| bobrdobr.ru/addext.html?url=kpolyakov.spb.ru/prog/turing.htm&title=%D0%A3%D1%87%D0%B5%D0%B1%D0%BD%D0%B0%D1%8F%20%D0%BC%D0%BE%D0%B4%D0%B5%D0%BB%D1%8C%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%B0%20%C2%AB%D0%9C%D0%B0%D1%88%D0%B8%D0%BD%D0%B0%20%D0%A2%D1%8C%D1%8E%D1%80%D0%B8%D0%BD%D0%B3%D0%B0%C2%BB:%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%9A%D0%BE%D0%BD%D1%81%D1%82%D0%B0%D0%BD%D1%82%D0%B8%D0%BD%D0%B0%20%D0%9F%D0%BE%D0%BB%D1%8F%D0%BA%D0%BE%D0%B2%D0%B0 | 172.67.184.10 | 301 Moved Permanently | 0 B |
URL HTTP/1.1bobrdobr.ru/addext.html?url=kpolyakov.spb.ru/prog/turing.htm&title=%D0%A3%D1%87%D0%B5%D0%B1%D0%BD%D0%B0%D1%8F%20%D0%BC%D0%BE%D0%B4%D0%B5%D0%BB%D1%8C%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%B0%20%C2%AB%D0%9C%D0%B0%D1%88%D0%B8%D0%BD%D0%B0%20%D0%A2%D1%8C%D1%8E%D1%80%D0%B8%D0%BD%D0%B3%D0%B0%C2%BB:%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%9A%D0%BE%D0%BD%D1%81%D1%82%D0%B0%D0%BD%D1%82%D0%B8%D0%BD%D0%B0%20%D0%9F%D0%BE%D0%BB%D1%8F%D0%BA%D0%BE%D0%B2%D0%B0 IP172.67.184.10:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /addext.html?url=kpolyakov.spb.ru/prog/turing.htm&title=%D0%A3%D1%87%D0%B5%D0%B1%D0%BD%D0%B0%D1%8F%20%D0%BC%D0%BE%D0%B4%D0%B5%D0%BB%D1%8C%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%B0%20%C2%AB%D0%9C%D0%B0%D1%88%D0%B8%D0%BD%D0%B0%20%D0%A2%D1%8C%D1%8E%D1%80%D0%B8%D0%BD%D0%B3%D0%B0%C2%BB:%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%9A%D0%BE%D0%BD%D1%81%D1%82%D0%B0%D0%BD%D1%82%D0%B8%D0%BD%D0%B0%20%D0%9F%D0%BE%D0%BB%D1%8F%D0%BA%D0%BE%D0%B2%D0%B0 HTTP/1.1
Host: bobrdobr.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 20 Sep 2022 19:58:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 20 Sep 2022 20:58:03 GMT
Location: https://bobrdobr.ru/addext.html?url=kpolyakov.spb.ru/prog/turing.htm&title=%D0%A3%D1%87%D0%B5%D0%B1%D0%BD%D0%B0%D1%8F%20%D0%BC%D0%BE%D0%B4%D0%B5%D0%BB%D1%8C%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%B0%20%C2%AB%D0%9C%D0%B0%D1%88%D0%B8%D0%BD%D0%B0%20%D0%A2%D1%8C%D1%8E%D1%80%D0%B8%D0%BD%D0%B3%D0%B0%C2%BB:%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%9A%D0%BE%D0%BD%D1%81%D1%82%D0%B0%D0%BD%D1%82%D0%B8%D0%BD%D0%B0%20%D0%9F%D0%BE%D0%BB%D1%8F%D0%BA%D0%BE%D0%B2%D0%B0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JHyBbIbLpQx5DJLhVg09eDcOsYJa918WC8ayDTrwEM5tRQqDHHlAzorFMtw67odLD4S4tsyy%2FvlgncxGxZoq7g7WJWKWapui5pZrV7%2B528NMmPHsnbH9dfc6Tg7IOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74dd22380e8b0afe-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash861cfa99de956423d917ed0ddbea4b9c ad65dbc394b48b04a45c205f56af296c8d008db4 5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2594
Expires: Tue, 20 Sep 2022 20:41:17 GMT
Date: Tue, 20 Sep 2022 19:58:03 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 143.204.55.36 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.36:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash2d12f67fe57a87e7366b662d153a5582 d7b02d81cc74f24a251d9363e0f4b0a149264ec1 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 19:03:07 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0gH-X6uSimoKLtPtR9XZdsLoRir-EF_25sba1myGBd9TFy8-nOx5_w==
Age: 3296
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain | 143.204.55.110 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain IP143.204.55.110:0
File typePEM certificate\012- , ASCII text Hash6113f8408c59aebe188d6af273b90743 7398873bf00f99944eaa77ad3ebc0d43c23dba6b b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zI8MzKbVJF_bSx-Qk96d2XSAfXStC-ppccJjgDcDDDOH_UxwRlqkHA==
age: 55370
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf0f47551fbd13cc14ca764dc6670410b dea91686da06cb013f9914eb1e6befaee030c860 69d9d7562b46416b9544cb666b98a499ad45cca86de4532ced2f3869d615cebd
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "69D9D7562B46416B9544CB666B98A499AD45CCA86DE4532CED2F3869D615CEBD"
Last-Modified: Sun, 18 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12958
Expires: Tue, 20 Sep 2022 23:34:01 GMT
Date: Tue, 20 Sep 2022 19:58:03 GMT
Connection: keep-alive
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 19:58:03 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf0f47551fbd13cc14ca764dc6670410b dea91686da06cb013f9914eb1e6befaee030c860 69d9d7562b46416b9544cb666b98a499ad45cca86de4532ced2f3869d615cebd
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "69D9D7562B46416B9544CB666B98A499AD45CCA86DE4532CED2F3869D615CEBD"
Last-Modified: Sun, 18 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12957
Expires: Tue, 20 Sep 2022 23:34:01 GMT
Date: Tue, 20 Sep 2022 19:58:04 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf9a04500cca640e1af04c6989a604053 639af5db6dfb127b15038185e6dd0a75ec33d77f eb6585fa9ca1612de81379ef5f13084d01f24ced8077bed86917ae6af1af73f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:58:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| partner.googleadservices.com/gampad/google_service.js | 172.217.21.162 | 200 OK | 373 B |
