alexey.at.ua/load/12-1-0-38
301 Moved Permanently 178 B URL HTTP/1.1 alexey.at.ua/load/12-1-0-38
IP
ASN #204343 Compubyte Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
Analyzer Verdict Alert fortinet Phishing
GET /load/12-1-0-38 HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 29 Nov 2022 22:09:37 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Keep-Alive: timeout=15
Location: https://alexey.at.ua/load/12-1-0-38
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7640
Expires: Wed, 30 Nov 2022 00:16:46 GMT
Date: Tue, 29 Nov 2022 22:09:26 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 55 B IP
File type HTML document, ASCII text
Hash 9f073354411bbaf7a319b1519f10b4b7
571498f38548829bf186f49f5be9d5fa6e689a68
4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4090
Content-Type: text/html
Date: Tue, 29 Nov 2022 22:09:26 GMT
Etag: "638650c5-37"
Last-Modified: Tue, 29 Nov 2022 18:34:45 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 55
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 21:17:55 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3091
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9821
Expires: Wed, 30 Nov 2022 00:53:07 GMT
Date: Tue, 29 Nov 2022 22:09:26 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LnUtbEOt9k5MOIY1NKziUqLYHDOYDW8SfoM1AVfpodbGJvWIT5C3LIb6FKzcydCK8E2z7d9glyw=
x-amz-request-id: KWPAJHVTK73QRD4T
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 21:45:37 GMT
age: 1429
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 22:09:26 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
alexey.at.ua/load/12-1-0-38
200 OK 9.1 kB URL HTTP/1.1 alexey.at.ua/load/12-1-0-38
IP
ASN #204343 Compubyte Limited
File type HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1468), with CRLF, LF line terminators
Hash d2e5e9a47d0a15d445e74c89f71bd3f5
ffd1e6cebdfddeaac6f3e6fb983a5e40346d0fea
fa8d549eb9bd406afa49bc4a4b11599197e777ffadaf24315dd966acf8a85f3b
Analyzer Verdict Alert fortinet Phishing
GET /load/12-1-0-38 HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Set-Cookie: 2alexeyuCoz=; path=/; expires=Sun, 29-Nov-2020 22:09:38 GMT; Secure; HttpOnly; domain=.alexey.at.ua
2alexeyld=JgAig4Zj; path=/; expires=Wed, 29-Nov-2023 22:09:38 GMT; Secure; domain=.alexey.at.ua
2alexeyuzll=1669759778; path=/; expires=Wed, 29-Nov-2023 22:09:38 GMT; Secure; domain=.alexey.at.ua
2alexeypushi=1; path=/; expires=Wed, 30-Nov-2022 21:09:38 GMT; Secure
Pragma: no-cache
Vary: host
Last-Modified: Mon, 31 Dec 2007 11:17:41 GMT
Cache-Control: no-cache,no-store, private
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 22:08:56 GMT
cache-control: public,max-age=3600
age: 31
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
alexey.at.ua/?ATRnb2%3BtpG%5ESfErYkVHiQwXBLXeXH%3BnFHWvDkGpSmpg2IGqhhf35I33R%5EplF3Tvb3MdNbEbBRFGKhnS6IXQLgdS4Ggm%5EXQMikY2w2A86Gm4wqRe22Wmjp9lPhlHv0dKDs9%5ElPK1Anz2NzCYrexg7bO6L5bhNCmW7eczvG88%21EkP1zA2Twly%217%21CQn4RYFU1ll0py0048C0%3BItWwSUUoo
200 OK 1.2 kB URL HTTP/1.1 alexey.at.ua/?ATRnb2%3BtpG%5ESfErYkVHiQwXBLXeXH%3BnFHWvDkGpSmpg2IGqhhf35I33R%5EplF3Tvb3MdNbEbBRFGKhnS6IXQLgdS4Ggm%5EXQMikY2w2A86Gm4wqRe22Wmjp9lPhlHv0dKDs9%5ElPK1Anz2NzCYrexg7bO6L5bhNCmW7eczvG88%21EkP1zA2Twly%217%21CQn4RYFU1ll0py0048C0%3BItWwSUUoo
IP
ASN #204343 Compubyte Limited
Hash c4d00801d7fee999c5e31dd9a2449b75
11c79e3e709e534f9d9d679e2b546ebadd29c31e
5770feb66473b454ae9fdec8e4a543650f6f154d54f2c74100cce743f602e24c
GET /?ATRnb2%3BtpG%5ESfErYkVHiQwXBLXeXH%3BnFHWvDkGpSmpg2IGqhhf35I33R%5EplF3Tvb3MdNbEbBRFGKhnS6IXQLgdS4Ggm%5EXQMikY2w2A86Gm4wqRe22Wmjp9lPhlHv0dKDs9%5ElPK1Anz2NzCYrexg7bO6L5bhNCmW7eczvG88%21EkP1zA2Twly%217%21CQn4RYFU1ll0py0048C0%3BItWwSUUoo HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/load/12-1-0-38
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:37 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Cache-Control: no-cache, no-store, private
Pragma: no-cache
alexey.at.ua/.s/src/ulightbox/ulightbox.min.css
200 OK 1.4 kB URL HTTP/1.1 alexey.at.ua/.s/src/ulightbox/ulightbox.min.css
IP
ASN #204343 Compubyte Limited
File type ASCII text, with very long lines (4552), with no line terminators
Hash 9c03edbcbefe3eea8902981444de96f7
ca39997a1765ab084fb7e6740858176b9385c4ca
8487aa6ee4bd261bdf1f5b681cf96d347cd980ed45183c5a2a9571db6c891a08
GET /.s/src/ulightbox/ulightbox.min.css HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/load/12-1-0-38
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:37 GMT
Content-Type: text/css
Last-Modified: Tue, 24 May 2022 12:36:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"628cd15d-11c8"
Expires: Mon, 19 Dec 2022 22:09:37 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
ocsp.digicert.com/
200 OK 471 B IP
Hash 3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5316
Cache-Control: max-age=131157
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:09:27 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 10:35:24 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a0fe20d41a043db700a84924cd9793f3
c0da481fef6cd00558f6e68b074acb34bef8292f
03caeb65ab9e22f6d6fe0d344d327950d20ee9ed144e2da0e5e062943a03fc56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alexey.at.ua/.s/src/base.min.css
200 OK 6.1 kB URL HTTP/1.1 alexey.at.ua/.s/src/base.min.css
IP
ASN #204343 Compubyte Limited
File type ASCII text, with very long lines (24443), with no line terminators
Hash 629527310ba26cfc236c016e14662321
7a87daed5934db9729f12653e67c8de9d4365d58
134e836199a74c0b501c4e1a46dd3625f4696dc608d1052136ee455c2c2d2509
GET /.s/src/base.min.css HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/load/12-1-0-38
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:37 GMT
Content-Type: text/css
Last-Modified: Tue, 11 Oct 2022 13:44:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"6345734f-5f7b"
Expires: Mon, 19 Dec 2022 22:09:37 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
alexey.at.ua/.s/src/layer1.min.css
200 OK 5.2 kB URL HTTP/1.1 alexey.at.ua/.s/src/layer1.min.css
IP
ASN #204343 Compubyte Limited
File type ASCII text, with very long lines (21807), with no line terminators
Hash aa017676ddebc3b0781dcce2765bc76f
84db82417e830add59665c1db082e42036f836ae
78909e6f81a534662da6fc6555fda7bef97bc2da03b8a23bb4b1aadfcc818a87
GET /.s/src/layer1.min.css HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/load/12-1-0-38
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:37 GMT
Content-Type: text/css
Last-Modified: Tue, 11 Oct 2022 12:50:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"6345668d-552f"
Expires: Mon, 19 Dec 2022 22:09:37 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
alexey.at.ua/.s/src/social.css
200 OK 610 B URL HTTP/1.1 alexey.at.ua/.s/src/social.css
IP
ASN #204343 Compubyte Limited
File type ASCII text, with very long lines (442)
Hash af855dcd18719bcf0da15a9029755af1
d74d0ed8d96f2ebe46a7671564bf80eea6865103
9add1a323772a7c09260b63a21732472cb0204105c1d2bee763ea1429f0e26e9
GET /.s/src/social.css HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/load/12-1-0-38
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:37 GMT
Content-Type: text/css
Last-Modified: Wed, 01 Dec 2021 11:13:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"61a758f3-9b8"
Expires: Mon, 19 Dec 2022 22:09:37 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
alexey.at.ua/?F97ZyyKe1I5fKCm%5E8UPcCEiZLS2v2DCCVsSCbgKiuLsvLQmq5vX%3BLIbsYA3pSHK7rAm3YPndl6M8eSRaEKbMIGJJ69uiwKRPFLcYJJUIeKP9g%21sWUScOUxX%5EjCQIOvufJiFpzRZOj%5El2dnqkOtrbbIPlGKfQOTaxy7UIqL3B%5EdJMeQ3Kx%3BuTqz7SyhFxDNXBJBsq%3BRUdkiusQ579Oqso
200 OK 811 B URL HTTP/1.1 alexey.at.ua/?F97ZyyKe1I5fKCm%5E8UPcCEiZLS2v2DCCVsSCbgKiuLsvLQmq5vX%3BLIbsYA3pSHK7rAm3YPndl6M8eSRaEKbMIGJJ69uiwKRPFLcYJJUIeKP9g%21sWUScOUxX%5EjCQIOvufJiFpzRZOj%5El2dnqkOtrbbIPlGKfQOTaxy7UIqL3B%5EdJMeQ3Kx%3BuTqz7SyhFxDNXBJBsq%3BRUdkiusQ579Oqso
IP
ASN #204343 Compubyte Limited
Hash 4a33e7cd7558f3f5a86d0fc27aee8c90
50fc0ad44d3917690997ca278091e53d0d575362
d6304d22c2821d367e3697cb9fa4e6dbeb093b8634fccd35312664d30d72b330
GET /?F97ZyyKe1I5fKCm%5E8UPcCEiZLS2v2DCCVsSCbgKiuLsvLQmq5vX%3BLIbsYA3pSHK7rAm3YPndl6M8eSRaEKbMIGJJ69uiwKRPFLcYJJUIeKP9g%21sWUScOUxX%5EjCQIOvufJiFpzRZOj%5El2dnqkOtrbbIPlGKfQOTaxy7UIqL3B%5EdJMeQ3Kx%3BuTqz7SyhFxDNXBJBsq%3BRUdkiusQ579Oqso HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/load/12-1-0-38
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:37 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Cache-Control: no-cache, no-store, private
Pragma: no-cache
www.google.com/recaptcha/api.js?onload=reCallback&render=explicit&hl=ru
200 OK 579 B URL HTTP/2 www.google.com/recaptcha/api.js?onload=reCallback&render=explicit&hl=ru
IP
File type ASCII text, with very long lines (905), with no line terminators
Hash fe0e23ea2d335147e24f50690aa39c7c
ef74d6655ba8efb294f7ed55e6be16d315381edd
fcccb37edb611bf2580bf74646d25e4fb3660d305c66de3c8571bedfc2dac228
GET /recaptcha/api.js?onload=reCallback&render=explicit&hl=ru HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 29 Nov 2022 22:09:27 GMT
date: Tue, 29 Nov 2022 22:09:27 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 579
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
alexey.at.ua/.s/src/ulightbox/ulightbox.min.js
200 OK 7.6 kB URL HTTP/1.1 alexey.at.ua/.s/src/ulightbox/ulightbox.min.js
IP
ASN #204343 Compubyte Limited
File type ASCII text, with very long lines (22291), with no line terminators
Hash 3bb3aaa5262067cec461b32298975b05
4e11bfe49cd05fcdbd1e692fc87788da07e62161
61fa91bb508bfda7ee487ffaf0e38aa71cfab1ce78bb108d6c6140dc9b35ab22
GET /.s/src/ulightbox/ulightbox.min.js HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/load/12-1-0-38
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:37 GMT
Content-Type: text/javascript
Last-Modified: Tue, 24 May 2022 12:36:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"628cd15d-5713"
Expires: Mon, 19 Dec 2022 22:09:37 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
alexey.at.ua/.s/src/jquery-1.12.4.min.js
200 OK 34 kB URL HTTP/1.1 alexey.at.ua/.s/src/jquery-1.12.4.min.js
IP
ASN #204343 Compubyte Limited
File type ASCII text, with very long lines (32077)
Hash eed194bd33958fd0768352b877915a40
db7a4073a53efb53155652219d948940efe6baa7
9eaac8a63f3851efef83bd151a558f6c8d8e6bb75c7725625cf8892b6312aa06
GET /.s/src/jquery-1.12.4.min.js HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/load/12-1-0-38
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:37 GMT
Content-Type: text/javascript
