HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 68 

                                            
                                                
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "56cc5c4f-44" 

                                            
                                                
Expires: Thu, 29 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=2592000 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 14 x 10\012- data

                                                Size:   68

                                                Md5:    e56454358172a8b40a15be7a199ac221

                                                Sha1:   61d409120c1bb4f11b108213b7f8a34c4b1b6823

                                                Sha256: ff2658c62cd48883add06f3432b9fb7f0c5072b3769a73e60baefb378052f41d

                                        

                                        
                                        


                                
                                        
                                            GET /stat/1669759766659?01 HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/load/12-1-0-38 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 302 Found 

                                            
                                                
Content-Type: text/html; charset=iso-8859-1 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
Set-Cookie: 2alexeyucnid=1iGjA4D23N; domain=alexey.at.ua; path=/stat/479976801; expires=Tue, 29-Nov-2022 22:09:48 GMT 

                                            
                                                
Cache-Control: no-cache, no-store, private 

                                            
                                                
Pragma: no-cache 

                                            
                                                
Expires: Thu, 01 Dec 1994 16:00:00 GMT 

                                            
                                                
Location: https://alexey.at.ua/stat/479976801?11 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text

                                                Size:   218

                                                Md5:    d30982e1fe67edd0158c3b85300eb980

                                                Sha1:   fddc722317b8a41d6fa085cdd156c710d05e683c

                                                Sha256: 4a7c7285b14d1c55daa58dfeb0ddfcb5033fc9ebc17c121a064819ecb964f67a

                                        

                                        
                                        


                                
                                        
                                            GET /.s/img/sh/wait.gif HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/.s/src/base.min.css 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 265 

                                            
                                                
Last-Modified: Mon, 21 Nov 2022 12:37:43 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "637b7117-109" 

                                            
                                                
Expires: Mon, 19 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=1728000 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 32 x 8\012- data

                                                Size:   265

                                                Md5:    c44da6bb38458d2c57e23104c53d8e05

                                                Sha1:   5e9352aa3d0b522fff659c48299d1b3006c78f47

                                                Sha256: 163da6b91f78ccad8c824ef31e5dbd2a89fb8d93f2381d43faa96acf502ca3e8

                                        

                                        
                                        


                                
                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: push.services.mozilla.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Sec-WebSocket-Version: 13 

                                        
                                            
Origin: wss://push.services.mozilla.com/ 

                                        
                                            
Sec-WebSocket-Protocol: push-notification 

                                        
                                            
Sec-WebSocket-Extensions: permessage-deflate 

                                        
                                            
Sec-WebSocket-Key: lKfxaOf77vWtagOte066Ww== 

                                        
                                            
Connection: keep-alive, Upgrade 

                                        
                                            
Sec-Fetch-Dest: websocket 

                                        
                                            
Sec-Fetch-Mode: websocket 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
Upgrade: websocket 

                                        
                                            
 

                                        
                                    
                                        
                                             52.88.220.109

                                            
                                                HTTP/1.1 101 Switching Protocols 

                                            
                                            
                                            

                                            
                                                
Connection: Upgrade 

                                            
                                                
Upgrade: websocket 

                                            
                                                
Sec-WebSocket-Accept: +c93+fc5K4LRTG+iFMp1EnaBxC8= 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /.s/t/927/1.gif HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://s4.ucoz.net/src/css/927.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 9410 

                                            
                                                
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "56cc5c4f-24c2" 

                                            
                                                
Expires: Fri, 09 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=864000 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 2000 x 87\012- data

                                                Size:   9410

                                                Md5:    12fb18248c3ccdd51f5a00dbc5a21b71

                                                Sha1:   39fed33515612ff6dbf196daf7ef449910ea0521

                                                Sha256: 6e9872edf31bb937bb6f2ed11f792c468b397a813d1917fa658e3d477e52a25b

                                        

                                        
                                        


                                
                                        
                                            GET /.s/t/927/3.gif HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://s4.ucoz.net/src/css/927.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 5312 

                                            
                                                
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "56cc5c4f-14c0" 

                                            
                                                
Expires: Fri, 09 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=864000 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 2000 x 77\012- data

                                                Size:   5312

                                                Md5:    3eb07c5a9d438a5822d41f5b1ed1720f

                                                Sha1:   3d2ae01da2a100a5278e439a46fc6eec72c3648b

                                                Sha256: 516f14aafa59607e0881d0ed7b997184e6ef267509e3194370e62f36f3f354b1

                                        

                                        
                                        


                                
                                        
                                            GET /.s/img/icon/social/u.svg HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/.s/src/social.css 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/svg+xml 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 612 

                                            
                                                
Last-Modified: Mon, 26 Jun 2017 11:42:16 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "5950f318-264" 

                                            
                                                
Expires: Mon, 19 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=1728000 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text

                                                Size:   612

                                                Md5:    1e726893f02be39b70d24d502a3a9998

                                                Sha1:   98c6fcf43a67426ed7e9c7a839e8115494ca8072

                                                Sha256: d0608cf0c4aff79f20a198427f7df73300d643face9bea72b8d406b432b84df9

                                        

                                        
                                        


                                
                                        
                                            GET /.s/t/927/2.gif HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://s4.ucoz.net/src/css/927.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 14013 

                                            
                                                
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "56cc5c4f-36bd" 

                                            
                                                
Expires: Fri, 09 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=864000 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 300 x 87\012- data

                                                Size:   14013

                                                Md5:    716e989368745949ae2a6940467c5cc4

                                                Sha1:   97835ad5b7d9c73c1c5846ce518d8e75791e97b8

                                                Sha256: 8b94c4f858fb4ecd3ef4d1aa441ed7bc7c124acc303b3fd4c5d2a19322090b33

                                        

                                        
                                        


                                
                                        
                                            GET /.s/img/icon/social/vk.svg HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/.s/src/social.css 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/svg+xml 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 772 

                                            
                                                
Last-Modified: Mon, 26 Jun 2017 11:42:16 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "5950f318-304" 

                                            
                                                
Expires: Mon, 19 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=1728000 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text

                                                Size:   772

                                                Md5:    7c4eb8cae0b565c023c4406add5f8041

                                                Sha1:   079ce5d3277df672b57a73476a28d0bf0b1c1fe2

                                                Sha256: 05a3f8587400860aa87bb18c9a9cd5b22a45ca4fc4a37a7922d29e48549b2fc9

                                        

                                        
                                        


                                
                                        
                                            GET /.s/img/icon/social/fb.svg HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/.s/src/social.css 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/svg+xml 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 611 

                                            
                                                
Last-Modified: Mon, 26 Jun 2017 11:42:16 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "5950f318-263" 

                                            
                                                
Expires: Mon, 19 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=1728000 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text

                                                Size:   611

                                                Md5:    d178cc46dcbcf2b6f19445674fe3fe58

                                                Sha1:   26f9747489d9e796926f7bbe11817c420afda3af

                                                Sha256: a9265d79c9ff74d4deeab5dce9643ed838018a6b4346605e002867858534f4bf

                                        

                                        
                                        


                                
                                        
                                            GET /.s/img/icon/social/ya.svg HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/.s/src/social.css 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/svg+xml 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 660 

                                            
                                                
Last-Modified: Mon, 26 Jun 2017 11:42:16 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "5950f318-294" 

                                            
                                                
Expires: Mon, 19 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=1728000 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text

                                                Size:   660

                                                Md5:    7676c3eee5bd955efe08fd05367a443b

                                                Sha1:   595e4e8dbf5ff472606434d0f45806d088de4c0c

                                                Sha256: b72d3f61ac56b4aa27bad5769589705004aff1f0ad341785ca72dc46ba16de5b

                                        

                                        
                                        


                                
                                        
                                            GET /.s/img/icon/social/gp.svg HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/.s/src/social.css 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/svg+xml 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 550 

                                            
                                                
Last-Modified: Fri, 01 Feb 2019 12:57:26 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "5c544236-226" 

                                            
                                                
Expires: Mon, 19 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=1728000 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (534), with no line terminators

                                                Size:   550

                                                Md5:    10d296226de121de55180e5b1b7d9d49

                                                Sha1:   5980293f4f290734d09459d068a8c3996e43fe40

                                                Sha256: a657a4d5d05c6cd9b9f881ab6941e71f725c7eb451c9f37ceb514e45fdfd441d

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "2EBA7F404FB71C56200BF054A23C9764DCCE82A97037F45856B5ABB9C3FEBE17" 

                                            
                                                
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=7755 

                                            
                                                
Expires: Wed, 30 Nov 2022 00:18:42 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:27 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /.s/img/icon/social/ok.svg HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/.s/src/social.css 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/svg+xml 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 1858 

                                            
                                                
Last-Modified: Mon, 26 Jun 2017 11:42:16 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "5950f318-742" 

                                            
                                                
Expires: Mon, 19 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=1728000 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text

                                                Size:   1858

                                                Md5:    08bbc2fa9b08463b0d061041d62b408e

                                                Sha1:   370c53ccc3edd296cd35fb9e3de20dabfdae78d9

                                                Sha256: e1369586f1d82834ecc0ccab2f5f1a6f7565f2c715243d956bd7eb1404c8fba9

                                        

