ganjaplan.7fi.ru/login.php
91.194.2.84200 OK 4.5 kB URL HTTP/1.1 ganjaplan.7fi.ru/login.php
IP 91.194.2.84:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with very long lines (713), with CRLF, LF line terminators
Hash 831465d67a45346f24b75c418ed4f469
0bc275b237875600eea3bc4f5f752df70b637321
68dbd7f7cd807563561565839e7494c6a64f2b15e8ce7f58d28b4d3aeda89ec1
Analyzer Verdict Alert fortinet Phishing
GET /login.php HTTP/1.1
Host: ganjaplan.7fi.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:47 GMT
Content-Type: text/html; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: uid=W8ICVGOHxec9F3e5BVG9AgA=; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10379
Expires: Wed, 30 Nov 2022 23:59:35 GMT
Date: Wed, 30 Nov 2022 21:06:36 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 883
Cache-Control: max-age=135566
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 21:06:36 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 10:46:02 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 20:19:43 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2813
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4922
Expires: Wed, 30 Nov 2022 22:28:38 GMT
Date: Wed, 30 Nov 2022 21:06:36 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: GwEVMpD4fXdmhfvqHAhvYyerY9q1+YHv1wGECXbWggP6UcFSalBomHhfKQNXtvXTUJDQa+krXDc=
x-amz-request-id: RS6FK81DMRGWDDFW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 20:46:00 GMT
age: 1236
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 21:06:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
yandex.st/share/share.js
178.154.131.216200 OK 14 kB IP 178.154.131.216:0
File type Unicode text, UTF-8 text, with very long lines (32058)
Hash 0846935dee0d2ebbb7af7cbce113d5b8
f07346e034d5ad76aa90b38e195500574aafbb4e
2b682e5417a0a08596a80bc834ffeb32948d54373b4020d54fac626e559c1270
GET /share/share.js HTTP/1.1
Host: yandex.st
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Wed, 30 Nov 2022 21:06:36 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=5
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=216013
Content-Encoding: gzip
Etag: W/"db7132f94e4730c128b638f72b46c899"
Expires: Sat, 03 Dec 2022 09:02:03 GMT
Last-Modified: Wed, 24 Oct 2018 16:00:42 GMT
NEL: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
Report-To: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
Strict-Transport-Security: max-age=43200000; includeSubDomains;
Timing-Allow-Origin: *
Vary: Accept-Encoding
X-Nginx-Request-Id: 5c840979563b2591
ganjaplan.7fi.ru/style/Quicktime/Quicktime.css
91.194.2.84200 OK 4.7 kB URL HTTP/1.1 ganjaplan.7fi.ru/style/Quicktime/Quicktime.css
IP 91.194.2.84:0
File type ASCII text, with CR, LF line terminators
Hash 75d236ac2714b7162dd73b6c4643cf88
4767ffaf017749041d57af8d3fb80465a1fe248a
5901a88742bc1c1a69b8155c105118615f592529932c7653b48b7b7fa4ea1176
GET /style/Quicktime/Quicktime.css HTTP/1.1
Host: ganjaplan.7fi.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/login.php
Cookie: uid=W8ICVGOHxec9F3e5BVG9AgA=
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:47 GMT
Content-Type: text/css
Last-Modified: Sun, 23 Mar 2008 19:29:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"47e6af7c-5445"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
ganjaplan.7fi.ru/style/extra.css?v=14
91.194.2.84200 OK 5.3 kB URL HTTP/1.1 ganjaplan.7fi.ru/style/extra.css?v=14
IP 91.194.2.84:0
File type Unicode text, UTF-8 text, with very long lines (374)
Hash 0786b30c8750ff9f4d70b537371a3f9b
57e0e0afe8c9743f8fde7940fd8106e6c44e482c
d447881e8abec1e2b5032a3889b407b4ca4ccedaa9adee6302903bda8ecb6d9e
GET /style/extra.css?v=14 HTTP/1.1
Host: ganjaplan.7fi.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/login.php
Cookie: uid=W8ICVGOHxec9F3e5BVG9AgA=
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:47 GMT
Content-Type: text/css
Last-Modified: Tue, 06 Apr 2021 06:46:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"606c03cd-5359"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
ganjaplan.7fi.ru/style/mobile.css?2
91.194.2.84200 OK 2.7 kB URL HTTP/1.1 ganjaplan.7fi.ru/style/mobile.css?2
IP 91.194.2.84:0
Hash 50bbfaed06b9ced48f1f9596a9778011
4900dc5bd03b4979970960a2b8d3f78e21513874
293d1cd9b43ee93b7d7db96893ed0cba0d357791fb163c09920144bd9415fed7
Analyzer Verdict Alert fortinet Phishing
GET /style/mobile.css?2 HTTP/1.1
Host: ganjaplan.7fi.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/login.php
Cookie: uid=W8ICVGOHxec9F3e5BVG9AgA=
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:47 GMT
Content-Type: text/css
Last-Modified: Mon, 01 Nov 2021 18:38:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61803432-3040"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
ganjaplan.7fi.ru/js/extra.js?v=1
91.194.2.84200 OK 1.7 kB URL HTTP/1.1 ganjaplan.7fi.ru/js/extra.js?v=1
IP 91.194.2.84:0
Hash 19496073833e71e4a9944399d2fad541
feb283cb79b79ef146a950f52e7f36fd41f005c8
fc634b35ef9a808f98b03d748c8c91d33b0f90a2c3f67c58a062e3d65e8cadf8
Analyzer Verdict Alert fortinet Phishing
GET /js/extra.js?v=1 HTTP/1.1
Host: ganjaplan.7fi.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/login.php
Cookie: uid=W8ICVGOHxec9F3e5BVG9AgA=
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:47 GMT
Content-Type: application/javascript
Last-Modified: Tue, 06 Apr 2021 06:46:37 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"606c03cd-1115"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
ganjaplan.7fi.ru/js/libs.min.js?v=2
91.194.2.84200 OK 51 kB URL HTTP/1.1 ganjaplan.7fi.ru/js/libs.min.js?v=2
IP 91.194.2.84:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32769)
Hash 651e10669f7f7c1832074fb3e3c9cbe3
a28847ef2a18d9aa63197314b9e41fa7439c2871
6d5466413ed92731bed64127979cd6f35d6b8a4ed38b46cf0d82c475e62b35e8
Analyzer Verdict Alert fortinet Phishing
GET /js/libs.min.js?v=2 HTTP/1.1
Host: ganjaplan.7fi.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/login.php
Cookie: uid=W8ICVGOHxec9F3e5BVG9AgA=
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:47 GMT
Content-Type: application/javascript
Last-Modified: Mon, 17 May 2021 05:58:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"60a205fa-24703"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
ganjaplan.7fi.ru/style/Quicktime/Quicktime_cs.css
91.194.2.84200 OK 1.3 kB URL HTTP/1.1 ganjaplan.7fi.ru/style/Quicktime/Quicktime_cs.css
IP 91.194.2.84:0
Hash 0344bcb09574e16ac0390dda246aee3e
b6f7a98b22fd936fccb594df1363fee654460287
57e672d7289f7142fb8e2fe0c212a132fae3a1a57aeaf348bf799ea6d4a14d08
GET /style/Quicktime/Quicktime_cs.css HTTP/1.1
Host: ganjaplan.7fi.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/style/Quicktime/Quicktime.css
Cookie: uid=W8ICVGOHxec9F3e5BVG9AgA=
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:47 GMT
Content-Type: text/css
Last-Modified: Tue, 23 Oct 2012 14:54:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5086afa7-1620"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
ganjaplan.7fi.ru/img/Quicktime/bg.gif
91.194.2.84200 OK 2.5 kB URL HTTP/1.1 ganjaplan.7fi.ru/img/Quicktime/bg.gif
IP 91.194.2.84:0
File type GIF image data, version 89a, 10 x 396\012- data
Hash 7f876304d98e721cd423bcb5e29f6e16
9a25bb03827370eab74929a54fa968572ed3225a
614c8bb5379d6fe3688956e4239f56f36bb3a475c3dd374b61f706f2fdece7a4
GET /img/Quicktime/bg.gif HTTP/1.1
Host: ganjaplan.7fi.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/style/Quicktime/Quicktime_cs.css
Cookie: uid=W8ICVGOHxec9F3e5BVG9AgA=
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:47 GMT
Content-Type: image/gif
Content-Length: 2505
Last-Modified: Sun, 23 Mar 2008 19:37:00 GMT
Connection: keep-alive
ETag: "47e6b15c-9c9"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ganjaplan.7fi.ru/vc?408847;0;0.5581584050991749
91.194.2.84200 OK 43 B URL HTTP/1.1 ganjaplan.7fi.ru/vc?408847;0;0.5581584050991749
IP 91.194.2.84:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
Analyzer Verdict Alert fortinet Phishing
GET /vc?408847;0;0.5581584050991749 HTTP/1.1
Host: ganjaplan.7fi.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/login.php
Cookie: uid=W8ICVGOHxec9F3e5BVG9AgA=
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:47 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Expires: Tue, 29 Nov 2022 21:06:36 GMT
Cache-Control: no-cache
ganjaplan.7fi.ru/img/Quicktime/header.gif
91.194.2.84200 OK 887 B URL HTTP/1.1 ganjaplan.7fi.ru/img/Quicktime/header.gif
IP 91.194.2.84:0
File type GIF image data, version 89a, 10 x 30\012- data
Hash 60230e68b051b086e119569b01f2fce7
44852369c83dea148d7c70a3fad17366be998c87
d12f56e6f38108fb3d51fa1c9a3bfdd5c0331214d751e6e1a95375ad1a568e1c
GET /img/Quicktime/header.gif HTTP/1.1
Host: ganjaplan.7fi.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/style/Quicktime/Quicktime_cs.css
Cookie: uid=W8ICVGOHxec9F3e5BVG9AgA=
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:47 GMT
Content-Type: image/gif
Content-Length: 887
Last-Modified: Sun, 23 Mar 2008 19:37:00 GMT
Connection: keep-alive
ETag: "47e6b15c-377"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ganjaplan.7fi.ru/img/Quicktime/menu.gif
91.194.2.84200 OK 107 B URL HTTP/1.1 ganjaplan.7fi.ru/img/Quicktime/menu.gif
IP 91.194.2.84:0
File type GIF image data, version 89a, 1 x 32\012- data
Hash bbdaa5cf5b07d240d100b38f01e9638f
f2121250a0807803b852f3640307043288c22d0e
aedfba8b8818e19c87611d4c789fd56296ae48b4622289c8e4f7eacee2eb2baf
GET /img/Quicktime/menu.gif HTTP/1.1
Host: ganjaplan.7fi.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/style/Quicktime/Quicktime_cs.css
Cookie: uid=W8ICVGOHxec9F3e5BVG9AgA=
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:47 GMT
Content-Type: image/gif
Content-Length: 107
Last-Modified: Sun, 23 Mar 2008 19:37:00 GMT
Connection: keep-alive
ETag: "47e6b15c-6b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ganjaplan.7fi.ru/img/Quicktime/h2.gif
91.194.2.84200 OK 189 B URL HTTP/1.1 ganjaplan.7fi.ru/img/Quicktime/h2.gif
IP 91.194.2.84:0
File type GIF image data, version 89a, 5 x 24\012- data
Hash d3abd12058db5295bf645ae5c9ac735b
3fd353584dbcd774cc42f44a10bf22f6cbfaeff8
8ab842a2289c06fc9e98c34510dfba617932ab30e40a45630f9ba8824398e273
GET /img/Quicktime/h2.gif HTTP/1.1
Host: ganjaplan.7fi.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/style/Quicktime/Quicktime_cs.css
Cookie: uid=W8ICVGOHxec9F3e5BVG9AgA=
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:47 GMT
Content-Type: image/gif
Content-Length: 189
Last-Modified: Sun, 23 Mar 2008 19:37:00 GMT
Connection: keep-alive
ETag: "47e6b15c-bd"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
cdn.jsdelivr.net/npm/yandex-metrica-watch/watch.js
151.101.193.229200 OK 67 kB URL HTTP/2 cdn.jsdelivr.net/npm/yandex-metrica-watch/watch.js
IP 151.101.193.229:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (586)
Hash abdd26bf39ab05e9898e3cf1ddbd3fd9
93521bf8e710e9ec024f0e9e24441ccd81c4a6f1
06c56ad9020dc6ef1a5d0141d5c172c0029d18f2dafe0b79a84bb0c4db2aa52d
GET /npm/yandex-metrica-watch/watch.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.249.0
x-jsd-version-type: version
etag: W/"28441-HHcPD8UUl0943tDpENjh6gMs5yQ"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 30 Nov 2022 21:06:36 GMT
age: 9689
x-served-by: cache-fra-eddf8230043-FRA, cache-bma1677-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 66654
X-Firefox-Spdy: h2
ganjaplan.7fi.ru/img/Quicktime/arrow.gif
91.194.2.84200 OK 918 B URL HTTP/1.1 ganjaplan.7fi.ru/img/Quicktime/arrow.gif
IP 91.194.2.84:0
File type GIF image data, version 89a, 10 x 10\012- data
Hash 5cd24532edd6c00a9c80ac7a57b62d83
1afa97e0e6893e85052af614eddb772789c2a04b
4db68bae0de18a9d3029957354ddc3be4e12ce43bb92e8e2d78b5ed6a32c3e66
GET /img/Quicktime/arrow.gif HTTP/1.1
Host: ganjaplan.7fi.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/style/Quicktime/Quicktime_cs.css
Cookie: uid=W8ICVGOHxec9F3e5BVG9AgA=
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:47 GMT
Content-Type: image/gif
Content-Length: 918
Last-Modified: Sun, 23 Mar 2008 19:37:00 GMT
Connection: keep-alive
ETag: "47e6b15c-396"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ganjaplan.7fi.ru/i/social.1.png
91.194.2.84200 OK 4.1 kB URL HTTP/1.1 ganjaplan.7fi.ru/i/social.1.png
IP 91.194.2.84:0
File type PNG image data, 588 x 16, 8-bit colormap, non-interlaced\012- data
Hash b53cf2aa68a567b3376d84c16960f486
fdc4d2c2913073ce611c68e4e0d5ae56b87ec3a1
693e8cfadcb3433b03a5f30d94ee7c2ba5a3cb73840f4a9eae225851309eaf6a
GET /i/social.1.png HTTP/1.1
Host: ganjaplan.7fi.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/style/extra.css?v=14
Cookie: uid=W8ICVGOHxec9F3e5BVG9AgA=
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:47 GMT
Content-Type: image/png
Content-Length: 4054
Last-Modified: Sun, 08 May 2016 08:05:17 GMT
Connection: keep-alive
ETag: "572ef33d-fd6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash 69c4e9839d1ccda984f248e4c6943c93
24b56e70c29ff08b11b558422c63bfae7efa8d58
5793540874df1ca3427ddac022e9657761c33540c31a389a07ab034567a65c3e
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 21:06:36 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "91540B542626EF3EE980A6226E7A23949DC0E8C1"
Expires: Thu, 01 Dec 2022 08:00:00 GMT
Last-Modified: Wed, 30 Nov 2022 20:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3294
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77268c430f05b50f-OSL
w.uptolike.com/widgets/v1/uptolike.js
95.163.114.204200 OK 8.3 kB URL HTTP/1.1 w.uptolike.com/widgets/v1/uptolike.js
IP 95.163.114.204:0
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (565)
Hash 6075742d564fbc306a88508d7e0e5d3d
769855acd94bae595564826b23fa3f738c806799
cda0005e8be6a96fed733b0ea7cfa06fbcb3123c3692ed3d3ce7e8ee83587c63
GET /widgets/v1/uptolike.js HTTP/1.1
Host: w.uptolike.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:36 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: utl_id2=29792991842; Expires=Fri, 29 Nov 2024 21:06:36 GMT; Path=/; Domain=.w.uptolike.com; SameSite=None; Secure
utl_dat="COXL89LMMBAAIOWcvtvMMCjlnL7bzDAwACtMmeDm9tW8j8Dsrzgo9yg="; Expires=Fri, 29 Nov 2024 21:06:36 GMT; Path=/; Domain=.w.uptolike.com; SameSite=None; Secure
Cache-Control: max-age=1800
P3P: CP='IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT'
Expires: Wed, 30 Nov 2022 21:36:36 GMT
Content-Encoding: gzip
ganjaplan.7fi.ru/favicon.ico
91.194.2.84200 OK 318 B URL HTTP/1.1 ganjaplan.7fi.ru/favicon.ico
IP 91.194.2.84:0
File type MS Windows icon resource - 1 icon, 16x16, 16 colors, 4 bits/pixel\012- data
Hash 840e141d31c8e6ac1dd25b3ef7e14996
173f3fff8e64cd778cf9ed03cfac4c041bb1f4ea
2bf8aacfcde39096ca3437a9600810125b7694b56436e33e4417bbc7fa831686
GET /favicon.ico HTTP/1.1
Host: ganjaplan.7fi.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/login.php
Cookie: uid=W8ICVGOHxec9F3e5BVG9AgA=
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:48 GMT
Content-Type: image/x-icon
Content-Length: 318
Last-Modified: Thu, 03 May 2012 17:37:31 GMT
Connection: keep-alive
ETag: "4fa2c25b-13e"
Expires: Fri, 30 Dec 2022 21:06:48 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 20:11:14 GMT
cache-control: public,max-age=3600
age: 3322
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
counter.yadro.ru/hit;build2?t25.10;r;s1280*1024*24;uhttp%3A//ganjaplan.7fi.ru/login.php;0.6310387618249891
88.212.202.52302 Moved Temporarily 32 B URL HTTP/1.1 counter.yadro.ru/hit;build2?t25.10;r;s1280*1024*24;uhttp%3A//ganjaplan.7fi.ru/login.php;0.6310387618249891
IP 88.212.202.52:0
ASN #39134 United Network LLC
File type HTML document, ASCII text
Hash 3e9c09a8c5a87f266e047a596f48578c
07d7b1940b7e3f9a3db43197458f9b8ef18a6bce
57fad7ae62012ff4a38ecb6045ac6e8e3a070a33bbd033b21ab6cad3566d9254
GET /hit;build2?t25.10;r;s1280*1024*24;uhttp%3A//ganjaplan.7fi.ru/login.php;0.6310387618249891 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
HTTP/1.1 302 Moved Temporarily
Date: Wed, 30 Nov 2022 21:06:36 GMT
Server: 0W/0.8c
Content-Type: text/html
Location: https://counter.yadro.ru/hit;build2?t25.10;r;s1280*1024*24;uhttp%3A//ganjaplan.7fi.ru/login.php;0.6310387618249891
Content-Length: 32
Expires: Tue, 30 Nov 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 937 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash ff0a57e0578eb2a435bc52b2c44e3552
1ae38cdba014baeabca1a98172bf3f219a1eceaa
17d5f68953814501ad5f2878b54c20ec09edaf1342f0929162f14e9c49b76732
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 21:06:36 GMT
Content-Type: application/ocsp-response
Content-Length: 937
Connection: keep-alive
Expires: Sun, 04 Dec 2022 18:10:12 GMT
ETag: "1ae38cdba014baeabca1a98172bf3f219a1eceaa"
Last-Modified: Wed, 30 Nov 2022 18:10:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3406
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77268c43e85bb50f-OSL
mc.yandex.ru/metrika/tag.js
87.250.250.119200 OK 73 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 87.250.250.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (587)
Hash 1d79426653c3b55939eaec59a2ce8ef5
c6db0314df7a4e5c08047f6306e0b79a1ad3bab2
2729cfe8b2f5142cf99734cbb4e1a3c6cd35868d279cd796db49ef62742ef993
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73267
date: Wed, 30 Nov 2022 21:06:36 GMT
access-control-allow-origin: *
etag: "63875d46-11e33"
expires: Wed, 30 Nov 2022 22:06:36 GMT
last-modified: Wed, 30 Nov 2022 16:40:22 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/59396/1?wmode=7&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A12kpamsypdk9qpokppnvg4%3Afp%3A547%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1646660671426%3Ahid%3A104030318%3Az%3A0%3Ai%3A20221130210635%3Aet%3A1669842395%3Ac%3A1%3Arn%3A614811662%3Arqn%3A1%3Au%3A1669842395640894071%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A41%2C29%2C78%2C2%2C-5%2C0%2C%2C405%2C7%2C%2C%2C%2C595%3Ans%3A1669842394695%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669842396%3At%3A%D0%92%D0%BE%D0%B9%D1%82%D0%B8&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
87.250.250.119200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/59396/1?wmode=7&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A12kpamsypdk9qpokppnvg4%3Afp%3A547%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1646660671426%3Ahid%3A104030318%3Az%3A0%3Ai%3A20221130210635%3Aet%3A1669842395%3Ac%3A1%3Arn%3A614811662%3Arqn%3A1%3Au%3A1669842395640894071%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A41%2C29%2C78%2C2%2C-5%2C0%2C%2C405%2C7%2C%2C%2C%2C595%3Ans%3A1669842394695%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669842396%3At%3A%D0%92%D0%BE%D0%B9%D1%82%D0%B8&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
IP 87.250.250.119:0
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash ac2603472395dc9d3d99140912d5ec44
006798898c611a61d7d03bea0080c549eb0ac71c
a2e49f658f4367bcaf7d22ce6c2bb150363c41efab352e51c985c2fb202470b3
GET /watch/59396/1?wmode=7&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A12kpamsypdk9qpokppnvg4%3Afp%3A547%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1646660671426%3Ahid%3A104030318%3Az%3A0%3Ai%3A20221130210635%3Aet%3A1669842395%3Ac%3A1%3Arn%3A614811662%3Arqn%3A1%3Au%3A1669842395640894071%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A41%2C29%2C78%2C2%2C-5%2C0%2C%2C405%2C7%2C%2C%2C%2C595%3Ans%3A1669842394695%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669842396%3At%3A%D0%92%D0%BE%D0%B9%D1%82%D0%B8&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ganjaplan.7fi.ru
Referer: http://ganjaplan.7fi.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Wed, 30 Nov 2022 21:06:36 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://ganjaplan.7fi.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 30-Nov-2022 21:06:36 GMT
last-modified: Wed, 30-Nov-2022 21:06:36 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4297ff110ef56f766b54337cd8258929
a55328b2fbf3a29425facfd341ec53b764968437
a1b688051be3af02a846da196922ac0fc9cb080b46a18da6aeb442d9cdbccb72
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1B688051BE3AF02A846DA196922AC0FC9CB080B46A18DA6AEB442D9CDBCCB72"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7014
Expires: Wed, 30 Nov 2022 23:03:31 GMT
Date: Wed, 30 Nov 2022 21:06:37 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 870
Cache-Control: max-age=130484
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 21:06:37 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 09:21:21 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
w.uptolike.com/widgets/v1/version.js?cb=cb__utl_cb_share_1669842395536267
95.163.114.204200 OK 83 B URL HTTP/1.1 w.uptolike.com/widgets/v1/version.js?cb=cb__utl_cb_share_1669842395536267
IP 95.163.114.204:0
ASN #12695 LLC Digital Network
File type ASCII text, with no line terminators
Hash 4ba1eb98dc0b25e6c9b7ea4716adb40c
a950e874bbdea112050078754bd0eff681047cf1
5aa46d3efffc62a4a8a70d048045392adc964c32d6730aa9ecad2057427c6f25
GET /widgets/v1/version.js?cb=cb__utl_cb_share_1669842395536267 HTTP/1.1
Host: w.uptolike.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:37 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 23 Nov 2022 19:31:36 GMT
Cache-Control: no-cache,no-store,max-age=0,must-revalidate
Pragma: no-cache
Set-Cookie: utl_id2=29792991898; Expires=Fri, 29 Nov 2024 21:06:37 GMT; Path=/; Domain=.w.uptolike.com; SameSite=None; Secure
utl_dat="CKDP89LMMBAAIKCgvtvMMCigoL7bzDAwALwc/oDfs8/Cw5tp12bzO1c="; Expires=Fri, 29 Nov 2024 21:06:37 GMT; Path=/; Domain=.w.uptolike.com; SameSite=None; Secure
P3P: CP='IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT'
Access-Control-Allow-Origin: *
Content-Encoding: gzip
mc.yandex.ru/metrika/advert.gif
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 30 Nov 2022 21:06:37 GMT
access-control-allow-origin: *
etag: "63875d46-2b"
expires: Wed, 30 Nov 2022 22:06:37 GMT
accept-ranges: bytes
last-modified: Wed, 30 Nov 2022 16:40:22 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/201230?wmode=7&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A547%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A923%3Acn%3A2%3Adp%3A0%3Als%3A489318567619%3Ahid%3A104030318%3Az%3A0%3Ai%3A20221130210635%3Aet%3A1669842396%3Ac%3A1%3Arn%3A521588164%3Arqn%3A1%3Au%3A1669842395640894071%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A41%2C29%2C78%2C2%2C-5%2C0%2C%2C405%2C7%2C%2C%2C%2C595%3Ans%3A1669842394695%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669842396%3At%3A%D0%92%D0%BE%D0%B9%D1%82%D0%B8&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
87.250.250.119302 Found 416 B URL HTTP/2 mc.yandex.ru/watch/201230?wmode=7&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A547%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A923%3Acn%3A2%3Adp%3A0%3Als%3A489318567619%3Ahid%3A104030318%3Az%3A0%3Ai%3A20221130210635%3Aet%3A1669842396%3Ac%3A1%3Arn%3A521588164%3Arqn%3A1%3Au%3A1669842395640894071%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A41%2C29%2C78%2C2%2C-5%2C0%2C%2C405%2C7%2C%2C%2C%2C595%3Ans%3A1669842394695%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669842396%3At%3A%D0%92%D0%BE%D0%B9%D1%82%D0%B8&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
IP 87.250.250.119:0
File type JSON data\012- , ASCII text, with very long lines (416), with no line terminators
Hash 9a6fcbf1f51b1529e91dfa3d2fc5da1b
38d977a437f1f3e28b6d1456fdf15d79c8ec66c9
e19ea3f7dc83e2c8d8489453e130cdd65b8c1b5e3ea18ec7c0a14b648d6d33ba
GET /watch/201230?wmode=7&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A547%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A923%3Acn%3A2%3Adp%3A0%3Als%3A489318567619%3Ahid%3A104030318%3Az%3A0%3Ai%3A20221130210635%3Aet%3A1669842396%3Ac%3A1%3Arn%3A521588164%3Arqn%3A1%3Au%3A1669842395640894071%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A41%2C29%2C78%2C2%2C-5%2C0%2C%2C405%2C7%2C%2C%2C%2C595%3Ans%3A1669842394695%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669842396%3At%3A%D0%92%D0%BE%D0%B9%D1%82%D0%B8&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ganjaplan.7fi.ru
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/201230/1?wmode=7&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Ahbzj7lpjz3smdgzs1sf0c%3Afp%3A547%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A923%3Acn%3A2%3Adp%3A0%3Als%3A489318567619%3Ahid%3A104030318%3Az%3A0%3Ai%3A20221130210635%3Aet%3A1669842396%3Ac%3A1%3Arn%3A521588164%3Arqn%3A1%3Au%3A1669842395640894071%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A41%2C29%2C78%2C2%2C-5%2C0%2C%2C405%2C7%2C%2C%2C%2C595%3Ans%3A1669842394695%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669842396%3At%3A%D0%92%D0%BE%D0%B9%D1%82%D0%B8&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Wed, 30 Nov 2022 21:06:37 GMT
access-control-allow-origin: http://ganjaplan.7fi.ru
set-cookie: yandexuid=7342417201669842397; Expires=Thu, 30-Nov-2023 21:06:37 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=7342417201669842397; Expires=Thu, 30-Nov-2023 21:06:37 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=576799551669842397; Path=/; SameSite=None; Secure
i=2GswpAwkMhLFBMZpl8AuKY91LQXEoa+/o/bC4sb9OhcFOLrs4UQaB446Ou8+0t+mrS1/NRj12MQrX/NK+ZK3i7+onQ8=; Expires=Sat, 27-Nov-2032 21:06:34 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1701378397.yc.1669842397#1701378397.yrts.1669842397#1701378397.yrtsi.1669842397; Expires=Thu, 30-Nov-2023 21:06:37 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 30-Nov-2022 21:06:37 GMT
last-modified: Wed, 30-Nov-2022 21:06:37 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 183472307162066cc9c79d667566a282
2426f1b5b736a494ccd67cd6236bd853426cdaa6
762239d5d57f2b8e5badb92d3f5f7ca2eee9fed83298dea55fbdc4af1b7c7bc9
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 21:06:37 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sun, 04 Dec 2022 17:53:07 GMT
ETag: "2426f1b5b736a494ccd67cd6236bd853426cdaa6"
Last-Modified: Wed, 30 Nov 2022 17:53:08 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2754
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77268c464a780b55-OSL
counter.yadro.ru/hit;build2?t25.10;r;s1280*1024*24;uhttp%3A//ganjaplan.7fi.ru/login.php;0.6310387618249891
88.212.202.52200 OK 96 B URL HTTP/1.1 counter.yadro.ru/hit;build2?t25.10;r;s1280*1024*24;uhttp%3A//ganjaplan.7fi.ru/login.php;0.6310387618249891
IP 88.212.202.52:0
ASN #39134 United Network LLC
File type GIF image data, version 87a, 88 x 15\012- data
Hash d9665331529ff37edb821d1d5b43c870
940628e9a0d21eb7835e7bedb6990264c6c23153
a27ed809ca17e1941af9e439a15e819ac96a1694065651c2aab6a96fec50f3c1
GET /hit;build2?t25.10;r;s1280*1024*24;uhttp%3A//ganjaplan.7fi.ru/login.php;0.6310387618249891 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ganjaplan.7fi.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Wed, 30 Nov 2022 21:06:37 GMT
Content-Type: image/gif
Content-Length: 96
Connection: keep-alive
Expires: Tue, 30 Nov 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
w.uptolike.com/widgets/v1/widgetsModule.js?v=622e27e5349ec1bb07f4f36fc56e7c84
95.163.114.204200 OK 42 kB URL HTTP/1.1 w.uptolike.com/widgets/v1/widgetsModule.js?v=622e27e5349ec1bb07f4f36fc56e7c84
IP 95.163.114.204:0
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (783)
Hash 36e31a5362200127257f343ad21c9f3e
f5b05b2a24ca19d756b4cecf0ec80b304a0c7d2a
2ff107bc4ae47641d278b80ed6fa1a75f0a6f84bcd8f9aa16be825e32aace97a
GET /widgets/v1/widgetsModule.js?v=622e27e5349ec1bb07f4f36fc56e7c84 HTTP/1.1
Host: w.uptolike.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Cookie: utl_id2=29792991898; utl_dat="CKDP89LMMBAAIKCgvtvMMCigoL7bzDAwALwc/oDfs8/Cw5tp12bzO1c="
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:37 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=1800
Expires: Wed, 30 Nov 2022 21:36:37 GMT
Content-Encoding: gzip
push.services.mozilla.com/
34.210.158.59101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.210.158.59:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: FyH845YTEf+aoN4WXkNhAQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: al+cLOPWtJwhsQZaK3ejM6qiOK4=
w.uptolike.com/widgets/v1/share-counter.html?622e27e5349ec1bb07f4f36fc56e7c84
95.163.114.204200 OK 4.4 kB URL HTTP/1.1 w.uptolike.com/widgets/v1/share-counter.html?622e27e5349ec1bb07f4f36fc56e7c84
IP 95.163.114.204:0
ASN #12695 LLC Digital Network
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (585)
Hash 51f01f98377569bbbc324944b01bdbdf
916b5de4cc082a3ff9414c3a88542fc32c2ec89a
f5d5637c94689e5b58c9b3b0d9a18acc3a5ed5550f33ec9c86a3d3f25e16e7bb
GET /widgets/v1/share-counter.html?622e27e5349ec1bb07f4f36fc56e7c84 HTTP/1.1
Host: w.uptolike.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Cookie: utl_id2=29792991898; utl_dat="CKDP89LMMBAAIKCgvtvMMCigoL7bzDAwALwc/oDfs8/Cw5tp12bzO1c="
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:37 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=1800
Expires: Wed, 30 Nov 2022 21:36:37 GMT
Content-Encoding: gzip
w.uptolike.com/widgets/v1/impression.html?622e27e5349ec1bb07f4f36fc56e7c84
95.163.114.204200 OK 624 B URL HTTP/1.1 w.uptolike.com/widgets/v1/impression.html?622e27e5349ec1bb07f4f36fc56e7c84
IP 95.163.114.204:0
ASN #12695 LLC Digital Network
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (511)
Hash db0f291b1ee364d9de4ad30906fac72a
46ae53e00d5964e1fbd0d75c0483f4718db48e8e
9b2a1dadf125f7367489db7e4bd8c22b34ec3126220422467b0de51f0274f64d
GET /widgets/v1/impression.html?622e27e5349ec1bb07f4f36fc56e7c84 HTTP/1.1
Host: w.uptolike.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Cookie: utl_id2=29792991898; utl_dat="CKDP89LMMBAAIKCgvtvMMCigoL7bzDAwALwc/oDfs8/Cw5tp12bzO1c="
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:37 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=1800
Expires: Wed, 30 Nov 2022 21:36:37 GMT
Content-Encoding: gzip
w.uptolike.com/widgets/v1/widgets-batch.js?params=JTVCJTdCJTIycGlkJTIyJTNBJTIyMTQ5NTMxMiUyMiUyQyUyMnVybCUyMiUzQSUyMmh0dHAlM0ElMkYlMkZnYW5qYXBsYW4uN2ZpLnJ1JTJGbG9naW4ucGhwJTIyJTdEJTVE&mode=0&callback=callback__utl_cb_share_166984239619230
95.163.114.204200 OK 370 B URL HTTP/1.1 w.uptolike.com/widgets/v1/widgets-batch.js?params=JTVCJTdCJTIycGlkJTIyJTNBJTIyMTQ5NTMxMiUyMiUyQyUyMnVybCUyMiUzQSUyMmh0dHAlM0ElMkYlMkZnYW5qYXBsYW4uN2ZpLnJ1JTJGbG9naW4ucGhwJTIyJTdEJTVE&mode=0&callback=callback__utl_cb_share_166984239619230
IP 95.163.114.204:0
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (374)
Hash 3f9cce8cd31b3c82bf71eefc444e56d3
9e04c6406e1e631891589618baa4d33395d937d9
c1fee63b3f8294f53f8da01bee61024409b28f98b990109dc44e6c2ca5b388d7
GET /widgets/v1/widgets-batch.js?params=JTVCJTdCJTIycGlkJTIyJTNBJTIyMTQ5NTMxMiUyMiUyQyUyMnVybCUyMiUzQSUyMmh0dHAlM0ElMkYlMkZnYW5qYXBsYW4uN2ZpLnJ1JTJGbG9naW4ucGhwJTIyJTdEJTVE&mode=0&callback=callback__utl_cb_share_166984239619230 HTTP/1.1
Host: w.uptolike.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.uptolike.com/widgets/v1/share-counter.html?622e27e5349ec1bb07f4f36fc56e7c84
Cookie: utl_id2=29792991898; utl_dat="CKDP89LMMBAAIKCgvtvMMCigoL7bzDAwALwc/oDfs8/Cw5tp12bzO1c="
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:37 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 23 Nov 2022 19:31:36 GMT
Cache-Control: no-cache,no-store,max-age=0,must-revalidate
Pragma: no-cache
Access-Control-Allow-Origin: *
Content-Encoding: gzip
w.uptolike.com/widgets/v1/imp?pid=1495312&url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&vp=45aa827d-589a-4077-bf18-fd406eb2554c&ttl=JUQwJTkyJUQwJUJFJUQwJUI5JUQxJTgyJUQwJUI4&rnd=0.6654339315965921
95.163.114.204204 No Content 0 B URL HTTP/1.1 w.uptolike.com/widgets/v1/imp?pid=1495312&url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&vp=45aa827d-589a-4077-bf18-fd406eb2554c&ttl=JUQwJTkyJUQwJUJFJUQwJUI5JUQxJTgyJUQwJUI4&rnd=0.6654339315965921
IP 95.163.114.204:0
ASN #12695 LLC Digital Network
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widgets/v1/imp?pid=1495312&url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&vp=45aa827d-589a-4077-bf18-fd406eb2554c&ttl=JUQwJTkyJUQwJUJFJUQwJUI5JUQxJTgyJUQwJUI4&rnd=0.6654339315965921 HTTP/1.1
Host: w.uptolike.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.uptolike.com/widgets/v1/impression.html?622e27e5349ec1bb07f4f36fc56e7c84
Cookie: utl_id2=29792991898; utl_dat="CKDP89LMMBAAIKCgvtvMMCigoL7bzDAwALwc/oDfs8/Cw5tp12bzO1c="
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 204 No Content
Server: nginx
Date: Wed, 30 Nov 2022 21:06:37 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
w.uptolike.com/static/buttons/fonts/icomoon.woff?qq11232333=1232131231321
95.163.114.204200 OK 9.1 kB URL HTTP/1.1 w.uptolike.com/static/buttons/fonts/icomoon.woff?qq11232333=1232131231321
IP 95.163.114.204:0
ASN #12695 LLC Digital Network
File type Web Open Font Format, TrueType, length 9144, version 0.0\012- data
Hash 2596eafba8821cbd54fb4c4294eea5f2
53046bf3bccd35a24e515fcfbd34b31ec27c841e
3f72dc1fd03fba15c9200144bf1df7286ad1e2560b50a5ecc12e68c9c1e36f29
GET /static/buttons/fonts/icomoon.woff?qq11232333=1232131231321 HTTP/1.1
Host: w.uptolike.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ganjaplan.7fi.ru
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:37 GMT
Content-Type: font/woff
Content-Length: 9144
Connection: keep-alive
Last-Modified: Wed, 16 Aug 2017 14:30:13 GMT
ETag: "599456f5-23b8"
Expires: Tue, 16 May 2023 07:57:03 GMT
Cache-Control: max-age=15552000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
w.uptolike.com/widgets/v1/extra.js?rnd=0.3034719413842687
95.163.114.204200 OK 1.9 kB URL HTTP/1.1 w.uptolike.com/widgets/v1/extra.js?rnd=0.3034719413842687
IP 95.163.114.204:0
ASN #12695 LLC Digital Network
File type ASCII text, with very long lines (695)
Hash 72d7a736132c48fe8522fdc8942e7405
901498c42b44b12c64c92f095a2822c5827f9454
9c29f92e8c323368230f0d2b16aa8d03544eb2eca99b8414d05151dec7263092
GET /widgets/v1/extra.js?rnd=0.3034719413842687 HTTP/1.1
Host: w.uptolike.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Cookie: utl_id2=29792991898; utl_dat="CKDP89LMMBAAIKCgvtvMMCigoL7bzDAwALwc/oDfs8/Cw5tp12bzO1c="
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:37 GMT
Content-Type: application/javascript;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Wed, 23 Nov 2022 19:31:36 GMT
Cache-Control: no-cache,no-store,max-age=0,must-revalidate
Pragma: no-cache
Set-Cookie: utl_id2=29792991898; Expires=Fri, 29 Nov 2024 21:06:37 GMT; Path=/; Domain=.w.uptolike.com; SameSite=None; Secure
utl_dat="CKDP89LMMBAAIKCgvtvMMCigoL7bzDAwALwc/oDfs8/Cw5tp12bzO1c="; Expires=Fri, 29 Nov 2024 21:06:37 GMT; Path=/; Domain=.w.uptolike.com; SameSite=None; Secure
P3P: CP='IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT'
Access-Control-Allow-Origin: *
Content-Encoding: gzip
mc.yandex.ru/metrika/watch.js
87.250.250.119302 Moved temporarily 0 B URL HTTP/1.1 mc.yandex.ru/metrika/watch.js
IP 87.250.250.119:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
HTTP/1.1 302 Moved temporarily
Content-Length: 0
Location: https://mc.yandex.ru/metrika/watch.js
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2847ae1ccd3b1db6c6f8f88edc2d1dcd
341f38ef9fc149cca1a74e5d43032b6190e8b32e
44724e8a961508359ec8d465f4c96927c3af51ed8c4610b844a2a71b8620e54a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "44724E8A961508359EC8D465F4C96927C3AF51ED8C4610B844A2A71B8620E54A"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17473
Expires: Thu, 01 Dec 2022 01:57:50 GMT
Date: Wed, 30 Nov 2022 21:06:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7c225a11d742c1cd9123c070b5605fb9
b79534e45f2f95d6f2b0b60a6fd23b73d4740880
076e87dacc7d73e56afeaa0bb423cc2ded1e84e6f2502e79efa486e7cdb976bf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "076E87DACC7D73E56AFEAA0BB423CC2DED1E84E6F2502E79EFA486E7CDB976BF"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7979
Expires: Wed, 30 Nov 2022 23:19:36 GMT
Date: Wed, 30 Nov 2022 21:06:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash be1702b60c6efef355e5778fbec06cb1
30a0d37686bf85af9cc5726265e3b7e83985e0c0
d2119e901394e5e534e4228fcd1430dd95fff4aa8b81ae22f027dad67fe23fb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2119E901394E5E534E4228FCD1430DD95FFF4AA8B81AE22F027DAD67FE23FB9"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8074
Expires: Wed, 30 Nov 2022 23:21:11 GMT
Date: Wed, 30 Nov 2022 21:06:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 506d1c3430e91cfabc4afeb30674e1fa
5fe84aa48bf65e7aaf0d8dd3a99b4cf1aad7b1d1
d01d511bb190405f76f3dd24168355d17c85cbd8ab1d723a9927c8bdc182168d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D01D511BB190405F76F3DD24168355D17C85CBD8AB1D723A9927C8BDC182168D"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10101
Expires: Wed, 30 Nov 2022 23:54:58 GMT
Date: Wed, 30 Nov 2022 21:06:37 GMT
Connection: keep-alive
supraneet.ru/minus/
62.109.6.15200 OK 0 B IP 62.109.6.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /minus/ HTTP/1.1
Host: supraneet.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Wed, 30 Nov 2022 21:06:37 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Wednesday, 30-Nov-2022 21:06:37 GMT
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
af.click.ru/collect_stat.js
217.197.112.80200 OK 913 B URL HTTP/1.1 af.click.ru/collect_stat.js
IP 217.197.112.80:0
ASN #20655 e-Style ISP LLC
Hash 9531806d16d72f9659eaab01bd09689b
7640f092c2b928c614bb46251477a3c80b3e820b
a01ed62761c70d35a7f2dd5f497451e70b85e85bb8f1774cee68d53554e6ecaa
GET /collect_stat.js HTTP/1.1
Host: af.click.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:37 GMT
Content-Type: application/javascript
Content-Length: 913
Last-Modified: Fri, 18 Nov 2022 09:50:15 GMT
Connection: keep-alive
ETag: "63775557-391"
Accept-Ranges: bytes
cntrsync.ru/alt.js
92.63.102.100200 OK 0 B IP 92.63.102.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /alt.js HTTP/1.1
Host: cntrsync.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.13.12
Date: Wed, 30 Nov 2022 21:06:37 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Last-Modified: Wednesday, 30-Nov-2022 21:06:37 GMT
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
mc.yandex.ru/metrika/watch.js
87.250.250.119200 OK 58 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP 87.250.250.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (586)
Hash 89185e037b366ee6c6b5d55bd893c11d
6a0e2cd6189b890da76b827beaeeca41097e8cf1
2b46f64d745301de1b0f94206157e0373db1e5db20e7725794fb34adaab08423
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ganjaplan.7fi.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 57741
date: Wed, 30 Nov 2022 21:06:37 GMT
access-control-allow-origin: *
etag: "63875d46-e18d"
expires: Wed, 30 Nov 2022 22:06:37 GMT
last-modified: Wed, 30 Nov 2022 16:40:22 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/23414332?wmode=7&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A547%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A923%3Acn%3A3%3Adp%3A0%3Als%3A695756441235%3Ahid%3A104030318%3Az%3A0%3Ai%3A20221130210636%3Aet%3A1669842397%3Ac%3A1%3Arn%3A702044071%3Arqn%3A1%3Au%3A1669842395640894071%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A41%2C29%2C78%2C2%2C-5%2C0%2C%2C405%2C7%2C%2C%2C%2C595%3Aeu%3A1%3Ans%3A1669842394695%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669842397%3At%3A%D0%92%D0%BE%D0%B9%D1%82%D0%B8&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)ecs(1)fip(1)rqnl(1)ti(2)
87.250.250.119302 Found 407 B URL HTTP/2 mc.yandex.ru/watch/23414332?wmode=7&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A547%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A923%3Acn%3A3%3Adp%3A0%3Als%3A695756441235%3Ahid%3A104030318%3Az%3A0%3Ai%3A20221130210636%3Aet%3A1669842397%3Ac%3A1%3Arn%3A702044071%3Arqn%3A1%3Au%3A1669842395640894071%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A41%2C29%2C78%2C2%2C-5%2C0%2C%2C405%2C7%2C%2C%2C%2C595%3Aeu%3A1%3Ans%3A1669842394695%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669842397%3At%3A%D0%92%D0%BE%D0%B9%D1%82%D0%B8&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)ecs(1)fip(1)rqnl(1)ti(2)
IP 87.250.250.119:0
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash dbc661593130f200fe6084a607859b0b
f224816843d39a8a0117ca9132bd7423e6de9107
0ccd93f4f6620720c0824db103cb875bdb90eea3083682738e78c600bdaa8b95
GET /watch/23414332?wmode=7&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A547%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A923%3Acn%3A3%3Adp%3A0%3Als%3A695756441235%3Ahid%3A104030318%3Az%3A0%3Ai%3A20221130210636%3Aet%3A1669842397%3Ac%3A1%3Arn%3A702044071%3Arqn%3A1%3Au%3A1669842395640894071%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A41%2C29%2C78%2C2%2C-5%2C0%2C%2C405%2C7%2C%2C%2C%2C595%3Aeu%3A1%3Ans%3A1669842394695%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669842397%3At%3A%D0%92%D0%BE%D0%B9%D1%82%D0%B8&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)ecs(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ganjaplan.7fi.ru
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/23414332/1?wmode=7&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A547%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A923%3Acn%3A3%3Adp%3A0%3Als%3A695756441235%3Ahid%3A104030318%3Az%3A0%3Ai%3A20221130210636%3Aet%3A1669842397%3Ac%3A1%3Arn%3A702044071%3Arqn%3A1%3Au%3A1669842395640894071%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A41%2C29%2C78%2C2%2C-5%2C0%2C%2C405%2C7%2C%2C%2C%2C595%3Aeu%3A1%3Ans%3A1669842394695%3Aadb%3A2%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669842397%3At%3A%D0%92%D0%BE%D0%B9%D1%82%D0%B8&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29ecs%281%29fip%281%29rqnl%281%29ti%282%29
date: Wed, 30 Nov 2022 21:06:38 GMT
access-control-allow-origin: http://ganjaplan.7fi.ru
set-cookie: yandexuid=5397197621669842398; Expires=Thu, 30-Nov-2023 21:06:38 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=5397197621669842398; Expires=Thu, 30-Nov-2023 21:06:38 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=466194551669842398; Path=/; SameSite=None; Secure
i=RchVA8+sWyFQoaBzSQ3I9qqXIJ/nN3lEcf4ys4GLPJCaG6LbyvLFnMPUeVSsYTo4pyeguibs4BQTk0dRpe4b/AJABls=; Expires=Sat, 27-Nov-2032 21:06:36 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1701378398.yc.1669842398#1701378398.yrts.1669842398#1701378398.yrtsi.1669842398; Expires=Thu, 30-Nov-2023 21:06:38 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 30-Nov-2022 21:06:38 GMT
last-modified: Wed, 30-Nov-2022 21:06:38 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7231
Expires: Wed, 30 Nov 2022 23:07:09 GMT
Date: Wed, 30 Nov 2022 21:06:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12740
Expires: Thu, 01 Dec 2022 00:38:58 GMT
Date: Wed, 30 Nov 2022 21:06:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12740
Expires: Thu, 01 Dec 2022 00:38:58 GMT
Date: Wed, 30 Nov 2022 21:06:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 777ce44582c70bf01a31da4cab366f36
57e1d34f146d5ccd9943aa97bcc3158f7103bb07
fbdc8f65ae74dc13b7aafec464f08fdc9902af519946200ec52432ac3ca55982
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10958
x-amzn-requestid: abfea5b0-58f5-49e1-b78e-7cf456d03cb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFHF9oIAMF5lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a20-5ab719292d440d083b07a478;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gCt9oHpZ68tLCYHIYpI1XLtADkScxwf12kDFnU0o5WoQIVSzWlqozw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:16:52 GMT
etag: "57e1d34f146d5ccd9943aa97bcc3158f7103bb07"
content-type: image/jpeg
age: 82186
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c269b8c-3d4d-44ba-8e91-4a2a42d194b9.png
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c269b8c-3d4d-44ba-8e91-4a2a42d194b9.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 89e1a735e16f55c78fa75ae434294029
6c56f4015305eff04a99cec9758cd40bf4e5f704
26e8b042c0bbef2c7f93f77451563cf6e12af282251ef864652574be2b2c5b15
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c269b8c-3d4d-44ba-8e91-4a2a42d194b9.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3711
x-amzn-requestid: 502d7eed-f24a-49e8-b14e-759778b717ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbWQSFNnIAMFpxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63879d9b-5eb88e757ff3eeaa26dd7de2;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 18:14:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hrGJk_aF0hgdEXNUAqj74wYkXby2ptGRqWKFi4sxlvs_QN9WhC6vOw==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 18:25:55 GMT
age: 9643
etag: "6c56f4015305eff04a99cec9758cd40bf4e5f704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpbgEFOIAMF71A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 04:55:46 GMT
age: 58252
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5508d05a290b663fd89ead9b58f2efd8
53650399f9a986ba54addd668b4557109d12003b
65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ym_L3s5E6MLy6BxqNkVxok6L6hA4c-ilSsEqt42j2IbiXYPb4c6-VQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:52:51 GMT
age: 83627
etag: "53650399f9a986ba54addd668b4557109d12003b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e00769bd1391b8f4f5b8ab128a825355
e4ddf955e8ac1986045ed55880c43c69e588a021
81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7298
x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcE3poAMFaAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8heT2eN5oLbO14R9qLq78Vma_TkteufTyKM5i3K2XoJYXfWNwLMEwQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:25 GMT
age: 83413
etag: "e4ddf955e8ac1986045ed55880c43c69e588a021"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59baec8db5ced0210ab766ea5636a5fd
f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b
33ff55891f18c22970804f1b8b2ba6821ddfd7426b01486410bd43f2b4295a8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5785
x-amzn-requestid: ee77265b-8e90-4035-8ef1-92a2d26aaefa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaHdWoAMFqmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-0d10d74030e7aee74804b654;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QhUrNKIJUxXTYFTgfCwizAd9L4PdLMVLbqv1sHmmnrWya0xz1MTSiw==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:08:46 GMT
etag: "f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b"
content-type: image/jpeg
age: 82672
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
w.uptolike.com/widgets/v1/zp/support.html
95.163.114.204200 OK 3.8 kB URL HTTP/1.1 w.uptolike.com/widgets/v1/zp/support.html
IP 95.163.114.204:0
ASN #12695 LLC Digital Network
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash a4af8c67ad0a2a6f681a742faca4463e
50794dee2e25cb8ec2187256750e00dc3231faa7
10ace92ddcb397879ff3569155caf7c3e28c3b4ee8c35eaddb48af927520ecf5
GET /widgets/v1/zp/support.html HTTP/1.1
Host: w.uptolike.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Cookie: utl_id2=29792991898; utl_dat="CKDP89LMMBAAIKCgvtvMMCigoL7bzDAwALwc/oDfs8/Cw5tp12bzO1c="
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:38 GMT
Content-Type: text/html;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=1800
Expires: Wed, 30 Nov 2022 21:36:38 GMT
Content-Encoding: gzip
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 099c7d940b73bf2149f4effc78ca2fd4
17e4bd51f580534ac6acbc5873545081578a452c
245bdf8a161ff5244ee783d5094462fa59d53ef2604b7a3ed3daa17e986b91f6
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 21:06:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 04 Dec 2022 20:03:39 GMT
ETag: "17e4bd51f580534ac6acbc5873545081578a452c"
Last-Modified: Wed, 30 Nov 2022 20:03:40 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 330
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77268c506a57b50f-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 099c7d940b73bf2149f4effc78ca2fd4
17e4bd51f580534ac6acbc5873545081578a452c
245bdf8a161ff5244ee783d5094462fa59d53ef2604b7a3ed3daa17e986b91f6
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 21:06:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 04 Dec 2022 20:03:39 GMT
ETag: "17e4bd51f580534ac6acbc5873545081578a452c"
Last-Modified: Wed, 30 Nov 2022 20:03:40 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 330
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77268c507a66b50f-OSL
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 688c79257f570c9592156ec07943e8c7
1bb02dffb8bbc41b5311dd884623cef5a22e2535
577deda0527d8bf7279aa5195e0acfcdd9915d6139d7ef5ab6b153a7b5bac71f
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 21:06:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sun, 04 Dec 2022 19:33:08 GMT
ETag: "1bb02dffb8bbc41b5311dd884623cef5a22e2535"
Last-Modified: Wed, 30 Nov 2022 19:33:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 991
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77268c50eeca0b55-OSL
vk.com/share.php?act=count&format=json&url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php%3F_utl_t%3Dvk&callback=callback__utl_cb_share_1669842397333221
87.240.132.78200 OK 41 B URL HTTP/2 vk.com/share.php?act=count&format=json&url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php%3F_utl_t%3Dvk&callback=callback__utl_cb_share_1669842397333221
IP 87.240.132.78:0
File type ASCII text, with no line terminators
Hash 6de86497641c67868bfddcbf5a8bf434
6065bb53c9addbda818a6b172597326ebc31e8dc
51d446e1b704e289975e53c6945dee986d432bb439d02a2afcee7ce1b5bddcf8
GET /share.php?act=count&format=json&url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php%3F_utl_t%3Dvk&callback=callback__utl_cb_share_1669842397333221 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.uptolike.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Wed, 30 Nov 2022 21:06:38 GMT
content-type: text/html; charset=windows-1251
content-length: 41
x-powered-by: KPHP/7.4.112783
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Sat, 25 Nov 2023 17:24:46 GMT; path=/; domain=.vk.com
remixstlid=9104394512904053571_yX7cE29k8kOb1nEA4IRtpssWcGeUTH2uJr1pfQMxucH; expires=Thu, 30 Nov 2023 21:06:38 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-encoding: gzip
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
api.pinterest.com/v1/urls/count.json?&url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&callback=callback__utl_cb_share_1669842397333656
2.18.172.195200 OK 94 B URL HTTP/2 api.pinterest.com/v1/urls/count.json?&url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&callback=callback__utl_cb_share_1669842397333656
IP 2.18.172.195:0
File type ASCII text, with no line terminators
Hash f32e1ba39b47e888a6403eca24d175d1
894c38e22b2d77c227077630cb9df0ede592d4d8
dbd6550cf061b70d692214c58bba13e986acbc4744b494deeb0e37ed9301bba8
GET /v1/urls/count.json?&url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&callback=callback__utl_cb_share_1669842397333656 HTTP/1.1
Host: api.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.uptolike.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/javascript
content-length: 94
expires: Wed, 30 Nov 2022 21:21:38 GMT
x-envoy-upstream-service-time: 4
cache-control: no-cache, no-store, must-revalidate
x-pinterest-rid: 1046876148395072
date: Wed, 30 Nov 2022 21:06:38 GMT
set-cookie: _ir=0; Max-Age=1800; HttpOnly; Path=/; Secure
akamai-grn: 0.540a655f.1669842398.23442828
x-cdn: akamai
X-Firefox-Spdy: h2
api.pinterest.com/v1/urls/count.json?&url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php%3F_utl_t%3Dps&callback=callback__utl_cb_share_1669842397334471
2.18.172.195200 OK 104 B URL HTTP/2 api.pinterest.com/v1/urls/count.json?&url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php%3F_utl_t%3Dps&callback=callback__utl_cb_share_1669842397334471
IP 2.18.172.195:0
File type ASCII text, with no line terminators
Hash 2a5a18b0b8a687a8fd632d8e099c7be9
93892d1710d18b8badeb5aa6d693f03823671feb
4695be9887a66da925f5c4470266195f146196b5908aae1150253b93a3c97a5f
GET /v1/urls/count.json?&url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php%3F_utl_t%3Dps&callback=callback__utl_cb_share_1669842397334471 HTTP/1.1
Host: api.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.uptolike.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/javascript
content-length: 104
expires: Wed, 30 Nov 2022 21:21:38 GMT
x-envoy-upstream-service-time: 6
cache-control: no-cache, no-store, must-revalidate
x-pinterest-rid: 2050277815871199
date: Wed, 30 Nov 2022 21:06:38 GMT
set-cookie: _ir=0; Max-Age=1800; HttpOnly; Path=/; Secure
akamai-grn: 0.540a655f.1669842398.2344282a
x-cdn: akamai
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 1bb07c76d6cd8295950302c6e692af95
64ce3360389d07d5deed12764c0ee4c42f073ec8
2f9ffa2baec56af9fc72a0e4151d7586c21387faeee42137b453c8dc4e8b8a68
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 21:06:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 04 Dec 2022 19:13:23 GMT
ETag: "64ce3360389d07d5deed12764c0ee4c42f073ec8"
Last-Modified: Wed, 30 Nov 2022 19:13:24 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3368
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77268c514f381c0e-OSL
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 1bb07c76d6cd8295950302c6e692af95
64ce3360389d07d5deed12764c0ee4c42f073ec8
2f9ffa2baec56af9fc72a0e4151d7586c21387faeee42137b453c8dc4e8b8a68
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 21:06:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 04 Dec 2022 19:13:23 GMT
ETag: "64ce3360389d07d5deed12764c0ee4c42f073ec8"
Last-Modified: Wed, 30 Nov 2022 19:13:24 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3368
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77268c514b93b50f-OSL
vk.com/share.php?act=count&format=json&url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&callback=callback__utl_cb_share_1669842397332269
87.240.132.78200 OK 41 B URL HTTP/2 vk.com/share.php?act=count&format=json&url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&callback=callback__utl_cb_share_1669842397332269
IP 87.240.132.78:0
File type ASCII text, with no line terminators
Hash 6de86497641c67868bfddcbf5a8bf434
6065bb53c9addbda818a6b172597326ebc31e8dc
51d446e1b704e289975e53c6945dee986d432bb439d02a2afcee7ce1b5bddcf8
GET /share.php?act=count&format=json&url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&callback=callback__utl_cb_share_1669842397332269 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.uptolike.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Wed, 30 Nov 2022 21:06:38 GMT
content-type: text/html; charset=windows-1251
content-length: 41
x-powered-by: KPHP/7.4.112783
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Sun, 26 Nov 2023 17:58:11 GMT; path=/; domain=.vk.com
remixstlid=9116216461925925186_InKDZKEtz4teNBwKmOgOdgLOflmsRwu6j3I3p9SvLzP; expires=Thu, 30 Nov 2023 21:06:38 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-encoding: gzip
x-frontend: front225207
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
connect.mail.ru/share_count?func=mrc__shareInit240&url_list=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&callback=callback__utl_cb_share_1669842397334872
94.100.180.54200 OK 91 B URL HTTP/1.1 connect.mail.ru/share_count?func=mrc__shareInit240&url_list=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&callback=callback__utl_cb_share_1669842397334872
IP 94.100.180.54:0
Hash cb552efbc7c55fbc57022d6c949de123
5e61c212e18424214337bec42b8a5115d0df01a8
af54021b14f52c9f27c54c44235d4c6e6864782e2d8198db67da5a9b89094e19
GET /share_count?func=mrc__shareInit240&url_list=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&callback=callback__utl_cb_share_1669842397334872 HTTP/1.1
Host: connect.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.uptolike.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:38 GMT
Content-Type: text/javascript; charset=UTF-8
Content-Length: 91
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
X-WebKit-CSP-Report-Only: default-src https: 'unsafe-inline' 'unsafe-eval'; img-src https://* data: ; frame-src https://* about: javascript:
P3P: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
Cache-Control: no-cache, no-store, must-revalidate, private
connect.mail.ru/share_count?func=mrc__shareInit891&url_list=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php%3F_utl_t%3Dmr&callback=callback__utl_cb_share_1669842397334323
94.100.180.54200 OK 101 B URL HTTP/1.1 connect.mail.ru/share_count?func=mrc__shareInit891&url_list=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php%3F_utl_t%3Dmr&callback=callback__utl_cb_share_1669842397334323
IP 94.100.180.54:0
Hash f695040dc7a3c10ca968cca3ae346fda
41ddf3936d88a1da630b5a9b894e30a22a847d50
7599acaca75fd9c7ac6bcab13c5aafc59162f56eb722fdb0f97774c249499482
GET /share_count?func=mrc__shareInit891&url_list=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php%3F_utl_t%3Dmr&callback=callback__utl_cb_share_1669842397334323 HTTP/1.1
Host: connect.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.uptolike.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 21:06:38 GMT
Content-Type: text/javascript; charset=UTF-8
Content-Length: 101
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
X-WebKit-CSP-Report-Only: default-src https: 'unsafe-inline' 'unsafe-eval'; img-src https://* data: ; frame-src https://* about: javascript:
P3P: policyref="/w3c/p3p.xml", CP="NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA"
Cache-Control: no-cache, no-store, must-revalidate, private
mc.yandex.ru/webvisor/59396?wv-check=63796&wv-type=0&wmode=0&wv-part=1&wv-hit=104030318&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&rn=839211150&browser-info=gdpr%3A14%3Aet%3A1669842404%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130210643%3Au%3A1669842395640894071%3Avf%3A12kpamsypdk9qpokppnvg4%3Ast%3A1669842404&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/59396?wv-check=63796&wv-type=0&wmode=0&wv-part=1&wv-hit=104030318&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&rn=839211150&browser-info=gdpr%3A14%3Aet%3A1669842404%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130210643%3Au%3A1669842395640894071%3Avf%3A12kpamsypdk9qpokppnvg4%3Ast%3A1669842404&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/59396?wv-check=63796&wv-type=0&wmode=0&wv-part=1&wv-hit=104030318&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&rn=839211150&browser-info=gdpr%3A14%3Aet%3A1669842404%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130210643%3Au%3A1669842395640894071%3Avf%3A12kpamsypdk9qpokppnvg4%3Ast%3A1669842404&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 516
Origin: http://ganjaplan.7fi.ru
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 30 Nov 2022 21:06:45 GMT
access-control-allow-origin: http://ganjaplan.7fi.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 30-Nov-2022 21:06:45 GMT
last-modified: Wed, 30-Nov-2022 21:06:45 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/59396?wv-check=3341&wv-type=0&wmode=0&wv-part=2&wv-hit=104030318&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&rn=585022687&browser-info=gdpr%3A14%3Aet%3A1669842404%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130210643%3Au%3A1669842395640894071%3Avf%3A12kpamsypdk9qpokppnvg4%3Ast%3A1669842404&t=gdpr(14)ti(2)
87.250.250.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/59396?wv-check=3341&wv-type=0&wmode=0&wv-part=2&wv-hit=104030318&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&rn=585022687&browser-info=gdpr%3A14%3Aet%3A1669842404%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130210643%3Au%3A1669842395640894071%3Avf%3A12kpamsypdk9qpokppnvg4%3Ast%3A1669842404&t=gdpr(14)ti(2)
IP 87.250.250.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/59396?wv-check=3341&wv-type=0&wmode=0&wv-part=2&wv-hit=104030318&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&rn=585022687&browser-info=gdpr%3A14%3Aet%3A1669842404%3Aw%3A1280x939%3Av%3A923%3Az%3A0%3Ai%3A20221130210643%3Au%3A1669842395640894071%3Avf%3A12kpamsypdk9qpokppnvg4%3Ast%3A1669842404&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 12
Origin: http://ganjaplan.7fi.ru
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Wed, 30 Nov 2022 21:06:45 GMT
access-control-allow-origin: http://ganjaplan.7fi.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 30-Nov-2022 21:06:45 GMT
last-modified: Wed, 30-Nov-2022 21:06:45 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
connect.ok.ru/dk?st.cmd=extLike&uid=odklcnt0&ref=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php%3F_utl_t%3Dok&callback=callback__utl_cb_share_1669842397332300
217.20.152.207200 OK 0 B URL HTTP/2 connect.ok.ru/dk?st.cmd=extLike&uid=odklcnt0&ref=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php%3F_utl_t%3Dok&callback=callback__utl_cb_share_1669842397332300
IP 217.20.152.207:0
GET /dk?st.cmd=extLike&uid=odklcnt0&ref=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php%3F_utl_t%3Dok&callback=callback__utl_cb_share_1669842397332300 HTTP/1.1
Host: connect.ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.uptolike.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: apache
date: Wed, 30 Nov 2022 21:06:38 GMT
content-type: application/javascript;charset=UTF-8
vary: Accept-Encoding
set-cookie: bci=-14915384309230431; Domain=.ok.ru; Expires=Tue, 19-Dec-2090 00:20:45 GMT; Path=/; Secure; HttpOnly
_statid=3216dd7b-45b0-4e6c-9755-09ba9a9ece3b; Domain=.ok.ru; Expires=Tue, 19-Dec-2090 00:20:45 GMT; Path=/; Secure; HttpOnly
landref=w.uptolike.com; Domain=.ok.ru; Path=/; Secure
content-security-policy: default-src data: 'self' 'unsafe-inline' 'unsafe-eval' ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me wss://ad.mail.ru *.mail.ru *.imgsmail.ru *.mradx.net *.serving-sys.com *.googleapis.com *.gstatic.com www.google.com https://api-maps.yandex.ru yastatic.net yandex.st *.doubleverify.com *.adsafeprotected.com https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://football.sportmail.ru *.google.ru *.google.com *.googlesyndication.com *.yandex.ru blob:; script-src 'unsafe-inline' 'unsafe-eval' *.mail.ru https://*.mail.ru *.imgsmail.ru *.mradx.net ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me mc.yandex.ru an.yandex.ru yastatic.net yandex.st *.google-analytics.com api-maps.yandex.ru https://api-maps.yandex.ru https://clck.yandex.ru *.googleapis.com *.gstatic.com www.google.com www.youtube.com https://www.youtube.com *.ytimg.com https://*.ytimg.com *.doubleverify.com *.dvtps.com *.doubleclick.net *.googletagservices.com *.googlesyndication.com *.googleadservices.com *.goodgame.ru https://*.goodgame.ru https://*.moatads.com *.adlooxtracking.com *.adlooxtracking.ru *.adsafeprotected.com *.serving-sys.com *.serving-sys.ru *.weborama.fr *.weborama-tech.ru https://enterprise.api-maps.yandex.ru https://suggest-maps.yandex.ru https://*.hit.gemius.pl https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://gum.criteo.com https://football.sportmail.ru *.googletagmanager.com connect.facebook.net *.google.ru *.google.com *.googlesyndication.com yandex.ru; worker-src blob: 'self'; connect-src * wss: blob:; font-src * data: blob:; frame-src * blob: 'self'; img-src * data: blob: about:; media-src * data: blob:; object-src *; report-uri /csp/report;
content-security-policy-report-only: default-src data: blob: about: 'self' 'unsafe-inline' 'unsafe-eval' https: wss:; report-uri /csp/report?always;
cache-control: no-cache, no-store
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000;includeSubdomains;preload
access-control-allow-origin: *
access-control-allow-credentials: true
rendered-blocks: WidgetExtLike
content-encoding: br
X-Firefox-Spdy: h2
connect.ok.ru/dk?st.cmd=extLike&uid=odklcnt0&ref=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&callback=callback__utl_cb_share_1669842397331777
217.20.152.207200 OK 0 B URL HTTP/2 connect.ok.ru/dk?st.cmd=extLike&uid=odklcnt0&ref=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&callback=callback__utl_cb_share_1669842397331777
IP 217.20.152.207:0
GET /dk?st.cmd=extLike&uid=odklcnt0&ref=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&callback=callback__utl_cb_share_1669842397331777 HTTP/1.1
Host: connect.ok.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://w.uptolike.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: apache
date: Wed, 30 Nov 2022 21:06:38 GMT
content-type: application/javascript;charset=UTF-8
vary: Accept-Encoding
set-cookie: bci=-7261521905653597667; Domain=.ok.ru; Expires=Tue, 19-Dec-2090 00:20:45 GMT; Path=/; Secure; HttpOnly
_statid=23050033-7bf6-4d68-8c00-6d541e79d4b9; Domain=.ok.ru; Expires=Tue, 19-Dec-2090 00:20:45 GMT; Path=/; Secure; HttpOnly
landref=w.uptolike.com; Domain=.ok.ru; Path=/; Secure
content-security-policy: default-src data: 'self' 'unsafe-inline' 'unsafe-eval' ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me wss://ad.mail.ru *.mail.ru *.imgsmail.ru *.mradx.net *.serving-sys.com *.googleapis.com *.gstatic.com www.google.com https://api-maps.yandex.ru yastatic.net yandex.st *.doubleverify.com *.adsafeprotected.com https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://football.sportmail.ru *.google.ru *.google.com *.googlesyndication.com *.yandex.ru blob:; script-src 'unsafe-inline' 'unsafe-eval' *.mail.ru https://*.mail.ru *.imgsmail.ru *.mradx.net ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me mc.yandex.ru an.yandex.ru yastatic.net yandex.st *.google-analytics.com api-maps.yandex.ru https://api-maps.yandex.ru https://clck.yandex.ru *.googleapis.com *.gstatic.com www.google.com www.youtube.com https://www.youtube.com *.ytimg.com https://*.ytimg.com *.doubleverify.com *.dvtps.com *.doubleclick.net *.googletagservices.com *.googlesyndication.com *.googleadservices.com *.goodgame.ru https://*.goodgame.ru https://*.moatads.com *.adlooxtracking.com *.adlooxtracking.ru *.adsafeprotected.com *.serving-sys.com *.serving-sys.ru *.weborama.fr *.weborama-tech.ru https://enterprise.api-maps.yandex.ru https://suggest-maps.yandex.ru https://*.hit.gemius.pl https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://gum.criteo.com https://football.sportmail.ru *.googletagmanager.com connect.facebook.net *.google.ru *.google.com *.googlesyndication.com yandex.ru; worker-src blob: 'self'; connect-src * wss: blob:; font-src * data: blob:; frame-src * blob: 'self'; img-src * data: blob: about:; media-src * data: blob:; object-src *; report-uri /csp/report;
content-security-policy-report-only: default-src data: blob: about: 'self' 'unsafe-inline' 'unsafe-eval' https: wss:; report-uri /csp/report?always;
cache-control: no-cache, no-store
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000;includeSubdomains;preload
access-control-allow-origin: *
access-control-allow-credentials: true
rendered-blocks: WidgetExtLike
content-encoding: br
X-Firefox-Spdy: h2
mc.yandex.ru/watch/59396?wmode=7&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A12kpamsypdk9qpokppnvg4%3Afp%3A547%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1646660671426%3Ahid%3A104030318%3Az%3A0%3Ai%3A20221130210635%3Aet%3A1669842395%3Ac%3A1%3Arn%3A614811662%3Arqn%3A1%3Au%3A1669842395640894071%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A41%2C29%2C78%2C2%2C-5%2C0%2C%2C405%2C7%2C%2C%2C%2C595%3Ans%3A1669842394695%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669842396%3At%3A%D0%92%D0%BE%D0%B9%D1%82%D0%B8&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
87.250.250.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/59396?wmode=7&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A12kpamsypdk9qpokppnvg4%3Afp%3A547%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1646660671426%3Ahid%3A104030318%3Az%3A0%3Ai%3A20221130210635%3Aet%3A1669842395%3Ac%3A1%3Arn%3A614811662%3Arqn%3A1%3Au%3A1669842395640894071%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A41%2C29%2C78%2C2%2C-5%2C0%2C%2C405%2C7%2C%2C%2C%2C595%3Ans%3A1669842394695%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669842396%3At%3A%D0%92%D0%BE%D0%B9%D1%82%D0%B8&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
IP 87.250.250.119:0
GET /watch/59396?wmode=7&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A12kpamsypdk9qpokppnvg4%3Afp%3A547%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1646660671426%3Ahid%3A104030318%3Az%3A0%3Ai%3A20221130210635%3Aet%3A1669842395%3Ac%3A1%3Arn%3A614811662%3Arqn%3A1%3Au%3A1669842395640894071%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A41%2C29%2C78%2C2%2C-5%2C0%2C%2C405%2C7%2C%2C%2C%2C595%3Ans%3A1669842394695%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669842396%3At%3A%D0%92%D0%BE%D0%B9%D1%82%D0%B8&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://ganjaplan.7fi.ru
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/59396/1?wmode=7&page-url=http%3A%2F%2Fganjaplan.7fi.ru%2Flogin.php&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A12kpamsypdk9qpokppnvg4%3Afp%3A547%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A1646660671426%3Ahid%3A104030318%3Az%3A0%3Ai%3A20221130210635%3Aet%3A1669842395%3Ac%3A1%3Arn%3A614811662%3Arqn%3A1%3Au%3A1669842395640894071%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A41%2C29%2C78%2C2%2C-5%2C0%2C%2C405%2C7%2C%2C%2C%2C595%3Ans%3A1669842394695%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669842396%3At%3A%D0%92%D0%BE%D0%B9%D1%82%D0%B8&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Wed, 30 Nov 2022 21:06:36 GMT
access-control-allow-origin: http://ganjaplan.7fi.ru
set-cookie: yandexuid=8120199311669842396; Expires=Thu, 30-Nov-2023 21:06:36 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=8120199311669842396; Expires=Thu, 30-Nov-2023 21:06:36 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1928401311669842396; Path=/; SameSite=None; Secure
i=kENFcftEoEFJPsPXYxBI7nLDT4LpqYjgq1Mlj0flUdeEtVOU5ul5VNYaaUPfTRw8K4HRWZUH7o/L+6PNjLs9s4bSFAE=; Expires=Sat, 27-Nov-2032 21:06:35 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1701378396.yc.1669842396#1701378396.yrts.1669842396#1701378396.yrtsi.1669842396; Expires=Thu, 30-Nov-2023 21:06:36 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Wed, 30-Nov-2022 21:06:36 GMT
last-modified: Wed, 30-Nov-2022 21:06:36 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
cdn.smntq.com/c83ul/smart.js
95.217.109.66200 OK 0 B URL HTTP/2 cdn.smntq.com/c83ul/smart.js
IP 95.217.109.66:0
ASN #24940 Hetzner Online GmbH
GET /c83ul/smart.js HTTP/1.1
Host: cdn.smntq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ganjaplan.7fi.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.20.1
date: Wed, 30 Nov 2022 21:06:37 GMT
content-type: text/javascript;charset=UTF-8
set-cookie: smart=b4123b29547d41bbab3197966a0bf8ea; expires=Mon, 03-Jan-2028 21:06:37 GMT; Max-Age=160704000; path=/; SameSite=None; Secure; domain=cdn.smntq.com
mode: no-cors
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Access-Control-Allow-Headers, Origin,Accept, x-compress, X-Requested-With, Content-Type, Access-Control-Request-Method, Access-Control-Request-Headers
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2