URL HTTP/2partner.googleadservices.com/gampad/google_service.js IP172.217.21.162:0
Hash661854aeecf12ceec3a47608501233da f7b52c94982b73a5c5559dc166250c18e3af1ba6 12755200a7e22a322f3e6f9231be4a200dbac47873eafc18aecafe32e9dad068
GET /gampad/google_service.js HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 373
x-xss-protection: 0
date: Tue, 20 Sep 2022 19:37:07 GMT
expires: Tue, 20 Sep 2022 20:37:07 GMT
cache-control: public, max-age=3600
age: 1257
etag: 953604975598805376
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash05dfa19609343ef6acdaf2ccc3ca8add 5a51311c554ae7a13d677484cb09e408e16f2a50 85609b2731a7e9966f02caa9e9592686859f26a2fe9f43bc5224a8ca82736161
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:58:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 13 kB |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash03f151357a1345205fec6af48a695b40 442dafb026c746f0ef872548b5749e5f0affe045 2804cc3eb020666efc58592305d5d2b4f2c25c7922f0da2b046dd76b787d2085
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FB2D471A6C67E22C856A7BF79ABA0B9205D0F8ACE1D994B41B8CD7EE1D041761"
Last-Modified: Mon, 19 Sep 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21587
Expires: Wed, 21 Sep 2022 01:57:51 GMT
Date: Tue, 20 Sep 2022 19:58:04 GMT
Connection: keep-alive
|
|
| adv-first.ru/code/vkshow1.php?id=1018 | 95.216.10.178 | 200 OK | 7.5 kB |
URL HTTP/1.1adv-first.ru/code/vkshow1.php?id=1018 IP95.216.10.178:0 ASN#24940 Hetzner Online GmbH
File typeASCII text, with very long lines (17932), with no line terminators Hash43a306af12421bef1bc31521ca0e270f a81900c4dd42ae4b4c909cb9d925ac1438ef456e f3188fe81796f8f62a079740f25a961fa40f7423e042cb21b2ec353c8638ad8d
GET /code/vkshow1.php?id=1018 HTTP/1.1
Host: adv-first.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Sep 2022 19:58:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Tue, 20 Sep 2022 19:58:04 GMT
Cache-Control: post-check=0, pre-check=0
Pragma: no-cache
P3P: policyref="/w3c/p3p.xml", CP="UNI"
Strict-Transport-Security: max-age=15768000
Content-Encoding: gzip
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 938 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash7a80ebf2a08d6cf23b32b9427d7606be e63b4f3dcee1615edacde3a139dfe14e45ac53ab d1a4c32d4449bec306b6703c494a211b748a84af0a877b049c5b13d011f36704
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 19:58:04 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sat, 24 Sep 2022 19:39:22 GMT
ETag: "e63b4f3dcee1615edacde3a139dfe14e45ac53ab"
Last-Modified: Tue, 20 Sep 2022 19:39:23 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 404
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74dd223e1d5a1c06-OSL
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.36 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.36:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 20 Sep 2022 19:03:22 GMT
Expires: Tue, 20 Sep 2022 19:31:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: r2GrgFrz1wcnYnylh03QtH8ClSQlGD9GxAskuF2pO8ZxD78m6iYurA==
Age: 3282
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashedf07cd621f733b0eb50c632387ebf4f 61a082d26501c2c8d481b1676d0de2e585269613 e5c4324e4c55824b86f48bf0b9a1d317a82e7d3c19bdea7a91d78ce98d68a980
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5644
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:58:04 GMT
Last-Modified: Tue, 20 Sep 2022 18:24:00 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 52.35.74.102 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.35.74.102:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: WodiWV+Kyz+6j2sFjdtrXg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZCUBhYPq3srNetF0R+4MD2BFPDM=
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash26fcf8aea27805b4a6a29e3e2a4ba19b f920fd6c5a79a4adb2f456edcee678757ff1602c 7aa63d03f514e4f51190e85f167f747563f980e0e6fdee6cce9393321dff1038
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:58:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| an.yandex.ru/resource/context.js?rnd=76499 | 213.180.193.90 | 200 OK | 98 kB |
URL HTTP/2an.yandex.ru/resource/context.js?rnd=76499 IP213.180.193.90:0
File typeASCII text, with very long lines (65536), with no line terminators Hash83aa7d2f4e91c2f31b29bc703224d5ce 873152d423703c1572620ab7558eff84e171d835 8e1bbf80713cba1e4f6c8317c3e4da330fe902c11592f3a1b60dd08d7c56bf91
GET /resource/context.js?rnd=76499 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
access-control-allow-origin: *
expires: Tue, 20 Sep 2022 20:58:04 GMT
x-yandex-req-id: 1663703884946385-29692553601085348400105-production-app-host-vla-pcode-91
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash596ea0e7cffcb12819c214fd7e55e6b5 fdf581b35743d7693bf8c7f6154471a1b2646f06 a78eee2be3725b096407fde832e7762dad74ac69165f57a10b1ef76b5b2d9874
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 19:58:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.globalsign.com/gsgccr3dvtlsca2020 | 104.18.21.226 | 200 OK | 2.1 kB |
URL HTTP/1.1ocsp.globalsign.com/gsgccr3dvtlsca2020 IP104.18.21.226:0