                                        
                                        


                                
                                        
                                            GET /.s/t/927/13.gif HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://s4.ucoz.net/src/css/927.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 352 

                                            
                                                
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "56cc5c4f-160" 

                                            
                                                
Expires: Fri, 09 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=864000 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 15 x 15\012- data

                                                Size:   352

                                                Md5:    1594763abaf2f920618e909a038eb636

                                                Sha1:   79b6e6983e89aa2e9fd23e631783adfdc1011aba

                                                Sha256: 94aa2e5f8f5ea0dca299e4af80583d3ebd8355272b88cf1da3c387955db5c534

                                        

                                        
                                        


                                
                                        
                                            GET /.s/t/927/7.gif HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://s4.ucoz.net/src/css/927.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 931 

                                            
                                                
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "56cc5c4f-3a3" 

                                            
                                                
Expires: Fri, 09 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=864000 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 200 x 17\012- data

                                                Size:   931

                                                Md5:    dc01f6782a44310a52d1eef656be2bca

                                                Sha1:   1a17ad0631518c1367813aaa64c844ae3bbec2df

                                                Sha256: 482b141f815ca3f0b0b555c05f65080f59b3d147662a53e04bf778581f4b554f

                                        

                                        
                                        


                                
                                        
                                            GET /.s/t/927/5.gif HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://s4.ucoz.net/src/css/927.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 8358 

                                            
                                                
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "56cc5c4f-20a6" 

                                            
                                                
Expires: Fri, 09 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=864000 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 2000 x 40\012- data

                                                Size:   8358

                                                Md5:    5985b2f6b457cc774e3c4969906eaee5

                                                Sha1:   6b03c4cfc36b76fc2bbac4d3ed3379aaac9dc473

                                                Sha256: eec43dea1bd005f3b50976f253d8729ca3e16bd4c2450c0e0f88468d94c67a56

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "2EBA7F404FB71C56200BF054A23C9764DCCE82A97037F45856B5ABB9C3FEBE17" 

                                            
                                                
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=7755 

                                            
                                                
Expires: Wed, 30 Nov 2022 00:18:42 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:27 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /.s/t/927/8.gif HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://s4.ucoz.net/src/css/927.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 464 

                                            
                                                
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "56cc5c4f-1d0" 

                                            
                                                
Expires: Fri, 09 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=864000 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 200 x 40\012- data

                                                Size:   464

                                                Md5:    f21da03dc1b019bc2536401538fc4e2a

                                                Sha1:   9a2512889f99358c5d3f1508ec4ce1bf202c921c

                                                Sha256: 0fd88eec6dcce8912398740420647a101181b5a2af415a3a886ac279cd360613

                                        

                                        
                                        


                                
                                        
                                            GET /.s/t/927/6.gif HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://s4.ucoz.net/src/css/927.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 2749 

                                            
                                                
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "56cc5c4f-abd" 

                                            
                                                
Expires: Fri, 09 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=864000 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 300 x 40\012- data

                                                Size:   2749

                                                Md5:    0e8528fbaa2b6bb48a162aa4b5f0cbcd

                                                Sha1:   16dd2e597c362730f994321f515bbf4d976a89e3

                                                Sha256: f142d93a55de85a94afe13efbf8b6b7289e4f18d7d618f957e1b48a6fffa217e

                                        

                                        
                                        


                                
                                        
                                            GET /?nyzY%21UabalLZH4pFFrYI%21qaIinSEEWL2D6u1ICyLxGJbThkE%21RCPMqhb6f%5ExMxTG81%3BRb1Md44DF0S%21rSywo HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/load/12-1-0-38 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: iframe 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/html; charset=UTF-8 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
Cache-Control: no-cache, no-store, private 

                                            
                                                
Pragma: no-cache 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text

                                                Size:   799

                                                Md5:    89c524c20fd89dd9c0553cd7ad4acc85

                                                Sha1:   33ecc705d6911929192a8b50da732f1f9e62ad95

                                                Sha256: 906fe67ba68cb734c27d7a9034431874ae15357fc96d1ef5e50a492561d0dcd6

                                        

                                        
                                        


                                
                                        
                                            GET /.s/t/927/4.gif HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://s4.ucoz.net/src/css/927.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 17013 

                                            
                                                
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "56cc5c4f-4275" 

                                            
                                                
Expires: Fri, 09 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=864000 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 300 x 77\012- data

                                                Size:   17013

                                                Md5:    5c281d2407d216aeb8e8d1a904d5527b

                                                Sha1:   5de65fba93a3299104b9ed01699719725a2b46d4

                                                Sha256: 334a00b59c4f4657252cba5a68bd773ce84e7a808050f008b9a00e5be1404b97

                                        

                                        
                                        


                                
                                        
                                            GET /.s/t/927/9.gif HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://s4.ucoz.net/src/css/927.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 999 

                                            
                                                
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "56cc5c4f-3e7" 

                                            
                                                
Expires: Fri, 09 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=864000 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 200 x 12\012- data

                                                Size:   999

                                                Md5:    e9b94a5226540465c1be6c7d009c94ce

                                                Sha1:   ede6e231f4ff237c4e86691da13816162eb71467

                                                Sha256: 0919575275d1f6f9f41eea21ca1950fe30a1212cd691aaa303fba8eac8a028d1

                                        

                                        
                                        


                                
                                        
                                            GET /.s/t/927/11.gif HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://s4.ucoz.net/src/css/927.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 56 

                                            
                                                
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "56cc5c4f-38" 

                                            
                                                
Expires: Fri, 09 Dec 2022 22:09:38 GMT 

                                            
                                                
Cache-Control: max-age=864000 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 10 x 10\012- data

                                                Size:   56

                                                Md5:    67e5756051420ec56fd3486d9d13eef5

                                                Sha1:   6737e8261f2fcf5c2ba44d7303b5520b0705c365

                                                Sha256: 5bd62e71837f0ffe6f8ea8d255146029b211a1959b2996397d0b66c4d5743c73

                                        

                                        
                                        


                                
                                        
                                            GET /stat/479976801?11 HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://alexey.at.ua/load/12-1-0-38 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: 2alexeyucnid=1iGjA4D23N; 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
Cache-Control: no-cache, no-store, private 

                                            
                                                
Pragma: no-cache 

                                            
                                                
Expires: Thu, 01 Dec 1994 16:00:00 GMT 

                                            
                                                
Set-Cookie: ucvid=SuHPR1RNOo; path=/; expires=Wed, 29-Nov-2023 22:09:38 GMT 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 87a, 88 x 31\012- data

                                                Size:   389

                                                Md5:    d91aa417695036c7fbf382a57dc7d486

                                                Sha1:   b25b42c90db66be7e3484680ec1bf2cfcb91201d

                                                Sha256: 0c15009d2cc2dffaf12834dc4314c56df4c809a0e97f12322814439a96373de9

                                        

                                        
                                        


                                
                                        
                                            GET /adv/dummy/000/css/style.css HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/css 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Last-Modified: Tue, 26 Mar 2019 14:28:17 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: W/"5c9a3701-19eb" 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text

                                                Size:   1564

                                                Md5:    50406c447ccad47ca9e5d53eff612ffb

                                                Sha1:   16e3921585135a87a1066689c9c67a312d96c92d

                                                Sha256: 01a0732bba96fb38be885a1d233fecf52e32c7e07e48cd05f6f07a3690ea304c

                                        

                                        
                                        


                                
                                        
                                            GET /adv/dummy/000/img/ucoz-logo.png HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/png 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 4585 

                                            
                                                
Last-Modified: Tue, 26 Mar 2019 14:28:17 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "5c9a3701-11e9" 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 136 x 136, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   4585

                                                Md5:    14d37a3409afc2c450c62b97bc8019da

                                                Sha1:   43fc12bf16a292d6d10b17ab7d1e37785288858c

                                                Sha256: fc4f998c5fcacc6cf161f1bedf46ec55e56273670ecce8b59e947b68d3c5bdb2

                                        

                                        
                                        


                                
                                        
                                            POST /gsalphasha2g2 HTTP/1.1 

                                        
                                            
Host: ocsp2.globalsign.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 79 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             104.18.21.226

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Content-Length: 1423 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Expires: Sat, 03 Dec 2022 17:48:50 GMT 

                                            
                                                
ETag: "984702bf12474a29e6313cac2fb9c29eb735f4eb" 

                                            
                                                
Last-Modified: Tue, 29 Nov 2022 17:48:51 GMT 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 

                                            
                                                
CF-Cache-Status: HIT 

                                            
                                                
Age: 3251 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Vary: Accept-Encoding 

                                            
                                                
Server: cloudflare 

                                            
                                                
CF-RAY: 771eaaf60807b509-OSL 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   1423

                                                Md5:    e3dd454ccb82fdcebfc23856163e9cb1

                                                Sha1:   984702bf12474a29e6313cac2fb9c29eb735f4eb

                                                Sha256: 2d36fc5e41e4a39e8add8de10284613400d2a1e1428bdc43a939b0663a14f93d

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "4D461B9AB4A10A5A1EE6E25DDC519C74F069503F37D9ADEC105FE9FC19E3390D" 