Last-Modified: Thu, 01 Sep 2022 17:43:57 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"6310ef5d-17b8b"
Expires: Mon, 19 Dec 2022 22:09:37 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
news.2xclick.ru/loader.js
200 OK 29 kB URL HTTP/1.1 news.2xclick.ru/loader.js
IP
ASN #48347 JSC Mediasoft ekspert
File type Unicode text, UTF-8 text, with very long lines (649)
Hash 127a0a50fc95b4364a75e889c6ec4e2b
861e4bbb26788dace734880efe6bc8bf97c78cd4
c366cd31521a348b9e5eb1a29126086a7894de17df5bfc8c6273a0dc32d395a4
GET /loader.js HTTP/1.1
Host: news.2xclick.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 29 Nov 2022 22:09:27 GMT
Content-Type: application/javascript
Content-Length: 29044
Last-Modified: Tue, 29 Nov 2022 06:43:04 GMT
Connection: keep-alive
ETag: "6385a9f8-7174"
Content-Encoding: gzip
Expires: Wed, 30 Nov 2022 22:09:27 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Set-Cookie: uid=XV9kdWOGgxd3OQaHqQ0ZAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; secure; SameSite=none
P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash abd55ecd24d357a9f02612558f723a90
6a1e6963864f0b53ddc6205d35225e6cf0bcbeec
195fa531e0462be58d5c62ebbe6060e147c94bdb1d38ff46c341c74e0ab2671a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alexey.at.ua/.s/src/uwnd.min.js
200 OK 57 kB URL HTTP/1.1 alexey.at.ua/.s/src/uwnd.min.js
IP
ASN #204343 Compubyte Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash 20adfead3a54ad11599adb1bab3d6fc6
23bb516448d5c643cb186ad9aec426388aa79dfd
b49b11429b509cf608a66bbcebc13cf63fa444b998c1a678d1bebfe33f7c2ff4
GET /.s/src/uwnd.min.js HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/load/12-1-0-38
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:37 GMT
Content-Type: text/javascript
Last-Modified: Mon, 25 Apr 2022 10:32:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"626678ba-3334b"
Expires: Mon, 19 Dec 2022 22:09:37 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
s4.ucoz.net/src/css/927.css
200 OK 3.7 kB URL HTTP/1.1 s4.ucoz.net/src/css/927.css
IP
ASN #204343 Compubyte Limited
Hash 9807a7632f255ac8a6cd5c8e0960a1c0
c42eb29d0ecd483bf82d88944da899f0a3cf2095
a71b0e6d10aa49a19d419a28a55230024cae45c7db239075b1e176cbc6dae506
GET /src/css/927.css HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: text/css
Last-Modified: Wed, 26 May 2021 12:20:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"60ae3d09-4364"
Expires: Fri, 09 Dec 2022 22:09:38 GMT
Cache-Control: max-age=864000
Content-Encoding: gzip
s4.ucoz.net/cgi/uutils.fcg?a=uSD&ca=2&ug=999&isp=0&r=0.187806504986078
200 OK 0 B URL HTTP/1.1 s4.ucoz.net/cgi/uutils.fcg?a=uSD&ca=2&ug=999&isp=0&r=0.187806504986078
IP
ASN #204343 Compubyte Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi/uutils.fcg?a=uSD&ca=2&ug=999&isp=0&r=0.187806504986078 HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
s4.ucoz.net/t/947/h.gif
200 OK 75 B IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 11 x 10\012- data
Hash c7dce6296f3837652225ac42b5c5fb20
b98d6f84bc0f525263222ac23cbd9fa588ffbca0
f5530fbafda6f77d17ab8116297aa01bae025c64a637b153f91e0ab50bce2b50
GET /t/947/h.gif HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Content-Length: 75
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c4f-4b"
Expires: Thu, 29 Dec 2022 22:09:38 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
s4.ucoz.net/t/947/e.gif
200 OK 68 B IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 14 x 10\012- data
Hash e56454358172a8b40a15be7a199ac221
61d409120c1bb4f11b108213b7f8a34c4b1b6823
ff2658c62cd48883add06f3432b9fb7f0c5072b3769a73e60baefb378052f41d
GET /t/947/e.gif HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Content-Length: 68
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c4f-44"
Expires: Thu, 29 Dec 2022 22:09:38 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
alexey.at.ua/stat/1669759766659?01
302 Found 218 B URL HTTP/1.1 alexey.at.ua/stat/1669759766659?01
IP
ASN #204343 Compubyte Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d30982e1fe67edd0158c3b85300eb980
fddc722317b8a41d6fa085cdd156c710d05e683c
4a7c7285b14d1c55daa58dfeb0ddfcb5033fc9ebc17c121a064819ecb964f67a
GET /stat/1669759766659?01 HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/load/12-1-0-38
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Set-Cookie: 2alexeyucnid=1iGjA4D23N; domain=alexey.at.ua; path=/stat/479976801; expires=Tue, 29-Nov-2022 22:09:48 GMT
Cache-Control: no-cache, no-store, private
Pragma: no-cache
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Location: https://alexey.at.ua/stat/479976801?11
alexey.at.ua/.s/img/sh/wait.gif
200 OK 265 B URL HTTP/1.1 alexey.at.ua/.s/img/sh/wait.gif
IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 32 x 8\012- data
Hash c44da6bb38458d2c57e23104c53d8e05
5e9352aa3d0b522fff659c48299d1b3006c78f47
163da6b91f78ccad8c824ef31e5dbd2a89fb8d93f2381d43faa96acf502ca3e8
GET /.s/img/sh/wait.gif HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/.s/src/base.min.css
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Content-Length: 265
Last-Modified: Mon, 21 Nov 2022 12:37:43 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "637b7117-109"
Expires: Mon, 19 Dec 2022 22:09:38 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lKfxaOf77vWtagOte066Ww==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +c93+fc5K4LRTG+iFMp1EnaBxC8=
s4.ucoz.net/.s/t/927/1.gif
200 OK 9.4 kB URL HTTP/1.1 s4.ucoz.net/.s/t/927/1.gif
IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 2000 x 87\012- data
Hash 12fb18248c3ccdd51f5a00dbc5a21b71
39fed33515612ff6dbf196daf7ef449910ea0521
6e9872edf31bb937bb6f2ed11f792c468b397a813d1917fa658e3d477e52a25b
GET /.s/t/927/1.gif HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s4.ucoz.net/src/css/927.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Content-Length: 9410
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c4f-24c2"
Expires: Fri, 09 Dec 2022 22:09:38 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
s4.ucoz.net/.s/t/927/3.gif
200 OK 5.3 kB URL HTTP/1.1 s4.ucoz.net/.s/t/927/3.gif
IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 2000 x 77\012- data
Hash 3eb07c5a9d438a5822d41f5b1ed1720f
3d2ae01da2a100a5278e439a46fc6eec72c3648b
516f14aafa59607e0881d0ed7b997184e6ef267509e3194370e62f36f3f354b1
GET /.s/t/927/3.gif HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s4.ucoz.net/src/css/927.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Content-Length: 5312
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c4f-14c0"
Expires: Fri, 09 Dec 2022 22:09:38 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
alexey.at.ua/.s/img/icon/social/u.svg
200 OK 612 B URL HTTP/1.1 alexey.at.ua/.s/img/icon/social/u.svg
IP
ASN #204343 Compubyte Limited
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 1e726893f02be39b70d24d502a3a9998
98c6fcf43a67426ed7e9c7a839e8115494ca8072
d0608cf0c4aff79f20a198427f7df73300d643face9bea72b8d406b432b84df9
GET /.s/img/icon/social/u.svg HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/.s/src/social.css
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/svg+xml
Content-Length: 612
Last-Modified: Mon, 26 Jun 2017 11:42:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5950f318-264"
Expires: Mon, 19 Dec 2022 22:09:38 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
s4.ucoz.net/.s/t/927/2.gif
200 OK 14 kB URL HTTP/1.1 s4.ucoz.net/.s/t/927/2.gif
IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 300 x 87\012- data
Hash 716e989368745949ae2a6940467c5cc4
97835ad5b7d9c73c1c5846ce518d8e75791e97b8
8b94c4f858fb4ecd3ef4d1aa441ed7bc7c124acc303b3fd4c5d2a19322090b33
GET /.s/t/927/2.gif HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s4.ucoz.net/src/css/927.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Content-Length: 14013
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c4f-36bd"
Expires: Fri, 09 Dec 2022 22:09:38 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
alexey.at.ua/.s/img/icon/social/vk.svg
200 OK 772 B URL HTTP/1.1 alexey.at.ua/.s/img/icon/social/vk.svg
IP
ASN #204343 Compubyte Limited
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 7c4eb8cae0b565c023c4406add5f8041
079ce5d3277df672b57a73476a28d0bf0b1c1fe2
05a3f8587400860aa87bb18c9a9cd5b22a45ca4fc4a37a7922d29e48549b2fc9
GET /.s/img/icon/social/vk.svg HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/.s/src/social.css
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/svg+xml
Content-Length: 772
Last-Modified: Mon, 26 Jun 2017 11:42:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5950f318-304"
Expires: Mon, 19 Dec 2022 22:09:38 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
alexey.at.ua/.s/img/icon/social/fb.svg
200 OK 611 B URL HTTP/1.1 alexey.at.ua/.s/img/icon/social/fb.svg
IP
ASN #204343 Compubyte Limited
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d178cc46dcbcf2b6f19445674fe3fe58
26f9747489d9e796926f7bbe11817c420afda3af
a9265d79c9ff74d4deeab5dce9643ed838018a6b4346605e002867858534f4bf
GET /.s/img/icon/social/fb.svg HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/.s/src/social.css
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/svg+xml
Content-Length: 611
Last-Modified: Mon, 26 Jun 2017 11:42:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5950f318-263"
Expires: Mon, 19 Dec 2022 22:09:38 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
alexey.at.ua/.s/img/icon/social/ya.svg
200 OK 660 B URL HTTP/1.1 alexey.at.ua/.s/img/icon/social/ya.svg
IP
ASN #204343 Compubyte Limited
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 7676c3eee5bd955efe08fd05367a443b
595e4e8dbf5ff472606434d0f45806d088de4c0c
b72d3f61ac56b4aa27bad5769589705004aff1f0ad341785ca72dc46ba16de5b
GET /.s/img/icon/social/ya.svg HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/.s/src/social.css
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/svg+xml
Content-Length: 660
Last-Modified: Mon, 26 Jun 2017 11:42:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5950f318-294"
Expires: Mon, 19 Dec 2022 22:09:38 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
alexey.at.ua/.s/img/icon/social/gp.svg
200 OK 550 B URL HTTP/1.1 alexey.at.ua/.s/img/icon/social/gp.svg
IP
ASN #204343 Compubyte Limited
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (534), with no line terminators
Hash 10d296226de121de55180e5b1b7d9d49
5980293f4f290734d09459d068a8c3996e43fe40
a657a4d5d05c6cd9b9f881ab6941e71f725c7eb451c9f37ceb514e45fdfd441d
GET /.s/img/icon/social/gp.svg HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/.s/src/social.css