Hashe8f3db2442761bc79b8fba76cd0b6a7f 2ed0281ad709ad8cb4963bd4f53164c9418e7ae8 0efbda981f72270b5fd62ce0323eb79ace84789c6cd9fa7bccec3a4ba37c252a
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 19:58:05 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sat, 24 Sep 2022 17:39:44 GMT
ETag: "7bb8f168264d2feb8af3fcaa4cf61d76b5f01dae"
Last-Modified: Tue, 20 Sep 2022 17:39:45 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2910
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74dd2243abbe1c06-OSL
|
|
| counter.rambler.ru/top100.cnt?1430050 | 81.19.89.17 | 200 OK | 43 B |
URL HTTP/2counter.rambler.ru/top100.cnt?1430050 IP81.19.89.17:0 ASN#24638 Rambler Internet Holding LLC
File typeGIF image data, version 89a, 1 x 1\012- data Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /top100.cnt?1430050 HTTP/1.1
Host: counter.rambler.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.4
date: Tue, 20 Sep 2022 19:58:05 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
pragma: no-cache
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: content-type
access-control-allow-credentials: true
x-srv: 0kraken-prod0001.ad.rambler.tech
set-cookie: ruid=1CIAAE0bKmPfY1qEAfg4VgB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
proto_uid=1CIAAE0bKmPfY1qEAfg4VgB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
X-Firefox-Spdy: h2
|
|
| counter.yadro.ru/hit?r;s1280*1024*24;uhttps%3A//bobrdobr.ru/addext.html%3Furl%3Dkpolyakov.spb.ru/prog/turing.htm%26title%3D%25D0%25A3%25D1%2587%25D0%25B5%25D0%25B1%25D0%25BD%25D0%25B0%25D1%258F%2520%25D0%25BC%25D0%25BE%25D0%25B4%25D0%25B5%25D0%25BB%25D1%258C%2520%25D0%25BA%25D0%25BE%25D0%25BC%25D0%25BF%25D1%258C%25D1%258E%25D1%2582%25D0%25B5%25D1%2580%25D0%25B0%2520%25C2%25AB%25D0%259C%25D0%25B0%25D1%2588%25D0%25B8%25D0%25BD%25D0%25B0%2520%25D0%25A2%25D1%258C%25D1%258E%25D1%2580%25D0%25B8%25D0%25BD%25D0%25B3%25D0%25B0%25C2%25BB%3A%2520%25D1%2581%25D0%25B0%25D0%25B9%25D1%2582%2520%25D0%259A%25D0%25BE%25D0%25BD%25D1%2581%25D1%2582%25D0%25B0%25D0%25BD%25D1%2582%25D0%25B8%25D0%25BD%25D0%25B0%2520%25D0%259F%25D0%25BE%25D0%25BB%25D1%258F%25D0%25BA%25D0%25BE%25D0%25B2%25D0%25B0;0.013265296269388882 | 88.212.202.52 | 200 OK | 43 B |
URL HTTP/1.1counter.yadro.ru/hit?r;s1280*1024*24;uhttps%3A//bobrdobr.ru/addext.html%3Furl%3Dkpolyakov.spb.ru/prog/turing.htm%26title%3D%25D0%25A3%25D1%2587%25D0%25B5%25D0%25B1%25D0%25BD%25D0%25B0%25D1%258F%2520%25D0%25BC%25D0%25BE%25D0%25B4%25D0%25B5%25D0%25BB%25D1%258C%2520%25D0%25BA%25D0%25BE%25D0%25BC%25D0%25BF%25D1%258C%25D1%258E%25D1%2582%25D0%25B5%25D1%2580%25D0%25B0%2520%25C2%25AB%25D0%259C%25D0%25B0%25D1%2588%25D0%25B8%25D0%25BD%25D0%25B0%2520%25D0%25A2%25D1%258C%25D1%258E%25D1%2580%25D0%25B8%25D0%25BD%25D0%25B3%25D0%25B0%25C2%25BB%3A%2520%25D1%2581%25D0%25B0%25D0%25B9%25D1%2582%2520%25D0%259A%25D0%25BE%25D0%25BD%25D1%2581%25D1%2582%25D0%25B0%25D0%25BD%25D1%2582%25D0%25B8%25D0%25BD%25D0%25B0%2520%25D0%259F%25D0%25BE%25D0%25BB%25D1%258F%25D0%25BA%25D0%25BE%25D0%25B2%25D0%25B0;0.013265296269388882 IP88.212.202.52:0 ASN#39134 United Network LLC
File typeGIF image data, version 89a, 1 x 1\012- data Hashfc94fb0c3ed8a8f909dbc7630a0987ff 56d45f8a17f5078a20af9962c992ca4678450765 2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit?r;s1280*1024*24;uhttps%3A//bobrdobr.ru/addext.html%3Furl%3Dkpolyakov.spb.ru/prog/turing.htm%26title%3D%25D0%25A3%25D1%2587%25D0%25B5%25D0%25B1%25D0%25BD%25D0%25B0%25D1%258F%2520%25D0%25BC%25D0%25BE%25D0%25B4%25D0%25B5%25D0%25BB%25D1%258C%2520%25D0%25BA%25D0%25BE%25D0%25BC%25D0%25BF%25D1%258C%25D1%258E%25D1%2582%25D0%25B5%25D1%2580%25D0%25B0%2520%25C2%25AB%25D0%259C%25D0%25B0%25D1%2588%25D0%25B8%25D0%25BD%25D0%25B0%2520%25D0%25A2%25D1%258C%25D1%258E%25D1%2580%25D0%25B8%25D0%25BD%25D0%25B3%25D0%25B0%25C2%25BB%3A%2520%25D1%2581%25D0%25B0%25D0%25B9%25D1%2582%2520%25D0%259A%25D0%25BE%25D0%25BD%25D1%2581%25D1%2582%25D0%25B0%25D0%25BD%25D1%2582%25D0%25B8%25D0%25BD%25D0%25B0%2520%25D0%259F%25D0%25BE%25D0%25BB%25D1%258F%25D0%25BA%25D0%25BE%25D0%25B2%25D0%25B0;0.013265296269388882 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 20 Sep 2022 19:58:05 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Sun, 19 Sep 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 939 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash7c8391de843b2877ef52d181402d186f 37e25b3e6be4ef86d22a3ae491e55f597f7e2efe 8d2f877587246e6b84f758756624ac1beb9f3cf9fe7473d240634b8d557932f8
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 19:58:05 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 24 Sep 2022 16:58:27 GMT
ETag: "37e25b3e6be4ef86d22a3ae491e55f597f7e2efe"
Last-Modified: Tue, 20 Sep 2022 16:58:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 446
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74dd22442c551c06-OSL
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 939 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash7c8391de843b2877ef52d181402d186f 37e25b3e6be4ef86d22a3ae491e55f597f7e2efe 8d2f877587246e6b84f758756624ac1beb9f3cf9fe7473d240634b8d557932f8