                                            
                                                
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=5260 

                                            
                                                
Expires: Tue, 29 Nov 2022 23:37:08 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.131

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /favicon.ico HTTP/1.1 

                                        
                                            
Host: alexey.at.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/load/12-1-0-38 

                                        
                                            
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1; ucvid=SuHPR1RNOo; kdSspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/x-icon 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 29926 

                                            
                                                
Last-Modified: Sun, 13 Jan 2008 10:18:17 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "4789e569-74e6" 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  MS Windows icon resource - 12 icons, 48x48, 16 colors, 4 bits/pixel, 32x32, 16 colors, 4 bits/pixel\012- data

                                                Size:   29926

                                                Md5:    8202dfb723ba6dfef88d17cdef9ef54e

                                                Sha1:   604b208e25f732158e0b88d113154525ab64f19b

                                                Sha256: c32f4aa121c70cf1ce3c78386f5e696f54dfdb8fecda554b866a6df558ec2a50

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "4D461B9AB4A10A5A1EE6E25DDC519C74F069503F37D9ADEC105FE9FC19E3390D" 

                                            
                                                
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=5260 

                                            
                                                
Expires: Tue, 29 Nov 2022 23:37:08 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /?src=ujs6 HTTP/1.1 

                                        
                                            
Host: rot.spotsniper.ru 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             31.172.81.158

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/javascript 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Content-Length: 1 

                                            
                                                
Connection: keep-alive 

                                            
                                                
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                            
                                                
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  very short file (no magic)

                                                Size:   1

                                                Md5:    7215ee9c7d9dc229d2921a40e899ec5f

                                                Sha1:   b858cb282617fb0956d960215c8e84d1ccf909c6

                                                Sha256: 36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

                                        

                                        
                                        


                                
                                        
                                            GET /hit;ucoznet?r;s1280*1024*24;uhttps%3A//alexey.at.ua/load/12-1-0-38;1669759766525 HTTP/1.1 

                                        
                                            
Host: counter.yadro.ru 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             88.212.201.198

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx/1.17.9 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Content-Length: 43 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Expires: Mon, 29 Nov 2021 21:00:00 GMT 

                                            
                                                
Pragma: no-cache 

                                            
                                                
Cache-control: no-cache 

                                            
                                                
Access-Control-Allow-Origin: * 

                                            
                                                
Strict-Transport-Security: max-age=86400 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    fc94fb0c3ed8a8f909dbc7630a0987ff

                                                Sha1:   56d45f8a17f5078a20af9962c992ca4678450765

                                                Sha256: 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363

                                        

                                        
                                        


                                
                                        
                                            GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__ru.js HTTP/1.1 

                                        
                                            
Host: www.gstatic.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://alexey.at.ua 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.35

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: text/javascript 

                                            
                                            
                                            

                                            
                                                
accept-ranges: bytes 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
content-encoding: gzip 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" 

                                            
                                                
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} 

                                            
                                                
content-length: 167119 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
server: sffe 

                                            
                                                
x-xss-protection: 0 

                                            
                                                
date: Mon, 28 Nov 2022 20:27:34 GMT 

                                            
                                                
expires: Tue, 28 Nov 2023 20:27:34 GMT 

                                            
                                                
cache-control: public, max-age=31536000 

                                            
                                                
age: 92514 

                                            
                                                
last-modified: Mon, 14 Nov 2022 03:01:59 GMT 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (1329)

                                                Size:   167119

                                                Md5:    e269c265007dcb5ecc3f2aa6155bc52a

                                                Sha1:   cb8eed3b2684c2767bf45d652f6d630740051d04

                                                Sha256: 85d7f1b40b063a3a07449151918eb63b85f2c6ff5d54936618a1a737ab5c7dbf

                                        

                                        
                                        


                                
                                        
                                            POST /gsalphasha2g2 HTTP/1.1 

                                        
                                            
Host: ocsp2.globalsign.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 79 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             104.18.21.226

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Content-Length: 1423 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Expires: Sat, 03 Dec 2022 17:48:50 GMT 

                                            
                                                
ETag: "984702bf12474a29e6313cac2fb9c29eb735f4eb" 

                                            
                                                
Last-Modified: Tue, 29 Nov 2022 17:48:51 GMT 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 

                                            
                                                
CF-Cache-Status: HIT 

                                            
                                                
Age: 3251 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
Vary: Accept-Encoding 

                                            
                                                
Server: cloudflare 

                                            
                                                
CF-RAY: 771eaaf63863b509-OSL 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   1423

                                                Md5:    e3dd454ccb82fdcebfc23856163e9cb1

                                                Sha1:   984702bf12474a29e6313cac2fb9c29eb735f4eb

                                                Sha256: 2d36fc5e41e4a39e8add8de10284613400d2a1e1428bdc43a939b0663a14f93d

                                        

                                        
                                        


                                
                                        
                                            GET /?src=ujs6&s_subid=btn HTTP/1.1 

                                        
                                            
Host: rot.spotsniper.ru 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             31.172.81.158

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/javascript 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Content-Length: 1 

                                            
                                                
Connection: keep-alive 

                                            
                                                
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" 

                                            
                                                
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  very short file (no magic)

                                                Size:   1

                                                Md5:    7215ee9c7d9dc229d2921a40e899ec5f

                                                Sha1:   b858cb282617fb0956d960215c8e84d1ccf909c6

                                                Sha256: 36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

                                        

                                        
                                        


                                
                                        
                                            GET /b3aad1kk.js HTTP/1.1 

                                        
                                            
Host: hdbcode.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.135

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/javascript 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:27 GMT 

                                            
                                                
last-modified: Mon, 28 Nov 2022 17:39:16 GMT 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
etag: W/"6384f244-565e" 

                                            
                                                
content-encoding: gzip 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   9104

                                                Md5:    25bf521f273a67f5dea244283cfdfee1

                                                Sha1:   8004918677fc94330c565512aa2e65c68d623574

                                                Sha256: 6ac516727d0d89a7c5dafa3cd63e8f4740d6725a76fc6a7a97d4182e90ad4731

                                        

                                        
                                        


                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.131

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.131

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /hit;clickgate08?r;s1280*1024*24;uhttps%3A//alexey.at.ua/load/12-1-0-38;1669759766728 HTTP/1.1 

                                        
                                            
Host: counter.yadro.ru 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             88.212.201.198

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx/1.17.9 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Content-Length: 43 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Expires: Mon, 29 Nov 2021 21:00:00 GMT 

                                            
                                                
Pragma: no-cache 

                                            
                                                
Cache-control: no-cache 

                                            
                                                
Access-Control-Allow-Origin: * 

                                            
                                                
Strict-Transport-Security: max-age=86400 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    fc94fb0c3ed8a8f909dbc7630a0987ff

                                                Sha1:   56d45f8a17f5078a20af9962c992ca4678450765

                                                Sha256: 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363

                                        

                                        
                                        


                                
                                        
                                            GET /match/1/?cb_url=https%3A%2F%2Fhdbcode.com%2Fsetuid%3F%5BUID%5D&gdpr=0&gdpr_consent= HTTP/1.1 

                                        
                                            
Host: s.uuidksinc.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.134

                                            
                                                HTTP/2 302 Found 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
content-length: 0 

                                            
                                                
location: https://hdbcode.com/setuid?VBDzGSDL9Mm2QcQcL4op 

                                            
                                                
set-cookie: jcsuuid=VBDzGSDL9Mm2QcQcL4op; expires=Wed, 29 Nov 2023 22:09:28 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /static/fonts/ptsans/v5/LKf8nhXsWg5ybwEGXk8UBQ.woff HTTP/1.1 

                                        
                                            
Host: themes.googleusercontent.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://alexey.at.ua 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://s4.ucoz.net/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.97

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: font/woff 

                                            
                                            
                                            

                                            
                                                
accept-ranges: bytes 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" 

                                            
                                                
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
content-length: 60332 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
server: sffe 

                                            
                                                
x-xss-protection: 0 

                                            
                                                
date: Wed, 23 Nov 2022 19:55:59 GMT 

                                            
                                                
expires: Thu, 23 Nov 2023 19:55:59 GMT 

                                            
                                                
cache-control: public, max-age=31536000 

                                            
                                                
age: 526409 

                                            
                                                
last-modified: Tue, 22 Oct 2019 18:15:00 GMT 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  Web Open Font Format, TrueType, length 60332, version 1.1\012- data

                                                Size:   60332

                                                Md5:    0d6d6ae28614efe13ec053eaeef473c1

                                                Sha1:   20cd1c419ba0763bb4bbb1435bc0aed00452af2e

                                                Sha256: 5dfdd878d2d6bdd50f37fde1800a044753dd00bac3c3a30a35f999b422a48ee1

                                        

                                        
                                        


                                
                                        
                                            GET /adv/dummy/000/img/bg.gif HTTP/1.1 

                                        
                                            
Host: s4.ucoz.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://s4.ucoz.net/adv/dummy/000/css/style.css 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
 

                                        
                                    
                                        
                                             193.109.247.239

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:38 GMT 

                                            
                                                
Content-Length: 1268 

                                            
                                                