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/svg+xml
Content-Length: 550
Last-Modified: Fri, 01 Feb 2019 12:57:26 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5c544236-226"
Expires: Mon, 19 Dec 2022 22:09:38 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a67a8c6ead77a35b64440679c4c9e670
450d5cbce1313f86f2bde3dd04e5f398ba785ed8
2eba7f404fb71c56200bf054a23c9764dcce82a97037f45856b5abb9c3febe17
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2EBA7F404FB71C56200BF054A23C9764DCCE82A97037F45856B5ABB9C3FEBE17"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7755
Expires: Wed, 30 Nov 2022 00:18:42 GMT
Date: Tue, 29 Nov 2022 22:09:27 GMT
Connection: keep-alive
alexey.at.ua/.s/img/icon/social/ok.svg
200 OK 1.9 kB URL HTTP/1.1 alexey.at.ua/.s/img/icon/social/ok.svg
IP
ASN #204343 Compubyte Limited
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 08bbc2fa9b08463b0d061041d62b408e
370c53ccc3edd296cd35fb9e3de20dabfdae78d9
e1369586f1d82834ecc0ccab2f5f1a6f7565f2c715243d956bd7eb1404c8fba9
GET /.s/img/icon/social/ok.svg HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/.s/src/social.css
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/svg+xml
Content-Length: 1858
Last-Modified: Mon, 26 Jun 2017 11:42:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5950f318-742"
Expires: Mon, 19 Dec 2022 22:09:38 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
s4.ucoz.net/.s/t/927/13.gif
200 OK 352 B URL HTTP/1.1 s4.ucoz.net/.s/t/927/13.gif
IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 15 x 15\012- data
Hash 1594763abaf2f920618e909a038eb636
79b6e6983e89aa2e9fd23e631783adfdc1011aba
94aa2e5f8f5ea0dca299e4af80583d3ebd8355272b88cf1da3c387955db5c534
GET /.s/t/927/13.gif HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s4.ucoz.net/src/css/927.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Content-Length: 352
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c4f-160"
Expires: Fri, 09 Dec 2022 22:09:38 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
s4.ucoz.net/.s/t/927/7.gif
200 OK 931 B URL HTTP/1.1 s4.ucoz.net/.s/t/927/7.gif
IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 200 x 17\012- data
Hash dc01f6782a44310a52d1eef656be2bca
1a17ad0631518c1367813aaa64c844ae3bbec2df
482b141f815ca3f0b0b555c05f65080f59b3d147662a53e04bf778581f4b554f
GET /.s/t/927/7.gif HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s4.ucoz.net/src/css/927.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Content-Length: 931
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c4f-3a3"
Expires: Fri, 09 Dec 2022 22:09:38 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
s4.ucoz.net/.s/t/927/5.gif
200 OK 8.4 kB URL HTTP/1.1 s4.ucoz.net/.s/t/927/5.gif
IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 2000 x 40\012- data
Hash 5985b2f6b457cc774e3c4969906eaee5
6b03c4cfc36b76fc2bbac4d3ed3379aaac9dc473
eec43dea1bd005f3b50976f253d8729ca3e16bd4c2450c0e0f88468d94c67a56
GET /.s/t/927/5.gif HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s4.ucoz.net/src/css/927.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Content-Length: 8358
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c4f-20a6"
Expires: Fri, 09 Dec 2022 22:09:38 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a67a8c6ead77a35b64440679c4c9e670
450d5cbce1313f86f2bde3dd04e5f398ba785ed8
2eba7f404fb71c56200bf054a23c9764dcce82a97037f45856b5abb9c3febe17
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2EBA7F404FB71C56200BF054A23C9764DCCE82A97037F45856B5ABB9C3FEBE17"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7755
Expires: Wed, 30 Nov 2022 00:18:42 GMT
Date: Tue, 29 Nov 2022 22:09:27 GMT
Connection: keep-alive
s4.ucoz.net/.s/t/927/8.gif
200 OK 464 B URL HTTP/1.1 s4.ucoz.net/.s/t/927/8.gif
IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 200 x 40\012- data
Hash f21da03dc1b019bc2536401538fc4e2a
9a2512889f99358c5d3f1508ec4ce1bf202c921c
0fd88eec6dcce8912398740420647a101181b5a2af415a3a886ac279cd360613
GET /.s/t/927/8.gif HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s4.ucoz.net/src/css/927.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Content-Length: 464
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c4f-1d0"
Expires: Fri, 09 Dec 2022 22:09:38 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
s4.ucoz.net/.s/t/927/6.gif
200 OK 2.7 kB URL HTTP/1.1 s4.ucoz.net/.s/t/927/6.gif
IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 300 x 40\012- data
Hash 0e8528fbaa2b6bb48a162aa4b5f0cbcd
16dd2e597c362730f994321f515bbf4d976a89e3
f142d93a55de85a94afe13efbf8b6b7289e4f18d7d618f957e1b48a6fffa217e
GET /.s/t/927/6.gif HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s4.ucoz.net/src/css/927.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Content-Length: 2749
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c4f-abd"
Expires: Fri, 09 Dec 2022 22:09:38 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
alexey.at.ua/?nyzY%21UabalLZH4pFFrYI%21qaIinSEEWL2D6u1ICyLxGJbThkE%21RCPMqhb6f%5ExMxTG81%3BRb1Md44DF0S%21rSywo
200 OK 799 B URL HTTP/1.1 alexey.at.ua/?nyzY%21UabalLZH4pFFrYI%21qaIinSEEWL2D6u1ICyLxGJbThkE%21RCPMqhb6f%5ExMxTG81%3BRb1Md44DF0S%21rSywo
IP
ASN #204343 Compubyte Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 89c524c20fd89dd9c0553cd7ad4acc85
33ecc705d6911929192a8b50da732f1f9e62ad95
906fe67ba68cb734c27d7a9034431874ae15357fc96d1ef5e50a492561d0dcd6
GET /?nyzY%21UabalLZH4pFFrYI%21qaIinSEEWL2D6u1ICyLxGJbThkE%21RCPMqhb6f%5ExMxTG81%3BRb1Md44DF0S%21rSywo HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/load/12-1-0-38
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Cache-Control: no-cache, no-store, private
Pragma: no-cache
Content-Encoding: gzip
s4.ucoz.net/.s/t/927/4.gif
200 OK 17 kB URL HTTP/1.1 s4.ucoz.net/.s/t/927/4.gif
IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 300 x 77\012- data
Hash 5c281d2407d216aeb8e8d1a904d5527b
5de65fba93a3299104b9ed01699719725a2b46d4
334a00b59c4f4657252cba5a68bd773ce84e7a808050f008b9a00e5be1404b97
GET /.s/t/927/4.gif HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s4.ucoz.net/src/css/927.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Content-Length: 17013
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c4f-4275"
Expires: Fri, 09 Dec 2022 22:09:38 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
s4.ucoz.net/.s/t/927/9.gif
200 OK 999 B URL HTTP/1.1 s4.ucoz.net/.s/t/927/9.gif
IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 200 x 12\012- data
Hash e9b94a5226540465c1be6c7d009c94ce
ede6e231f4ff237c4e86691da13816162eb71467
0919575275d1f6f9f41eea21ca1950fe30a1212cd691aaa303fba8eac8a028d1
GET /.s/t/927/9.gif HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s4.ucoz.net/src/css/927.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Content-Length: 999
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c4f-3e7"
Expires: Fri, 09 Dec 2022 22:09:38 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
s4.ucoz.net/.s/t/927/11.gif
200 OK 56 B URL HTTP/1.1 s4.ucoz.net/.s/t/927/11.gif
IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 10 x 10\012- data
Hash 67e5756051420ec56fd3486d9d13eef5
6737e8261f2fcf5c2ba44d7303b5520b0705c365
5bd62e71837f0ffe6f8ea8d255146029b211a1959b2996397d0b66c4d5743c73
GET /.s/t/927/11.gif HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s4.ucoz.net/src/css/927.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Content-Length: 56
Last-Modified: Tue, 23 Feb 2016 13:19:11 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c4f-38"
Expires: Fri, 09 Dec 2022 22:09:38 GMT
Cache-Control: max-age=864000
Accept-Ranges: bytes
alexey.at.ua/stat/479976801?11
200 OK 389 B URL HTTP/1.1 alexey.at.ua/stat/479976801?11
IP
ASN #204343 Compubyte Limited
File type GIF image data, version 87a, 88 x 31\012- data
Hash d91aa417695036c7fbf382a57dc7d486
b25b42c90db66be7e3484680ec1bf2cfcb91201d
0c15009d2cc2dffaf12834dc4314c56df4c809a0e97f12322814439a96373de9
GET /stat/479976801?11 HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alexey.at.ua/load/12-1-0-38
Connection: keep-alive
Cookie: 2alexeyucnid=1iGjA4D23N; 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Cache-Control: no-cache, no-store, private
Pragma: no-cache
Expires: Thu, 01 Dec 1994 16:00:00 GMT
Set-Cookie: ucvid=SuHPR1RNOo; path=/; expires=Wed, 29-Nov-2023 22:09:38 GMT
s4.ucoz.net/adv/dummy/000/css/style.css
200 OK 1.6 kB URL HTTP/1.1 s4.ucoz.net/adv/dummy/000/css/style.css
IP
ASN #204343 Compubyte Limited
Hash 50406c447ccad47ca9e5d53eff612ffb
16e3921585135a87a1066689c9c67a312d96c92d
01a0732bba96fb38be885a1d233fecf52e32c7e07e48cd05f6f07a3690ea304c
GET /adv/dummy/000/css/style.css HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: text/css
Last-Modified: Tue, 26 Mar 2019 14:28:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"5c9a3701-19eb"
Content-Encoding: gzip
s4.ucoz.net/adv/dummy/000/img/ucoz-logo.png
200 OK 4.6 kB URL HTTP/1.1 s4.ucoz.net/adv/dummy/000/img/ucoz-logo.png
IP
ASN #204343 Compubyte Limited
File type PNG image data, 136 x 136, 8-bit/color RGBA, non-interlaced\012- data
Hash 14d37a3409afc2c450c62b97bc8019da
43fc12bf16a292d6d10b17ab7d1e37785288858c
fc4f998c5fcacc6cf161f1bedf46ec55e56273670ecce8b59e947b68d3c5bdb2
GET /adv/dummy/000/img/ucoz-logo.png HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/png
Content-Length: 4585
Last-Modified: Tue, 26 Mar 2019 14:28:17 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5c9a3701-11e9"
Accept-Ranges: bytes
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash e3dd454ccb82fdcebfc23856163e9cb1
984702bf12474a29e6313cac2fb9c29eb735f4eb
2d36fc5e41e4a39e8add8de10284613400d2a1e1428bdc43a939b0663a14f93d
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 22:09:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 03 Dec 2022 17:48:50 GMT
ETag: "984702bf12474a29e6313cac2fb9c29eb735f4eb"
Last-Modified: Tue, 29 Nov 2022 17:48:51 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3251
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771eaaf60807b509-OSL
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfa86a83740e065e1520c64753df3869
3b7ec8fc3eba7173cafaed1b384b8ad2e82889ea
4d461b9ab4a10a5a1ee6e25ddc519c74f069503f37d9adec105fe9fc19e3390d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D461B9AB4A10A5A1EE6E25DDC519C74F069503F37D9ADEC105FE9FC19E3390D"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5260
Expires: Tue, 29 Nov 2022 23:37:08 GMT