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 19:58:05 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 24 Sep 2022 16:58:27 GMT
ETag: "37e25b3e6be4ef86d22a3ae491e55f597f7e2efe"
Last-Modified: Tue, 20 Sep 2022 16:58:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 446
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74dd2244398bb52d-OSL
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 939 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash07ba2ea3c09a6067bfe0a6503f81c0b9 5df7086c796f483fbe61fb00f4ca02b38823d3f1 8d3e26631a0532acc2a4c31da1b82e21d9782fc7ec48d047b88dbe8fef88f9ca
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 19:58:05 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 24 Sep 2022 16:45:55 GMT
ETag: "5df7086c796f483fbe61fb00f4ca02b38823d3f1"
Last-Modified: Tue, 20 Sep 2022 16:45:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 407
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74dd2246cc4db52d-OSL
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 939 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash07ba2ea3c09a6067bfe0a6503f81c0b9 5df7086c796f483fbe61fb00f4ca02b38823d3f1 8d3e26631a0532acc2a4c31da1b82e21d9782fc7ec48d047b88dbe8fef88f9ca
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 19:58:05 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 24 Sep 2022 16:45:55 GMT
ETag: "5df7086c796f483fbe61fb00f4ca02b38823d3f1"
Last-Modified: Tue, 20 Sep 2022 16:45:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 407
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74dd2246cf0b1c06-OSL
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 939 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash07ba2ea3c09a6067bfe0a6503f81c0b9 5df7086c796f483fbe61fb00f4ca02b38823d3f1 8d3e26631a0532acc2a4c31da1b82e21d9782fc7ec48d047b88dbe8fef88f9ca
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 19:58:05 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 24 Sep 2022 16:45:55 GMT
ETag: "5df7086c796f483fbe61fb00f4ca02b38823d3f1"
Last-Modified: Tue, 20 Sep 2022 16:45:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 407
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74dd2246cbbfb4fd-OSL
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 939 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hash07ba2ea3c09a6067bfe0a6503f81c0b9 5df7086c796f483fbe61fb00f4ca02b38823d3f1 8d3e26631a0532acc2a4c31da1b82e21d9782fc7ec48d047b88dbe8fef88f9ca
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 19:58:05 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 24 Sep 2022 16:45:55 GMT
ETag: "5df7086c796f483fbe61fb00f4ca02b38823d3f1"
Last-Modified: Tue, 20 Sep 2022 16:45:56 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 407
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74dd2246cf0cb51d-OSL
|
|
| yastatic.net/safeframe-bundles/0.83/host.js | 178.154.131.216 | 200 OK | 8.9 kB |
URL HTTP/2yastatic.net/safeframe-bundles/0.83/host.js IP178.154.131.216:0
File typeASCII text, with very long lines (33703), with no line terminators Hashf80882bf67cf261aa08d636da095149a 3e5bf3fbdb45c9696f9b925d3e71b2e9777c82cd 4794febaad77bf94edba1c860dbcf9612722ad0a18b95831dad359b0bba4bed6
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bobrdobr.ru
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 20 Sep 2022 19:58:05 GMT
content-type: text/javascript; charset=utf-8
content-length: 8878
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "f80882bf67cf261aa08d636da095149a"
expires: Fri, 20 Sep 2052 02:32:36 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yastatic.net/partner-code-bundles/653024/a78ba8ccb84001c65cb7.js | 178.154.131.216 | 200 OK | 4.5 kB |
URL HTTP/2yastatic.net/partner-code-bundles/653024/a78ba8ccb84001c65cb7.js IP178.154.131.216:0
File typeASCII text, with very long lines (13535) Hashaefb34126cc396aab37c676f169e0490 10a7f0a5fd58a8ba881f3add6f858e18d5e2681a 15a35756a1a4fcbedc8f4b830af31710a9f41bcc9588e38f11f85f9a75d0b2fe
GET /partner-code-bundles/653024/a78ba8ccb84001c65cb7.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bobrdobr.ru
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 20 Sep 2022 19:58:05 GMT
content-type: text/javascript; charset=utf-8
content-length: 4461
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "aefb34126cc396aab37c676f169e0490"
expires: Fri, 20 Sep 2052 02:32:26 GMT
last-modified: Mon, 19 Sep 2022 18:04:54 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| yandex.ru/ads/system/context.js | 77.88.55.55 | 200 OK | 100 kB |
URL HTTP/2yandex.ru/ads/system/context.js IP77.88.55.55:0
File typeASCII text, with very long lines (65536), with no line terminators Hashbaf417c7706191ac1fe7f07aa6542836 5beeb66b3eca81bc29070c8aed8aa8bda58db0a2 6d62e97da4b8f5d6044e73fbea20c8a9629b23440268b6918c97fd57466585bf
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=h9oixga/FUr95x6lmnNAcgkBwC1cSoZqqiCAPnqVcMR85xvY55alKes6d5UQRgpn0KafGYSsytTLdIeaWsz93xhfZOY=; Path=/; Domain=.yandex.ru; Expires=Thu, 19-Sep-2024 19:58:05 GMT; SameSite=None; Secure; HttpOnly