Last-Modified: Tue, 26 Mar 2019 14:28:17 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Keep-Alive: timeout=15 

                                            
                                                
ETag: "5c9a3701-4f4" 

                                            
                                                
Accept-Ranges: bytes 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 485 x 3\012- data

                                                Size:   1268

                                                Md5:    b19967d808ed7c42b41316d6c8474f55

                                                Sha1:   18d80748bd4041b13a3373a429281ec65347a0e2

                                                Sha256: 16c9962c4ecd52efc16d9d639d52fc60b9e427b6e454190d162f1aa1d220ad50

                                        

                                        
                                        


                                
                                        
                                            GET /setuid?VBDzGSDL9Mm2QcQcL4op HTTP/1.1 

                                        
                                            
Host: hdbcode.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.135

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
content-length: 74 

                                            
                                                
set-cookie: dmpUid=VBDzGSDL9Mm2QcQcL4op; expires=Wed, 29 Nov 2023 22:09:28 GMT; domain=hdbcode.com; path=/; secure; SameSite=None 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   74

                                                Md5:    9e24e19b024c44b778301d880bd8e6f4

                                                Sha1:   d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e

                                                Sha256: 01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb

                                        

                                        
                                        


                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.131

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /hit;ucoz_topline_worldwide?rhttps%3A//alexey.at.ua/load/12-1-0-38;s1280*1024*24;uhttps%3A//alexey.at.ua/%3FnyzY%2521UabalLZH4pFFrYI%2521qaIinSEEWL2D6u1ICyLxGJbThkE%2521RCPMqhb6f%255ExMxTG81%253BRb1Md44DF0S%2521rSywo;1669759767093 HTTP/1.1 

                                        
                                            
Host: counter.yadro.ru 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             88.212.201.198

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx/1.17.9 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Content-Length: 43 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Expires: Mon, 29 Nov 2021 21:00:00 GMT 

                                            
                                                
Pragma: no-cache 

                                            
                                                
Cache-control: no-cache 

                                            
                                                
Access-Control-Allow-Origin: * 

                                            
                                                
Strict-Transport-Security: max-age=86400 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    fc94fb0c3ed8a8f909dbc7630a0987ff

                                                Sha1:   56d45f8a17f5078a20af9962c992ca4678450765

                                                Sha256: 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363

                                        

                                        
                                        


                                
                                        
                                            OPTIONS /get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322502&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b HTTP/1.1 

                                        
                                            
Host: hdbcode.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Access-Control-Request-Method: GET 

                                        
                                            
Access-Control-Request-Headers: content-type 

                                        
                                            
Origin: https://alexey.at.ua 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Cache-Control: max-age=0 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.135

                                            
                                                HTTP/2 200 OK 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
content-length: 0 

                                            
                                                
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type 

                                            
                                                
access-control-allow-methods: GET, POST, OPTIONS 

                                            
                                                
access-control-allow-credentials: true 

                                            
                                                
access-control-allow-origin: https://alexey.at.ua 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            OPTIONS /get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322613&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b HTTP/1.1 

                                        
                                            
Host: hdbcode.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Access-Control-Request-Method: GET 

                                        
                                            
Access-Control-Request-Headers: content-type 

                                        
                                            
Origin: https://alexey.at.ua 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Cache-Control: max-age=0 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.135

                                            
                                                HTTP/2 200 OK 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
content-length: 0 

                                            
                                                
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type 

                                            
                                                
access-control-allow-methods: GET, POST, OPTIONS 

                                            
                                                
access-control-allow-credentials: true 

                                            
                                                
access-control-allow-origin: https://alexey.at.ua 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /matchx?gdpr=0&gdpr_consent= HTTP/1.1 

                                        
                                            
Host: uuidksinc.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Cookie: jcsuuid=VBDzGSDL9Mm2QcQcL4op 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: iframe 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.134

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: text/html 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
content-encoding: gzip 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   2052

                                                Md5:    ac04197c68ceaad5d1901bb4be4399e6

                                                Sha1:   4a53982b1266e6dc196a00f5404a8f3d7e374dfa

                                                Sha256: 325064aea0c0f2b36fec1355f2c34b0cf53f96941a8ea6bfa035df26d44e0847

                                        

                                        
                                        


                                
                                        
                                            GET /metrika/tag.js HTTP/1.1 

                                        
                                            
Host: mc.yandex.ru 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             93.158.134.119

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/javascript 

                                            
                                            
                                            

                                            
                                                
content-length: 73267 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
etag: "6384bff1-11e33" 

                                            
                                                
expires: Tue, 29 Nov 2022 23:09:28 GMT 

                                            
                                                
last-modified: Mon, 28 Nov 2022 17:04:33 GMT 

                                            
                                                
cache-control: max-age=3600 

                                            
                                                
content-encoding: br 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (587)

                                                Size:   73267

                                                Md5:    1d79426653c3b55939eaec59a2ce8ef5

                                                Sha1:   c6db0314df7a4e5c08047f6306e0b79a1ad3bab2

                                                Sha256: 2729cfe8b2f5142cf99734cbb4e1a3c6cd35868d279cd796db49ef62742ef993

                                        

                                        
                                        


                                
                                        
                                            GET /smc?s=22&u=VBDzGSDL9Mm2QcQcL4op HTTP/1.1 

                                        
                                            
Host: z.cdn.adtarget.me 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://uuidksinc.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             212.32.253.229

                                            
                                                HTTP/2 204 No Content 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
date: Tue, 29 Nov 2022 22:03:03 GMT 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322613&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b HTTP/1.1 

                                        
                                            
Host: hdbcode.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Origin: https://alexey.at.ua 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: dmpUid=VBDzGSDL9Mm2QcQcL4op 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.135

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type 

                                            
                                                
access-control-allow-methods: GET, POST, OPTIONS 

                                            
                                                
access-control-allow-credentials: true 

                                            
                                                
access-control-allow-origin: https://alexey.at.ua 

                                            
                                                
content-encoding: gzip 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   7386

                                                Md5:    c58371748460ca0807bdbdab89d09515

                                                Sha1:   c7a135f7e6fc01786ac33b54e762ef92aa411de2

                                                Sha256: 40491318e3d733b854509df2a37c3e03a48d73387e5615ecd81941c8e8749c3f

                                        

                                        
                                        


                                
                                        
                                            GET /adxcm.aspx?ssp=cf718592-a39d-4545-9d43-d632e2426981&redir=1 HTTP/1.1 

                                        
                                            
Host: ads.go2net.com.ua 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://uuidksinc.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             146.0.227.107

                                            
                                                HTTP/1.1 302 Found 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Content-Length: 0 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Access-Control-Allow-Origin: * 

                                            
                                                
Access-Control-Allow-Credentials: true 

                                            
                                                
X-Xss-Protection: 0 

                                            
                                                
P3p: CP="NID DSP ALL COR" 

                                            
                                                
Location: https://s.uuidksinc.net/match/760/63a1ab9026eb416bac398a2cc45316e2 

                                            
                                                
Set-Cookie: am-uid=63a1ab9026eb416bac398a2cc45316e2; expires=Mon, 27 Feb 2023 22:09:28 GMT; domain=ads.go2net.com.ua; secure; SameSite=None 

                                            
                                                
Keep-Alive: timeout=25 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /matching/external/pixel.gif?sid=14&uid=VBDzGSDL9Mm2QcQcL4op HTTP/1.1 

                                        
                                            
Host: dmpprof.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://uuidksinc.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             85.192.12.173

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/gif 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.18.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
content-length: 43 

                                            
                                                
last-modified: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
expires: Wed, 11 Nov 1998 11:11:11 GMT 

                                            
                                                
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 

                                            
                                                
pragma: no-cache 

                                            
                                                
set-cookie: nmatch=14_VBDzGSDL9Mm2QcQcL4op; expires=Wed, 30 Nov 2022 10:09:28 GMT; path=/; secure; SameSite=None
uid=temp-91.90.42.154-; expires=Wed, 30 Nov 2022 00:09:28 GMT; path=/; secure; SameSite=None 

                                            
                                                
access-control-allow-credentials: true 

                                            
                                                
access-control-allow-methods: GET, POST, OPTIONS, PUT, DELETE, HEAD, PATCH, GET, POST, OPTIONS 

                                            
                                                
access-control-allow-headers: Origin,Content-Type,Accept,Authorization,X-Requested-With, DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range 

                                            
                                                
access-control-expose-headers: Content-Length,Content-Range 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    df3e567d6f16d040326c7a0ea29a4f41

                                                Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736

                                                Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

                                        

                                        
                                        


                                
                                        
                                            GET /match/760/63a1ab9026eb416bac398a2cc45316e2 HTTP/1.1 

                                        
                                            
Host: s.uuidksinc.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://uuidksinc.net/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: jcsuuid=VBDzGSDL9Mm2QcQcL4op 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.134

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
content-length: 74 

                                            
                                                
set-cookie: jcsuuid=VBDzGSDL9Mm2QcQcL4op; expires=Wed, 29 Nov 2023 22:09:28 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   74

                                                Md5:    9e24e19b024c44b778301d880bd8e6f4

                                                Sha1:   d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e

                                                Sha256: 01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb

                                        