Date: Tue, 29 Nov 2022 22:09:28 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:09:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alexey.at.ua/favicon.ico
200 OK 30 kB IP
ASN #204343 Compubyte Limited
File type MS Windows icon resource - 12 icons, 48x48, 16 colors, 4 bits/pixel, 32x32, 16 colors, 4 bits/pixel\012- data
Hash 8202dfb723ba6dfef88d17cdef9ef54e
604b208e25f732158e0b88d113154525ab64f19b
c32f4aa121c70cf1ce3c78386f5e696f54dfdb8fecda554b866a6df558ec2a50
GET /favicon.ico HTTP/1.1
Host: alexey.at.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/load/12-1-0-38
Cookie: 2alexeyld=JgAig4Zj; 2alexeyuzll=1669759778; 2alexeypushi=1; ucvid=SuHPR1RNOo; kdSspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/x-icon
Content-Length: 29926
Last-Modified: Sun, 13 Jan 2008 10:18:17 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4789e569-74e6"
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfa86a83740e065e1520c64753df3869
3b7ec8fc3eba7173cafaed1b384b8ad2e82889ea
4d461b9ab4a10a5a1ee6e25ddc519c74f069503f37d9adec105fe9fc19e3390d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D461B9AB4A10A5A1EE6E25DDC519C74F069503F37D9ADEC105FE9FC19E3390D"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5260
Expires: Tue, 29 Nov 2022 23:37:08 GMT
Date: Tue, 29 Nov 2022 22:09:28 GMT
Connection: keep-alive
rot.spotsniper.ru/?src=ujs6
200 OK 1 B URL HTTP/1.1 rot.spotsniper.ru/?src=ujs6
IP
ASN #44066 diva-e Datacenters GmbH
File type very short file (no magic)
Hash 7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
GET /?src=ujs6 HTTP/1.1
Host: rot.spotsniper.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:28 GMT
Content-Type: application/javascript
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
counter.yadro.ru/hit;ucoznet?r;s1280*1024*24;uhttps%3A//alexey.at.ua/load/12-1-0-38;1669759766525
200 OK 43 B URL HTTP/1.1 counter.yadro.ru/hit;ucoznet?r;s1280*1024*24;uhttps%3A//alexey.at.ua/load/12-1-0-38;1669759766525
IP
ASN #39134 United Network LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit;ucoznet?r;s1280*1024*24;uhttps%3A//alexey.at.ua/load/12-1-0-38;1669759766525 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 29 Nov 2022 22:09:28 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Mon, 29 Nov 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__ru.js
200 OK 167 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__ru.js
IP
File type ASCII text, with very long lines (1329)
Size 167 kB (167119 bytes)
Hash e269c265007dcb5ecc3f2aa6155bc52a
cb8eed3b2684c2767bf45d652f6d630740051d04
85d7f1b40b063a3a07449151918eb63b85f2c6ff5d54936618a1a737ab5c7dbf
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__ru.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alexey.at.ua
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 167119
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 20:27:34 GMT
expires: Tue, 28 Nov 2023 20:27:34 GMT
cache-control: public, max-age=31536000
age: 92514
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash e3dd454ccb82fdcebfc23856163e9cb1
984702bf12474a29e6313cac2fb9c29eb735f4eb
2d36fc5e41e4a39e8add8de10284613400d2a1e1428bdc43a939b0663a14f93d
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 22:09:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 03 Dec 2022 17:48:50 GMT
ETag: "984702bf12474a29e6313cac2fb9c29eb735f4eb"
Last-Modified: Tue, 29 Nov 2022 17:48:51 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3251
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771eaaf63863b509-OSL
rot.spotsniper.ru/?src=ujs6&s_subid=btn
200 OK 1 B URL HTTP/1.1 rot.spotsniper.ru/?src=ujs6&s_subid=btn
IP
ASN #44066 diva-e Datacenters GmbH
File type very short file (no magic)
Hash 7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
GET /?src=ujs6&s_subid=btn HTTP/1.1
Host: rot.spotsniper.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:28 GMT
Content-Type: application/javascript
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
hdbcode.com/b3aad1kk.js
200 OK 9.1 kB IP
ASN #39572 DataWeb Global Group B.V.
Hash 25bf521f273a67f5dea244283cfdfee1
8004918677fc94330c565512aa2e65c68d623574
6ac516727d0d89a7c5dafa3cd63e8f4740d6725a76fc6a7a97d4182e90ad4731
GET /b3aad1kk.js HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:27 GMT
content-type: application/javascript
last-modified: Mon, 28 Nov 2022 17:39:16 GMT
vary: Accept-Encoding
etag: W/"6384f244-565e"
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 79840cac9f5ae1a38c0faaaf59e7fe82
f76a3e50f566269c574e7f8904021640366dcc56
1f39ccbd6ad4a9c8fcc3e4d7d83c4c21f9e9fd9fd0d98c6b70cd1bbbdfeb7798
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:09:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:09:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
counter.yadro.ru/hit;clickgate08?r;s1280*1024*24;uhttps%3A//alexey.at.ua/load/12-1-0-38;1669759766728
200 OK 43 B URL HTTP/1.1 counter.yadro.ru/hit;clickgate08?r;s1280*1024*24;uhttps%3A//alexey.at.ua/load/12-1-0-38;1669759766728
IP
ASN #39134 United Network LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit;clickgate08?r;s1280*1024*24;uhttps%3A//alexey.at.ua/load/12-1-0-38;1669759766728 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 29 Nov 2022 22:09:28 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Mon, 29 Nov 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
s.uuidksinc.net/match/1/?cb_url=https%3A%2F%2Fhdbcode.com%2Fsetuid%3F%5BUID%5D&gdpr=0&gdpr_consent=
302 Found 0 B URL HTTP/2 s.uuidksinc.net/match/1/?cb_url=https%3A%2F%2Fhdbcode.com%2Fsetuid%3F%5BUID%5D&gdpr=0&gdpr_consent=
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/1/?cb_url=https%3A%2F%2Fhdbcode.com%2Fsetuid%3F%5BUID%5D&gdpr=0&gdpr_consent= HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:28 GMT
content-length: 0
location: https://hdbcode.com/setuid?VBDzGSDL9Mm2QcQcL4op
set-cookie: jcsuuid=VBDzGSDL9Mm2QcQcL4op; expires=Wed, 29 Nov 2023 22:09:28 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
themes.googleusercontent.com/static/fonts/ptsans/v5/LKf8nhXsWg5ybwEGXk8UBQ.woff
200 OK 60 kB URL HTTP/2 themes.googleusercontent.com/static/fonts/ptsans/v5/LKf8nhXsWg5ybwEGXk8UBQ.woff
IP
File type Web Open Font Format, TrueType, length 60332, version 1.1\012- data
Hash 0d6d6ae28614efe13ec053eaeef473c1
20cd1c419ba0763bb4bbb1435bc0aed00452af2e
5dfdd878d2d6bdd50f37fde1800a044753dd00bac3c3a30a35f999b422a48ee1
GET /static/fonts/ptsans/v5/LKf8nhXsWg5ybwEGXk8UBQ.woff HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://alexey.at.ua
Connection: keep-alive
Referer: https://s4.ucoz.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
timing-allow-origin: *
content-length: 60332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:55:59 GMT
expires: Thu, 23 Nov 2023 19:55:59 GMT
cache-control: public, max-age=31536000
age: 526409
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s4.ucoz.net/adv/dummy/000/img/bg.gif
200 OK 1.3 kB URL HTTP/1.1 s4.ucoz.net/adv/dummy/000/img/bg.gif
IP
ASN #204343 Compubyte Limited
File type GIF image data, version 89a, 485 x 3\012- data
Hash b19967d808ed7c42b41316d6c8474f55
18d80748bd4041b13a3373a429281ec65347a0e2
16c9962c4ecd52efc16d9d639d52fc60b9e427b6e454190d162f1aa1d220ad50
GET /adv/dummy/000/img/bg.gif HTTP/1.1
Host: s4.ucoz.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://s4.ucoz.net/adv/dummy/000/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:38 GMT
Content-Type: image/gif
Content-Length: 1268
Last-Modified: Tue, 26 Mar 2019 14:28:17 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5c9a3701-4f4"
Accept-Ranges: bytes
hdbcode.com/setuid?VBDzGSDL9Mm2QcQcL4op
200 OK 74 B URL HTTP/2 hdbcode.com/setuid?VBDzGSDL9Mm2QcQcL4op
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET /setuid?VBDzGSDL9Mm2QcQcL4op HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://alexey.at.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:28 GMT
content-type: image/png
content-length: 74
set-cookie: dmpUid=VBDzGSDL9Mm2QcQcL4op; expires=Wed, 29 Nov 2023 22:09:28 GMT; domain=hdbcode.com; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 79840cac9f5ae1a38c0faaaf59e7fe82
f76a3e50f566269c574e7f8904021640366dcc56
1f39ccbd6ad4a9c8fcc3e4d7d83c4c21f9e9fd9fd0d98c6b70cd1bbbdfeb7798
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:09:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
counter.yadro.ru/hit;ucoz_topline_worldwide?rhttps%3A//alexey.at.ua/load/12-1-0-38;s1280*1024*24;uhttps%3A//alexey.at.ua/%3FnyzY%2521UabalLZH4pFFrYI%2521qaIinSEEWL2D6u1ICyLxGJbThkE%2521RCPMqhb6f%255ExMxTG81%253BRb1Md44DF0S%2521rSywo;1669759767093
200 OK 43 B URL HTTP/1.1 counter.yadro.ru/hit;ucoz_topline_worldwide?rhttps%3A//alexey.at.ua/load/12-1-0-38;s1280*1024*24;uhttps%3A//alexey.at.ua/%3FnyzY%2521UabalLZH4pFFrYI%2521qaIinSEEWL2D6u1ICyLxGJbThkE%2521RCPMqhb6f%255ExMxTG81%253BRb1Md44DF0S%2521rSywo;1669759767093
IP
ASN #39134 United Network LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit;ucoz_topline_worldwide?rhttps%3A//alexey.at.ua/load/12-1-0-38;s1280*1024*24;uhttps%3A//alexey.at.ua/%3FnyzY%2521UabalLZH4pFFrYI%2521qaIinSEEWL2D6u1ICyLxGJbThkE%2521RCPMqhb6f%255ExMxTG81%253BRb1Md44DF0S%2521rSywo;1669759767093 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 29 Nov 2022 22:09:28 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Mon, 29 Nov 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322502&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b
200 OK 0 B URL HTTP/2 hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322502&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322502&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Origin: https://alexey.at.ua
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:28 GMT
content-length: 0
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: https://alexey.at.ua
X-Firefox-Spdy: h2
hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322613&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b
200 OK 0 B URL HTTP/2 hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322613&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b
IP
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322613&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Origin: https://alexey.at.ua
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:28 GMT
content-length: 0
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: https://alexey.at.ua
X-Firefox-Spdy: h2
uuidksinc.net/matchx?gdpr=0&gdpr_consent=
200 OK 2.1 kB URL HTTP/2 uuidksinc.net/matchx?gdpr=0&gdpr_consent=
IP
ASN #39572 DataWeb Global Group B.V.