expires: Tue, 20 Sep 2022 20:58:05 GMT
x-yandex-req-id: 1663703885516083-10851518239196675072-sas3-0973-1aa-sas-l7-balancer-8080-BAL-6478
report-to: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
|
|
| adv-first.ru/pxl/=IWN4czYxATZ3UjMkBjZwQzN2E2N5ITOyIWZ3UDO4cjMdx3WvUncuInYvRmci9mYv8iOzBHd0hWX8tFN4gzMwczM2YTMdx3W2QTX8tVMxYjMdx3W4UjMdx3WyIDO0EjMyMTMdx3WxQTX8t1N | 95.216.10.178 | 200 OK | 0 B |
URL HTTP/1.1adv-first.ru/pxl/=IWN4czYxATZ3UjMkBjZwQzN2E2N5ITOyIWZ3UDO4cjMdx3WvUncuInYvRmci9mYv8iOzBHd0hWX8tFN4gzMwczM2YTMdx3W2QTX8tVMxYjMdx3W4UjMdx3WyIDO0EjMyMTMdx3WxQTX8t1N IP95.216.10.178:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pxl/=IWN4czYxATZ3UjMkBjZwQzN2E2N5ITOyIWZ3UDO4cjMdx3WvUncuInYvRmci9mYv8iOzBHd0hWX8tFN4gzMwczM2YTMdx3W2QTX8tVMxYjMdx3W4UjMdx3WyIDO0EjMyMTMdx3WxQTX8t1N HTTP/1.1
Host: adv-first.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Sep 2022 19:58:05 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Tue, 20 Sep 2022 19:58:05 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
P3P: policyref="/w3c/p3p.xml", CP="UNI"
Strict-Transport-Security: max-age=15768000
|
|
| adv-first.ru/fpart/?sid=877279 | 95.216.10.178 | 200 OK | 253 B |
URL HTTP/1.1adv-first.ru/fpart/?sid=877279 IP95.216.10.178:0 ASN#24940 Hetzner Online GmbH
Hashcc01b880348307054186de1e8564417d 09e79cee7e83dc10799a0dcc61011da10de3c97c bfee366850b7f90777515f9fe624841dd3354bd57a0e16c38b022ff2c7b00a65
GET /fpart/?sid=877279 HTTP/1.1
Host: adv-first.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Sep 2022 19:58:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Strict-Transport-Security: max-age=15768000
Content-Encoding: gzip
|
|
| yastatic.net/partner-code-bundles/653024/9cb189c1d775b5926247.js | 178.154.131.216 | 200 OK | 109 kB |
URL HTTP/2yastatic.net/partner-code-bundles/653024/9cb189c1d775b5926247.js IP178.154.131.216:0
File typeASCII text, with very long lines (65497) Size109 kB (109055 bytes) Hashbba02e86e69d6cb9bb8fbc895ec15e3f a9c916a2da97ab4f0d574f46ce2f6766a341eaba ac66f8ee595579e7ea0610b1a8d32eccd72b9c1d8c823174da49f41dfe5707c7
GET /partner-code-bundles/653024/9cb189c1d775b5926247.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bobrdobr.ru
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 20 Sep 2022 19:58:05 GMT
content-type: text/javascript; charset=utf-8
content-length: 109055
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "bba02e86e69d6cb9bb8fbc895ec15e3f"
expires: Fri, 20 Sep 2052 02:32:23 GMT
last-modified: Mon, 19 Sep 2022 18:04:54 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash46357f09210fe89148099c76364e301c 0f4f999606c297bc6e6927b5cb07ff805116564e 994365925852a5a7d7579f0b6ee7fc929f45b1f3d6775696e64042d298c02bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "994365925852A5A7D7579F0B6EE7FC929F45B1F3D6775696E64042D298C02BC1"
Last-Modified: Mon, 19 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18122
Expires: Wed, 21 Sep 2022 01:00:08 GMT
Date: Tue, 20 Sep 2022 19:58:06 GMT
Connection: keep-alive
|
|
| itrigra.ru/jquery.js?sid=877279&dmi=143 | 206.54.181.250 | 200 OK | 2.4 kB |
URL HTTP/1.1itrigra.ru/jquery.js?sid=877279&dmi=143 IP206.54.181.250:0
Hashe2503f0730da75e8d1c7d0e2da1ec39a e7f2c5324a5bac3f2399cc939f89acd89821eaf7 d74aeba73c6febc0b10ab84c9d348598261ab9d4e21be311439a71753c463ead
GET /jquery.js?sid=877279&dmi=143 HTTP/1.1
Host: itrigra.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
content-type: application/javascript
date: Tue, 20 Sep 2022 19:58:06 GMT
connection: close
transfer-encoding: chunked
|
|
| itrigra.ru/tre?key=OGM1EQUhDg0JCQBE | 206.54.181.250 | 200 OK | 3.6 kB |
URL HTTP/1.1itrigra.ru/tre?key=OGM1EQUhDg0JCQBE IP206.54.181.250:0
File typeC++ source, ASCII text, with very long lines (3639), with no line terminators Hash80852da0b3e7f36a1a64d9f2beef9d5d 262db224367902c0f2822177ccb889eb7915e3e4 af1255b6d7741174871f3ba6072bebf7c3c21487afc1b5abc079b0daf1b3a04d
GET /tre?key=OGM1EQUhDg0JCQBE HTTP/1.1
Host: itrigra.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
date: Tue, 20 Sep 2022 19:58:06 GMT
connection: close
transfer-encoding: chunked
|
|
| itrigra.ru/gre?key=IGMxBQUsHxYVJRIVDgdE | 206.54.181.250 | 200 OK | 4.1 kB |
URL HTTP/1.1itrigra.ru/gre?key=IGMxBQUsHxYVJRIVDgdE IP206.54.181.250:0
File typeC++ source, Unicode text, UTF-8 text, with very long lines (4072), with no line terminators Hashc0a5e35f9b5a75383f6d5f3c9de27852 62d6678103ca65a5fa8035298b7011c8a778e331 5d164ac1a1b89cd084bbb473357cca720078b1a079facfc305687d22338ccc10
GET /gre?key=IGMxBQUsHxYVJRIVDgdE HTTP/1.1
Host: itrigra.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
date: Tue, 20 Sep 2022 19:58:06 GMT
connection: close
transfer-encoding: chunked
|
|
| itrigra.ru/ajnxm1?key=KmMxBRgnOQsCAlE%3D | 206.54.181.250 | 200 OK | 6.3 kB |
URL HTTP/1.1itrigra.ru/ajnxm1?key=KmMxBRgnOQsCAlE%3D IP206.54.181.250:0