                                        
                                        


                                
                                        
                                            GET /watch/73418029/1?wmode=7&page-url=https%3A%2F%2Falexey.at.ua%2Fload%2F12-1-0-38&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1054%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A677694008229%3Ahid%3A533033419%3Az%3A0%3Ai%3A20221129220927%3Aet%3A1669759768%3Ac%3A1%3Arn%3A4383826%3Arqn%3A1%3Au%3A1669759768994759228%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C158%2C177%2C0%2C302%2C0%2C%2C411%2C7%2C%2C%2C%2C1128%3Ans%3A1669759765599%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669759768%3At%3A%D0%A7%D0%B5%D1%80%D1%82%D0%B5%D0%B6%20%D1%8D%D0%BB%D0%B5%D0%BA%D1%82%D1%80%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%BE%D0%B9%20%D1%81%D1%85%D0%B5%D0%BC%D1%8B%20-%20%D0%9F%D1%80%D0%BE%D1%87%D0%B5%D0%B5%20-%20%D0%A3%D1%87%D0%B5%D0%B1%D0%B0%20%D0%B8%20%D0%BD%D0%B0%D1%83%D0%BA%D0%B0%20-%20%D0%9A%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%84%D0%B0%D0%B9%D0%BB%D0%BE%D0%B2%20-%20%D0%9F%D0%B5%D1%80%D1%81%D0%BE%D0%BD%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%90%D0%BB%D0%B5%D0%BA%D1%81%D0%B5%D1%8F%20%D0%93%D0%BE%D0%BD%D1%87%D0%B0%D1%80%D0%B5%D0%BD%D0%BA%D0%BE&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1 

                                        
                                            
Host: mc.yandex.ru 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://alexey.at.ua 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             93.158.134.119

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
content-length: 400 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
access-control-allow-origin: https://alexey.at.ua 

                                            
                                                
access-control-allow-credentials: true 

                                            
                                                
pragma: no-cache 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
expires: Tue, 29-Nov-2022 22:09:28 GMT 

                                            
                                                
last-modified: Tue, 29-Nov-2022 22:09:28 GMT 

                                            
                                                
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with very long lines (400), with no line terminators

                                                Size:   400

                                                Md5:    d722fe37abb05452a31aa4490c8b38c0

                                                Sha1:   9fa43f6066b62f945f6da8dc3faeedb11a4a58a2

                                                Sha256: 729addaa9fcdcacc8bea33ca425d9f013b8fb3c73f392019687707b86dfdc97c

                                        

                                        
                                        


                                
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://www.google.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.google.com/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             216.58.207.227

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: font/woff2 

                                            
                                            
                                            

                                            
                                                
accept-ranges: bytes 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                            
                                                
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
content-length: 15344 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
server: sffe 

                                            
                                                
x-xss-protection: 0 

                                            
                                                
date: Thu, 24 Nov 2022 21:48:03 GMT 

                                            
                                                
expires: Fri, 24 Nov 2023 21:48:03 GMT 

                                            
                                                
cache-control: public, max-age=31536000 

                                            
                                                
age: 433285 

                                            
                                                
last-modified: Mon, 16 Oct 2017 17:32:55 GMT 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data

                                                Size:   15344

                                                Md5:    5d4aeb4e5f5ef754e307d7ffaef688bd

                                                Sha1:   06db651cdf354c64a7383ea9c77024ef4fb4cef8

                                                Sha256: 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

                                        

                                        
                                        


                                
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://www.google.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://www.google.com/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             216.58.207.227

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: font/woff2 

                                            
                                            
                                            

                                            
                                                
accept-ranges: bytes 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                            
                                                
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
content-length: 9832 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
server: sffe 

                                            
                                                
x-xss-protection: 0 

                                            
                                                
date: Thu, 24 Nov 2022 12:29:20 GMT 

                                            
                                                
expires: Fri, 24 Nov 2023 12:29:20 GMT 

                                            
                                                
cache-control: public, max-age=31536000 

                                            
                                                
age: 466808 

                                            
                                                
last-modified: Mon, 16 Oct 2017 17:32:49 GMT 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  Web Open Font Format (Version 2), TrueType, length 9832, version 1.0\012- data

                                                Size:   9832

                                                Md5:    efe937997e08e15b056a3643e2734636

                                                Sha1:   d02decbf472a0928b054cc8e4b13684539a913db

                                                Sha256: 53f2931d978bf9b24d43b5d556ecf315a6b3f089699c5ba3a954c4dde8663361

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "4373771EA27B886567636CCE8610E61E2B83485B30B16EC3B3383DDA78B23BF5" 

                                            
                                                
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=8140 

                                            
                                                
Expires: Wed, 30 Nov 2022 00:25:08 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /metrika/advert.gif HTTP/1.1 

                                        
                                            
Host: mc.yandex.ru 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             93.158.134.119

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/gif 

                                            
                                            
                                            

                                            
                                                
content-length: 43 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
etag: "6384bff1-2b" 

                                            
                                                
expires: Tue, 29 Nov 2022 23:09:28 GMT 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
last-modified: Mon, 28 Nov 2022 17:04:33 GMT 

                                            
                                                
cache-control: max-age=3600 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    df3e567d6f16d040326c7a0ea29a4f41

                                                Sha1:   ea7df583983133b62712b5e73bffbcd45cc53736

                                                Sha256: 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

                                        

                                        
                                        


                                
                                        
                                            GET /1/6573/i/i?a=662&e=VBDzGSDL9Mm2QcQcL4op&i=0.7641332345490621 HTTP/1.1 

                                        
                                            
Host: dmg.digitaltarget.ru 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://uuidksinc.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             185.15.175.131

                                            
                                                HTTP/1.1 307 Temporary Redirect 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Content-Length: 0 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Location: https://dmg.digitaltarget.ru/awg/custom/6573/i/i?call_source=awg&ts=1669759768789&a=662&e=VBDzGSDL9Mm2QcQcL4op&i=0.7641332345490621 

                                            
                                                
Set-Cookie: viuserid=DDYlh5ec42u2POA78kTn; Max-Age=93312000; Expires=Thu, 13 Nov 2025 22:09:28 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly 

                                            
                                                
Request-Time: 1 

                                            
                                                
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin 

                                            
                                                
X-Frame-Options: DENY 

                                            
                                                
X-XSS-Protection: 1; mode=block 

                                            
                                                
Access-Control-Max-Age: 86400 

                                            
                                                
X-Content-Type-Options: nosniff 

                                            
                                                
Access-Control-Allow-Methods: GET, POST, OPTIONS 

                                            
                                                
Access-Control-Allow-Credentials: true 

                                            
                                                
X-Permitted-Cross-Domain-Policies: master-only 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /cookie_matching/kadam/VBDzGSDL9Mm2QcQcL4op HTTP/1.1 

                                        
                                            
Host: fcgi4.gnezdo.ru 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://uuidksinc.net/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             93.95.102.105

                                            
                                                HTTP/2 302 Found 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
location: https://fcgi4.gnezdo.ru/cookie_matching/kadam/VBDzGSDL9Mm2QcQcL4op/?redirect=1 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
access-control-allow-methods: GET, POST, HEAD 

                                            
                                                
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With 

                                            
                                                
access-control-allow-credentials: true 

                                            
                                                
set-cookie: uid=XV9maWOGgxiZ0Js1/2tdAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None 

                                            
                                                
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /cookie_matching/kadam/VBDzGSDL9Mm2QcQcL4op/?redirect=1 HTTP/1.1 

                                        
                                            
Host: fcgi4.gnezdo.ru 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://uuidksinc.net/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             93.95.102.105

                                            
                                                HTTP/2 204 No Content 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
set-cookie: uid=XV9maWOGgxiZ0Js1/2t6Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None 

                                            
                                                
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID" 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /awg/custom/6573/i/i?call_source=awg&ts=1669759768789&a=662&e=VBDzGSDL9Mm2QcQcL4op&i=0.7641332345490621 HTTP/1.1 

                                        
                                            
Host: dmg.digitaltarget.ru 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://uuidksinc.net/ 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             185.15.175.131

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Content-Length: 64 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Vary: Accept-Encoding 

                                            
                                                
Request-Time: 0 

                                            
                                                
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin 

                                            
                                                
X-Frame-Options: DENY 

                                            
                                                
Content-Encoding: gzip 

                                            
                                                
X-XSS-Protection: 1; mode=block 

                                            
                                                
Access-Control-Max-Age: 86400 

                                            
                                                
X-Content-Type-Options: nosniff 

                                            
                                                
Access-Control-Allow-Methods: GET, POST, OPTIONS 

                                            
                                                
Access-Control-Allow-Credentials: true 

                                            
                                                
X-Permitted-Cross-Domain-Policies: master-only 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   64

                                                Md5:    ffd585dfb1ac6320633a0be46d579437

                                                Sha1:   5a6033d23bc9cd5d1de9ee61de69a44428086dcb

                                                Sha256: df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "5ADD82387AE71F3FD0C86FCE74678D3AC9AE4DAA28F1DEB2242C4CEE8E7AAA2A" 

                                            
                                                
Last-Modified: Tue, 29 Nov 2022 01:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=4008 