Hash ac04197c68ceaad5d1901bb4be4399e6
4a53982b1266e6dc196a00f5404a8f3d7e374dfa
325064aea0c0f2b36fec1355f2c34b0cf53f96941a8ea6bfa035df26d44e0847
GET /matchx?gdpr=0&gdpr_consent= HTTP/1.1
Host: uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Cookie: jcsuuid=VBDzGSDL9Mm2QcQcL4op
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:28 GMT
content-type: text/html
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
200 OK 73 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (587)
Hash 1d79426653c3b55939eaec59a2ce8ef5
c6db0314df7a4e5c08047f6306e0b79a1ad3bab2
2729cfe8b2f5142cf99734cbb4e1a3c6cd35868d279cd796db49ef62742ef993
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73267
date: Tue, 29 Nov 2022 22:09:28 GMT
access-control-allow-origin: *
etag: "6384bff1-11e33"
expires: Tue, 29 Nov 2022 23:09:28 GMT
last-modified: Mon, 28 Nov 2022 17:04:33 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
z.cdn.adtarget.me/smc?s=22&u=VBDzGSDL9Mm2QcQcL4op
204 No Content 0 B URL HTTP/2 z.cdn.adtarget.me/smc?s=22&u=VBDzGSDL9Mm2QcQcL4op
IP
ASN #60781 LeaseWeb Netherlands B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smc?s=22&u=VBDzGSDL9Mm2QcQcL4op HTTP/1.1
Host: z.cdn.adtarget.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uuidksinc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Tue, 29 Nov 2022 22:03:03 GMT
X-Firefox-Spdy: h2
hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322613&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b
200 OK 7.4 kB URL HTTP/2 hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322613&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b
IP
ASN #39572 DataWeb Global Group B.V.
Hash c58371748460ca0807bdbdab89d09515
c7a135f7e6fc01786ac33b54e762ef92aa411de2
40491318e3d733b854509df2a37c3e03a48d73387e5615ecd81941c8e8749c3f
GET /get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322613&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://alexey.at.ua
Connection: keep-alive
Cookie: dmpUid=VBDzGSDL9Mm2QcQcL4op
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:28 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: https://alexey.at.ua
content-encoding: gzip
X-Firefox-Spdy: h2
ads.go2net.com.ua/adxcm.aspx?ssp=cf718592-a39d-4545-9d43-d632e2426981&redir=1
302 Found 0 B URL HTTP/1.1 ads.go2net.com.ua/adxcm.aspx?ssp=cf718592-a39d-4545-9d43-d632e2426981&redir=1
IP
ASN #20773 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /adxcm.aspx?ssp=cf718592-a39d-4545-9d43-d632e2426981&redir=1 HTTP/1.1
Host: ads.go2net.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uuidksinc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 29 Nov 2022 22:09:28 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
X-Xss-Protection: 0
P3p: CP="NID DSP ALL COR"
Location: https://s.uuidksinc.net/match/760/63a1ab9026eb416bac398a2cc45316e2
Set-Cookie: am-uid=63a1ab9026eb416bac398a2cc45316e2; expires=Mon, 27 Feb 2023 22:09:28 GMT; domain=ads.go2net.com.ua; secure; SameSite=None
Keep-Alive: timeout=25
dmpprof.com/matching/external/pixel.gif?sid=14&uid=VBDzGSDL9Mm2QcQcL4op
200 OK 43 B URL HTTP/2 dmpprof.com/matching/external/pixel.gif?sid=14&uid=VBDzGSDL9Mm2QcQcL4op
IP
ASN #12695 LLC Digital Network
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /matching/external/pixel.gif?sid=14&uid=VBDzGSDL9Mm2QcQcL4op HTTP/1.1
Host: dmpprof.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uuidksinc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Tue, 29 Nov 2022 22:09:28 GMT
content-type: image/gif
content-length: 43
last-modified: Tue, 29 Nov 2022 22:09:28 GMT
expires: Wed, 11 Nov 1998 11:11:11 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: nmatch=14_VBDzGSDL9Mm2QcQcL4op; expires=Wed, 30 Nov 2022 10:09:28 GMT; path=/; secure; SameSite=None
uid=temp-91.90.42.154-; expires=Wed, 30 Nov 2022 00:09:28 GMT; path=/; secure; SameSite=None
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS, PUT, DELETE, HEAD, PATCH, GET, POST, OPTIONS
access-control-allow-headers: Origin,Content-Type,Accept,Authorization,X-Requested-With, DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
X-Firefox-Spdy: h2
s.uuidksinc.net/match/760/63a1ab9026eb416bac398a2cc45316e2
200 OK 74 B URL HTTP/2 s.uuidksinc.net/match/760/63a1ab9026eb416bac398a2cc45316e2
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET /match/760/63a1ab9026eb416bac398a2cc45316e2 HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uuidksinc.net/
Connection: keep-alive
Cookie: jcsuuid=VBDzGSDL9Mm2QcQcL4op
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:28 GMT
content-type: image/png
content-length: 74
set-cookie: jcsuuid=VBDzGSDL9Mm2QcQcL4op; expires=Wed, 29 Nov 2023 22:09:28 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
mc.yandex.ru/watch/73418029/1?wmode=7&page-url=https%3A%2F%2Falexey.at.ua%2Fload%2F12-1-0-38&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1054%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A677694008229%3Ahid%3A533033419%3Az%3A0%3Ai%3A20221129220927%3Aet%3A1669759768%3Ac%3A1%3Arn%3A4383826%3Arqn%3A1%3Au%3A1669759768994759228%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C158%2C177%2C0%2C302%2C0%2C%2C411%2C7%2C%2C%2C%2C1128%3Ans%3A1669759765599%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669759768%3At%3A%D0%A7%D0%B5%D1%80%D1%82%D0%B5%D0%B6%20%D1%8D%D0%BB%D0%B5%D0%BA%D1%82%D1%80%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%BE%D0%B9%20%D1%81%D1%85%D0%B5%D0%BC%D1%8B%20-%20%D0%9F%D1%80%D0%BE%D1%87%D0%B5%D0%B5%20-%20%D0%A3%D1%87%D0%B5%D0%B1%D0%B0%20%D0%B8%20%D0%BD%D0%B0%D1%83%D0%BA%D0%B0%20-%20%D0%9A%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%84%D0%B0%D0%B9%D0%BB%D0%BE%D0%B2%20-%20%D0%9F%D0%B5%D1%80%D1%81%D0%BE%D0%BD%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%90%D0%BB%D0%B5%D0%BA%D1%81%D0%B5%D1%8F%20%D0%93%D0%BE%D0%BD%D1%87%D0%B0%D1%80%D0%B5%D0%BD%D0%BA%D0%BE&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
200 OK 400 B URL HTTP/2 mc.yandex.ru/watch/73418029/1?wmode=7&page-url=https%3A%2F%2Falexey.at.ua%2Fload%2F12-1-0-38&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1054%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A677694008229%3Ahid%3A533033419%3Az%3A0%3Ai%3A20221129220927%3Aet%3A1669759768%3Ac%3A1%3Arn%3A4383826%3Arqn%3A1%3Au%3A1669759768994759228%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C158%2C177%2C0%2C302%2C0%2C%2C411%2C7%2C%2C%2C%2C1128%3Ans%3A1669759765599%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669759768%3At%3A%D0%A7%D0%B5%D1%80%D1%82%D0%B5%D0%B6%20%D1%8D%D0%BB%D0%B5%D0%BA%D1%82%D1%80%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%BE%D0%B9%20%D1%81%D1%85%D0%B5%D0%BC%D1%8B%20-%20%D0%9F%D1%80%D0%BE%D1%87%D0%B5%D0%B5%20-%20%D0%A3%D1%87%D0%B5%D0%B1%D0%B0%20%D0%B8%20%D0%BD%D0%B0%D1%83%D0%BA%D0%B0%20-%20%D0%9A%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%84%D0%B0%D0%B9%D0%BB%D0%BE%D0%B2%20-%20%D0%9F%D0%B5%D1%80%D1%81%D0%BE%D0%BD%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%90%D0%BB%D0%B5%D0%BA%D1%81%D0%B5%D1%8F%20%D0%93%D0%BE%D0%BD%D1%87%D0%B0%D1%80%D0%B5%D0%BD%D0%BA%D0%BE&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash d722fe37abb05452a31aa4490c8b38c0
9fa43f6066b62f945f6da8dc3faeedb11a4a58a2
729addaa9fcdcacc8bea33ca425d9f013b8fb3c73f392019687707b86dfdc97c
GET /watch/73418029/1?wmode=7&page-url=https%3A%2F%2Falexey.at.ua%2Fload%2F12-1-0-38&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1054%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A677694008229%3Ahid%3A533033419%3Az%3A0%3Ai%3A20221129220927%3Aet%3A1669759768%3Ac%3A1%3Arn%3A4383826%3Arqn%3A1%3Au%3A1669759768994759228%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C158%2C177%2C0%2C302%2C0%2C%2C411%2C7%2C%2C%2C%2C1128%3Ans%3A1669759765599%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669759768%3At%3A%D0%A7%D0%B5%D1%80%D1%82%D0%B5%D0%B6%20%D1%8D%D0%BB%D0%B5%D0%BA%D1%82%D1%80%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%BE%D0%B9%20%D1%81%D1%85%D0%B5%D0%BC%D1%8B%20-%20%D0%9F%D1%80%D0%BE%D1%87%D0%B5%D0%B5%20-%20%D0%A3%D1%87%D0%B5%D0%B1%D0%B0%20%D0%B8%20%D0%BD%D0%B0%D1%83%D0%BA%D0%B0%20-%20%D0%9A%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%84%D0%B0%D0%B9%D0%BB%D0%BE%D0%B2%20-%20%D0%9F%D0%B5%D1%80%D1%81%D0%BE%D0%BD%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%90%D0%BB%D0%B5%D0%BA%D1%81%D0%B5%D1%8F%20%D0%93%D0%BE%D0%BD%D1%87%D0%B0%D1%80%D0%B5%D0%BD%D0%BA%D0%BE&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alexey.at.ua
Referer: https://alexey.at.ua/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Tue, 29 Nov 2022 22:09:28 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://alexey.at.ua
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 29-Nov-2022 22:09:28 GMT
last-modified: Tue, 29-Nov-2022 22:09:28 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:48:03 GMT
expires: Fri, 24 Nov 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 433285
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
200 OK 9.8 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 9832, version 1.0\012- data
Hash efe937997e08e15b056a3643e2734636
d02decbf472a0928b054cc8e4b13684539a913db
53f2931d978bf9b24d43b5d556ecf315a6b3f089699c5ba3a954c4dde8663361
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9832
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 12:29:20 GMT
expires: Fri, 24 Nov 2023 12:29:20 GMT
cache-control: public, max-age=31536000
age: 466808
last-modified: Mon, 16 Oct 2017 17:32:49 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 472dbdeb87c458957c47df7db98cbf02
033798513259154da9f63d7961d77323852b055c
4373771ea27b886567636cce8610e61e2b83485b30b16ec3b3383dda78b23bf5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4373771EA27B886567636CCE8610E61E2B83485B30B16EC3B3383DDA78B23BF5"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8140
Expires: Wed, 30 Nov 2022 00:25:08 GMT
Date: Tue, 29 Nov 2022 22:09:28 GMT
Connection: keep-alive
mc.yandex.ru/metrika/advert.gif
200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 29 Nov 2022 22:09:28 GMT
access-control-allow-origin: *
etag: "6384bff1-2b"
expires: Tue, 29 Nov 2022 23:09:28 GMT
accept-ranges: bytes
last-modified: Mon, 28 Nov 2022 17:04:33 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
dmg.digitaltarget.ru/1/6573/i/i?a=662&e=VBDzGSDL9Mm2QcQcL4op&i=0.7641332345490621
307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/6573/i/i?a=662&e=VBDzGSDL9Mm2QcQcL4op&i=0.7641332345490621
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/6573/i/i?a=662&e=VBDzGSDL9Mm2QcQcL4op&i=0.7641332345490621 HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uuidksinc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Tue, 29 Nov 2022 22:09:28 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/6573/i/i?call_source=awg&ts=1669759768789&a=662&e=VBDzGSDL9Mm2QcQcL4op&i=0.7641332345490621
Set-Cookie: viuserid=DDYlh5ec42u2POA78kTn; Max-Age=93312000; Expires=Thu, 13 Nov 2025 22:09:28 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
fcgi4.gnezdo.ru/cookie_matching/kadam/VBDzGSDL9Mm2QcQcL4op
302 Found 472 B URL HTTP/2 fcgi4.gnezdo.ru/cookie_matching/kadam/VBDzGSDL9Mm2QcQcL4op
IP
ASN #48347 JSC Mediasoft ekspert
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
GET /cookie_matching/kadam/VBDzGSDL9Mm2QcQcL4op HTTP/1.1
Host: fcgi4.gnezdo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uuidksinc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 29 Nov 2022 22:09:28 GMT
location: https://fcgi4.gnezdo.ru/cookie_matching/kadam/VBDzGSDL9Mm2QcQcL4op/?redirect=1
access-control-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With
access-control-allow-credentials: true
set-cookie: uid=XV9maWOGgxiZ0Js1/2tdAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
X-Firefox-Spdy: h2
fcgi4.gnezdo.ru/cookie_matching/kadam/VBDzGSDL9Mm2QcQcL4op/?redirect=1
204 No Content 0 B URL HTTP/2 fcgi4.gnezdo.ru/cookie_matching/kadam/VBDzGSDL9Mm2QcQcL4op/?redirect=1
IP
ASN #48347 JSC Mediasoft ekspert
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie_matching/kadam/VBDzGSDL9Mm2QcQcL4op/?redirect=1 HTTP/1.1
Host: fcgi4.gnezdo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uuidksinc.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 29 Nov 2022 22:09:28 GMT
set-cookie: uid=XV9maWOGgxiZ0Js1/2t6Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
X-Firefox-Spdy: h2
dmg.digitaltarget.ru/awg/custom/6573/i/i?call_source=awg&ts=1669759768789&a=662&e=VBDzGSDL9Mm2QcQcL4op&i=0.7641332345490621
200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/6573/i/i?call_source=awg&ts=1669759768789&a=662&e=VBDzGSDL9Mm2QcQcL4op&i=0.7641332345490621
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/6573/i/i?call_source=awg&ts=1669759768789&a=662&e=VBDzGSDL9Mm2QcQcL4op&i=0.7641332345490621 HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uuidksinc.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:28 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f75defbbac343a961a1725c5680c6502
46452b3db3299f7e30fab0c6b733c7eab14aa36b
5add82387ae71f3fd0c86fce74678d3ac9ae4daa28f1deb2242c4cee8e7aaa2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5ADD82387AE71F3FD0C86FCE74678D3AC9AE4DAA28F1DEB2242C4CEE8E7AAA2A"
Last-Modified: Tue, 29 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4008
Expires: Tue, 29 Nov 2022 23:16:16 GMT
Date: Tue, 29 Nov 2022 22:09:28 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f75defbbac343a961a1725c5680c6502
46452b3db3299f7e30fab0c6b733c7eab14aa36b
5add82387ae71f3fd0c86fce74678d3ac9ae4daa28f1deb2242c4cee8e7aaa2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5ADD82387AE71F3FD0C86FCE74678D3AC9AE4DAA28F1DEB2242C4CEE8E7AAA2A"
Last-Modified: Tue, 29 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4008
Expires: Tue, 29 Nov 2022 23:16:16 GMT
Date: Tue, 29 Nov 2022 22:09:28 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f75defbbac343a961a1725c5680c6502
46452b3db3299f7e30fab0c6b733c7eab14aa36b
5add82387ae71f3fd0c86fce74678d3ac9ae4daa28f1deb2242c4cee8e7aaa2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5ADD82387AE71F3FD0C86FCE74678D3AC9AE4DAA28F1DEB2242C4CEE8E7AAA2A"
Last-Modified: Tue, 29 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4008
Expires: Tue, 29 Nov 2022 23:16:16 GMT
Date: Tue, 29 Nov 2022 22:09:28 GMT
Connection: keep-alive
fonts.googleapis.com/css2?family=Roboto&display=swap
200 OK 1.0 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto&display=swap
IP
Hash 38df0e17a10a3eae454446f9ffc1eb4c
95228369b163bd7e17e8d2522be8f6f0741fa472
7aa4f282337acd40ab59a44cebccc1f569c121a3c11300d4303c8d4dbf45ff8a
GET /css2?family=Roboto&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 22:09:28 GMT
date: Tue, 29 Nov 2022 22:09:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f75defbbac343a961a1725c5680c6502
46452b3db3299f7e30fab0c6b733c7eab14aa36b
5add82387ae71f3fd0c86fce74678d3ac9ae4daa28f1deb2242c4cee8e7aaa2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5ADD82387AE71F3FD0C86FCE74678D3AC9AE4DAA28F1DEB2242C4CEE8E7AAA2A"
Last-Modified: Tue, 29 Nov 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4008
Expires: Tue, 29 Nov 2022 23:16:16 GMT
Date: Tue, 29 Nov 2022 22:09:28 GMT
Connection: keep-alive
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://alexey.at.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:33:54 GMT
expires: Thu, 23 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 527734
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 22:09:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.cdnkimg.com/auto/500x175/image/tesr/5598/598/rect_6367e10210e40t1667752194r6985.jpg
200 OK 58 kB URL HTTP/2 i.cdnkimg.com/auto/500x175/image/tesr/5598/598/rect_6367e10210e40t1667752194r6985.jpg
IP
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, baseline, precision 8, 500x175, components 3\012- data
Hash 54babbaa9b539b72d615a62364253770
f68b002ca066ed6c0a364cc66975de17d3579eed
2459e3da24aae984b079c4c3b6732c72546a6781d1fee7c7d8b2815a367d70c4
GET /auto/500x175/image/tesr/5598/598/rect_6367e10210e40t1667752194r6985.jpg HTTP/1.1
Host: i.cdnkimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 22:09:28 GMT
content-type: image/jpeg
content-length: 57706
server: nginx/1.19.0
cache-control: max-age=1209600
x-cache-status: MISS
expires: Tue, 13 Dec 2022 22:09:28 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.cdnkimg.com/auto/500x175/image/tesr/2064/64/rect_6324c76edd512t1663354734r3464.jpeg
200 OK 49 kB URL HTTP/2 i.cdnkimg.com/auto/500x175/image/tesr/2064/64/rect_6324c76edd512t1663354734r3464.jpeg
IP
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, baseline, precision 8, 500x175, components 3\012- data
Hash f8cb974015e9c2a990988db1d76a8b8b
5249819d191feee626ecda66be5f895533beb354
d838214601d9062b90c99431f457491886d40b334b6d149edaff9f065f35da68
GET /auto/500x175/image/tesr/2064/64/rect_6324c76edd512t1663354734r3464.jpeg HTTP/1.1
Host: i.cdnkimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 22:09:28 GMT
content-type: image/jpeg
content-length: 49109
server: nginx/1.19.0
cache-control: max-age=1209600
x-cache-status: MISS
expires: Tue, 13 Dec 2022 22:09:28 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.cdnkimg.com/auto/250x310/image/tesr/5598/598/6367e10210e40t1667752194r6985.jpg
200 OK 48 kB URL HTTP/2 i.cdnkimg.com/auto/250x310/image/tesr/5598/598/6367e10210e40t1667752194r6985.jpg
IP
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, baseline, precision 8, 250x310, components 3\012- data
Hash a02f1f15381f19a7c4bbfd25b228aa69
367886c04d716607a089b6a7a58417e32536cea9
b2e4f938685467e5a0f1ad4c7983f2a8f70cbc6fd9cf2240485cb8851f3a3b4e
GET /auto/250x310/image/tesr/5598/598/6367e10210e40t1667752194r6985.jpg HTTP/1.1
Host: i.cdnkimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 22:09:28 GMT
content-type: image/jpeg
content-length: 47947
server: nginx/1.19.0
cache-control: max-age=1209600
x-cache-status: MISS
expires: Tue, 13 Dec 2022 22:09:28 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9ad71fbf9d6e6ee5af175b7e7cc82097
75fc5d6fdc40440bea66f90bba0917b537512fa6
1c068c57eb36fdd08de8f0a67b79d1208a0b10f8cf26627d62a2311446569e9e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1C068C57EB36FDD08DE8F0A67B79D1208A0B10F8CF26627D62A2311446569E9E"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18792
Expires: Wed, 30 Nov 2022 03:22:41 GMT
Date: Tue, 29 Nov 2022 22:09:29 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 794d6df80c17a351accf9d55d5fcdf8c
42f48e16816d4b771b7b86a50c87e1b9ce49a3ac
defe065fbc602f7b3e470599a179a470e0ae184224c419e2820d0fc0cdf8d6ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DEFE065FBC602F7B3E470599A179A470E0AE184224C419E2820D0FC0CDF8D6EC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4326
Expires: Tue, 29 Nov 2022 23:21:35 GMT
Date: Tue, 29 Nov 2022 22:09:29 GMT
Connection: keep-alive
i.cdnkimg.com/auto/250x310/image/tesr/2064/64/6324c76edd512t1663354734r3464.jpeg
200 OK 41 kB URL HTTP/2 i.cdnkimg.com/auto/250x310/image/tesr/2064/64/6324c76edd512t1663354734r3464.jpeg
IP
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, baseline, precision 8, 250x310, components 3\012- data
Hash 53b48e12de8c87fc69596be2fc261286
8bb3368c66ce8e7231282bd4d56850267928e936
5703502456f2e134532465e22ab75b317a7bcf8ee4b69c13e67d744ba2df7f6f
GET /auto/250x310/image/tesr/2064/64/6324c76edd512t1663354734r3464.jpeg HTTP/1.1
Host: i.cdnkimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 22:09:28 GMT
content-type: image/jpeg
content-length: 40769
server: nginx/1.19.0
cache-control: max-age=1209600
x-cache-status: MISS
expires: Tue, 13 Dec 2022 22:09:28 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.cdnkimg.com/auto/500x175/image/tesr/4607/607/rect_63665e752ca7dt1667653237r8782.png
200 OK 83 kB URL HTTP/2 i.cdnkimg.com/auto/500x175/image/tesr/4607/607/rect_63665e752ca7dt1667653237r8782.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 500 x 175, 8-bit/color RGB, non-interlaced\012- data
Hash 1522b79e7fbef585ebcf720666a526cf
d67509f4dbe5a5b2f1870cbcea2fd48513e8af39
d48aef40b009ac7e8c797bc06c81c64981c10b8a072857aa59daf90a1fae4899
GET /auto/500x175/image/tesr/4607/607/rect_63665e752ca7dt1667653237r8782.png HTTP/1.1
Host: i.cdnkimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 22:09:28 GMT
content-type: image/png
content-length: 82582
server: nginx/1.19.0
cache-control: max-age=1209600
x-cache-status: HIT
expires: Tue, 13 Dec 2022 22:09:28 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
i.cdnkimg.com/auto/250x310/image/tesr/4607/607/63665e752ca7dt1667653237r8782.png
200 OK 75 kB URL HTTP/2 i.cdnkimg.com/auto/250x310/image/tesr/4607/607/63665e752ca7dt1667653237r8782.png
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 250 x 310, 8-bit/color RGB, non-interlaced\012- data
Hash 720b68e7e14247c253e18fa8a06d9a31
0dced8c5449c74abba087d085e2ea1c115386dac
09a5dd946cb855a3498766074673861c514034da46cef1f69e07cfe17bb69d53
GET /auto/250x310/image/tesr/4607/607/63665e752ca7dt1667653237r8782.png HTTP/1.1
Host: i.cdnkimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 29 Nov 2022 22:09:28 GMT
content-type: image/png
content-length: 74570
server: nginx/1.19.0
cache-control: max-age=1209600
x-cache-status: HIT
expires: Tue, 13 Dec 2022 22:09:28 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9ad71fbf9d6e6ee5af175b7e7cc82097
75fc5d6fdc40440bea66f90bba0917b537512fa6
1c068c57eb36fdd08de8f0a67b79d1208a0b10f8cf26627d62a2311446569e9e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1C068C57EB36FDD08DE8F0A67B79D1208A0B10F8CF26627D62A2311446569E9E"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18792
Expires: Wed, 30 Nov 2022 03:22:41 GMT
Date: Tue, 29 Nov 2022 22:09:29 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5323
Expires: Tue, 29 Nov 2022 23:38:12 GMT
Date: Tue, 29 Nov 2022 22:09:29 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5323
Expires: Tue, 29 Nov 2022 23:38:12 GMT
Date: Tue, 29 Nov 2022 22:09:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83c1fedec73299637cc7dc47c48af758
2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:01:17 GMT
age: 68892
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
s.viitjcfx.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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
200 OK 74 B URL HTTP/2 s.viitjcfx.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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:29 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cce27a1fe8c0222811a5ce0e7f89e1cb
28c165bac8cf68cd1b0763c311aece00672cb3a5
4530e34a47ef78c2c2b0d34a0511253a61f1927b192ab42f82361002ff10819e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9376
x-amzn-requestid: 265257bd-0177-4e63-879b-e9f99d0d16c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cTZANFW2oAMFlyw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63846ecd-6767ccde3361eb593108603d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 08:18:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ntQPVFK12XqhVCMlaq0oIDx7k6e2xQdp1Y67W1nG6ayhG1XFekz5CQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:59:02 GMT
age: 627
etag: "28c165bac8cf68cd1b0763c311aece00672cb3a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
s.viitjcfx.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==?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
200 OK 74 B URL HTTP/2 s.viitjcfx.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==?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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==?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:29 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4058fd62595d15c58b3d3266de9865a
d0dff35eb78f129b5da407043037bcf9c27e55c0
ab996c23d58871a2ad53f0c34688c87f0d7c0eac5d0c1d8265b86951248449fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4871
x-amzn-requestid: e2dfa7b8-ded7-4104-a913-1b84746a3c6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLDUUEy_oAMFgSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638118e8-0b229e0f60ff019d26800dd9;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 19:35:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9BUuT9WFwAQMnl8JiTDKo-zHgDL0AdjAAAIh0Mx405zbGwhvRouebQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 12:20:15 GMT
age: 35354
etag: "d0dff35eb78f129b5da407043037bcf9c27e55c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
s.viitjcfx.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==
200 OK 74 B URL HTTP/2 s.viitjcfx.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==
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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== HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:29 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9ad71fbf9d6e6ee5af175b7e7cc82097
75fc5d6fdc40440bea66f90bba0917b537512fa6
1c068c57eb36fdd08de8f0a67b79d1208a0b10f8cf26627d62a2311446569e9e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1C068C57EB36FDD08DE8F0A67B79D1208A0B10F8CF26627D62A2311446569E9E"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18792
Expires: Wed, 30 Nov 2022 03:22:41 GMT
Date: Tue, 29 Nov 2022 22:09:29 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9ad71fbf9d6e6ee5af175b7e7cc82097
75fc5d6fdc40440bea66f90bba0917b537512fa6
1c068c57eb36fdd08de8f0a67b79d1208a0b10f8cf26627d62a2311446569e9e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1C068C57EB36FDD08DE8F0A67B79D1208A0B10F8CF26627D62A2311446569E9E"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18792
Expires: Wed, 30 Nov 2022 03:22:41 GMT
Date: Tue, 29 Nov 2022 22:09:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2a5c8d4113d282600462749315f2c4f
e2b4d2e15bb7c086333c0da438873e4c139ba931
9b5d0e5dd11d4cbf1c78a71730cd63544170c91ab635bf3cf917827ac84874e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4417
x-amzn-requestid: 01de83c2-51d2-4329-98f6-09a0edf46942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnGEcRIAMFaXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852960-34583b6c588a0e937fcfaa46;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jb1eLyzn88lV_UTId-Fl3OnftDn8c7o5j8d16_nzHCNST_68MZ1pvA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 16:38:27 GMT
age: 19862
etag: "e2b4d2e15bb7c086333c0da438873e4c139ba931"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
s.viitjcfx.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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
200 OK 74 B URL HTTP/2 s.viitjcfx.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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET /n/1/pniesyteaf7fyc3bpfzva2kpmnvqc7c6bjrxq6symnfg34o7cpsdqxrkfvjgqglmmmhfw3qhn53h4vdjibgopyc2jh64n25dtkxypk5nhfq33f4zqfgfcvcaiqbdseibkll2xe6ducx5dspwjaa2vugv25tsb6eaxlreyepvl7cuumkyw2wl6osrmmbvmt2lqea4b2tnoa2bamswj5fwcueinpjdsshbgnon6svpyr76iu444vgyuv7dikqvdnvmx45ii2cikmzhdncrljq36bnmnc6zjotwrfiwzkktijgbich6jz2ncul35rjvdglihche56n47lifpmrz7o2jr7smunqfdcsvkfvbyk53krhuwylqetn3qb7dnmyqghap2fjpn3pj4szzntnjwbfkgus4lvjdqsmjmpxpc5dqwdg5b5s2g3ia2f6vinfpfwkl54drq2jskzhuwynai6ofaxu3nmzi4tkjqfjpzx45xfhicmc7yvegsni6m5vfs4kyatdeyshzkpafl4r3gtatcv77jbu6q64yx2durkjrtsr7iyfapoe5zh7pnpffkk6jmvp2hgkr4scgunsrjtdmgu4jzzi2qtpggdhewswbktqnfsfej7atmv77j6xmbxf4rg7pe24kkla7fwumqkv23r5wndrffl3nxnkgyaqqpqzs4yisanzcypkkauywskrfay4t723eke======?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:29 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpbgEFOIAMF71A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:52:21 GMT
age: 62228
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
s.viitjcfx.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=
200 OK 74 B URL HTTP/2 s.viitjcfx.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=
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET /i/1/pniesyteaf7fyc3bpfzva2kpmnvqc7c6bjrxq6symnfg34o7cpsdqxrkfvjgqglmmmhfw3qhn53h4vdjibgopyc2jh64n25dtkxypk5nhfq33f4zqfgfcvcaiqbdseibkll2xe6ducx5dspwjaa2vugv25tsb6eaxlreyepvl7cuumkyw2wl6osrmmbvmt2lqea4b2tnoa2bamswj5fwcueinpjdsshbgnon6svpyr76iu444vgyuv7dikqvdnvmx45ii2cikmzhdncrljq36bnmnc6zjotwrfiwzkktijgbich6jz2ncul35rjvdglihche56n47lifpmrz7o2jr7smunqfdcsvkfvbyk53krhuwylqetn3qb7dnmyqghap2fjpn3pj4szzntnjwbfkgutklvjdqsmjmpxpc5dqwdg5b5s2g3ia3hsnfwzve6emka5ks25w3wamuzvypjo5qo2bbrkgk5zklfqu5rcrhpiwvcsx55ebz6d3kxrdwqorggnkh5dasb5z5puhjcmtdc6b5tdvfacxg25e2zxjtngjplctprjvdnplnlb4ytgdmvfoqug5hliw2m7wjpj6psxeklrdzbxzs27jjto2klafbxeb6k24rknqwspfdkcqwipjg3jgaagq6gyxfmib4aieaqaaola2aioeyozctbggq=== HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:29 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
s.viitjcfx.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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
200 OK 74 B URL HTTP/2 s.viitjcfx.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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:29 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 02:55:32 GMT
age: 69237
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
s.viitjcfx.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=
200 OK 74 B URL HTTP/2 s.viitjcfx.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=
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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= HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:29 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
s.viitjcfx.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=
200 OK 74 B URL HTTP/2 s.viitjcfx.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=
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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= HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:29 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
s.viitjcfx.com/i/1/pfiesyteaf7fyc3bpfzvs2cjmbqac7k5avqx472smpkdzyjoinqvmmtzonmtcsjwia7xyualmj4xwvsix2bucgeg7gll5nfut2xyovl25twkn7crp5hvsqbikuffakpi22ho3o5w2xrzuu2q2hx2rssjhpqyjeeok5ai4yfyk4oehdvasvleumtynezfmd5kdpkeohbpifewsmswj5fzc37ykvi3asddujl3nbtj4b42fcy56fupgx4pjkhkbfkwt44tajhdnsneucua7julookdxyiwvj2kowwxtwbv5bz2cmcx45ff5ydzk7vdsifzgnojoswtrxjpyuoyjdn677hhjcevc6ngkm5rwpdq35guwykqlaen3utwymyfkgqyexqhvwxlqokzhtnjwc2gbet2izntqsljok3tlt26ie4c2cra32lle2mhjeiye6suri5excjq2lcijycxsblexmskmflde6ltleyusnwchnfpcmpoj3vweloqk5jyqstbrjkyhj66kg4fpggu6zumevmsyxdpm6vmkfomw3j6rcberegkpnifcp6ezmy54s2r6fkpovwkhremsnwozhi72vwikco2r3mb3gxpksozkt3o32pewolm3knqjkyvjbttra6f2p3qci2qymqugrwr6vl3hbiqolahku7qr5cxhe======
200 OK 74 B URL HTTP/2 s.viitjcfx.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====
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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==== HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:29 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
s.viitjcfx.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==?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
200 OK 74 B URL HTTP/2 s.viitjcfx.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==?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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==?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:29 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
s.viitjcfx.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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
200 OK 74 B URL HTTP/2 s.viitjcfx.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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:29 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
s.viitjcfx.com/i/1/pbiesyteaf7fyc3bpfzvs2cjmbqac7k5avrh67kymzfkv5qfa5rtumrlpvmwqglfgave4xaln55h4wdimcjikk3ju2rpfj5qt2xypk2tcco4z7myjb5wk2diarjwaiijwozjp2mrq7647hbzehy3jtgtjui5blf4ra6tdlr33rhbq2m6qc4vaicdlazfmt5lgdumm2y2iuygsmswj5fwdich2rjttqlihdde5bpvk7efl5uunxith6sgrnqj5afzkd2uqryr352z4yfl5bkgzxki43ykg4vdmbcikvjbh4zfh6suj3rwa36ikviyasaa4jlule3a4ks756r3vfuibc7f4nrlq6kvua4uuo3hctdesykqpb2a5n5dk2mfita6gikmqvw4qhzllsfjwc2j4un2kzadcsljgk3b5467n5u3jz545ufu333qqnrsbkswklqew26sktf4blwrp66faiwdni5dek35lfubszjqvbfgvksv65fmcuyf7ritt6lkhlxezb4n554ziupsuxldhjsms3x7pxswvi5s32zwlkiymyvb4jlvmo2o4siflr2pppahzw2qubgwress27g7xtd64rlppwon3k63p4ld5b6nv24dswj43knqwrqia7fkoxre27lecqftcjqdhqmgw5jelnrtkhrifvsbojhshvea====
200 OK 74 B URL HTTP/2 s.viitjcfx.com/i/1/pbiesyteaf7fyc3bpfzvs2cjmbqac7k5avrh67kymzfkv5qfa5rtumrlpvmwqglfgave4xaln55h4wdimcjikk3ju2rpfj5qt2xypk2tcco4z7myjb5wk2diarjwaiijwozjp2mrq7647hbzehy3jtgtjui5blf4ra6tdlr33rhbq2m6qc4vaicdlazfmt5lgdumm2y2iuygsmswj5fwdich2rjttqlihdde5bpvk7efl5uunxith6sgrnqj5afzkd2uqryr352z4yfl5bkgzxki43ykg4vdmbcikvjbh4zfh6suj3rwa36ikviyasaa4jlule3a4ks756r3vfuibc7f4nrlq6kvua4uuo3hctdesykqpb2a5n5dk2mfita6gikmqvw4qhzllsfjwc2j4un2kzadcsljgk3b5467n5u3jz545ufu333qqnrsbkswklqew26sktf4blwrp66faiwdni5dek35lfubszjqvbfgvksv65fmcuyf7ritt6lkhlxezb4n554ziupsuxldhjsms3x7pxswvi5s32zwlkiymyvb4jlvmo2o4siflr2pppahzw2qubgwress27g7xtd64rlppwon3k63p4ld5b6nv24dswj43knqwrqia7fkoxre27lecqftcjqdhqmgw5jelnrtkhrifvsbojhshvea====
IP
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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== HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:29 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e41e7da79a6237da44383f0c2529ff18
7f94c442850b0d219ef1329714ab9b9fa2711fe9
d9504479473135036fb167c38a3e1fbc01d6805fafa6c08987b9a947a209527e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9504479473135036FB167C38A3E1FBC01D6805FAFA6C08987B9A947A209527E"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13612
Expires: Wed, 30 Nov 2022 01:56:22 GMT
Date: Tue, 29 Nov 2022 22:09:30 GMT
Connection: keep-alive
counter.yadro.ru/hit;desktop_click_load?r;s1280*1024*24;uhttps%3A//alexey.at.ua/load/12-1-0-38;1669759769530
200 OK 43 B URL HTTP/1.1 counter.yadro.ru/hit;desktop_click_load?r;s1280*1024*24;uhttps%3A//alexey.at.ua/load/12-1-0-38;1669759769530
IP
ASN #39134 United Network LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit;desktop_click_load?r;s1280*1024*24;uhttps%3A//alexey.at.ua/load/12-1-0-38;1669759769530 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 29 Nov 2022 22:09:30 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Mon, 29 Nov 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
absoluteroute.com/bens/vinos.js?23433&u=null&a=0.4202861154140436
200 OK 140 kB URL HTTP/1.1 absoluteroute.com/bens/vinos.js?23433&u=null&a=0.4202861154140436
IP
ASN #6681 Rozetka Sp. z o.o.
File type ASCII text, with very long lines (727)
Size 140 kB (140149 bytes)
Hash feb45cb8ddc42e89d99c615ba6b4f3c6
7d0956700a43a9bf770088b988cabeef3400ff45
0267d9733a7ff16c2fedfbb847f2d40c0cdcbb589f0e2dfed774e975def40815
GET /bens/vinos.js?23433&u=null&a=0.4202861154140436 HTTP/1.1
Host: absoluteroute.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 22:09:30 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NON DSP COR CURa TIA"
Set-Cookie: uuid=16697594551532635802; expires=Thu, 28-Nov-2024 22:09:30 GMT; Max-Age=63072000; path=/; samesite=None; domain=.absoluteroute.com; secure
hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322502&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b
200 OK 0 B URL HTTP/2 hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322502&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b
IP
ASN #39572 DataWeb Global Group B.V.
GET /get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=alexey.at.ua&blockID=322502&width=798&height=104&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=f80c5b82-1610-4d56-9970-b2a56ccac96b HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://alexey.at.ua
Connection: keep-alive
Cookie: dmpUid=VBDzGSDL9Mm2QcQcL4op
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:28 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: https://alexey.at.ua
content-encoding: gzip
X-Firefox-Spdy: h2
mc.yandex.ru/watch/73418029?wmode=7&page-url=https%3A%2F%2Falexey.at.ua%2Fload%2F12-1-0-38&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1054%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A677694008229%3Ahid%3A533033419%3Az%3A0%3Ai%3A20221129220927%3Aet%3A1669759768%3Ac%3A1%3Arn%3A4383826%3Arqn%3A1%3Au%3A1669759768994759228%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C158%2C177%2C0%2C302%2C0%2C%2C411%2C7%2C%2C%2C%2C1128%3Ans%3A1669759765599%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669759768%3At%3A%D0%A7%D0%B5%D1%80%D1%82%D0%B5%D0%B6%20%D1%8D%D0%BB%D0%B5%D0%BA%D1%82%D1%80%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%BE%D0%B9%20%D1%81%D1%85%D0%B5%D0%BC%D1%8B%20-%20%D0%9F%D1%80%D0%BE%D1%87%D0%B5%D0%B5%20-%20%D0%A3%D1%87%D0%B5%D0%B1%D0%B0%20%D0%B8%20%D0%BD%D0%B0%D1%83%D0%BA%D0%B0%20-%20%D0%9A%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%84%D0%B0%D0%B9%D0%BB%D0%BE%D0%B2%20-%20%D0%9F%D0%B5%D1%80%D1%81%D0%BE%D0%BD%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%90%D0%BB%D0%B5%D0%BA%D1%81%D0%B5%D1%8F%20%D0%93%D0%BE%D0%BD%D1%87%D0%B0%D1%80%D0%B5%D0%BD%D0%BA%D0%BE&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/73418029?wmode=7&page-url=https%3A%2F%2Falexey.at.ua%2Fload%2F12-1-0-38&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1054%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A677694008229%3Ahid%3A533033419%3Az%3A0%3Ai%3A20221129220927%3Aet%3A1669759768%3Ac%3A1%3Arn%3A4383826%3Arqn%3A1%3Au%3A1669759768994759228%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C158%2C177%2C0%2C302%2C0%2C%2C411%2C7%2C%2C%2C%2C1128%3Ans%3A1669759765599%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669759768%3At%3A%D0%A7%D0%B5%D1%80%D1%82%D0%B5%D0%B6%20%D1%8D%D0%BB%D0%B5%D0%BA%D1%82%D1%80%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%BE%D0%B9%20%D1%81%D1%85%D0%B5%D0%BC%D1%8B%20-%20%D0%9F%D1%80%D0%BE%D1%87%D0%B5%D0%B5%20-%20%D0%A3%D1%87%D0%B5%D0%B1%D0%B0%20%D0%B8%20%D0%BD%D0%B0%D1%83%D0%BA%D0%B0%20-%20%D0%9A%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%84%D0%B0%D0%B9%D0%BB%D0%BE%D0%B2%20-%20%D0%9F%D0%B5%D1%80%D1%81%D0%BE%D0%BD%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%90%D0%BB%D0%B5%D0%BA%D1%81%D0%B5%D1%8F%20%D0%93%D0%BE%D0%BD%D1%87%D0%B0%D1%80%D0%B5%D0%BD%D0%BA%D0%BE&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
IP
GET /watch/73418029?wmode=7&page-url=https%3A%2F%2Falexey.at.ua%2Fload%2F12-1-0-38&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1054%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A677694008229%3Ahid%3A533033419%3Az%3A0%3Ai%3A20221129220927%3Aet%3A1669759768%3Ac%3A1%3Arn%3A4383826%3Arqn%3A1%3Au%3A1669759768994759228%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C158%2C177%2C0%2C302%2C0%2C%2C411%2C7%2C%2C%2C%2C1128%3Ans%3A1669759765599%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669759768%3At%3A%D0%A7%D0%B5%D1%80%D1%82%D0%B5%D0%B6%20%D1%8D%D0%BB%D0%B5%D0%BA%D1%82%D1%80%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%BE%D0%B9%20%D1%81%D1%85%D0%B5%D0%BC%D1%8B%20-%20%D0%9F%D1%80%D0%BE%D1%87%D0%B5%D0%B5%20-%20%D0%A3%D1%87%D0%B5%D0%B1%D0%B0%20%D0%B8%20%D0%BD%D0%B0%D1%83%D0%BA%D0%B0%20-%20%D0%9A%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%84%D0%B0%D0%B9%D0%BB%D0%BE%D0%B2%20-%20%D0%9F%D0%B5%D1%80%D1%81%D0%BE%D0%BD%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%90%D0%BB%D0%B5%D0%BA%D1%81%D0%B5%D1%8F%20%D0%93%D0%BE%D0%BD%D1%87%D0%B0%D1%80%D0%B5%D0%BD%D0%BA%D0%BE&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://alexey.at.ua
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/73418029/1?wmode=7&page-url=https%3A%2F%2Falexey.at.ua%2Fload%2F12-1-0-38&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A1054%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A677694008229%3Ahid%3A533033419%3Az%3A0%3Ai%3A20221129220927%3Aet%3A1669759768%3Ac%3A1%3Arn%3A4383826%3Arqn%3A1%3Au%3A1669759768994759228%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A2%2C158%2C177%2C0%2C302%2C0%2C%2C411%2C7%2C%2C%2C%2C1128%3Ans%3A1669759765599%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669759768%3At%3A%D0%A7%D0%B5%D1%80%D1%82%D0%B5%D0%B6%20%D1%8D%D0%BB%D0%B5%D0%BA%D1%82%D1%80%D0%B8%D1%87%D0%B5%D1%81%D0%BA%D0%BE%D0%B9%20%D1%81%D1%85%D0%B5%D0%BC%D1%8B%20-%20%D0%9F%D1%80%D0%BE%D1%87%D0%B5%D0%B5%20-%20%D0%A3%D1%87%D0%B5%D0%B1%D0%B0%20%D0%B8%20%D0%BD%D0%B0%D1%83%D0%BA%D0%B0%20-%20%D0%9A%D0%B0%D1%82%D0%B0%D0%BB%D0%BE%D0%B3%20%D1%84%D0%B0%D0%B9%D0%BB%D0%BE%D0%B2%20-%20%D0%9F%D0%B5%D1%80%D1%81%D0%BE%D0%BD%D0%B0%D0%BB%D1%8C%D0%BD%D1%8B%D0%B9%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%90%D0%BB%D0%B5%D0%BA%D1%81%D0%B5%D1%8F%20%D0%93%D0%BE%D0%BD%D1%87%D0%B0%D1%80%D0%B5%D0%BD%D0%BA%D0%BE&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Tue, 29 Nov 2022 22:09:28 GMT
access-control-allow-origin: https://alexey.at.ua
set-cookie: yandexuid=9997218021669759768; Expires=Wed, 29-Nov-2023 22:09:28 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=9997218021669759768; Expires=Wed, 29-Nov-2023 22:09:28 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=870047601669759768; Path=/; SameSite=None; Secure
i=otccoL3W8nJ8s37y93GKrgvSV8fe14jKe9juZE9Ge5zLhVKYq73I35d96/8Jf6LIcmAehvNqHnqDE0eeuxdCy878254=; Expires=Fri, 26-Nov-2032 22:09:25 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1701295768.yc.1669759768#1701295768.yrts.1669759768#1701295768.yrtsi.1669759768; Expires=Wed, 29-Nov-2023 22:09:28 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 29-Nov-2022 22:09:28 GMT
last-modified: Tue, 29-Nov-2022 22:09:28 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
hdbcode.com/kkqahhd3.js
200 OK 0 B IP
ASN #39572 DataWeb Global Group B.V.
GET /kkqahhd3.js HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://alexey.at.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 29 Nov 2022 22:09:27 GMT
content-type: application/javascript
last-modified: Mon, 28 Nov 2022 17:39:16 GMT
vary: Accept-Encoding
etag: W/"6384f244-565e"
content-encoding: gzip
X-Firefox-Spdy: h2
193.109.247.239
52.88.220.109
193.200.64.20
23.36.77.32
31.172.81.158
104.18.21.226
93.184.220.29