File typeASCII text, with very long lines (6271), with no line terminators Hash130dc93c28ee3b685f7eb2b5759645c9 2a16455efb816ae954f6903935f91b60b6110be6 be0243818789969fa0a637e1f2993784b75a4a4347a227073db3422a38704e99
GET /ajnxm1?key=KmMxBRgnOQsCAlE%3D HTTP/1.1
Host: itrigra.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
date: Tue, 20 Sep 2022 19:58:06 GMT
connection: close
transfer-encoding: chunked
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash0c88b20a2e615f11e9792d1bf9c0f4ac b9a7209f1e7fec471d3cf9ddf81ef679939db3a7 606e4f3babc04a7883df78b1facd5ec4a8517b572144d88c30079f7f4ef7baa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "606E4F3BABC04A7883DF78B1FACD5EC4A8517B572144D88C30079F7F4EF7BAA2"
Last-Modified: Sun, 18 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6072
Expires: Tue, 20 Sep 2022 21:39:18 GMT
Date: Tue, 20 Sep 2022 19:58:06 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashb51edc5550bf981ad06e26a233be886d fac929e5aaa690616a272ba914464c8fd00f9339 2d516f82f1fc2f2052dc04b7ac1a0f5f7f850cf3763b73f4180c23d652342ca0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2D516F82F1FC2F2052DC04B7AC1A0F5F7F850CF3763B73F4180C23D652342CA0"
Last-Modified: Mon, 19 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16660
Expires: Wed, 21 Sep 2022 00:35:46 GMT
Date: Tue, 20 Sep 2022 19:58:06 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashb6f0b27c159360094d4cddff921f430c 459ed30c50cf1ae108f6f1f6d417bdbb82e4fde6 abc459e0eb47ca2bae032cac4cffdd0781cb339264b550527a6531afadde547e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ABC459E0EB47CA2BAE032CAC4CFFDD0781CB339264B550527A6531AFADDE547E"
Last-Modified: Sun, 18 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5716
Expires: Tue, 20 Sep 2022 21:33:22 GMT
Date: Tue, 20 Sep 2022 19:58:06 GMT
Connection: keep-alive
|
|
| gibevay.ru/retarget/get | 206.54.181.250 | 200 OK | 399 B |
IP206.54.181.250:0
Hashdcd1c512f3118a4524f6b07ee480782c bc2b62eb50d8da0582a8797f89ed4e9dadad4271 652da6186377baa36e8900bac1852e3cc35b915fcb2d7e2852b9eb30c5538713
GET /retarget/get HTTP/1.1
Host: gibevay.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
content-type: text/javascript
date: Tue, 20 Sep 2022 19:58:06 GMT
connection: close
transfer-encoding: chunked
|
|
| umekana.ru/retarget/get | 206.54.181.250 | 200 OK | 399 B |
IP206.54.181.250:0
Hashdcd1c512f3118a4524f6b07ee480782c bc2b62eb50d8da0582a8797f89ed4e9dadad4271 652da6186377baa36e8900bac1852e3cc35b915fcb2d7e2852b9eb30c5538713
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /retarget/get HTTP/1.1
Host: umekana.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
content-type: text/javascript
date: Tue, 20 Sep 2022 19:58:06 GMT
connection: close
transfer-encoding: chunked
|
|
| momijoy.ru/visitors?visitorId=0 | 206.54.181.250 | 200 OK | 242 B |
URL HTTP/1.1momijoy.ru/visitors?visitorId=0 IP206.54.181.250:0
File typeASCII text, with no line terminators Hash292a9e6874a6df8f9cf3ff56a376c220 973562d3da072e69b71407d839e3bf9a8fcceb91 e6c6921fa91776139bacde041945d27b97e3c8d045a17110527588bd1c777ed6
GET /visitors?visitorId=0 HTTP/1.1
Host: momijoy.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: vid=1069753566; Max-Age=315360000000; Path=/
content-type: text/javascript
access-control-allow-origin: *
access-control-allow-credentials: true
date: Tue, 20 Sep 2022 19:58:06 GMT
connection: close
transfer-encoding: chunked
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash85aa2dcaf76d25900c78356e5e1c254f 46cd66c9921a162c9e67cfa7d85bc82e5967d531 741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5899
Expires: Tue, 20 Sep 2022 21:36:25 GMT
Date: Tue, 20 Sep 2022 19:58:06 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash85aa2dcaf76d25900c78356e5e1c254f 46cd66c9921a162c9e67cfa7d85bc82e5967d531 741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5899
Expires: Tue, 20 Sep 2022 21:36:25 GMT
Date: Tue, 20 Sep 2022 19:58:06 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash85aa2dcaf76d25900c78356e5e1c254f 46cd66c9921a162c9e67cfa7d85bc82e5967d531 741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5899
Expires: Tue, 20 Sep 2022 21:36:25 GMT
Date: Tue, 20 Sep 2022 19:58:06 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash85aa2dcaf76d25900c78356e5e1c254f 46cd66c9921a162c9e67cfa7d85bc82e5967d531 741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5899
Expires: Tue, 20 Sep 2022 21:36:25 GMT
Date: Tue, 20 Sep 2022 19:58:06 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash85aa2dcaf76d25900c78356e5e1c254f 46cd66c9921a162c9e67cfa7d85bc82e5967d531 741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5899
Expires: Tue, 20 Sep 2022 21:36:25 GMT
Date: Tue, 20 Sep 2022 19:58:06 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2ed7323b395e757f7766ea0045efdaca 8b91bc3069a3217bc719c27959d578b353b5d9dc 8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
content-type: image/jpeg
age: 78503
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg | 34.120.237.76 | 200 OK | 9.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1a7d863845e96c5927e812f325c08c16 b8484fb5443344b03e52dd56b1d6c5682eb6221a fcb382029332a44deaf212298b618074a752d674d0c735a1b8b861ab4bb6ff0f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9865
x-amzn-requestid: 7eeeff5b-cb13-4060-96a6-bf5a4be57331
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugokGQVoAMFXmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e169-4211dbbe1a22d0255a45aff0;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:38:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2kU9PLuzusMR04mNUdwbU6-120ESVhYJtNaIixERO68Vo9jEfP3JWg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:04:47 GMT
age: 78799
etag: "b8484fb5443344b03e52dd56b1d6c5682eb6221a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg | 34.120.237.76 | 200 OK | 9.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash7ca0c1a7f205ad07f1cce80b26448873 0e14f5062e40ce94346494ff947bfcf74b5e88c1 ebc960279032671136749823c126ec807334d9eaf2b019abcc63b41bcdbf4a7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9873
x-amzn-requestid: 7171299f-e6e3-40ef-a292-33779346e1ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI-FDIIAMF-xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-31f9413434a6b00e77e7709b;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: evL3aL1ULo6B2a8Rp6iILKCX7F14O9HMSbEqkEY3XHFhmMptE8FaVw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:44 GMT
age: 78502
etag: "0e14f5062e40ce94346494ff947bfcf74b5e88c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd3e70b2859ca89b353682d03f6b46b93 ebd83f29edd95217dfa4f4c7a94eddf34dd58b14 43ad8f8b0a664bbec39e0410c1201498a2d2e36e5bd7d5ece8d65b15230ec50b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10894
x-amzn-requestid: f7aad96e-af80-4db7-8bc1-d1e09a9b37e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeJQGHhOIAMFYuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322559a-538534e91448af217c59ab3d;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:28:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P7aZQzmAvqn2rcHJUQjHo0Dcg8dsrqseey5mNOabfq1b857M4SUMDQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 10:06:02 GMT
age: 35524
etag: "ebd83f29edd95217dfa4f4c7a94eddf34dd58b14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp | 34.120.237.76 | 200 OK | 9.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash30fbdfee7ec4513a5ff3dfcb7282f816 a852edb64a7220532aa619ab2a440c3a7e11b97a 4adee59f97bea412c6a0a786d0a27e431a497198b9047a75841b0a530803bdfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9543
x-amzn-requestid: 17be04c9-54f0-4988-82dd-f13911a2a629
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugINHN1IAMF8iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09a-35496b4c21c23dec75257964;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -VBFetQNkmIiWeJtW5IOheaPLdDHM9iKhiGPzVcA3_KQk7Qha5VrXg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:14:25 GMT
age: 78221
etag: "a852edb64a7220532aa619ab2a440c3a7e11b97a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc283017ec789693602177a2785177e21 ff8286c4d2cf87a1865d56d082bc5235dba60ad7 520db2567ad5529d35d2ac63b94d4186848382e9c86d0c4355ab979b34f0e0ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11145
x-amzn-requestid: dcb726a6-2f43-4170-a53c-4f0d2883309e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yuh7yHfHIAMFu4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e37e-11bf06e96123e01c11854cbb;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:47:42 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oJyChyEdTbGx6oQCRy6IVMS8qU22LupFYn6FOii3p4BUVFyKnssQ7Q==
via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:05:54 GMT
age: 78732
etag: "ff8286c4d2cf87a1865d56d082bc5235dba60ad7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| itrigra.ru/mtg?sid=877279&t=jfazmtgz&jsD=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 | 206.54.181.250 | 200 OK | 10 kB |
URL HTTP/1.1itrigra.ru/mtg?sid=877279&t=jfazmtgz&jsD=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 IP206.54.181.250:0
File typeJSON data\012- HTML document, ASCII text, with very long lines (10448), with no line terminators Hash0d6233ebba5630231049981b1bc4728b d85cbd1fdb1c0eb16aea30fa8554bd24da54b7d1 04f01a84a86f20a1f293c8c7da89db99674d8d97936824b1e6f758538ba9e36e
GET /mtg?sid=877279&t=jfazmtgz&jsD=JTdCJTIydmlzaXRvcklkJTIyJTNBMCUyQyUyMnJldGFyZ2V0SWRzJTIyJTNBJTVCMCU1RCUyQyUyMmZiJTIyJTNBJTdCJTIyZiUyMiUzQXRydWUlMkMlMjJ3JTIyJTNBdHJ1ZSU3RCUyQyUyMm1ldGFLdyUyMiUzQSUyMiVEMCU5MSVEMCVCRSVEMCVCMSVEMSU4MCVEMCU5NCVEMCVCRSVEMCVCMSVEMSU4MCUyMC0lMjAlRDAlQTElRDAlQkUlRDAlQjclRDAlQjQlRDAlQjAlRDAlQkQlRDAlQjglRDAlQjUlMjAlRDAlQjclRDAlQjAlRDAlQkElRDAlQkIlRDAlQjAlRDAlQjQlRDAlQkElRDAlQjglMjAlRDAlQkQlMjIlMkMlMjJ0aW1lJTIyJTNBMTY2MzcwMzg4NjI5MSUyQyUyMmNsaWNrcyUyMiUzQTAlMkMlMjJpbXBzJTIyJTNBMCUyQyUyMmxhc3RDbGljayUyMiUzQTAlMkMlMjJsYXN0SW1wJTIyJTNBMCUyQyUyMmlubmVyJTIyJTNBbnVsbCUyQyUyMnJlZiUyMiUzQSUyMiUyMiUyQyUyMnN0cHJDbGNrJTIyJTNBMCUyQyUyMnN0cHJJbXAlMjIlM0EwJTJDJTIyc3Rwcmxhc3RDbGljayUyMiUzQTAlMkMlMjJzdHBybGFzdEltcCUyMiUzQTAlMkMlMjJzb2NEYXQlMjIlM0ElMjIlMjIlMkMlMjJhcHBsZVBheSUyMiUzQTAlMkMlMjJnUGF5JTIyJTNBMCUyQyUyMmRtbmlkcCUyMiUzQTE0MyUyQyUyMmhhc2glMjIlM0ElMjIxYjQ4NzE0MzBiZmQwNWU2MTQzZTMxZTFjMjkxMzU3NzA1YjY4NWEyODBjNTg2ZjE3Zjc3OGZkM2IzODllOWNkJTIyJTJDJTIyc3ViaWQlMjIlM0ElMjIlMjIlMkMlMjJzY3JlZW5XJTIyJTNBMTI4MCUyQyUyMnNjcmVlbkglMjIlM0ExMDI0JTdE HTTP/1.1
Host: itrigra.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bobrdobr.ru
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: bnr=[]; path=/; secure; httponly
access-control-allow-origin: https://bobrdobr.ru
access-control-allow-credentials: true
vary: Origin
content-type: application/json
date: Tue, 20 Sep 2022 19:58:06 GMT
connection: close
content-length: 10448
|
|
| itrigra.ru/asdq?key=display_files | 206.54.181.250 | 200 OK | 4.2 kB |
URL HTTP/1.1itrigra.ru/asdq?key=display_files IP206.54.181.250:0
File typeC++ source, ASCII text, with very long lines (4183), with no line terminators Hash34cff5793c6d90a4e41273513d540591 028a5fa7f481ae458c765d07e94c0154414a2d7f 6cebfb828ee162bbede8a6e31368424c5deb6f4473426736c62434958948c159
GET /asdq?key=display_files HTTP/1.1
Host: itrigra.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
date: Tue, 20 Sep 2022 19:58:06 GMT
connection: close
transfer-encoding: chunked
|
|
| itrigra.ru/asdq?key=L2MgEAQyCgEUOBsSCghE | 206.54.181.250 | 200 OK | 505 B |
URL HTTP/1.1itrigra.ru/asdq?key=L2MgEAQyCgEUOBsSCghE IP206.54.181.250:0
File typeASCII text, with very long lines (505), with no line terminators Hash54b1954dc365f1fed1be1624cbb6d831 93440d1c49f5b6482231f86d39d1cf6f30b9307c 31563aeba524dacdc8ca5159d8ef46c5a4e67d2edb0f997f815dfd5f05e67c53
GET /asdq?key=L2MgEAQyCgEUOBsSCghE HTTP/1.1
Host: itrigra.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
date: Tue, 20 Sep 2022 19:58:06 GMT
connection: close
transfer-encoding: chunked
|
|
| a.exdynsrv.com/popunder1000.js | 205.185.216.42 | 200 OK | 40 kB |
URL HTTP/1.1a.exdynsrv.com/popunder1000.js IP205.185.216.42:0
File typeASCII text, with very long lines (65536), with no line terminators Hashe29e61608dcf36a4dd6b3d8eacf48d3f ae219c941ce5ab23148e010464c3762c6a4f2527 81a3a060539f23b2b95ddb995d84b30c0a4f1985221e1b9b84d31d89ddb7f2fb
GET /popunder1000.js HTTP/1.1
Host: a.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 19:58:07 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 39971
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"3ad893acf0f115f3a9b29e6fafa"
X-HW: 1663703887.dop072.sk1.t,1663703887.cds236.sk1.shn,1663703887.dop072.sk1.t,1663703887.cds001.sk1.c
Access-Control-Allow-Origin: *, *
|
|
| an.yandex.ru/resource/context.js?rnd=24331 | 213.180.193.90 | 200 OK | 0 B |
URL HTTP/2an.yandex.ru/resource/context.js?rnd=24331 IP213.180.193.90:0
GET /resource/context.js?rnd=24331 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bobrdobr.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
access-control-allow-origin: *
expires: Tue, 20 Sep 2022 20:58:04 GMT
x-yandex-req-id: 1663703884628223-387641694510483885300114-production-app-host-vla-pcode-99
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| bobrdobr.ru/addext.html?url=kpolyakov.spb.ru/prog/turing.htm&title=%D0%A3%D1%87%D0%B5%D0%B1%D0%BD%D0%B0%D1%8F%20%D0%BC%D0%BE%D0%B4%D0%B5%D0%BB%D1%8C%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%B0%20%C2%AB%D0%9C%D0%B0%D1%88%D0%B8%D0%BD%D0%B0%20%D0%A2%D1%8C%D1%8E%D1%80%D0%B8%D0%BD%D0%B3%D0%B0%C2%BB:%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%9A%D0%BE%D0%BD%D1%81%D1%82%D0%B0%D0%BD%D1%82%D0%B8%D0%BD%D0%B0%20%D0%9F%D0%BE%D0%BB%D1%8F%D0%BA%D0%BE%D0%B2%D0%B0 | 104.21.75.243 | 200 OK | 0 B |
URL HTTP/2bobrdobr.ru/addext.html?url=kpolyakov.spb.ru/prog/turing.htm&title=%D0%A3%D1%87%D0%B5%D0%B1%D0%BD%D0%B0%D1%8F%20%D0%BC%D0%BE%D0%B4%D0%B5%D0%BB%D1%8C%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%B0%20%C2%AB%D0%9C%D0%B0%D1%88%D0%B8%D0%BD%D0%B0%20%D0%A2%D1%8C%D1%8E%D1%80%D0%B8%D0%BD%D0%B3%D0%B0%C2%BB:%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%9A%D0%BE%D0%BD%D1%81%D1%82%D0%B0%D0%BD%D1%82%D0%B8%D0%BD%D0%B0%20%D0%9F%D0%BE%D0%BB%D1%8F%D0%BA%D0%BE%D0%B2%D0%B0 IP104.21.75.243:0
GET /addext.html?url=kpolyakov.spb.ru/prog/turing.htm&title=%D0%A3%D1%87%D0%B5%D0%B1%D0%BD%D0%B0%D1%8F%20%D0%BC%D0%BE%D0%B4%D0%B5%D0%BB%D1%8C%20%D0%BA%D0%BE%D0%BC%D0%BF%D1%8C%D1%8E%D1%82%D0%B5%D1%80%D0%B0%20%C2%AB%D0%9C%D0%B0%D1%88%D0%B8%D0%BD%D0%B0%20%D0%A2%D1%8C%D1%8E%D1%80%D0%B8%D0%BD%D0%B3%D0%B0%C2%BB:%20%D1%81%D0%B0%D0%B9%D1%82%20%D0%9A%D0%BE%D0%BD%D1%81%D1%82%D0%B0%D0%BD%D1%82%D0%B8%D0%BD%D0%B0%20%D0%9F%D0%BE%D0%BB%D1%8F%D0%BA%D0%BE%D0%B2%D0%B0 HTTP/1.1
Host: bobrdobr.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 20 Sep 2022 19:58:04 GMT
content-type: text/html; charset=utf-8
vary: Cookie
set-cookie: bobrologin=1; Path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=44L7LFgkYbuIcuOhoyjA%2BujuCr4QuSFOLKjNVhGKw%2BgUKLkK%2FhdokD3YxnW4y36MlH8vD1ZpswVOrvtz5i73dXlX%2BBZWlOktSsOENPnImlU3VblVgPGz7r0pYk8elQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74dd223a7e5ab4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|