                                            
                                                
Expires: Tue, 29 Nov 2022 23:16:16 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "5ADD82387AE71F3FD0C86FCE74678D3AC9AE4DAA28F1DEB2242C4CEE8E7AAA2A" 

                                            
                                                
Last-Modified: Tue, 29 Nov 2022 01:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=4008 

                                            
                                                
Expires: Tue, 29 Nov 2022 23:16:16 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "5ADD82387AE71F3FD0C86FCE74678D3AC9AE4DAA28F1DEB2242C4CEE8E7AAA2A" 

                                            
                                                
Last-Modified: Tue, 29 Nov 2022 01:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=4008 

                                            
                                                
Expires: Tue, 29 Nov 2022 23:16:16 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /css2?family=Roboto&display=swap HTTP/1.1 

                                        
                                            
Host: fonts.googleapis.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.106

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: text/css; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
expires: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
cache-control: private, max-age=86400 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
cross-origin-opener-policy: same-origin-allow-popups 

                                            
                                                
content-encoding: gzip 

                                            
                                                
server: ESF 

                                            
                                                
x-xss-protection: 0 

                                            
                                                
x-frame-options: SAMEORIGIN 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   1027

                                                Md5:    38df0e17a10a3eae454446f9ffc1eb4c

                                                Sha1:   95228369b163bd7e17e8d2522be8f6f0741fa472

                                                Sha256: 7aa4f282337acd40ab59a44cebccc1f569c121a3c11300d4303c8d4dbf45ff8a

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "5ADD82387AE71F3FD0C86FCE74678D3AC9AE4DAA28F1DEB2242C4CEE8E7AAA2A" 

                                            
                                                
Last-Modified: Tue, 29 Nov 2022 01:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=4008 

                                            
                                                
Expires: Tue, 29 Nov 2022 23:16:16 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://alexey.at.ua 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://fonts.googleapis.com/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             216.58.207.227

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: font/woff2 

                                            
                                            
                                            

                                            
                                                
accept-ranges: bytes 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                            
                                                
cross-origin-resource-policy: cross-origin 

                                            
                                                
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                            
                                                
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                            
                                                
timing-allow-origin: * 

                                            
                                                
content-length: 15744 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
server: sffe 

                                            
                                                
x-xss-protection: 0 

                                            
                                                
date: Wed, 23 Nov 2022 19:33:54 GMT 

                                            
                                                
expires: Thu, 23 Nov 2023 19:33:54 GMT 

                                            
                                                
cache-control: public, max-age=31536000 

                                            
                                                
age: 527734 

                                            
                                                
last-modified: Wed, 11 May 2022 19:24:48 GMT 

                                            
                                                
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data

                                                Size:   15744

                                                Md5:    15d9f621c3bd1599f0169dcf0bd5e63e

                                                Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52

                                                Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

                                        

                                        
                                        


                                
                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             142.250.74.131

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
Cache-Control: public, max-age=14400 

                                            
                                                
Server: ocsp_responder 

                                            
                                                
Content-Length: 472 

                                            
                                                
X-XSS-Protection: 0 

                                            
                                                
X-Frame-Options: SAMEORIGIN 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /auto/500x175/image/tesr/5598/598/rect_6367e10210e40t1667752194r6985.jpg HTTP/1.1 

                                        
                                            
Host: i.cdnkimg.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             45.133.44.37

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
content-length: 57706 

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
cache-control: max-age=1209600 

                                            
                                                
x-cache-status: MISS 

                                            
                                                
expires: Tue, 13 Dec 2022 22:09:28 GMT 

                                            
                                                
x-proxy-cache: HIT 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, baseline, precision 8, 500x175, components 3\012- data

                                                Size:   57706

                                                Md5:    54babbaa9b539b72d615a62364253770

                                                Sha1:   f68b002ca066ed6c0a364cc66975de17d3579eed

                                                Sha256: 2459e3da24aae984b079c4c3b6732c72546a6781d1fee7c7d8b2815a367d70c4

                                        

                                        
                                        


                                
                                        
                                            GET /auto/500x175/image/tesr/2064/64/rect_6324c76edd512t1663354734r3464.jpeg HTTP/1.1 

                                        
                                            
Host: i.cdnkimg.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             45.133.44.37

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
content-length: 49109 

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
cache-control: max-age=1209600 

                                            
                                                
x-cache-status: MISS 

                                            
                                                
expires: Tue, 13 Dec 2022 22:09:28 GMT 

                                            
                                                
x-proxy-cache: HIT 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, baseline, precision 8, 500x175, components 3\012- data

                                                Size:   49109

                                                Md5:    f8cb974015e9c2a990988db1d76a8b8b

                                                Sha1:   5249819d191feee626ecda66be5f895533beb354

                                                Sha256: d838214601d9062b90c99431f457491886d40b334b6d149edaff9f065f35da68

                                        

                                        
                                        


                                
                                        
                                            GET /auto/250x310/image/tesr/5598/598/6367e10210e40t1667752194r6985.jpg HTTP/1.1 

                                        
                                            
Host: i.cdnkimg.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             45.133.44.37

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
content-length: 47947 

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
cache-control: max-age=1209600 

                                            
                                                
x-cache-status: MISS 

                                            
                                                
expires: Tue, 13 Dec 2022 22:09:28 GMT 

                                            
                                                
x-proxy-cache: HIT 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, baseline, precision 8, 250x310, components 3\012- data

                                                Size:   47947

                                                Md5:    a02f1f15381f19a7c4bbfd25b228aa69

                                                Sha1:   367886c04d716607a089b6a7a58417e32536cea9

                                                Sha256: b2e4f938685467e5a0f1ad4c7983f2a8f70cbc6fd9cf2240485cb8851f3a3b4e

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "1C068C57EB36FDD08DE8F0A67B79D1208A0B10F8CF26627D62A2311446569E9E" 

                                            
                                                
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=18792 

                                            
                                                
Expires: Wed, 30 Nov 2022 03:22:41 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "DEFE065FBC602F7B3E470599A179A470E0AE184224C419E2820D0FC0CDF8D6EC" 

                                            
                                                
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=4326 

                                            
                                                
Expires: Tue, 29 Nov 2022 23:21:35 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /auto/250x310/image/tesr/2064/64/6324c76edd512t1663354734r3464.jpeg HTTP/1.1 

                                        
                                            
Host: i.cdnkimg.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             45.133.44.37

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
content-length: 40769 

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
cache-control: max-age=1209600 

                                            
                                                
x-cache-status: MISS 

                                            
                                                
expires: Tue, 13 Dec 2022 22:09:28 GMT 

                                            
                                                
x-proxy-cache: HIT 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, baseline, precision 8, 250x310, components 3\012- data

                                                Size:   40769

                                                Md5:    53b48e12de8c87fc69596be2fc261286

                                                Sha1:   8bb3368c66ce8e7231282bd4d56850267928e936

                                                Sha256: 5703502456f2e134532465e22ab75b317a7bcf8ee4b69c13e67d744ba2df7f6f

                                        

                                        
                                        


                                
                                        
                                            GET /auto/500x175/image/tesr/4607/607/rect_63665e752ca7dt1667653237r8782.png HTTP/1.1 

                                        
                                            
Host: i.cdnkimg.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             45.133.44.37

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
content-length: 82582 

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
cache-control: max-age=1209600 

                                            
                                                
x-cache-status: HIT 

                                            
                                                
expires: Tue, 13 Dec 2022 22:09:28 GMT 

                                            
                                                
x-proxy-cache: HIT 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 500 x 175, 8-bit/color RGB, non-interlaced\012- data

                                                Size:   82582

                                                Md5:    1522b79e7fbef585ebcf720666a526cf

                                                Sha1:   d67509f4dbe5a5b2f1870cbcea2fd48513e8af39

                                                Sha256: d48aef40b009ac7e8c797bc06c81c64981c10b8a072857aa59daf90a1fae4899

                                        

                                        
                                        


                                
                                        
                                            GET /auto/250x310/image/tesr/4607/607/63665e752ca7dt1667653237r8782.png HTTP/1.1 

                                        
                                            
Host: i.cdnkimg.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             45.133.44.37

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
content-length: 74570 

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
cache-control: max-age=1209600 

                                            
                                                
x-cache-status: HIT 

                                            
                                                
expires: Tue, 13 Dec 2022 22:09:28 GMT 

                                            
                                                
x-proxy-cache: HIT 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 250 x 310, 8-bit/color RGB, non-interlaced\012- data

                                                Size:   74570

                                                Md5:    720b68e7e14247c253e18fa8a06d9a31

                                                Sha1:   0dced8c5449c74abba087d085e2ea1c115386dac

                                                Sha256: 09a5dd946cb855a3498766074673861c514034da46cef1f69e07cfe17bb69d53

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "1C068C57EB36FDD08DE8F0A67B79D1208A0B10F8CF26627D62A2311446569E9E" 

                                            
                                                
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=18792 

                                            
                                                
Expires: Wed, 30 Nov 2022 03:22:41 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" 

                                            
                                                
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=5323 

                                            
                                                
Expires: Tue, 29 Nov 2022 23:38:12 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" 

                                            
                                                
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=5323 

                                            
                                                
Expires: Tue, 29 Nov 2022 23:38:12 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 4916 

                                            
                                                
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: cPYcrELFoAMFaeQ= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT 

                                            
                                                
x-amz-cf-pop: SEA19-C2 

                                            
                                                
x-cache: Miss from cloudfront 

                                            
                                                
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg== 

                                            
                                                
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Tue, 29 Nov 2022 03:01:17 GMT 

                                            
                                                
age: 68892 

                                            
                                                
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   4916

                                                Md5:    83c1fedec73299637cc7dc47c48af758

                                                Sha1:   2e3f7326aeea6be8a34bf2c39b34862c07bfdc41

                                                Sha256: 1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9

                                        

                                        
                                        


                                
                                        
                                            GET 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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1 

                                        
                                            
Host: s.viitjcfx.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.155

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
content-length: 74 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   74

                                                Md5:    9e24e19b024c44b778301d880bd8e6f4

                                                Sha1:   d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e

                                                Sha256: 01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb

                                        

                                        
                                        


                                
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 9376 

                                            
                                                
x-amzn-requestid: 265257bd-0177-4e63-879b-e9f99d0d16c7 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: cTZANFW2oAMFlyw= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-63846ecd-6767ccde3361eb593108603d;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Mon, 28 Nov 2022 08:18:21 GMT 

                                            
                                                
x-amz-cf-pop: SEA19-C2 

                                            
                                                
x-cache: Miss from cloudfront 

                                            
                                                
x-amz-cf-id: ntQPVFK12XqhVCMlaq0oIDx7k6e2xQdp1Y67W1nG6ayhG1XFekz5CQ== 

                                            
                                                
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Tue, 29 Nov 2022 21:59:02 GMT 

                                            
                                                
age: 627 

                                            
                                                
etag: "28c165bac8cf68cd1b0763c311aece00672cb3a5" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   9376

                                                Md5:    cce27a1fe8c0222811a5ce0e7f89e1cb

                                                Sha1:   28c165bac8cf68cd1b0763c311aece00672cb3a5

                                                Sha256: 4530e34a47ef78c2c2b0d34a0511253a61f1927b192ab42f82361002ff10819e

                                        

                                        
                                        


                                
                                        
                                            GET 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==?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1 

                                        
                                            
Host: s.viitjcfx.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.155

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
content-length: 74 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   74

                                                Md5:    9e24e19b024c44b778301d880bd8e6f4

                                                Sha1:   d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e

                                                Sha256: 01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb

                                        

                                        
                                        


                                
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 4871 

                                            
                                                
x-amzn-requestid: e2dfa7b8-ded7-4104-a913-1b84746a3c6f 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: cLDUUEy_oAMFgSQ= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-638118e8-0b229e0f60ff019d26800dd9;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Fri, 25 Nov 2022 19:35:04 GMT 

                                            
                                                
x-amz-cf-pop: SEA19-C2 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
x-amz-cf-id: 9BUuT9WFwAQMnl8JiTDKo-zHgDL0AdjAAAIh0Mx405zbGwhvRouebQ== 

                                            
                                                
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Tue, 29 Nov 2022 12:20:15 GMT 

                                            
                                                
age: 35354 

                                            
                                                
etag: "d0dff35eb78f129b5da407043037bcf9c27e55c0" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   4871

                                                Md5:    a4058fd62595d15c58b3d3266de9865a

                                                Sha1:   d0dff35eb78f129b5da407043037bcf9c27e55c0

                                                Sha256: ab996c23d58871a2ad53f0c34688c87f0d7c0eac5d0c1d8265b86951248449fe

                                        

                                        
                                        


                                
                                        
                                            GET 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== HTTP/1.1 

                                        
                                            
Host: s.viitjcfx.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.155

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
content-length: 74 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   74

                                                Md5:    9e24e19b024c44b778301d880bd8e6f4

                                                Sha1:   d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e

                                                Sha256: 01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "1C068C57EB36FDD08DE8F0A67B79D1208A0B10F8CF26627D62A2311446569E9E" 

                                            
                                                
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=18792 

                                            
                                                
Expires: Wed, 30 Nov 2022 03:22:41 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "1C068C57EB36FDD08DE8F0A67B79D1208A0B10F8CF26627D62A2311446569E9E" 

                                            
                                                
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=18792 

                                            
                                                
Expires: Wed, 30 Nov 2022 03:22:41 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 4417 

                                            
                                                
x-amzn-requestid: 01de83c2-51d2-4329-98f6-09a0edf46942 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: cVNnGEcRIAMFaXA= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-63852960-34583b6c588a0e937fcfaa46;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:24 GMT 

                                            
                                                
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
x-amz-cf-id: Jb1eLyzn88lV_UTId-Fl3OnftDn8c7o5j8d16_nzHCNST_68MZ1pvA== 

                                            
                                                
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Tue, 29 Nov 2022 16:38:27 GMT 

                                            
                                                
age: 19862 

                                            
                                                
etag: "e2b4d2e15bb7c086333c0da438873e4c139ba931" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   4417

                                                Md5:    a2a5c8d4113d282600462749315f2c4f

                                                Sha1:   e2b4d2e15bb7c086333c0da438873e4c139ba931

                                                Sha256: 9b5d0e5dd11d4cbf1c78a71730cd63544170c91ab635bf3cf917827ac84874e6

                                        

                                        
                                        


                                
                                        
                                            GET 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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1 

                                        
                                            
Host: s.viitjcfx.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.155

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
content-length: 74 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   74

                                                Md5:    9e24e19b024c44b778301d880bd8e6f4

                                                Sha1:   d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e

                                                Sha256: 01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb

                                        

                                        
                                        


                                
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 10176 

                                            
                                                
x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: cMpbgEFOIAMF71A= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT 

                                            
                                                
x-amz-cf-pop: SEA19-C2 

                                            
                                                
x-cache: Miss from cloudfront 

                                            
                                                
x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g== 

                                            
                                                
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Tue, 29 Nov 2022 04:52:21 GMT 

                                            
                                                
age: 62228 

                                            
                                                
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   10176

                                                Md5:    03014221d7f49b50ffc2d1b0a0e75457

                                                Sha1:   772d86ad983042a728ee3490630a9cf1134ad0dd

                                                Sha256: 81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771

                                        

                                        
                                        


                                
                                        
                                            GET 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= HTTP/1.1 

                                        
                                            
Host: s.viitjcfx.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.155

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
content-length: 74 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   74

                                                Md5:    9e24e19b024c44b778301d880bd8e6f4

                                                Sha1:   d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e

                                                Sha256: 01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb

                                        

                                        
                                        


                                
                                        
                                            GET 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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1 

                                        
                                            
Host: s.viitjcfx.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.155

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
content-length: 74 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   74

                                                Md5:    9e24e19b024c44b778301d880bd8e6f4

                                                Sha1:   d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e

                                                Sha256: 01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb

                                        

                                        
                                        


                                
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg 

                                            
                                            
                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 9430 

                                            
                                                
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: cR7wyGCIIAMFhgw= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT 

                                            
                                                
x-amz-cf-pop: SEA19-C2 

                                            
                                                
x-cache: Miss from cloudfront 

                                            
                                                
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q== 

                                            
                                                
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Tue, 29 Nov 2022 02:55:32 GMT 

                                            
                                                
age: 69237 

                                            
                                                
etag: "075531f525e625b117b2497f31139c9824d0e9c5" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   9430

                                                Md5:    1f434933b5bd6377d299ada22d1ae7ef

                                                Sha1:   075531f525e625b117b2497f31139c9824d0e9c5

                                                Sha256: b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c

                                        

                                        
                                        


                                
                                        
                                            GET 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= HTTP/1.1 

                                        
                                            
Host: s.viitjcfx.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.155

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
content-length: 74 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   74

                                                Md5:    9e24e19b024c44b778301d880bd8e6f4

                                                Sha1:   d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e

                                                Sha256: 01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb

                                        

                                        
                                        


                                
                                        
                                            GET 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= HTTP/1.1 

                                        
                                            
Host: s.viitjcfx.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.155

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
content-length: 74 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   74

                                                Md5:    9e24e19b024c44b778301d880bd8e6f4

                                                Sha1:   d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e

                                                Sha256: 01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb

                                        

                                        
                                        


                                
                                        
                                            GET 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==== HTTP/1.1 

                                        
                                            
Host: s.viitjcfx.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.155

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
content-length: 74 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   74

                                                Md5:    9e24e19b024c44b778301d880bd8e6f4

                                                Sha1:   d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e

                                                Sha256: 01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb

                                        

                                        
                                        


                                
                                        
                                            GET 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==?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1 

                                        
                                            
Host: s.viitjcfx.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.155

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
content-length: 74 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   74

                                                Md5:    9e24e19b024c44b778301d880bd8e6f4

                                                Sha1:   d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e

                                                Sha256: 01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb

                                        

                                        
                                        


                                
                                        
                                            GET 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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1 

                                        
                                            
Host: s.viitjcfx.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.155

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
content-length: 74 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   74

                                                Md5:    9e24e19b024c44b778301d880bd8e6f4

                                                Sha1:   d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e

                                                Sha256: 01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb

                                        

                                        
                                        


                                
                                        
                                            GET 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== HTTP/1.1 

                                        
                                            
Host: s.viitjcfx.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.155

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/png 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:29 GMT 

                                            
                                                
content-length: 74 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   74

                                                Md5:    9e24e19b024c44b778301d880bd8e6f4

                                                Sha1:   d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e

                                                Sha256: 01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb

                                        

                                        
                                        


                                
                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
 

                                        
                                    
                                        
                                             23.36.77.32

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "D9504479473135036FB167C38A3E1FBC01D6805FAFA6C08987B9A947A209527E" 

                                            
                                                
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=13612 

                                            
                                                
Expires: Wed, 30 Nov 2022 01:56:22 GMT 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:30 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            

                                
                                        
                                            GET /hit;desktop_click_load?r;s1280*1024*24;uhttps%3A//alexey.at.ua/load/12-1-0-38;1669759769530 HTTP/1.1 

                                        
                                            
Host: counter.yadro.ru 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             88.212.201.198

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: image/gif 

                                            
                                            
                                            

                                            
                                                
Server: nginx/1.17.9 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:30 GMT 

                                            
                                                
Content-Length: 43 

                                            
                                                
Connection: keep-alive 

                                            
                                                
Expires: Mon, 29 Nov 2021 21:00:00 GMT 

                                            
                                                
Pragma: no-cache 

                                            
                                                
Cache-control: no-cache 

                                            
                                                
Access-Control-Allow-Origin: * 

                                            
                                                
Strict-Transport-Security: max-age=86400 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  GIF image data, version 89a, 1 x 1\012- data

                                                Size:   43

                                                Md5:    fc94fb0c3ed8a8f909dbc7630a0987ff

                                                Sha1:   56d45f8a17f5078a20af9962c992ca4678450765

                                                Sha256: 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363

                                        

                                        
                                        


                                
                                        
                                            GET /bens/vinos.js?23433&u=null&a=0.4202861154140436 HTTP/1.1 

                                        
                                            
Host: absoluteroute.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             193.200.64.20

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: text/javascript; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
Server: nginx 

                                            
                                                
Date: Tue, 29 Nov 2022 22:09:30 GMT 

                                            
                                                
Transfer-Encoding: chunked 

                                            
                                                
Connection: keep-alive 

                                            
                                                
P3P: CP="NON DSP COR CURa TIA" 

                                            
                                                
Set-Cookie: uuid=16697594551532635802; expires=Thu, 28-Nov-2024 22:09:30 GMT; Max-Age=63072000; path=/; samesite=None; domain=.absoluteroute.com; secure 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  ASCII text, with very long lines (727)

                                                Size:   140149

                                                Md5:    feb45cb8ddc42e89d99c615ba6b4f3c6

                                                Sha1:   7d0956700a43a9bf770088b988cabeef3400ff45

                                                Sha256: 0267d9733a7ff16c2fedfbb847f2d40c0cdcbb589f0e2dfed774e975def40815

                                        

                                        
                                        


                                
                                        
                                            GET /get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322502&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b HTTP/1.1 

                                        
                                            
Host: hdbcode.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Origin: https://alexey.at.ua 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Cookie: dmpUid=VBDzGSDL9Mm2QcQcL4op 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.135

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json; charset=utf-8 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type 

                                            
                                                
access-control-allow-methods: GET, POST, OPTIONS 

                                            
                                                
access-control-allow-credentials: true 

                                            
                                                
access-control-allow-origin: https://alexey.at.ua 

                                            
                                                
content-encoding: gzip 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  

                                                Size:   0

                                                Md5:    

                                                Sha1:   

                                                Sha256: 

                                        

                                        
                                        


                                
                                        
                                            GET /watch/73418029?wmode=7&page-url=https%3A%2F%2Falexey.at.ua%2Fload%2F12-1-0-38&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1054%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A677694008229%3Ahid%3A533033419%3Az%3A0%3Ai%3A20221129220927%3Aet%3A1669759768%3Ac%3A1%3Arn%3A4383826%3Arqn%3A1%3Au%3A1669759768994759228%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C158%2C177%2C0%2C302%2C0%2C%2C411%2C7%2C%2C%2C%2C1128%3Ans%3A1669759765599%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669759768%3At%3A%D0%A7%D0%B5%D1%80%D1%82%D0%B5%D0%B6%20%D1%8D%D0%BB%D0%B5%D0%BA%D1%82%D1%80%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%BE%D0%B9%20%D1%81%D1%85%D0%B5%D0%BC%D1%8B%20-%20%D0%9F%D1%80%D0%BE%D1%87%D0%B5%D0%B5%20-%20%D0%A3%D1%87%D0%B5%D0%B1%D0%B0%20%D0%B8%20%D0%BD%D0%B0%D1%83%D0%BA%D0%B0%20-%20%D0%9A%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%84%D0%B0%D0%B9%D0%BB%D0%BE%D0%B2%20-%20%D0%9F%D0%B5%D1%80%D1%81%D0%BE%D0%BD%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%90%D0%BB%D0%B5%D0%BA%D1%81%D0%B5%D1%8F%20%D0%93%D0%BE%D0%BD%D1%87%D0%B0%D1%80%D0%B5%D0%BD%D0%BA%D0%BE&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1 

                                        
                                            
Host: mc.yandex.ru 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: https://alexey.at.ua 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers 

                                        
                                            
 

                                        
                                    
                                        
                                             93.158.134.119

                                            
                                                HTTP/2 302 Found 

                                            
                                            
                                            

                                            
                                                
location: /watch/73418029/1?wmode=7&page-url=https%3A%2F%2Falexey.at.ua%2Fload%2F12-1-0-38&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1054%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A677694008229%3Ahid%3A533033419%3Az%3A0%3Ai%3A20221129220927%3Aet%3A1669759768%3Ac%3A1%3Arn%3A4383826%3Arqn%3A1%3Au%3A1669759768994759228%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C158%2C177%2C0%2C302%2C0%2C%2C411%2C7%2C%2C%2C%2C1128%3Ans%3A1669759765599%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669759768%3At%3A%D0%A7%D0%B5%D1%80%D1%82%D0%B5%D0%B6%20%D1%8D%D0%BB%D0%B5%D0%BA%D1%82%D1%80%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%BE%D0%B9%20%D1%81%D1%85%D0%B5%D0%BC%D1%8B%20-%20%D0%9F%D1%80%D0%BE%D1%87%D0%B5%D0%B5%20-%20%D0%A3%D1%87%D0%B5%D0%B1%D0%B0%20%D0%B8%20%D0%BD%D0%B0%D1%83%D0%BA%D0%B0%20-%20%D0%9A%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%84%D0%B0%D0%B9%D0%BB%D0%BE%D0%B2%20-%20%D0%9F%D0%B5%D1%80%D1%81%D0%BE%D0%BD%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%90%D0%BB%D0%B5%D0%BA%D1%81%D0%B5%D1%8F%20%D0%93%D0%BE%D0%BD%D1%87%D0%B0%D1%80%D0%B5%D0%BD%D0%BA%D0%BE&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:28 GMT 

                                            
                                                
access-control-allow-origin: https://alexey.at.ua 

                                            
                                                
set-cookie: yandexuid=9997218021669759768; Expires=Wed, 29-Nov-2023 22:09:28 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=9997218021669759768; Expires=Wed, 29-Nov-2023 22:09:28 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=870047601669759768; Path=/; SameSite=None; Secure
i=otccoL3W8nJ8s37y93GKrgvSV8fe14jKe9juZE9Ge5zLhVKYq73I35d96/8Jf6LIcmAehvNqHnqDE0eeuxdCy878254=; Expires=Fri, 26-Nov-2032 22:09:25 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1701295768.yc.1669759768#1701295768.yrts.1669759768#1701295768.yrtsi.1669759768; Expires=Wed, 29-Nov-2023 22:09:28 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure 

                                            
                                                
access-control-allow-credentials: true 

                                            
                                                
pragma: no-cache 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
expires: Tue, 29-Nov-2022 22:09:28 GMT 

                                            
                                                
last-modified: Tue, 29-Nov-2022 22:09:28 GMT 

                                            
                                                
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  

                                                Size:   0

                                                Md5:    

                                                Sha1:   

                                                Sha256: 

                                        

                                        
                                        


                                
                                        
                                            GET /kkqahhd3.js HTTP/1.1 

                                        
                                            
Host: hdbcode.com 

                                        
                                    
                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://alexey.at.ua/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
 

                                        
                                    
                                        
                                             31.220.27.135

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/javascript 

                                            
                                            
                                            

                                            
                                                
server: nginx/1.19.0 

                                            
                                                
date: Tue, 29 Nov 2022 22:09:27 GMT 

                                            
                                                
last-modified: Mon, 28 Nov 2022 17:39:16 GMT 

                                            
                                                
vary: Accept-Encoding 

                                            
                                                
etag: W/"6384f244-565e" 

                                            
                                                
content-encoding: gzip 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            

                                                

                                                --- Additional Info ---

                                                Magic:  

                                                Size:   0

                                                Md5:    

                                                Sha1:   

                                                Sha256: