Report - www.iemag.ru/columns/detail.php?ID=31796

Report Overview

Submitted URL
www.iemag.ru/columns/detail.php?ID=31796
IP
217.65.4.114
ASN
#29076 Filanco LLC
Submitted
2022-09-13 14:09:21
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
26

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
bitrix.info	39143	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	840 B	6.4 kB	34.247.209.163
sync.bumlam.com	3243	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	932 B	1.2 kB	31.172.81.172
fcgi4.gnezdo.ru	69027	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	419 B	284 B	93.95.102.105
ad.mail.ru	7643	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	400 B	756 B	95.163.41.56
px.adhigh.net	10272	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	824 B	1.0 kB	193.232.150.150
sync.1dmp.io	10017	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	1.2 kB	95.216.101.186
ocsp.godaddy.com	698	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	984 B	6.9 kB	192.124.249.23
www.iemag.ru	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	31 kB	377 kB	217.65.4.114
sync.republer.com	45392	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	374 B	133 B	23.88.82.46
match.new-programmatic.com	33613	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	422 B	213 B	217.65.2.150
sun6-22.userapi.com	32103	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	505 B	3.6 kB	95.142.206.2
top-fwz1.mail.ru	8936	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.9 kB	6.1 kB	95.163.52.67
ads.betweendigital.com	1571	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	2.4 kB	188.42.196.115
an.yandex.ru	2577	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	832 B	1.1 kB	87.250.250.90
ocsp2.globalsign.com	1544	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.6 kB	25 kB	104.18.20.226
www.acint.net	29072	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	16 kB	17 kB	185.12.125.25
ad.adriver.ru	19548	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	851 B	1.4 kB	195.209.108.50
ssp.adriver.ru	12439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	857 B	376 B	195.209.111.19
sync.adkernel.com	4993	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	457 B	107 B	77.245.57.72
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
www.pcweek.ru	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	968 B	896 B	89.108.64.185
ssp-rtb.sape.ru	31166	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	435 B	773 B	193.3.184.131
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.9 kB	172.64.155.188
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.5 kB	15 kB	23.33.119.27
sun6-21.userapi.com	32162	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	505 B	3.5 kB	95.142.206.1
redirect.frontend.weborama.fr	8348	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	969 B	1.4 kB	35.190.24.218
connect.ok.ru	20169	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	988 B	2.9 kB	217.20.147.3
sun6-20.userapi.com	32175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	487 B	3.7 kB	95.142.206.0
ocsp.usertrust.com	899	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	330 B	1.0 kB	104.18.32.68
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	63 kB	34.120.237.76
cs.agency2.ru	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	721 B	23.111.107.44
sun9-14.userapi.com	43545	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	385 B	1.9 kB	87.240.185.141
x01.aidata.io	12188	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	841 B	1.3 kB	89.108.120.76
adlmerge.com	146521	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	410 B	129 B	95.211.66.35
ssp.bidvol.com	31817	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	386 B	631 B	65.108.1.48
dm-eu.hybrid.ai	28847	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	407 B	460 B	37.18.103.21
ssp.bestssp.com	90974	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	426 B	302 B	185.147.80.35
ads.adlook.me	43352	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	430 B	319 B	176.122.21.131
s.uuidksinc.net	3423	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	412 B	322 B	31.220.27.135
exchange.buzzoola.com	18389	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	471 B	382 B	94.130.13.220
0100007f078f20639100723102b773c3-sp.ops.beeline.ru	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	437 B	828 B	37.9.245.57
status.thawte.com	5123	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	736 B	93.184.220.29
status.geotrust.com	3662	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	662 B	1.3 kB	93.184.220.29
vk.com	2243	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	11 kB	199 kB	87.240.132.72
ssl.google-analytics.com	275	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	18 kB	216.58.207.200
acint.net	22962	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	390 B	185.12.125.25
ut.rktch.com	41215	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	411 B	593 B	89.108.97.2
dmg.digitaltarget.ru	21471	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	3.2 kB	185.15.175.134
tech.rtb.mts.ru	27360	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	358 B	637 B	213.87.44.187
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
st.mycdn.me	31534	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	831 B	81 kB	217.20.152.226
sm.rtb.mts.ru	27154	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	814 B	1.1 kB	217.66.147.164
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	44.240.207.158
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.8 kB	142.250.74.3
a.utraff.com	39874	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	1.1 kB	172.67.217.151
sync.dmp.otm-r.com	19534	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	407 B	134 B	159.69.72.5
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	13 kB	104.18.20.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35
st6-21.vk.com	132012	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.8 kB	675 kB	95.142.206.1
sync.upravel.com	28097	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	866 B	1.8 kB	144.76.138.28
i.mycdn.me	13207	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.9 kB	16 kB	217.20.152.213
17c3a75a-86bb-4b32-9446-653bac17e008.sync.upravel.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	609 B	840 B	144.76.138.28
cm.g.doubleclick.net	202	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	435 B	657 B	172.217.21.162
sape-sync.rutarget.ru	173587	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	409 B	188.72.107.205
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
mediatoday.ru	136083	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	411 B	521 B	139.45.228.111
www.itweek.ru	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	19 kB	89.108.64.185
tag.digitaltarget.ru	98193	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	721 B	19 kB	185.15.175.144
stat.adlabs.ru	200922	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	412 B	191 B	109.248.237.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-13	medium	www.iemag.ru/columns/detail.php?ID=31796	Malware
2022-09-13	medium	www.iemag.ru/columns/detail.php?ID=31796	Malware
2022-09-13	medium	www.iemag.ru/bitrix/themes/.default/imyie.littleadmin.css?14123467322309	Malware
2022-09-13	medium	www.iemag.ru/bitrix/templates/main/main.js	Malware
2022-09-13	medium	www.iemag.ru/images/iemag/lightbox2/js/lightbox.js	Malware
2022-09-13	medium	www.iemag.ru/images/iemag/js/jquery-1.11.1.min.js	Malware
2022-09-13	medium	www.iemag.ru/ad/banners/top.php?banner_random=20113	Malware
2022-09-13	medium	www.iemag.ru/ad/banners/center.php?banner_random=11533	Malware
2022-09-13	medium	www.iemag.ru/bitrix/js/advertising/flash.js	Malware
2022-09-13	medium	www.iemag.ru/tmp/smc.php	Malware
2022-09-13	medium	www.iemag.ru/ad/banners/right.php?banner_random=37093	Malware
2022-09-13	medium	www.iemag.ru/ad/banners/button.php?banner_random=59682	Malware
2022-09-13	medium	www.iemag.ru/ad/banners/bottom.php?banner_random=85002	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (63)

	URL	Size	First Seen	Last Seen
	www.iemag.ru/columns/detail.php?ID=31796	311 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/columns/detail.php?ID=31796 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:57 Last Seen2023-03-07 15:50:57 Times Seen1 Hash 6f1e96fb41db583dc58e0590cb05e87c 526d51e18bc883bddce8e5070988d774d698108b 3dbb389efeff1b7fcf0fc380ebd1276eba4e05f3971ee2529ba677ec4716927d Loading...

	unknown	0 B	2023-03-07	2024-05-09
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-09 02:18:01 Times Seen37455497 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.acint.net/aci.js	23 kB	2023-03-07	2023-03-17
Pretty URL www.acint.net/aci.js IP 185.12.125.25 ASN #50214 QWARTA LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:59 Last Seen2023-03-17 20:29:36 Times Seen1 Hash 296c412bb908c9c3dce5d63fdd740fbc d00fa58ccedf948ecba31f911399c35483db13ad a05569a6a6ec13c9bda09ebf2f691f6d5a4f251878c58807472321018428fb33 Loading...

	www.iemag.ru/ad/banners/left.php?banner_random=81686	404 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/ad/banners/left.php?banner_random=81686 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:57 Last Seen2023-03-07 15:50:57 Times Seen1 Hash 8a524d673e5f80be4d271f29c1e738d3 f44214041844ff1d8dd266466d7ef76867688c91 28d150b0ff31f11e2332f8593fdb5307e38e5141153a0c0900434edc944c0e3e Loading...

	www.iemag.ru/ad/banners/right.php?banner_random=37093	407 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/ad/banners/right.php?banner_random=37093 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:57 Last Seen2023-03-07 15:50:57 Times Seen1 Hash 0fd55b80f75693c31cfe2d334632029a 04cc6e02c4dcaa757dfc7c19d7f7010f6a573bb6 dc99b9b39103553edf405ab29cf046083c28d36672b0e9cd6a84c5497ca9a7b5 Loading...

	ssl.google-analytics.com/ga.js	46 kB	2023-03-07	2024-04-16
Pretty URL ssl.google-analytics.com/ga.js IP 216.58.207.200 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-16 23:24:27 Times Seen3495 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	st6-21.vk.com/dist/audioplayer.1fff3154e7b8519a9805.js?295ab4343c830f03309ac24	165 kB	2023-03-07	2023-03-17
Pretty URL st6-21.vk.com/dist/audioplayer.1fff3154e7b8519a9805.js?295ab4343c830f03309ac24 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-17 12:35:57 Times Seen1 Hash d4d6d3ccb77c1b07744179d4dedef029 4ef03c1e1554776b432b619f8c16e3bc590657b1 6c12197025671151a37674685b2a52d3824e043f8db56414e7ca4b0375ff5e53 Loading...

	www.iemag.ru/columns/detail.php?ID=31796	399 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/columns/detail.php?ID=31796 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 3ad0d504ef2df04b49bcda52b24b6d6c bae94ae0f45439f2a8af143c5398dad836eed2ab f5e3d44f6e208c50325d01f7a0c2a5870f9fdbe8191ab4edfa266900074ff243 Loading...

	www.iemag.ru/images/iemag/js/jquery-1.11.1.min.js	96 kB	2023-03-07	2024-05-09
Pretty URL www.iemag.ru/images/iemag/js/jquery-1.11.1.min.js IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-09 01:14:32 Times Seen47244 Hash 8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441 Loading...

	vk.com/js/lang3_0.js?27717969	72 kB	2023-03-07	2023-03-17
Pretty URL vk.com/js/lang3_0.js?27717969 IP 87.240.132.72 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-17 12:35:58 Times Seen1 Hash 619a3dbf6ac7acff19fc5a7256272bb6 02f244ee8547f2933e57ae2f69444c78b555eed8 96eb2bb49ead043f622f0cf6c6df651ad3536aa8710f008b12d85a15c092aa9a Loading...

	tag.digitaltarget.ru/processor.js?i=131172405884428	16 kB	2023-03-07	2023-03-17
Pretty URL tag.digitaltarget.ru/processor.js?i=131172405884428 IP 185.15.175.144 ASN #43226 SafeData LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:45 Last Seen2023-03-17 11:25:38 Times Seen1 Hash 42e8505040360705cec5521c9089f683 01265a2bf81afac0a2e9f82ad49401e5a34ea551 1218f0c95f2f7c35e01976a666d90ebcbc5731cf851bbf7d853af02b3c09ced6 Loading...

	vk.com/js/api/openapi.js?115	107 kB	2023-03-07	2023-05-05
Pretty URL vk.com/js/api/openapi.js?115 IP 87.240.132.72 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:55 Last Seen2023-05-05 09:04:37 Times Seen29 Hash 73080a4915da9b27c52c2f13f9588dd9 faffefb3dd30b27b991262528a2a082ffa99f93e 2f041b5874edc1c94d686c876d2dc1f95d3e7dd3203c456a3c087aed7e4bf7c7 Loading...

	www.iemag.ru/columns/detail.php?ID=31796	49 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/columns/detail.php?ID=31796 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 30043ecdb598e1f6e5895bb9f47e0291 d6cf971c50d7099d20040a3b43621f2fbe18f050 7e9994fba76f5c910da5bdf2880dfde294d74a37d5e08b42b6b16bc07a1bb0c6 Loading...

	connect.ok.ru/dk?st.cmd=WidgetGroup&st.groupId=52505975062679&st.fid=__okGroup0&st.hoster=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&st.settings=%7Bwidth%3A200%2Cheight%3A230%7D	385 B	2023-03-07	2023-03-07
Pretty URL connect.ok.ru/dk?st.cmd=WidgetGroup&st.groupId=52505975062679&st.fid=__okGroup0&st.hoster=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&st.settings=%7Bwidth%3A200%2Cheight%3A230%7D IP 217.20.147.3 ASN #47764 Mail.Ru LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash efb45f94426dd8228d542005b435ad8f dfc3b4d8270717c3485b26e4374f65b03c802e0d da104c79fc1ac5d1f983364f07c1fbafe0e61072dc27f06a8b7209921ab96463 Loading...

	www.iemag.ru/columns/detail.php?ID=31796	525 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/columns/detail.php?ID=31796 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash e9e12a975ef77f128e092c89f495ed18 579a28f5a612c8357a61103989e823b8c3dd8392 bd04a21a280aa1bcced92308457e992a3f3567db48c7f1400e75a030405c3e40 Loading...

	www.iemag.ru/columns/detail.php?ID=31796	318 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/columns/detail.php?ID=31796 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 4ab637a486fce54c5287b41214af54c0 6beef28867241fcaa068f27e01f3f2b5d5e6907b fef4bb127179681372790249e2103f7bb7bb208d3f8533aa14bcee9debd1f319 Loading...

	www.iemag.ru/columns/detail.php?ID=31796	108 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/columns/detail.php?ID=31796 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash e99e41279d80b6b9116b547586c90cf1 0e02d66481aecdc8bff8762137ecc0456bfa0ac7 d48aa622e303e0f91aa1625b561213965af6fee45e417822ead55d0f5306ea21 Loading...

	vk.com/widget_like.php?app=4579236&width=100%25&_ver=1&page=0&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&type=mini&verb=0&color=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&description=%D0%92%C2%A0%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D0%B5%D0%B5%20%D0%B2%D1%80%D0%B5%D0%BC%D1%8F%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%20%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%82%D1%81%D1%8F%20%D0%B4%D1%80%D1%83%D0%B3%D0%B8%D0%BC.%20%D0%92%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D1%81%D1%8F%20%D0%B2%D1%81%D0%B5%20%D0%B1%D0%BE%D0%BB%D1%8C%D1%88%D0%B5%20%D1%80%D0%B0%D0%B7%D0%BD%D0%BE%D0%B3%D0%BE%20%D1%80%D0%BE%D0%B4%D0%B0%20%D0%BE%D0%B3%D1%80%D0%B0%D0%BD%D0%B8%D1%87%D0%B5%D0%BD%D0%B8%D0%B9%2C%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%B8%D0%B5%20%D1%81%D0%B0%D0%B9%D1%82%D1%8B%20%D0%B1%D0%BB%D0%BE%D0%BA%D0%B8%D1%80%D1%83%D1%8E%D1%82%D1%81%D1%8F%20%D0%BF%D0%BE%C2%A0%D1%82%D0%B5%D0%BC%20%D0%B8%D0%BB%D0%B8%20%D0%B8%D0%BD%D1%8B%D0%BC%20%D0%BF%D1%80%D0%B8%D1%87%D0%B8%D0%BD%D0%B0%D0%BC%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D0%BE%2C%20%D0%B2%D1%81%D0%BB%D0%B5...&image=http%3A%2F%2Fwww.iemag.ru%2Fupload%2Fiblock%2Fd2e%2Fspunt_300.jpg&text=&h=24&height=24&startWidth=0&referrer=&183372e80bd	4.5 kB	2023-03-07	2023-03-07
Pretty URL vk.com/widget_like.php?app=4579236&width=100%25&_ver=1&page=0&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&type=mini&verb=0&color=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&description=%D0%92%C2%A0%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D0%B5%D0%B5%20%D0%B2%D1%80%D0%B5%D0%BC%D1%8F%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%20%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%82%D1%81%D1%8F%20%D0%B4%D1%80%D1%83%D0%B3%D0%B8%D0%BC.%20%D0%92%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D1%81%D1%8F%20%D0%B2%D1%81%D0%B5%20%D0%B1%D0%BE%D0%BB%D1%8C%D1%88%D0%B5%20%D1%80%D0%B0%D0%B7%D0%BD%D0%BE%D0%B3%D0%BE%20%D1%80%D0%BE%D0%B4%D0%B0%20%D0%BE%D0%B3%D1%80%D0%B0%D0%BD%D0%B8%D1%87%D0%B5%D0%BD%D0%B8%D0%B9%2C%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%B8%D0%B5%20%D1%81%D0%B0%D0%B9%D1%82%D1%8B%20%D0%B1%D0%BB%D0%BE%D0%BA%D0%B8%D1%80%D1%83%D1%8E%D1%82%D1%81%D1%8F%20%D0%BF%D0%BE%C2%A0%D1%82%D0%B5%D0%BC%20%D0%B8%D0%BB%D0%B8%20%D0%B8%D0%BD%D1%8B%D0%BC%20%D0%BF%D1%80%D0%B8%D1%87%D0%B8%D0%BD%D0%B0%D0%BC%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D0%BE%2C%20%D0%B2%D1%81%D0%BB%D0%B5...&image=http%3A%2F%2Fwww.iemag.ru%2Fupload%2Fiblock%2Fd2e%2Fspunt_300.jpg&text=&h=24&height=24&startWidth=0&referrer=&183372e80bd IP 87.240.132.72 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash f79bfd4be1f37d16b0b09863de471167 5182ba579a0b32db29f5ef734dfea27511bfc4a8 e4e37a48dc3f1ff0f318695b7ec21acbbb1e8536171627cf99f972a5da12107d Loading...

	bitrix.info/ba.js	6.7 kB	2023-03-07	2024-05-08
Pretty URL bitrix.info/ba.js IP 34.247.209.163 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:15 Last Seen2024-05-08 23:50:08 Times Seen2059 Hash 1704091e9eb2522effa5baa97cee26a0 5a4ee9ebe22e0e6c35de6ca6b7f8cbeea40c71d4 897c58672b375fd206d4df4ccd71a3fa3e29f739f4db5251b94895ad015f9710 Loading...

	www.iemag.ru/columns/detail.php?ID=31796	57 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/columns/detail.php?ID=31796 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash c54b1ed57149b1144b6f18abc5e4db9f 18fcddd1ec12b5e06c926a7e0a1952c96562b523 8e7940647b91d64ce7682c3f4321210b38db0132007267f8d51bbd9fd3e2f6fd Loading...

	www.iemag.ru/ad/banners/center.php?banner_random=11533	410 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/ad/banners/center.php?banner_random=11533 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash e2ee5ee5b51994162ead3a65bc412192 df55f6e96bc275929b2391f4a917a3f94c370d9a 56ae0094395dee75db50ad11c40b767772431f5818b7da713898abf4e99c713c Loading...

	st6-21.vk.com/dist/web/ui_common.7ceb60d12631a7e5616a.js?	95 kB	2023-03-07	2023-03-17
Pretty URL st6-21.vk.com/dist/web/ui_common.7ceb60d12631a7e5616a.js? IP 95.142.206.1 ASN #60476 My.com B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-17 12:35:57 Times Seen1 Hash 63463ae62c16ad23b89bd70e94894788 365d995a0d5e6473516e0978610d72ee3535de30 d55e69dca67a79edcd1f69b1f2b7b5aefba18dad2f3b356d8be499e3a9810ac8 Loading...

	www.iemag.ru/bitrix/templates/main/main.js	3.5 kB	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/bitrix/templates/main/main.js IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 07f170979e49c74b6e68e152b77dd6d1 4e68e769fdecdb4361f80e6ef38fe05de9ebfd1f c63d26be94f3e16adfac696be4fe4596154d0ed553d416f7fe7bb166389a53af Loading...

	vk.com/widget_like.php?app=4579236&width=100%25&_ver=1&page=0&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&type=mini&verb=0&color=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&description=%D0%92%C2%A0%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D0%B5%D0%B5%20%D0%B2%D1%80%D0%B5%D0%BC%D1%8F%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%20%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%82%D1%81%D1%8F%20%D0%B4%D1%80%D1%83%D0%B3%D0%B8%D0%BC.%20%D0%92%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D1%81%D1%8F%20%D0%B2%D1%81%D0%B5%20%D0%B1%D0%BE%D0%BB%D1%8C%D1%88%D0%B5%20%D1%80%D0%B0%D0%B7%D0%BD%D0%BE%D0%B3%D0%BE%20%D1%80%D0%BE%D0%B4%D0%B0%20%D0%BE%D0%B3%D1%80%D0%B0%D0%BD%D0%B8%D1%87%D0%B5%D0%BD%D0%B8%D0%B9%2C%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%B8%D0%B5%20%D1%81%D0%B0%D0%B9%D1%82%D1%8B%20%D0%B1%D0%BB%D0%BE%D0%BA%D0%B8%D1%80%D1%83%D1%8E%D1%82%D1%81%D1%8F%20%D0%BF%D0%BE%C2%A0%D1%82%D0%B5%D0%BC%20%D0%B8%D0%BB%D0%B8%20%D0%B8%D0%BD%D1%8B%D0%BC%20%D0%BF%D1%80%D0%B8%D1%87%D0%B8%D0%BD%D0%B0%D0%BC%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D0%BE%2C%20%D0%B2%D1%81%D0%BB%D0%B5...&image=http%3A%2F%2Fwww.iemag.ru%2Fupload%2Fiblock%2Fd2e%2Fspunt_300.jpg&text=&h=24&height=24&startWidth=0&referrer=&183372e80bd	2.1 kB	2023-03-07	2023-03-07
Pretty URL vk.com/widget_like.php?app=4579236&width=100%25&_ver=1&page=0&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&type=mini&verb=0&color=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&description=%D0%92%C2%A0%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D0%B5%D0%B5%20%D0%B2%D1%80%D0%B5%D0%BC%D1%8F%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%20%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%82%D1%81%D1%8F%20%D0%B4%D1%80%D1%83%D0%B3%D0%B8%D0%BC.%20%D0%92%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D1%81%D1%8F%20%D0%B2%D1%81%D0%B5%20%D0%B1%D0%BE%D0%BB%D1%8C%D1%88%D0%B5%20%D1%80%D0%B0%D0%B7%D0%BD%D0%BE%D0%B3%D0%BE%20%D1%80%D0%BE%D0%B4%D0%B0%20%D0%BE%D0%B3%D1%80%D0%B0%D0%BD%D0%B8%D1%87%D0%B5%D0%BD%D0%B8%D0%B9%2C%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%B8%D0%B5%20%D1%81%D0%B0%D0%B9%D1%82%D1%8B%20%D0%B1%D0%BB%D0%BE%D0%BA%D0%B8%D1%80%D1%83%D1%8E%D1%82%D1%81%D1%8F%20%D0%BF%D0%BE%C2%A0%D1%82%D0%B5%D0%BC%20%D0%B8%D0%BB%D0%B8%20%D0%B8%D0%BD%D1%8B%D0%BC%20%D0%BF%D1%80%D0%B8%D1%87%D0%B8%D0%BD%D0%B0%D0%BC%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D0%BE%2C%20%D0%B2%D1%81%D0%BB%D0%B5...&image=http%3A%2F%2Fwww.iemag.ru%2Fupload%2Fiblock%2Fd2e%2Fspunt_300.jpg&text=&h=24&height=24&startWidth=0&referrer=&183372e80bd IP 87.240.132.72 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 4f720e135424f6fddb1de2443e2ada18 203715bbfc1f34bbd412546ec54bfdc4acf4bd10 e6cdf1034f58ba29f59b21e5e353acc388ae2f316f0b7272e6dc85604c1c74d9 Loading...

	vk.com/widget_community.php?app=4579236&width=200px&_ver=1&gid=25763973&mode=0&color1=FFFFFF&color2=2B587A&color3=5B7FA6&class_name=&height=200&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&referrer=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&183372e80ca	16 kB	2023-03-07	2023-03-07
Pretty URL vk.com/widget_community.php?app=4579236&width=200px&_ver=1&gid=25763973&mode=0&color1=FFFFFF&color2=2B587A&color3=5B7FA6&class_name=&height=200&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&referrer=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&183372e80ca IP 87.240.132.72 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 066457dffaf72768fbf37fe7ab38aed0 de8923cabf6e00ae460bdc7fbbd3f633bf08e4f3 8919c7f24c403cde16d1d4396e0d1d036828e0cf796bd79c92dee3bda5507860 Loading...

	top-fwz1.mail.ru/js/code.js	32 kB	2023-03-07	2023-03-07
Pretty URL top-fwz1.mail.ru/js/code.js IP 95.163.52.67 ASN #47764 Mail.Ru LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash c4ccbea81b1932147fcb637563f16f8f 50d2ed0e171be1454dd4ce7445eca46c6cf3534a 79938efc16a4e8b542a67b5c2dcf59f22fe2f358dd8fc117b1427e90b4a302ee Loading...

	www.iemag.ru/ad/banners/top.php?banner_random=20113	401 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/ad/banners/top.php?banner_random=20113 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash d7e9c07647fc9d4101d3e1188e422cdb b83ec607128e5399ce4170fcd3433bfb4b86cc8c 3caf52322403b707c75445d57c362e3c79a16e0f026f9911d38d22b875c97a1d Loading...

	www.iemag.ru/bitrix/js/advertising/flash.js	2.1 kB	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/bitrix/js/advertising/flash.js IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 17dcd9c86ef9b680628d93566478909f ee8bbe877f63c5ee73bfbf349329104360890350 bad0a78ad0c1f4a63e6ce300ba36b21278194ba55ce7f644e28db53599e86b20 Loading...

	www.iemag.ru/ad/banners/button.php?banner_random=59682	410 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/ad/banners/button.php?banner_random=59682 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 19d8404b6f4d21ed61f2fe010d47a6ae 765d05583536f867bad5043021fe76201cfc58ec 87165b0d9c3bbb61fe2d2bcd741af49dda2685a255fc32c7c5443b53b6bf4b33 Loading...

	st6-21.vk.com/js/api/xdm.js?9	11 kB	2023-03-07	2023-05-05
Pretty URL st6-21.vk.com/js/api/xdm.js?9 IP 95.142.206.1 ASN #60476 My.com B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:28 Last Seen2023-05-05 17:21:57 Times Seen530 Hash 6e1f8245e8ab9cd2aa06a95ffebddae4 1dadf7f2e458ae878758a362e504fdd6957e7f6f ed89697436c213e02c99f290a0f8a3d20c4bde9ccdb2ddf025b0849cdfe11347 Loading...

	www.iemag.ru/columns/detail.php?ID=31796	308 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/columns/detail.php?ID=31796 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash c75d2f93c0084b634bbc29e27db6963a 0006dcd15475d298f3588e883fe255a59eac5db6 5998ebc4679e83b5c68bee5d2f123f6fa421c41d7b2fac37e28220c31d3eb852 Loading...

	www.iemag.ru/ad/banners/bottom.php?banner_random=85002	410 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/ad/banners/bottom.php?banner_random=85002 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 8758f4677cc0003287da6dd42011f6bc b8a83e256728beac3640b125d8736ec8749b2d31 85ba1f5ce54ffd4a58cd8c519a4633c67cda9c368739e544de3109a0f470128e Loading...

	st6-21.vk.com/dist/palette.4bf277d762d64ef3a7d6.js?9c49cf022973bc19760e	110 kB	2023-03-07	2023-03-17
Pretty URL st6-21.vk.com/dist/palette.4bf277d762d64ef3a7d6.js?9c49cf022973bc19760e IP 95.142.206.1 ASN #60476 My.com B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:28 Last Seen2023-03-17 12:35:57 Times Seen1 Hash 71f30f89d5fec4688a29cb4f4db086eb b8fd6e36cb506069e2d8a6f1f1e54186db74c665 b3e82d744b51c8abd3aea805b8bd04e3a2b7331d004e39ffa0ec8129ba06ae91 Loading...

	st6-21.vk.com/dist/web/audioplayer.a973faf2d3af5fffdd34.js?	3.6 kB	2023-03-07	2023-03-17
Pretty URL st6-21.vk.com/dist/web/audioplayer.a973faf2d3af5fffdd34.js? IP 95.142.206.1 ASN #60476 My.com B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:28 Last Seen2023-03-17 12:35:57 Times Seen1 Hash 864ac506cfa4c4912ad0af43ceba70e0 2d282cd6801519e62a4c9c44e98cc096c47f7745 9d715283fcfeb086ca7af0eaddb0ee474cad4bf8224103869cbbd379085b427d Loading...

	vk.com/js/al/lite.js?104	274 kB	2023-03-07	2023-03-17
Pretty URL vk.com/js/al/lite.js?104 IP 87.240.132.72 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:15:02 Last Seen2023-03-17 12:35:58 Times Seen1 Hash d646bad678919d6b1d082a67f38ee2f0 ee3db022736fe2a0e199c93f17ba7fc14af6fcad 5cd44c7ccf154c89b5553a99e8c0dc7bdfdecdfa9185e0924f281fae6ade1f69 Loading...

	connect.ok.ru/dk?st.cmd=WidgetGroup&st.groupId=52505975062679&st.fid=__okGroup0&st.hoster=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&st.settings=%7Bwidth%3A200%2Cheight%3A230%7D	385 B	2023-03-07	2024-04-18
Pretty URL connect.ok.ru/dk?st.cmd=WidgetGroup&st.groupId=52505975062679&st.fid=__okGroup0&st.hoster=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&st.settings=%7Bwidth%3A200%2Cheight%3A230%7D IP 217.20.147.3 ASN #47764 Mail.Ru LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2024-04-18 23:02:06 Times Seen181 Hash ea5b2ba0f96bfb0f2bd432c05cd24fa8 68f9719dc4e5c4a6f85a3939b8bed79e98e5878a 4888ca4d0d9f6ced7e4d87388d28e403a0fc0084b4d422f617101250494f1d97 Loading...

	www.iemag.ru/columns/detail.php?ID=31796	317 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/columns/detail.php?ID=31796 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 047458fd4c5f70e34a3f5aa481f43462 4dcd59e6b1bed7fc02e83f8a36c7be81b7cb8169 dab03bddb1310d560e59f7bdb8bb71e3c1f6e51326bdce8dbc00b6960c32055a Loading...

	vk.com/widget_community.php?app=4579236&width=200px&_ver=1&gid=25763973&mode=0&color1=FFFFFF&color2=2B587A&color3=5B7FA6&class_name=&height=200&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&referrer=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&183372e80ca	5.1 kB	2023-03-07	2023-03-07
Pretty URL vk.com/widget_community.php?app=4579236&width=200px&_ver=1&gid=25763973&mode=0&color1=FFFFFF&color2=2B587A&color3=5B7FA6&class_name=&height=200&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&referrer=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&183372e80ca IP 87.240.132.72 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash c58bcbad2d9fbf8e66b4a8b7dc5ea0c4 4264d2b54408de48545aff57b6d7bfa300e6d140 b970481f458d8a98b212e74c12f739e39708326f664204dc4f90b45289ca8801 Loading...

	vk.com/widget_like.php?app=4579236&width=100%25&_ver=1&page=0&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&type=mini&verb=0&color=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&description=%D0%92%C2%A0%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D0%B5%D0%B5%20%D0%B2%D1%80%D0%B5%D0%BC%D1%8F%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%20%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%82%D1%81%D1%8F%20%D0%B4%D1%80%D1%83%D0%B3%D0%B8%D0%BC.%20%D0%92%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D1%81%D1%8F%20%D0%B2%D1%81%D0%B5%20%D0%B1%D0%BE%D0%BB%D1%8C%D1%88%D0%B5%20%D1%80%D0%B0%D0%B7%D0%BD%D0%BE%D0%B3%D0%BE%20%D1%80%D0%BE%D0%B4%D0%B0%20%D0%BE%D0%B3%D1%80%D0%B0%D0%BD%D0%B8%D1%87%D0%B5%D0%BD%D0%B8%D0%B9%2C%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%B8%D0%B5%20%D1%81%D0%B0%D0%B9%D1%82%D1%8B%20%D0%B1%D0%BB%D0%BE%D0%BA%D0%B8%D1%80%D1%83%D1%8E%D1%82%D1%81%D1%8F%20%D0%BF%D0%BE%C2%A0%D1%82%D0%B5%D0%BC%20%D0%B8%D0%BB%D0%B8%20%D0%B8%D0%BD%D1%8B%D0%BC%20%D0%BF%D1%80%D0%B8%D1%87%D0%B8%D0%BD%D0%B0%D0%BC%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D0%BE%2C%20%D0%B2%D1%81%D0%BB%D0%B5...&image=http%3A%2F%2Fwww.iemag.ru%2Fupload%2Fiblock%2Fd2e%2Fspunt_300.jpg&text=&h=24&height=24&startWidth=0&referrer=&183372e80bd	13 B	2023-03-07	2024-05-03
Pretty URL vk.com/widget_like.php?app=4579236&width=100%25&_ver=1&page=0&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&type=mini&verb=0&color=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&description=%D0%92%C2%A0%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D0%B5%D0%B5%20%D0%B2%D1%80%D0%B5%D0%BC%D1%8F%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%20%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%82%D1%81%D1%8F%20%D0%B4%D1%80%D1%83%D0%B3%D0%B8%D0%BC.%20%D0%92%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D1%81%D1%8F%20%D0%B2%D1%81%D0%B5%20%D0%B1%D0%BE%D0%BB%D1%8C%D1%88%D0%B5%20%D1%80%D0%B0%D0%B7%D0%BD%D0%BE%D0%B3%D0%BE%20%D1%80%D0%BE%D0%B4%D0%B0%20%D0%BE%D0%B3%D1%80%D0%B0%D0%BD%D0%B8%D1%87%D0%B5%D0%BD%D0%B8%D0%B9%2C%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%B8%D0%B5%20%D1%81%D0%B0%D0%B9%D1%82%D1%8B%20%D0%B1%D0%BB%D0%BE%D0%BA%D0%B8%D1%80%D1%83%D1%8E%D1%82%D1%81%D1%8F%20%D0%BF%D0%BE%C2%A0%D1%82%D0%B5%D0%BC%20%D0%B8%D0%BB%D0%B8%20%D0%B8%D0%BD%D1%8B%D0%BC%20%D0%BF%D1%80%D0%B8%D1%87%D0%B8%D0%BD%D0%B0%D0%BC%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D0%BE%2C%20%D0%B2%D1%81%D0%BB%D0%B5...&image=http%3A%2F%2Fwww.iemag.ru%2Fupload%2Fiblock%2Fd2e%2Fspunt_300.jpg&text=&h=24&height=24&startWidth=0&referrer=&183372e80bd IP 87.240.132.72 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:28 Last Seen2024-05-03 00:46:11 Times Seen470 Hash f77b94b5025fa1439bb08ad2e4499445 83388a461e9631b5193bae3dccda7713ff55bad3 54d9884f178a37601340ded9d32a59a5ee8715e13d742baf8cdf77361d679260 Loading...

	www.iemag.ru/columns/detail.php?ID=31796	314 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/columns/detail.php?ID=31796 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 083a863c1bdc9722775a42ee7d8350f3 86ee5f98a8ae9c140832ea4756804c64640cbe4a 398f07ce4a697f6e8d8c49be22593b35c769b4e2121a0f81b4eb2f5c677c4779 Loading...

	vk.com/js/loader_nav21522076835_3.js	198 kB	2023-03-07	2023-03-07
Pretty URL vk.com/js/loader_nav21522076835_3.js IP 87.240.132.72 ASN #47541 VKontakte Ltd Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 664bd314e0123907782e7dfa3ba6f4bf 553a46abfcee26796746d5db847a7f0c4d535796 1fda98c665b0589f4cf4a9242dfc4e986f70577226a50790b813c42e709671ef Loading...

	www.iemag.ru/columns/detail.php?ID=31796	250 B	2023-03-07	2024-05-08
Pretty URL www.iemag.ru/columns/detail.php?ID=31796 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:22 Last Seen2024-05-08 11:10:02 Times Seen650 Hash 537357420024d824760d7686fbdf31fe 5e14660b667fdc602c82300ccf3253afc242e4bb ca2f5769fc415a62dd2cd8af83b9b64604715e602f6de4c7741f9992a7003a29 Loading...

	www.iemag.ru/columns/detail.php?ID=31796	317 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/columns/detail.php?ID=31796 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 701c47e7e80d4c5ff3c78f1aee118353 0f067f049ec6d7319b433ac9328ca5f66f59a0a9 6efce44facf1edaf1a8ddecc0a68b23f5007ceb3690561ca86f8f12d551b346e Loading...

	www.iemag.ru/ad/banners/bottom.php?banner_random=85002	346 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/ad/banners/bottom.php?banner_random=85002 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash db4674c9687b1ab8ef5cc0f57c50aaab 54276a98976e2822913733ecc292f7a29766dd86 dbc1232c72b0199fea83ddbe0c7cb12b84c30edd37363d5c2d3f055f02f02aa6 Loading...

	www.iemag.ru/images/iemag/lightbox2/js/lightbox.js	18 kB	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/images/iemag/lightbox2/js/lightbox.js IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash ee096106629a30b643457381ea60c330 f10375b70d3619a16e8566b76a967e0464359e5a 31f148fdb56362e7d73bbcdcdd6967061b8fc8d6105e43c3b4bdb5ddf491bb28 Loading...

	www.iemag.ru/columns/detail.php?ID=31796	220 B	2023-03-07	2024-05-07
Pretty URL www.iemag.ru/columns/detail.php?ID=31796 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:36 Last Seen2024-05-07 12:44:12 Times Seen1634 Hash 792802c442588a34d1d28b70b8713d6c 1a7ce717b941f570c17b18c2f0aa6010420c524d 347fc5de8453f3b37e1b23095693407509dcddea53f166d6f48da929755a4d26 Loading...

	www.iemag.ru/ad/banners/top.php?banner_random=20113	345 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/ad/banners/top.php?banner_random=20113 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash f5e8daeb022c8dfea451457883a0ecda 838db63fe789920b92ba285e8d41e977736221bd 5408f1f0e2ee1188f6fd570632f913e958f8792a1825d3008da6d5719d4e5c9e Loading...

	st6-21.vk.com/dist/web/likes.dc023372a4b0549e2e40.js?	17 kB	2023-03-07	2023-03-17
Pretty URL st6-21.vk.com/dist/web/likes.dc023372a4b0549e2e40.js? IP 95.142.206.1 ASN #60476 My.com B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:28 Last Seen2023-03-17 12:35:57 Times Seen1 Hash e3d36dfcb3afe2d96d1530d36176aa35 dd834447089f12339ce56e531a6126ff802a5b5f a279692c14eab839c47c77339bac21df6853befedd18971eea9c9e2a6c1d56dd Loading...

	tag.digitaltarget.ru/adcm.js	3.1 kB	2023-03-07	2023-05-06
Pretty URL tag.digitaltarget.ru/adcm.js IP 185.15.175.144 ASN #43226 SafeData LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:47 Last Seen2023-05-06 00:46:41 Times Seen299 Hash e7097284185069f52fc736bcd50cda13 1cdfdf2d869841202079ddf91e0a00a8610812e6 40f2a96f78f4c8484e9da6e172f5ddd3e4d7786ca29e04b96e1067a365190e80 Loading...

	www.acint.net/mc/?dp=10&tc=1	199 B	2023-03-07	2023-03-07
Pretty URL www.acint.net/mc/?dp=10&tc=1 IP 185.12.125.25 ASN #50214 QWARTA LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 9acd29685c68bc2861a8e15a20566565 ad0430f20fbcbc4236758a1a2104c41a5abc7b05 4e7cf0867eb22516d07508e0978e626e53ee8096e63167030c4516935cd40dc5 Loading...

	st6-21.vk.com/js/api/widgets/al_like.js?30	16 kB	2023-03-07	2023-04-30
Pretty URL st6-21.vk.com/js/api/widgets/al_like.js?30 IP 95.142.206.1 ASN #60476 My.com B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:33:28 Last Seen2023-04-30 18:23:51 Times Seen50 Hash cbb56c31df0ee6bc7ac267b6c3f0bfd4 0f46ce6272420983dc7e7f3fd8269d5fed2e5a05 43fe62030092e73be7d24ffff01910b0046174c3e61f2a3a4a01de13bb367a6e Loading...

	www.iemag.ru/columns/detail.php?ID=31796	136 B	2023-03-07	2023-03-07
Pretty URL www.iemag.ru/columns/detail.php?ID=31796 IP 217.65.4.114 ASN #29076 Filanco LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash e86ea32991c77d9a65a04bb1cada7d95 ddef42e545b96b441707eb90c8463c12ef1d28a0 2154a87145a5239d4a65209b7c7f9603526e35316dc44499039de0cfc51de75d Loading...

	connect.ok.ru/connect.js	2.9 kB	2023-03-07	2024-05-03
Pretty URL connect.ok.ru/connect.js IP 217.20.147.3 ASN #47764 Mail.Ru LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:18:12 Last Seen2024-05-03 01:28:33 Times Seen421 Hash 41d5f6740cc82a0bc5cc6ee625ac753b 149aeaf996334aef1f83a0d2fa382952a1bc7f6e 3b672a69cf35a1540aeb8228010b2c5874cd5b90a027b115ac0845f70f05ebba Loading...

		Size	First Seen	Last Seen
	#1 Eval - 736d249da49fbeebb434ac42768eb740	46 B	2023-03-07	2023-03-07
Pretty Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 736d249da49fbeebb434ac42768eb740 944b3ff6ffa9adc7a207dcf7afb313093ad5e58d 2143552ab9c8f1423a653fac57031ae495f39d2e733bf5774790a7a9f8b9769b Loading...

		Size	First Seen	Last Seen
	#1 Write - ddca3d74008e1ae00f2b308c10224efb	210 B	2023-03-07	2023-03-07
Pretty Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash ddca3d74008e1ae00f2b308c10224efb d3a65dba115ce9fa9651dae2ac494b3035172021 14cf3b87ee6174df2d8174f35983483a3dfaccae9defbdf600690167243be438 Loading...

	#2 Write - cc6715b7996859670149ad1b34674507	216 B	2023-03-07	2023-03-07
Pretty Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash cc6715b7996859670149ad1b34674507 9bd3e2ec12c4c04cf34fde35f1bebf2fc36d3fd7 9b2f0672a1dd685ad5a34068dab26ca77a1bb28597674124a746228d285e20e8 Loading...

	#3 Write - 167e9056566f7a2e2ac969421d32a538	213 B	2023-03-07	2023-03-07
Pretty Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 167e9056566f7a2e2ac969421d32a538 83d7a3924f1392426eeaace450b56469a97a4870 0dfa1485678a0ed67702187d616b060b072ab4648a3242fd61296dcce3e1cc6e Loading...

	#4 Write - f0e2fcca956c808f122891883dca1dfc	216 B	2023-03-07	2023-03-07
Pretty Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash f0e2fcca956c808f122891883dca1dfc 72848e93cbd2289f572820c624bbb88832415618 45f9aa9b0024d6ede0b2025e1c58aa83418b1b1cb7e74e8c18a4afa2a72ae066 Loading...

	#5 Write - d16aa493cfe8c2b617fa6a96222556af	217 B	2023-03-07	2023-03-07
Pretty Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash d16aa493cfe8c2b617fa6a96222556af ce1cda26e60257070df055ce27fc668723d52835 6318c2f9750a20d5984ba317a845bc47b953f8b1f9be3ca128e5e16361160a7a Loading...

	#6 Write - 005779e84e96484767731eeea7525873	85 B	2023-03-07	2024-05-08
Pretty Observations First Seen2023-03-07 01:10:36 Last Seen2024-05-08 10:57:25 Times Seen1663 Hash 005779e84e96484767731eeea7525873 99bd58277dacb4bc37a6ee20d69ff377f865cce5 2f07f68c604449e8d89471efc2fea27e93365b3806d2494f6432b2e33d2fdf94 Loading...

	#7 Write - cd26ee1bf5a40dca04df770f89de70da	207 B	2023-03-07	2023-03-07
Pretty Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash cd26ee1bf5a40dca04df770f89de70da ef4569432b3e721b51e408c11f95392152ba10d5 e6d44719c1776dc3a44b56329e4fce0f6437d68a65ec87e6e21fac743c000654 Loading...

	#8 Write - 75177a1c343ebd595dc977adb6a6f0fd	244 B	2023-03-07	2023-03-07
Pretty Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash 75177a1c343ebd595dc977adb6a6f0fd 4970ecc042b756e4042d7f1ff366a8c44f2835a9 c643dd78a6b32c44b4d32caf0ebd8a02bfe7cacd5a3f22def825bdbff91e6c63 Loading...

	#9 Write - d4076f82b0b0fbb53a11d3c321fbc1be	245 B	2023-03-07	2023-03-07
Pretty Observations First Seen2023-03-07 15:50:58 Last Seen2023-03-07 15:50:58 Times Seen1 Hash d4076f82b0b0fbb53a11d3c321fbc1be 8a67aeb772f038fa9ea0b742cfa2b85a26bfff21 912eebe5fb42aa491ccd76712589f913202917603a903c1427c3ca83c88f4287 Loading...

HTTP Transactions (244)

URL IP Response Size

www.iemag.ru/columns/detail.php?ID=31796

217.65.4.114

301 Moved Permanently

169 B

URL HTTP/1.1
www.iemag.ru/columns/detail.php?ID=31796
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
0f952b73d3f5586637ea9a5a789d48f4
b29aff4ffa1d4decd77db5160f920e1c6417e5e9
69d11528ee32902d0c47ed215877f0610399536f755db03ed02a77ecedd74751

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /columns/detail.php?ID=31796 HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:09 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Keep-Alive: timeout=30
Location: https://www.iemag.ru/columns/detail.php?ID=31796
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests

firefox.settings.services.mozilla.com/v1/

143.204.55.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 13 Sep 2022 14:08:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tIHdCdq5zkfJJlFV77Hn5UZpg_zYgugOtwn4UbYGWhf-2xLhYNCMCw==
Age: 24

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be88d3e043e3b95b52e41812e50fb634
0318ba1ce487817ea7cba61dd9413bed29213800
b5f178d23e633283f226cca7a9ae79b01e6cab2299ff7065c980d3a9953212fd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5F178D23E633283F226CCA7A9AE79B01E6CAB2299FF7065C980D3A9953212FD"
Last-Modified: Tue, 13 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10255
Expires: Tue, 13 Sep 2022 17:00:05 GMT
Date: Tue, 13 Sep 2022 14:09:10 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 13 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: G_UzC7g8VGLfr5y4nHKrSYzFJbH7aSMPWLjMelFb-mB5ZsBcDajRkA==
age: 34436
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:09:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6c299d3f8b39adb40a13b2fae33998ca
a0b18dcd9fbf8e620f75de49c698686117c3d8f6
8025680e6b02bef350082ed422c329e91b3b034ead3f7fc36dac3a87fe1bc068

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8025680E6B02BEF350082ED422C329E91B3B034EAD3F7FC36DAC3A87FE1BC068"
Last-Modified: Tue, 13 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21586
Expires: Tue, 13 Sep 2022 20:08:56 GMT
Date: Tue, 13 Sep 2022 14:09:10 GMT
Connection: keep-alive

www.iemag.ru/columns/detail.php?ID=31796

217.65.4.114

200 OK

31 kB

URL HTTP/1.1
www.iemag.ru/columns/detail.php?ID=31796
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (1054), with CRLF, LF, NEL line terminators
Size
31 kB (30681 bytes)
Hash
d6d964722e8f28329ad6537ad3f2a456
1b76e7e291bcd9adb31cbb59606acf0d5c8336a8
b6694b695d00d0dbf2e3f7cc37d2681c28444e8652eeeef17d3947084a68ae22

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /columns/detail.php?ID=31796 HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: text/html; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (163ac4c470c3edd453628d723f257feb)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; path=/; HttpOnly
IEMAG_GUEST_ID=11938316; expires=Fri, 08-Sep-2023 14:09:10 GMT; Max-Age=31104000; path=/
IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10; expires=Fri, 08-Sep-2023 14:09:10 GMT; Max-Age=31104000; path=/
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests

www.iemag.ru/bitrix/themes/.default/imyie.littleadmin.css?14123467322309

217.65.4.114

200 OK

2.3 kB

URL HTTP/1.1
www.iemag.ru/bitrix/themes/.default/imyie.littleadmin.css?14123467322309
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
ASCII text, with CRLF line terminators
Size
2.3 kB (2309 bytes)
Hash
0f5e7de2076f9553d3e5a94bb27effad
2f6acef051d62fe241cf59d950c11236562b2396
8f737fc876c2f90c1eb492bfec617676c0625a3ee3058ffaf588f091de9d962e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /bitrix/themes/.default/imyie.littleadmin.css?14123467322309 HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: text/css
Content-Length: 2309
Last-Modified: Fri, 03 Oct 2014 14:32:12 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "542eb36c-905"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/css/main.css

217.65.4.114

200 OK

12 kB

URL HTTP/1.1
www.iemag.ru/images/iemag/css/main.css
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
ISO-8859 text
Size
12 kB (12176 bytes)
Hash
39ec8d5a03a4e8024c3e122671a088e5
09d85c67aa030c339997013135df199f03b6fe22
fb90ff66682f40dfe69d971795bddfec7cb24cb39c97ebcb4d7a532294217bee

HTTP Headers

GET /images/iemag/css/main.css HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: text/css
Content-Length: 12176
Last-Modified: Mon, 25 Apr 2016 18:48:21 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "571e6675-2f90"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/sk/css/menu.css

217.65.4.114

200 OK

544 B

URL HTTP/1.1
www.iemag.ru/images/sk/css/menu.css
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
ASCII text, with CRLF line terminators
Size
544 B (544 bytes)
Hash
e88f8e891004fbe311b0635d99e03d5f
9e1108167345ec09348cad848753a8284f262c0d
bc20ae569623cca8bb5488ccaa055db9cd860c18a3cbb6efa4dbdc42f6dca1dc

HTTP Headers

GET /images/sk/css/menu.css HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: text/css
Content-Length: 544
Last-Modified: Thu, 24 Apr 2008 16:46:38 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "4810b96e-220"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/bitrix/templates/main/main.js

217.65.4.114

200 OK

3.5 kB

URL HTTP/1.1
www.iemag.ru/bitrix/templates/main/main.js
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
ASCII text, with CRLF line terminators
Size
3.5 kB (3469 bytes)
Hash
07f170979e49c74b6e68e152b77dd6d1
4e68e769fdecdb4361f80e6ef38fe05de9ebfd1f
c63d26be94f3e16adfac696be4fe4596154d0ed553d416f7fe7bb166389a53af

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /bitrix/templates/main/main.js HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: application/javascript
Content-Length: 3469
Last-Modified: Thu, 28 Feb 2013 14:09:35 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "512f651f-d8d"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/lightbox2/css/lightbox.css

217.65.4.114

200 OK

3.9 kB

URL HTTP/1.1
www.iemag.ru/images/iemag/lightbox2/css/lightbox.css
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
ASCII text
Size
3.9 kB (3891 bytes)
Hash
7ea2b72b8601aac4cb9200ac3c97b84d
31e6ef8fe76c5f420e0f823ce8de1abab3731074
b23fc3e24a4f8ca9e480761f1bdde949020ef4d1beaa18f475b0613dcce6329e

HTTP Headers

GET /images/iemag/lightbox2/css/lightbox.css HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: text/css
Content-Length: 3891
Last-Modified: Wed, 01 Mar 2017 09:52:37 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "58b699e5-f33"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/lightbox2/js/lightbox.js

217.65.4.114

200 OK

18 kB

URL HTTP/1.1
www.iemag.ru/images/iemag/lightbox2/js/lightbox.js
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
ISO-8859 text, with very long lines (671)
Size
18 kB (18314 bytes)
Hash
f5cadb05c0c0f24a6675f68030c544eb
99549dadf4c3787acfbd8aac46b747c8fe760c29
791289c1e461ddc5c995c195d9fb68b4485d71aab1ec6ba0830908c1917097e3

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /images/iemag/lightbox2/js/lightbox.js HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: application/javascript
Content-Length: 18314
Last-Modified: Wed, 01 Mar 2017 23:54:58 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "58b75f52-478a"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/js/jquery-1.11.1.min.js

217.65.4.114

200 OK

96 kB

URL HTTP/1.1
www.iemag.ru/images/iemag/js/jquery-1.11.1.min.js
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
ASCII text, with very long lines (32086)
Size
96 kB (95786 bytes)
Hash
8101d596b2b8fa35fe3a634ea342d7c3
d6c1f41972de07b09bfa63d2e50f9ab41ec372bd
540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /images/iemag/js/jquery-1.11.1.min.js HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: application/javascript
Content-Length: 95786
Last-Modified: Mon, 06 Feb 2017 22:49:56 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "5898fd94-1762a"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
fed3b5febd549b10d8264639624379d1
40d646c2e3665b1c28a03c2824691d681ab6e451
b75103b3c934e8033ec1f3683b93e6d1ecd4abb4e8f5d7f2bcbdcb9e8356f70d

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 17 Sep 2022 11:27:42 GMT
ETag: "40d646c2e3665b1c28a03c2824691d681ab6e451"
Last-Modified: Tue, 13 Sep 2022 11:27:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2989
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a1758aaf8ab512-OSL

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
fed3b5febd549b10d8264639624379d1
40d646c2e3665b1c28a03c2824691d681ab6e451
b75103b3c934e8033ec1f3683b93e6d1ecd4abb4e8f5d7f2bcbdcb9e8356f70d

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 17 Sep 2022 11:27:42 GMT
ETag: "40d646c2e3665b1c28a03c2824691d681ab6e451"
Last-Modified: Tue, 13 Sep 2022 11:27:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2989
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a1758aaf1db4f3-OSL

www.iemag.ru/upload/iblock/223/abramovich_300.jpg

217.65.4.114

200 OK

26 kB

URL HTTP/1.1
www.iemag.ru/upload/iblock/223/abramovich_300.jpg
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x300, components 3\012- data
Size
26 kB (26030 bytes)
Hash
5063224afa77abc48d6bca3db8f3465d
ef81be16bb11548918445b2eec47842688b18840
6536eb6f1efccdd4af30b2c67adf0e0998c53d7f77e92137af4e46f5d77dc03c

HTTP Headers

GET /upload/iblock/223/abramovich_300.jpg HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/jpeg
Content-Length: 26030
Last-Modified: Thu, 27 Oct 2016 14:08:23 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "58120a57-65ae"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/upload/iblock/f15/1_300.jpg

217.65.4.114

200 OK

31 kB

URL HTTP/1.1
www.iemag.ru/upload/iblock/f15/1_300.jpg
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=II*], baseline, precision 8, 300x300, components 3\012- data
Size
31 kB (31389 bytes)
Hash
247a8945be07ef29af19751a9d7ccefb
44b23a9af42559689fd53eea36b08764a0545b7e
7c97e583e1dbc488ef6a20ba735c6741831bf809177bff3565ae1c0dd24eb65c

HTTP Headers

GET /upload/iblock/f15/1_300.jpg HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/jpeg
Content-Length: 31389
Last-Modified: Wed, 12 Jul 2017 12:48:36 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "59661aa4-7a9d"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/close-v.gif

217.65.4.114

200 OK

374 B

URL HTTP/1.1
www.iemag.ru/images/iemag/close-v.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 1 x 355\012- data
Size
374 B (374 bytes)
Hash
ef7cd46d59bc7df8ee1451f100a87862
066c6bd7cf58ea7717f83d413ed994f15ac6a42a
36169bacff999978074ffc3a8f85f2483a8672f49a0659ce39570b33ce65c3b4

HTTP Headers

GET /images/iemag/close-v.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/gif
Content-Length: 374
Last-Modified: Fri, 05 Oct 2007 14:56:44 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "470650ac-176"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/logo-twitter-s.gif

217.65.4.114

200 OK

833 B

URL HTTP/1.1
www.iemag.ru/images/iemag/logo-twitter-s.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 30 x 30\012- data
Size
833 B (833 bytes)
Hash
4c6a8158f26196214130f4439e4225a1
b2819ec79bacbaa3a6670247d50deac9b6c6d088
6e9ca8fe891b0ba67dc3454ab1c65562167661f34f9c49f3d0cfd7557642ce04

HTTP Headers

GET /images/iemag/logo-twitter-s.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/gif
Content-Length: 833
Last-Modified: Mon, 06 Feb 2012 11:43:21 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "4f2fbcd9-341"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/upload/iblock/120/1_300.jpg

217.65.4.114

200 OK

29 kB

URL HTTP/1.1
www.iemag.ru/upload/iblock/120/1_300.jpg
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x300, components 3\012- data
Size
29 kB (28962 bytes)
Hash
964f95b45ef75f978e09078f9e487671
bc64f5c89ab034eae83c80798fbbfaed7a97c8f6
4f91cf871697b500b40a75d76cc89628350e5473c27d7ec7f7cbcb375c144f7a

HTTP Headers

GET /upload/iblock/120/1_300.jpg HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/jpeg
Content-Length: 28962
Last-Modified: Tue, 27 Jun 2017 04:36:45 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "5951e0dd-7122"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/upload/iblock/925/1_300.jpg

217.65.4.114

200 OK

32 kB

URL HTTP/1.1
www.iemag.ru/upload/iblock/925/1_300.jpg
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=Redozubov Nikolay Petrovich www.photodeluxe.ru +7-901-528-23-34], baseline, precision 8, 300x300, components 3\012- data
Size
32 kB (32282 bytes)
Hash
0183e2533a7408220085a1d865958b89
b0dd4e4353a33036143ccdd651d940e5b1b61ca4
66967c930c8716f255892d723b0b24302c7d5124c179e0ae4b7372fd5deec392

HTTP Headers

GET /upload/iblock/925/1_300.jpg HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/jpeg
Content-Length: 32282
Last-Modified: Tue, 27 Jun 2017 07:46:21 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "59520d4d-7e1a"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/upload/iblock/d2e/spunt_300.jpg

217.65.4.114

200 OK

21 kB

URL HTTP/1.1
www.iemag.ru/upload/iblock/d2e/spunt_300.jpg
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x300, components 3\012- data
Size
21 kB (21183 bytes)
Hash
89a05d82b0f38e932472ad9449220c8b
544c8067718fb455528053608df9d43a4d708e92
98e8b91b5aeaffb8bfd9897cac4eccb5c555a05ae275d47fab6730565433f0be

HTTP Headers

GET /upload/iblock/d2e/spunt_300.jpg HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/jpeg
Content-Length: 21183
Last-Modified: Tue, 28 Jun 2016 10:01:51 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "57724b0f-52bf"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/logo-odnoklassniki-s.gif

217.65.4.114

200 OK

730 B

URL HTTP/1.1
www.iemag.ru/images/iemag/logo-odnoklassniki-s.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 30 x 30\012- data
Size
730 B (730 bytes)
Hash
b17cf2553d34e2e6c557144b0439edd0
1db9c4d2a3434cc6f879cac626e4a0d8b4474f15
0877266c91b6179ca372abaddc1109df090e376a9069d9cef64df9e632422d77

HTTP Headers

GET /images/iemag/logo-odnoklassniki-s.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/gif
Content-Length: 730
Last-Modified: Tue, 10 Nov 2015 19:08:59 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "564240cb-2da"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/logo-vkontakte-s.gif

217.65.4.114

200 OK

799 B

URL HTTP/1.1
www.iemag.ru/images/iemag/logo-vkontakte-s.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 30 x 30\012- data
Size
799 B (799 bytes)
Hash
1eaab331a78965ce4d98c89e9ea1b720
b7ebdc1ae04b3f1e21f0fdbb05a46b1a6fc6151f
aefc93c460290ba080f1b2f7742f1f1da7fc0cefc59d02f3712c898b13fdeea0

HTTP Headers

GET /images/iemag/logo-vkontakte-s.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/gif
Content-Length: 799
Last-Modified: Mon, 06 Feb 2012 11:43:21 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "4f2fbcd9-31f"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/pix-lb.gif

217.65.4.114

200 OK

43 B

URL HTTP/1.1
www.iemag.ru/images/iemag/pix-lb.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
57861283be3c68bca5982b65fc4355d2
87f276e6b48d5fc616092c7825cb89d8d05828a8
45f9abd2304158d8a0a9459044cf2eb135600881083d097d6cc9631c83910717

HTTP Headers

GET /images/iemag/pix-lb.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Fri, 05 Oct 2007 14:56:44 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "470650ac-2b"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/pix-db.gif

217.65.4.114

200 OK

43 B

URL HTTP/1.1
www.iemag.ru/images/iemag/pix-db.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
3513b4ca250feb42ff77a5ed670a6a34
9419ed162ac4afa9e8d4d3c70c2f3b237558b635
a27adaa3f1e7ddb0b66860653708804d0b5d1c995ad91d7d9354b47b0327e850

HTTP Headers

GET /images/iemag/pix-db.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Fri, 05 Oct 2007 14:56:44 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "470650ac-2b"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/close-h.gif

217.65.4.114

200 OK

374 B

URL HTTP/1.1
www.iemag.ru/images/iemag/close-h.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 355 x 1\012- data
Size
374 B (374 bytes)
Hash
6eda2abf29182cb4d71370091ec07575
cfe964062b9dcddf042104bb6184490e3a311866
ff8da20bc3ba4fcb63ac32ce930c5086e7caf23dc4cee624bd5d7726aa40f4c1

HTTP Headers

GET /images/iemag/close-h.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/gif
Content-Length: 374
Last-Modified: Fri, 05 Oct 2007 14:56:44 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "470650ac-176"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/header-nav-ico-subscribe.png

217.65.4.114

200 OK

647 B

URL HTTP/1.1
www.iemag.ru/images/iemag/header-nav-ico-subscribe.png
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
647 B (647 bytes)
Hash
adba6fa907a41883ddd14920b808c982
0a6577969790da33739dbc88866c09967e7a0b7d
191763e3f92499f5df344ea8997ac28dbb5902efa0f075697fd3f56da8ac2871

HTTP Headers

GET /images/iemag/header-nav-ico-subscribe.png HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/png
Content-Length: 647
Last-Modified: Thu, 21 Apr 2016 21:08:23 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "57194147-287"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/imake/imake-logo.gif

217.65.4.114

200 OK

43 B

URL HTTP/1.1
www.iemag.ru/images/imake/imake-logo.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /images/imake/imake-logo.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Thu, 14 Feb 2008 11:21:08 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "47b42424-2b"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/header-nav-ico-rss.png

217.65.4.114

200 OK

481 B

URL HTTP/1.1
www.iemag.ru/images/iemag/header-nav-ico-rss.png
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
481 B (481 bytes)
Hash
92ecd864aef9857914682d9552eba25c
0144ab1f6103ddf979ab9a9f3e837de98c2cbaec
b3d3ff9f077c9cb6c5b44ba5b9b885c1a5e84fbfa1a355034d252eabb96b103e

HTTP Headers

GET /images/iemag/header-nav-ico-rss.png HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/png
Content-Length: 481
Last-Modified: Thu, 21 Apr 2016 20:27:31 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "571937b3-1e1"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/pix.gif

217.65.4.114

200 OK

43 B

URL HTTP/1.1
www.iemag.ru/images/iemag/pix.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /images/iemag/pix.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Fri, 05 Oct 2007 14:56:44 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "470650ac-2b"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/pix-g.gif

217.65.4.114

200 OK

43 B

URL HTTP/1.1
www.iemag.ru/images/iemag/pix-g.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
77d96eebccea5801290ad68b3ccb4199
eaf3924bfd87bbf1f1137c395de8687f20c4f3a6
ac05f643d51698438fc2504bc237b5a39ce1248b037dbf446aaca4ce65c3182c

HTTP Headers

GET /images/iemag/pix-g.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Fri, 05 Oct 2007 14:56:44 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "470650ac-2b"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

ocsp.godaddy.com/

192.124.249.23

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.23:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1777 bytes)
Hash
6797357b90fbeeb3d492c4cc62bcc227
1bf050f48c4c1d848a99150d2bd05256643bec0a
23f8d619d3be3037e8123d978c03f9be100838a692b2ee7f01943a5c60effa91

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 12 Sep 2022 23:15:52 GMT
Expires: Tue, 13 Sep 2022 23:15:52 GMT
ETag: "1bf050f48c4c1d848a99150d2bd05256643bec0a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

www.iemag.ru/ad/banners/top.php?banner_random=20113

217.65.4.114

200 OK

1.4 kB

URL HTTP/1.1
www.iemag.ru/ad/banners/top.php?banner_random=20113
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with CRLF, LF line terminators
Size
1.4 kB (1448 bytes)
Hash
3e638ca10e68a581fa06195bec02f075
6c55a31d3a943fc80e3cee2174cb488ff5c82b6b
cd1798f8b3730b7bd6f17451d86762cf5ca1e56952328a1e215fbf731070e338

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /ad/banners/top.php?banner_random=20113 HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: text/html; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (163ac4c470c3edd453628d723f257feb)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: IEMAG_BANNERS=1_14_1_20092022; expires=Fri, 08-Sep-2023 14:09:10 GMT; Max-Age=31104000; path=/; secure
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests

www.iemag.ru/images/iemag/logo.gif

217.65.4.114

200 OK

4.1 kB

URL HTTP/1.1
www.iemag.ru/images/iemag/logo.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 226 x 59\012- data
Size
4.1 kB (4056 bytes)
Hash
6df321645d4decc2161cfaeab4eee0a3
395da94babcd1efb523bf9849789c243ac887aa8
39bbf16e2942f532028bad493d8ba8f155416b89f4659c10a8affb060ae64cc0

HTTP Headers

GET /images/iemag/logo.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/gif
Content-Length: 4056
Last-Modified: Fri, 05 Oct 2007 14:56:44 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "470650ac-fd8"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/ad/banners/center.php?banner_random=11533

217.65.4.114

200 OK

789 B

URL HTTP/1.1
www.iemag.ru/ad/banners/center.php?banner_random=11533
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (346)
Size
789 B (789 bytes)
Hash
253a87e8404e4ac396d68080b94c819b
eb2f8335668eaef237ec58201a72f9dfab26d154
207bacd239c07aa66306c12a9a0bf1aad90de5211c37954816b3105dc68ae8ac

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /ad/banners/center.php?banner_random=11533 HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: text/html; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (163ac4c470c3edd453628d723f257feb)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests

vk.com/js/api/openapi.js?133

87.240.132.72

200 OK

23 kB

URL HTTP/2
vk.com/js/api/openapi.js?133
IP
87.240.132.72:0
ASN
#47541 VKontakte Ltd

File type
ASCII text, with very long lines (3849)
Size
23 kB (23322 bytes)
Hash
b33ff213862515e45744517b207d77db
7d69b309a9c1d918d8dc7b42c510d08321207b9c
a5cd610dc23e643864c8827d58736c15b955328124bfd95661c88a7b96eaed47

HTTP Headers

GET /js/api/openapi.js?133 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:10 GMT
content-type: application/x-javascript
content-length: 23322
last-modified: Wed, 10 Aug 2022 14:44:17 GMT
etag: "62f3c441-5b1a"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:10 GMT
cache-control: max-age=345600
x-frontend: front220206
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

www.iemag.ru/upload/iblock/5d2/mihail_rodionov_300.jpg

217.65.4.114

200 OK

15 kB

URL HTTP/1.1
www.iemag.ru/upload/iblock/5d2/mihail_rodionov_300.jpg
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x300, components 3\012- data
Size
15 kB (14773 bytes)
Hash
9418ffa1dbfd6ec1d18fea05f76ce864
609b048f62975203c793638c050090e94e668205
b55df1712861039ed0be602fccc470219d729e62558b9724d9512c9425d7064c

HTTP Headers

GET /upload/iblock/5d2/mihail_rodionov_300.jpg HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/jpeg
Content-Length: 14773
Last-Modified: Tue, 01 Nov 2016 08:47:33 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "581856a5-39b5"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/bg.gif

217.65.4.114

200 OK

1.2 kB

URL HTTP/1.1
www.iemag.ru/images/iemag/bg.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 1 x 622\012- data
Size
1.2 kB (1164 bytes)
Hash
761828b4d55d2c20d5788e18b9688145
61757cf88253639729bcaf4d749616658f639d9d
3d39180dfc30544a7b2de924ee7e05f205b0b528bb1575d7b04d9fd4ce1681a2

HTTP Headers

GET /images/iemag/bg.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/images/iemag/css/main.css
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/gif
Content-Length: 1164
Last-Modified: Thu, 08 Dec 2011 11:03:22 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "4ee0997a-48c"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/bg-filter-result.gif

217.65.4.114

200 OK

94 B

URL HTTP/1.1
www.iemag.ru/images/iemag/bg-filter-result.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 1 x 15\012- data
Size
94 B (94 bytes)
Hash
ce6492716e0db6284bd5101901e98749
0c4e9554656d798ed873262b7f8ffdf78adf8eb3
a97e331898d9054ebe6d4dcb4120cf34eb92848d489ba9d59218ffe350257ca9

HTTP Headers

GET /images/iemag/bg-filter-result.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/images/iemag/css/main.css
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:10 GMT
Content-Type: image/gif
Content-Length: 94
Last-Modified: Fri, 05 Oct 2007 14:56:44 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "470650ac-5e"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

vk.com/js/api/openapi.js?115

87.240.132.72

200 OK

23 kB

URL HTTP/2
vk.com/js/api/openapi.js?115
IP
87.240.132.72:0
ASN
#47541 VKontakte Ltd

File type
ASCII text, with very long lines (3849)
Size
23 kB (23322 bytes)
Hash
b33ff213862515e45744517b207d77db
7d69b309a9c1d918d8dc7b42c510d08321207b9c
a5cd610dc23e643864c8827d58736c15b955328124bfd95661c88a7b96eaed47

HTTP Headers

GET /js/api/openapi.js?115 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:10 GMT
content-type: application/x-javascript
content-length: 23322
last-modified: Wed, 10 Aug 2022 14:44:17 GMT
etag: "62f3c441-5b1a"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:10 GMT
cache-control: max-age=345600
x-frontend: front220206
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

www.iemag.ru/images/iemag/icon-print.gif

217.65.4.114

200 OK

80 B

URL HTTP/1.1
www.iemag.ru/images/iemag/icon-print.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 16 x 16\012- data
Size
80 B (80 bytes)
Hash
0d5bdd10dbdbecf3fa737c8bc7623c94
3e8dac52349d949989df80971cb53887e35971c7
ed790e42f3027bec078b0eb2bbf204ce926ad0999fb66b2d234bb5192d058a55

HTTP Headers

GET /images/iemag/icon-print.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/images/iemag/css/main.css
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: image/gif
Content-Length: 80
Last-Modified: Fri, 22 Apr 2016 21:46:37 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "571a9bbd-50"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/bg-header-nav-r.gif

217.65.4.114

200 OK

152 B

URL HTTP/1.1
www.iemag.ru/images/iemag/bg-header-nav-r.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 1 x 26\012- data
Size
152 B (152 bytes)
Hash
885224a680e5e351a6a848734ab4662a
a4c6484ef6647f2d694b94c6fd54db4f92836e84
e313775e03cf30f2fd946265736b4a9ebd188d8a96c3b16f9a6b6d4f2121a396

HTTP Headers

GET /images/iemag/bg-header-nav-r.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/images/iemag/css/main.css
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: image/gif
Content-Length: 152
Last-Modified: Thu, 21 Apr 2016 19:55:14 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "57193022-98"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/bg-main-nav-r.gif

217.65.4.114

200 OK

270 B

URL HTTP/1.1
www.iemag.ru/images/iemag/bg-main-nav-r.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 1 x 47\012- data
Size
270 B (270 bytes)
Hash
5563795125d1aa604edb01be4a43f47e
c7a383af72816c7be06e9137d85e28b00bcb163c
154bcbdbd07c06ee20c087430e10c56ff632ad66482dc53dd0cf0f29504ade4f

HTTP Headers

GET /images/iemag/bg-main-nav-r.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/images/iemag/css/main.css
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: image/gif
Content-Length: 270
Last-Modified: Thu, 21 Apr 2016 18:03:35 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "571915f7-10e"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e3c5f147f3c2eee20a85a102b276a3cd
0e92c710f4ac6b700b4e641019cd00d79129598a
524c676e41cb7ba6091f2d1f5bfdd8f764fa767f58d9509d1bd738dad51bca66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "524C676E41CB7BA6091F2D1F5BFDD8F764FA767F58D9509D1BD738DAD51BCA66"
Last-Modified: Sun, 11 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13884
Expires: Tue, 13 Sep 2022 18:00:35 GMT
Date: Tue, 13 Sep 2022 14:09:11 GMT
Connection: keep-alive

www.iemag.ru/images/iemag/main-nav-search.png

217.65.4.114

200 OK

960 B

URL HTTP/1.1
www.iemag.ru/images/iemag/main-nav-search.png
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
PNG image data, 21 x 21, 8-bit/color RGBA, non-interlaced\012- data
Size
960 B (960 bytes)
Hash
8671d905e44f0dd3b7de848d12cf2dff
0a95d588b148f227de755758e6c02836ef629cd9
c3c532b702b32aae343e9a4c06fb81f76873937af6f38a7ccac407ed95443cb9

HTTP Headers

GET /images/iemag/main-nav-search.png HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: image/png
Content-Length: 960
Last-Modified: Thu, 21 Apr 2016 18:51:42 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "5719213e-3c0"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/bg-header-nav-g.gif

217.65.4.114

200 OK

152 B

URL HTTP/1.1
www.iemag.ru/images/iemag/bg-header-nav-g.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 1 x 26\012- data
Size
152 B (152 bytes)
Hash
c6e65f317e9a451c093cb1438a7bdcd3
f486afbd5199bd7e6beea638e4795a50d10a464c
b0a595d7ec4cb61b3bc760e1349406c6e3f65cac34b5f5984a483c6ce1797636

HTTP Headers

GET /images/iemag/bg-header-nav-g.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/images/iemag/css/main.css
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: image/gif
Content-Length: 152
Last-Modified: Thu, 21 Apr 2016 19:27:10 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "5719298e-98"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/bg-main-nav-del.gif

217.65.4.114

200 OK

270 B

URL HTTP/1.1
www.iemag.ru/images/iemag/bg-main-nav-del.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 1 x 47\012- data
Size
270 B (270 bytes)
Hash
c1f2553b1a70184f64f6e37be1994f46
3415cc166c411a943bba1ad102510a551f8aca89
2d88f43f6b9e33a9f108978330b8fea988d369334a9afb215158e2a5168dc04f

HTTP Headers

GET /images/iemag/bg-main-nav-del.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/images/iemag/css/main.css
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: image/gif
Content-Length: 270
Last-Modified: Thu, 21 Apr 2016 18:03:50 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "57191606-10e"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/bg-top-block-y.gif

217.65.4.114

200 OK

379 B

URL HTTP/1.1
www.iemag.ru/images/iemag/bg-top-block-y.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 1 x 355\012- data
Size
379 B (379 bytes)
Hash
9739ce17eeac81115cfddab21de09a69
d0c2c326b9142a669cdc85b8b58b7cceffe265a4
f974b295f34d3172f301f0ef383b58c9b1e9fbc1318fe4ffb1b38299c1f4f2dd

HTTP Headers

GET /images/iemag/bg-top-block-y.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/images/iemag/css/main.css
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: image/gif
Content-Length: 379
Last-Modified: Fri, 05 Oct 2007 14:56:44 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "470650ac-17b"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e96dbe1b54932c8f447bbbfc9d31cfb0
b15d4a54fbdf95b0af8bd34b6f8ef03055eef0cd
427326963ac1ef6ddeeaf52ab07807c694b82effa6111671ada8270b1faecdae

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3836
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:09:11 GMT
Last-Modified: Tue, 13 Sep 2022 13:05:15 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

www.iemag.ru/ad/banners/left.php?banner_random=81686

217.65.4.114

200 OK

777 B

URL HTTP/1.1
www.iemag.ru/ad/banners/left.php?banner_random=81686
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (340)
Size
777 B (777 bytes)
Hash
fe6f90bc35cafd64dadabe5b39ac14bd
7522de8511d2ca3b0b663cc2bfc7fe34d449b2bb
f29f202625c1741d0354ee82daec01947939cc4268388522a5f5f126bc671cef

HTTP Headers

GET /ad/banners/left.php?banner_random=81686 HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: text/html; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (163ac4c470c3edd453628d723f257feb)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests

www.acint.net/aci.js

185.12.125.25

200 OK

7.5 kB

URL HTTP/2
www.acint.net/aci.js
IP
185.12.125.25:0
ASN
#50214 QWARTA LLC

File type
ASCII text, with very long lines (1408)
Size
7.5 kB (7461 bytes)
Hash
ae0aab6c5a2ae2e1168e74f6e6ae4741
2c00f69ee4bbe2ec96c0f7bb33b5f827a6195af8
a47a88a9b6c7635e5074c25c6e3c92f399fdf8772376e94f077167241e59f9de

HTTP Headers

GET /aci.js HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: application/x-javascript
content-length: 7461
last-modified: Tue, 22 Mar 2022 06:39:32 GMT
etag: "62396f24-1d25"
content-encoding: gzip
expires: Wed, 14 Sep 2022 02:09:11 GMT
cache-control: max-age=43200
X-Firefox-Spdy: h2

www.iemag.ru/images/iemag/css/banners.css

217.65.4.114

200 OK

331 B

URL HTTP/1.1
www.iemag.ru/images/iemag/css/banners.css
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
ASCII text
Size
331 B (331 bytes)
Hash
d8f4b347e001c1df333147274b9b4f3b
c4510c92718206de754bd17ae64f27f99e86b202
e37d6af02eb4cb50bb83fc34c54a78350131571937e7ec76407f5f0f50c50010

HTTP Headers

GET /images/iemag/css/banners.css HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/ad/banners/top.php?banner_random=20113
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10; IEMAG_BANNERS=1_14_1_20092022
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: text/css
Content-Length: 331
Last-Modified: Fri, 22 Apr 2016 19:45:02 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "571a7f3e-14b"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/bitrix/js/advertising/flash.js

217.65.4.114

200 OK

2.1 kB

URL HTTP/1.1
www.iemag.ru/bitrix/js/advertising/flash.js
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
HTML document, ASCII text
Size
2.1 kB (2061 bytes)
Hash
17dcd9c86ef9b680628d93566478909f
ee8bbe877f63c5ee73bfbf349329104360890350
bad0a78ad0c1f4a63e6ce300ba36b21278194ba55ce7f644e28db53599e86b20

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /bitrix/js/advertising/flash.js HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/ad/banners/center.php?banner_random=11533
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10; IEMAG_BANNERS=1_14_1_20092022
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: application/javascript
Content-Length: 2061
Last-Modified: Fri, 27 Sep 2013 08:19:17 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "52453f85-80d"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 13 Sep 2022 14:03:22 GMT
Cache-Control: max-age=3600
Expires: Tue, 13 Sep 2022 14:06:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: f_UBKec_LXaG-IcWzBKJ3XI3Oi-c6-SMnOvjFAwjzbYIr94TaAH_LA==
Age: 349

www.iemag.ru/tmp/smc.php

217.65.4.114

200 OK

10 B

URL HTTP/1.1
www.iemag.ru/tmp/smc.php
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
ASCII text, with no line terminators
Size
10 B (10 bytes)
Hash
6c2785de71be7d9f3f3776e03cbc5514
4a03b1e6807c6d2449b8151c920cdab00673e168
4a616b9be28850fd50a30b24b6729f9e541c80be8f63b37ecc245c4fffdccb03

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /tmp/smc.php HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10; IEMAG_BANNERS=1_14_1_20092022
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: text/html; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (163ac4c470c3edd453628d723f257feb)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: IEMAG_GUEST_ID=11938316; expires=Fri, 08-Sep-2023 14:09:11 GMT; Max-Age=31104000; path=/
IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A11; expires=Fri, 08-Sep-2023 14:09:11 GMT; Max-Age=31104000; path=/
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests

www.iemag.ru/ad/banners/right.php?banner_random=37093

217.65.4.114

200 OK

781 B

URL HTTP/1.1
www.iemag.ru/ad/banners/right.php?banner_random=37093
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (341)
Size
781 B (781 bytes)
Hash
3dd47675a8ab36b3d7a97a75235c5e52
f0b8617d6c69f791d216a83fd5a78c9c98fb1e7e
eabb61190245bfa5f55854f142d1d14a529633fe6f2e1ae454daf0285c73b6f5

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /ad/banners/right.php?banner_random=37093 HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10; IEMAG_BANNERS=1_14_1_20092022
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: text/html; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (163ac4c470c3edd453628d723f257feb)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests

www.acint.net/mc/?dp=10

185.12.125.25

302 Found

154 B

URL HTTP/2
www.acint.net/mc/?dp=10
IP
185.12.125.25:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

HTTP Headers

GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=10&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Tue, 13-Sep-22 14:19:11 GMT
aid=wQO4iWMgjwceywMM9ABiAmLnFJa7cbldZBZ3E+tHxJa3+Uwm; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2

www.acint.net/hit/?v=0.4.0&uid=7dce5348-ac14-470f-bc11-b20d34c2eed0&dp=10&tz=%2B00%3A00&nc=02322006&u=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&r=&rs=1280x1024&t=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&oE=1&oP=1&dT=2022-09-13T14%3A08%3A58.084&fu=d764f713-998e-4441-b599-bb2d29698748

185.12.125.25

200 OK

43 B

URL HTTP/2
www.acint.net/hit/?v=0.4.0&uid=7dce5348-ac14-470f-bc11-b20d34c2eed0&dp=10&tz=%2B00%3A00&nc=02322006&u=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&r=&rs=1280x1024&t=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&oE=1&oP=1&dT=2022-09-13T14%3A08%3A58.084&fu=d764f713-998e-4441-b599-bb2d29698748
IP
185.12.125.25:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /hit/?v=0.4.0&uid=7dce5348-ac14-470f-bc11-b20d34c2eed0&dp=10&tz=%2B00%3A00&nc=02322006&u=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&r=&rs=1280x1024&t=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&oE=1&oP=1&dT=2022-09-13T14%3A08%3A58.084&fu=d764f713-998e-4441-b599-bb2d29698748 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=fwAAAWMgjwcxcgCRw3O3Av0+t0bNHqzJe3gW1KTqHr5lGZ61; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2

www.iemag.ru/ad/banners/button.php?banner_random=59682

217.65.4.114

200 OK

706 B

URL HTTP/1.1
www.iemag.ru/ad/banners/button.php?banner_random=59682
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text
Size
706 B (706 bytes)
Hash
4cfb8b1a44e38620f6ea9a8d24e69244
1c03717e89365c2cffab268fb25fd3b376af553b
470d9e03ff7fa0da6757afea4179ef2354546684673bc99ca339f2080eee41dc

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /ad/banners/button.php?banner_random=59682 HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10; IEMAG_BANNERS=1_14_1_20092022
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: text/html; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (163ac4c470c3edd453628d723f257feb)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests

www.iemag.ru/images/iemag/bullit.gif

217.65.4.114

200 OK

249 B

URL HTTP/1.1
www.iemag.ru/images/iemag/bullit.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 7 x 9\012- data
Size
249 B (249 bytes)
Hash
f5ac98d00c0bbd0264392cf5740c042e
78fa8ec21ce9dcfd652aa41f100944508ff6e229
4952bd8a62093d68bf8d55d2b007e2106e37c3ae82257832f9c61e0e01dd2382

HTTP Headers

GET /images/iemag/bullit.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/images/iemag/css/main.css
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10; IEMAG_BANNERS=1_14_1_20092022; fid=d764f713-998e-4441-b599-bb2d29698748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: image/gif
Content-Length: 249
Last-Modified: Fri, 05 Oct 2007 14:56:44 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "470650ac-f9"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/pix-b.gif

217.65.4.114

200 OK

43 B

URL HTTP/1.1
www.iemag.ru/images/iemag/pix-b.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
774227b5e7968a3dc4238dbae2ad4123
18258377fe2be05e0a5fa7d181f2d64ab6c92a5c
d3ee227391e517bc296db758164b8c2451e67b924338afff3e2718610618d7ad

HTTP Headers

GET /images/iemag/pix-b.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10; IEMAG_BANNERS=1_14_1_20092022; fid=d764f713-998e-4441-b599-bb2d29698748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Fri, 05 Oct 2007 14:56:44 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "470650ac-2b"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/ad/banners/bottom.php?banner_random=85002

217.65.4.114

200 OK

1.5 kB

URL HTTP/1.1
www.iemag.ru/ad/banners/bottom.php?banner_random=85002
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with CRLF line terminators
Size
1.5 kB (1480 bytes)
Hash
6e1e248701c9e8f36f53cd97d476695c
d1b222f86964079e987879311272974f33765316
e14fc33d59a8901c172116514773f47cabe0a5c40eba8852efbd293406608fe8

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /ad/banners/bottom.php?banner_random=85002 HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10; IEMAG_BANNERS=1_14_1_20092022
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: text/html; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (163ac4c470c3edd453628d723f257feb)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: IEMAG_BANNERS=1_14_1_20092022%2C1_12_1_20092022; expires=Fri, 08-Sep-2023 14:09:11 GMT; Max-Age=31104000; path=/; secure
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests

www.iemag.ru/images/iemag/link.gif

217.65.4.114

200 OK

250 B

URL HTTP/1.1
www.iemag.ru/images/iemag/link.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 7 x 10\012- data
Size
250 B (250 bytes)
Hash
829ea278f415d41d4d199ff4668b3ee3
60ebddd61d718e3ab3d7da240408e97ec74ce6a3
705a5cb955bff4965913da02fdf653bb5be40ccd4a6da6444e8d71369a180a78

HTTP Headers

GET /images/iemag/link.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/images/iemag/css/main.css
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A10; IEMAG_BANNERS=1_14_1_20092022; fid=d764f713-998e-4441-b599-bb2d29698748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: image/gif
Content-Length: 250
Last-Modified: Fri, 05 Oct 2007 14:56:44 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "470650ac-fa"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ec7a5bb8e310f5c9c992cf85832d5445
e32b8e200a79da9008985e8e6c272f35b02581c5
6391e4c68631e272509ade559b8f568b03dd88be1956906332ae584f9faee00a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:09:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ssl.google-analytics.com/ga.js

216.58.207.200

200 OK

17 kB

URL HTTP/2
ssl.google-analytics.com/ga.js
IP
216.58.207.200:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1305)
Size
17 kB (17168 bytes)
Hash
01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d

HTTP Headers

GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Tue, 13 Sep 2022 12:17:11 GMT
expires: Tue, 13 Sep 2022 14:17:11 GMT
cache-control: public, max-age=7200
age: 6720
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

status.geotrust.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
status.geotrust.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ff0ec458672f4bfa088ce48b6fede49c
bcbc0b7da8a457094bbfeb91fc2aacd6d7882572
ba7d06f522d26fbbee1a96deca81abf4622742a502f5948b115d961d90c255aa

HTTP Headers

POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4960
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:09:11 GMT
Last-Modified: Tue, 13 Sep 2022 12:46:31 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

vk.com/widget_like.php?app=4579236&width=100%25&_ver=1&page=0&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&type=mini&verb=0&color=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&description=%D0%92%C2%A0%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D0%B5%D0%B5%20%D0%B2%D1%80%D0%B5%D0%BC%D1%8F%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%20%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%82%D1%81%D1%8F%20%D0%B4%D1%80%D1%83%D0%B3%D0%B8%D0%BC.%20%D0%92%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D1%81%D1%8F%20%D0%B2%D1%81%D0%B5%20%D0%B1%D0%BE%D0%BB%D1%8C%D1%88%D0%B5%20%D1%80%D0%B0%D0%B7%D0%BD%D0%BE%D0%B3%D0%BE%20%D1%80%D0%BE%D0%B4%D0%B0%20%D0%BE%D0%B3%D1%80%D0%B0%D0%BD%D0%B8%D1%87%D0%B5%D0%BD%D0%B8%D0%B9%2C%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%B8%D0%B5%20%D1%81%D0%B0%D0%B9%D1%82%D1%8B%20%D0%B1%D0%BB%D0%BE%D0%BA%D0%B8%D1%80%D1%83%D1%8E%D1%82%D1%81%D1%8F%20%D0%BF%D0%BE%C2%A0%D1%82%D0%B5%D0%BC%20%D0%B8%D0%BB%D0%B8%20%D0%B8%D0%BD%D1%8B%D0%BC%20%D0%BF%D1%80%D0%B8%D1%87%D0%B8%D0%BD%D0%B0%D0%BC%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D0%BE%2C%20%D0%B2%D1%81%D0%BB%D0%B5...&image=http%3A%2F%2Fwww.iemag.ru%2Fupload%2Fiblock%2Fd2e%2Fspunt_300.jpg&text=&h=24&height=24&startWidth=0&referrer=&183372e80bd

87.240.132.72

200 OK

4.0 kB

URL HTTP/2
vk.com/widget_like.php?app=4579236&width=100%25&_ver=1&page=0&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&type=mini&verb=0&color=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&description=%D0%92%C2%A0%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D0%B5%D0%B5%20%D0%B2%D1%80%D0%B5%D0%BC%D1%8F%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%20%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%82%D1%81%D1%8F%20%D0%B4%D1%80%D1%83%D0%B3%D0%B8%D0%BC.%20%D0%92%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D1%81%D1%8F%20%D0%B2%D1%81%D0%B5%20%D0%B1%D0%BE%D0%BB%D1%8C%D1%88%D0%B5%20%D1%80%D0%B0%D0%B7%D0%BD%D0%BE%D0%B3%D0%BE%20%D1%80%D0%BE%D0%B4%D0%B0%20%D0%BE%D0%B3%D1%80%D0%B0%D0%BD%D0%B8%D1%87%D0%B5%D0%BD%D0%B8%D0%B9%2C%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%B8%D0%B5%20%D1%81%D0%B0%D0%B9%D1%82%D1%8B%20%D0%B1%D0%BB%D0%BE%D0%BA%D0%B8%D1%80%D1%83%D1%8E%D1%82%D1%81%D1%8F%20%D0%BF%D0%BE%C2%A0%D1%82%D0%B5%D0%BC%20%D0%B8%D0%BB%D0%B8%20%D0%B8%D0%BD%D1%8B%D0%BC%20%D0%BF%D1%80%D0%B8%D1%87%D0%B8%D0%BD%D0%B0%D0%BC%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D0%BE%2C%20%D0%B2%D1%81%D0%BB%D0%B5...&image=http%3A%2F%2Fwww.iemag.ru%2Fupload%2Fiblock%2Fd2e%2Fspunt_300.jpg&text=&h=24&height=24&startWidth=0&referrer=&183372e80bd
IP
87.240.132.72:0
ASN
#47541 VKontakte Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (3291)
Size
4.0 kB (3973 bytes)
Hash
a6592f6b0da5c08736ee268d63683c67
aba4e8b29e036d252b6e90097ba65ecf1c2aefe7
ba72a1582c109d7fd12364238e8406f199261488bf50af9685746485bf49fac7

HTTP Headers

GET /widget_like.php?app=4579236&width=100%25&_ver=1&page=0&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&type=mini&verb=0&color=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&description=%D0%92%C2%A0%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D0%B5%D0%B5%20%D0%B2%D1%80%D0%B5%D0%BC%D1%8F%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%20%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%82%D1%81%D1%8F%20%D0%B4%D1%80%D1%83%D0%B3%D0%B8%D0%BC.%20%D0%92%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D1%81%D1%8F%20%D0%B2%D1%81%D0%B5%20%D0%B1%D0%BE%D0%BB%D1%8C%D1%88%D0%B5%20%D1%80%D0%B0%D0%B7%D0%BD%D0%BE%D0%B3%D0%BE%20%D1%80%D0%BE%D0%B4%D0%B0%20%D0%BE%D0%B3%D1%80%D0%B0%D0%BD%D0%B8%D1%87%D0%B5%D0%BD%D0%B8%D0%B9%2C%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%B8%D0%B5%20%D1%81%D0%B0%D0%B9%D1%82%D1%8B%20%D0%B1%D0%BB%D0%BE%D0%BA%D0%B8%D1%80%D1%83%D1%8E%D1%82%D1%81%D1%8F%20%D0%BF%D0%BE%C2%A0%D1%82%D0%B5%D0%BC%20%D0%B8%D0%BB%D0%B8%20%D0%B8%D0%BD%D1%8B%D0%BC%20%D0%BF%D1%80%D0%B8%D1%87%D0%B8%D0%BD%D0%B0%D0%BC%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D0%BE%2C%20%D0%B2%D1%81%D0%BB%D0%B5...&image=http%3A%2F%2Fwww.iemag.ru%2Fupload%2Fiblock%2Fd2e%2Fspunt_300.jpg&text=&h=24&height=24&startWidth=0&referrer=&183372e80bd HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/html; charset=windows-1251
content-length: 3973
x-powered-by: KPHP/7.4.112152
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Sun, 10 Sep 2023 02:29:11 GMT; path=/; domain=.vk.com
remixstlid=9100165624005722383_KSyBXhZ360z7Uz13PxSIs9uZC2Dhy0zAgOlczFJrDVX; expires=Wed, 13 Sep 2023 14:09:11 GMT; path=/; domain=.vk.com; secure
remixstid=1120700298_0O2K4pMtRqEtX8KZb4qcrdPssB4gqXIKgWiIc4oJCig; expires=Mon, 11 Sep 2023 05:49:42 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-security-policy: default-src * data: blob: about: vkcalls:;script-src 'self' https://vk.com https://*.vk.com https://vk.ru https://*.vk.ru https://static.vk.me https://*.mail.ru https://r.mradx.net https://s.ytimg.com https://platform.twitter.com https://cdn.syndication.twimg.com https://www.instagram.com https://connect.facebook.net https://telegram.org https://*.yandex.ru https://*.google-analytics.com https://*.youtube.com https://maps.googleapis.com https://translate.googleapis.com https://*.google.com https://google.com https://*.vkpartner.ru https://*.moatads.com https://*.adlooxtracking.ru https://*.serving-sys.ru https://*.weborama-tech.ru https://*.gstatic.com https://*.google.ru https://securepubads.g.doubleclick.net https://cdn.ampproject.org https://www.googletagmanager.com https://googletagmanager.com https://*.vk-cdn.net https://*.hit.gemius.pl https://yastatic.net https://analytics.tiktok.com 'unsafe-inline' 'unsafe-eval' blob:;style-src https://vk.com https://*.vk.com https://vk.ru https://*.vk.ru https://static.vk.me https://r.mradx.net https://ton.twimg.com https://tagmanager.google.com https://platform.twitter.com https://*.googleapis.com 'self' 'unsafe-inline';report-uri /csp
x-xss-protection: 1; report=/xss_reports
content-encoding: gzip
x-frontend: front220206
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

vk.com/widget_community.php?app=4579236&width=200px&_ver=1&gid=25763973&mode=0&color1=FFFFFF&color2=2B587A&color3=5B7FA6&class_name=&height=200&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&referrer=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&183372e80ca

87.240.132.72

200 OK

10 kB

URL HTTP/2
vk.com/widget_community.php?app=4579236&width=200px&_ver=1&gid=25763973&mode=0&color1=FFFFFF&color2=2B587A&color3=5B7FA6&class_name=&height=200&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&referrer=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&183372e80ca
IP
87.240.132.72:0
ASN
#47541 VKontakte Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Non-ISO extended-ASCII text, with very long lines (14055)
Size
10 kB (10172 bytes)
Hash
6d84556e716d48d364a0eba09195d8fe
f6ece93e60e44a215b8d42abdc1137e4801d423d
5f2624a063e49623d031cf36635d3c121d37aea546d688f72080b6e4eee2db6c

HTTP Headers

GET /widget_community.php?app=4579236&width=200px&_ver=1&gid=25763973&mode=0&color1=FFFFFF&color2=2B587A&color3=5B7FA6&class_name=&height=200&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&referrer=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&183372e80ca HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/html; charset=windows-1251
content-length: 10172
x-powered-by: KPHP/7.4.112152
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Thu, 14 Sep 2023 03:13:13 GMT; path=/; domain=.vk.com
remixstlid=9061462814708011586_ckqB9wIiWergOmWPOqprJTzKzrWnMl3gqQIkLrMjMg0; expires=Wed, 13 Sep 2023 14:09:11 GMT; path=/; domain=.vk.com; secure
remixstid=1198925898_sFJnJTppe62KoG2Jb5rlpkNr7lWn6Psoo9NHtbenNwX; expires=Tue, 12 Sep 2023 12:40:02 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-security-policy: default-src * data: blob: about: vkcalls:;script-src 'self' https://vk.com https://*.vk.com https://vk.ru https://*.vk.ru https://static.vk.me https://*.mail.ru https://r.mradx.net https://s.ytimg.com https://platform.twitter.com https://cdn.syndication.twimg.com https://www.instagram.com https://connect.facebook.net https://telegram.org https://*.yandex.ru https://*.google-analytics.com https://*.youtube.com https://maps.googleapis.com https://translate.googleapis.com https://*.google.com https://google.com https://*.vkpartner.ru https://*.moatads.com https://*.adlooxtracking.ru https://*.serving-sys.ru https://*.weborama-tech.ru https://*.gstatic.com https://*.google.ru https://securepubads.g.doubleclick.net https://cdn.ampproject.org https://www.googletagmanager.com https://googletagmanager.com https://*.vk-cdn.net https://*.hit.gemius.pl https://yastatic.net https://analytics.tiktok.com 'unsafe-inline' 'unsafe-eval' blob:;style-src https://vk.com https://*.vk.com https://vk.ru https://*.vk.ru https://static.vk.me https://r.mradx.net https://ton.twimg.com https://tagmanager.google.com https://platform.twitter.com https://*.googleapis.com 'self' 'unsafe-inline';report-uri /csp
x-xss-protection: 1; report=/xss_reports
content-encoding: gzip
x-frontend: front220206
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ec7a5bb8e310f5c9c992cf85832d5445
e32b8e200a79da9008985e8e6c272f35b02581c5
6391e4c68631e272509ade559b8f568b03dd88be1956906332ae584f9faee00a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:09:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

a.utraff.com/sync?ssp=sape

172.67.217.151

204 No Content

0 B

URL HTTP/2
a.utraff.com/sync?ssp=sape
IP
172.67.217.151:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync?ssp=sape HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Thu, 13 Oct 2022 17:09:11 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Thu, 13 Oct 2022 17:09:11 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wQz5Cw7y0I6UUsYixaOpa2zzIJV0%2Bk38KhPc%2FX6neWnDX8aUWNyZtFUfU4UnfaVLXSyDkolCPheL3a0aFwm%2FPgdjmdCs5%2BooDxmRVd%2FPCi7X0kYXtL1fy7itlHV8UQs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74a1758ddfadb50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

dm-eu.hybrid.ai/match?id=106&vid=0100007F078F20639100723102B773C3

37.18.103.21

204 No Content

0 B

URL HTTP/2
dm-eu.hybrid.ai/match?id=106&vid=0100007F078F20639100723102B773C3
IP
37.18.103.21:0
ASN
#205675 Hybrid LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?id=106&vid=0100007F078F20639100723102B773C3 HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Tue, 13 Sep 2022 14:09:11 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=b4d26d09366d5a197144; expires=Wed, 13 Sep 2023 14:09:10 GMT; domain=.hybrid.ai; path=/; samesite=none
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 524
x-xss-protection: 1; mode=block
access-control-allow-origin: *
server: Hybrid Web Server
X-Firefox-Spdy: h2

vk.com/js/al/lite.js?104

87.240.132.72

200 OK

63 kB

URL HTTP/2
vk.com/js/al/lite.js?104
IP
87.240.132.72:0
ASN
#47541 VKontakte Ltd

File type
ISO-8859 text, with very long lines (2839)
Size
63 kB (63345 bytes)
Hash
9e7dfd94ad6562a8ec85e3fdc2b40830
62e50f9d2dec5919ab88c812a8870c00dbf3c1ad
3a2e1998c1b645686f4500b6fd49b2b2c6e11f0ed96bba34214820379bbb757b

HTTP Headers

GET /js/al/lite.js?104 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/widget_like.php?app=4579236&width=100%25&_ver=1&page=0&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&type=mini&verb=0&color=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&description=%D0%92%C2%A0%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D0%B5%D0%B5%20%D0%B2%D1%80%D0%B5%D0%BC%D1%8F%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%20%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%82%D1%81%D1%8F%20%D0%B4%D1%80%D1%83%D0%B3%D0%B8%D0%BC.%20%D0%92%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D1%81%D1%8F%20%D0%B2%D1%81%D0%B5%20%D0%B1%D0%BE%D0%BB%D1%8C%D1%88%D0%B5%20%D1%80%D0%B0%D0%B7%D0%BD%D0%BE%D0%B3%D0%BE%20%D1%80%D0%BE%D0%B4%D0%B0%20%D0%BE%D0%B3%D1%80%D0%B0%D0%BD%D0%B8%D1%87%D0%B5%D0%BD%D0%B8%D0%B9%2C%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%B8%D0%B5%20%D1%81%D0%B0%D0%B9%D1%82%D1%8B%20%D0%B1%D0%BB%D0%BE%D0%BA%D0%B8%D1%80%D1%83%D1%8E%D1%82%D1%81%D1%8F%20%D0%BF%D0%BE%C2%A0%D1%82%D0%B5%D0%BC%20%D0%B8%D0%BB%D0%B8%20%D0%B8%D0%BD%D1%8B%D0%BC%20%D0%BF%D1%80%D0%B8%D1%87%D0%B8%D0%BD%D0%B0%D0%BC%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D0%BE%2C%20%D0%B2%D1%81%D0%BB%D0%B5...&image=http%3A%2F%2Fwww.iemag.ru%2Fupload%2Fiblock%2Fd2e%2Fspunt_300.jpg&text=&h=24&height=24&startWidth=0&referrer=&183372e80bd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: application/x-javascript
content-length: 63345
last-modified: Fri, 09 Sep 2022 14:49:25 GMT
etag: "631b5275-f771"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
x-frontend: front220206
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

vk.com/js/lang3_0.js?27717969

87.240.132.72

200 OK

20 kB

URL HTTP/2
vk.com/js/lang3_0.js?27717969
IP
87.240.132.72:0
ASN
#47541 VKontakte Ltd

File type
Non-ISO extended-ASCII text, with very long lines (44960), with LF, NEL line terminators
Size
20 kB (19875 bytes)
Hash
4b555a45a7eb6bbeaec58537fe6ecda2
8f73561d950812b5b6a069111815c2649a0819bc
4006783ad40e12da4ab6880228ee83299452f1ba2cd461aa0d883d3709719b46

HTTP Headers

GET /js/lang3_0.js?27717969 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/widget_like.php?app=4579236&width=100%25&_ver=1&page=0&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&type=mini&verb=0&color=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&description=%D0%92%C2%A0%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D0%B5%D0%B5%20%D0%B2%D1%80%D0%B5%D0%BC%D1%8F%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%20%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%82%D1%81%D1%8F%20%D0%B4%D1%80%D1%83%D0%B3%D0%B8%D0%BC.%20%D0%92%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D1%81%D1%8F%20%D0%B2%D1%81%D0%B5%20%D0%B1%D0%BE%D0%BB%D1%8C%D1%88%D0%B5%20%D1%80%D0%B0%D0%B7%D0%BD%D0%BE%D0%B3%D0%BE%20%D1%80%D0%BE%D0%B4%D0%B0%20%D0%BE%D0%B3%D1%80%D0%B0%D0%BD%D0%B8%D1%87%D0%B5%D0%BD%D0%B8%D0%B9%2C%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%B8%D0%B5%20%D1%81%D0%B0%D0%B9%D1%82%D1%8B%20%D0%B1%D0%BB%D0%BE%D0%BA%D0%B8%D1%80%D1%83%D1%8E%D1%82%D1%81%D1%8F%20%D0%BF%D0%BE%C2%A0%D1%82%D0%B5%D0%BC%20%D0%B8%D0%BB%D0%B8%20%D0%B8%D0%BD%D1%8B%D0%BC%20%D0%BF%D1%80%D0%B8%D1%87%D0%B8%D0%BD%D0%B0%D0%BC%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D0%BE%2C%20%D0%B2%D1%81%D0%BB%D0%B5...&image=http%3A%2F%2Fwww.iemag.ru%2Fupload%2Fiblock%2Fd2e%2Fspunt_300.jpg&text=&h=24&height=24&startWidth=0&referrer=&183372e80bd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/javascript; charset=windows-1251
content-length: 19875
x-powered-by: KPHP/7.4.112152
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Thu, 07 Sep 2023 13:34:48 GMT; path=/; domain=.vk.com
remixstlid=9074973613590307606_rKQq5wsTywzKGBI2pkgNKXFHjnjHGY6QmDsnoK5Tluk; expires=Wed, 13 Sep 2023 14:09:11 GMT; path=/; domain=.vk.com; secure
cache-control: max-age=345600
content-encoding: gzip
x-frontend: front220206
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D

176.122.21.131

302 Found

0 B

URL HTTP/2
ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
IP
176.122.21.131:0
ASN
#48096 Enterprise Cloud Ltd.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: https://acint.net/match?dp=110&euid=bf1095e7b0944f4ba7041d4cfc6b788b
server: Kestrel
set-cookie: adlm_userId=bf1095e7b0944f4ba7041d4cfc6b788b; expires=Tue, 12 Sep 2023 21:00:00 GMT; path=/; SameSite=None; secure
date: Tue, 13 Sep 2022 14:09:10 GMT
content-length: 0
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31b96e7a93271feb9b8cd20a4757663a
e527e7f079549e97d719824c2ee0d5561ec488ba
ba31f6f89beaf75f6e41da446a22770ca4046fd4a84cc69cae5ebede8a959982

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BA31F6F89BEAF75F6E41DA446A22770CA4046FD4A84CC69CAE5EBEDE8A959982"
Last-Modified: Mon, 12 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16361
Expires: Tue, 13 Sep 2022 18:41:52 GMT
Date: Tue, 13 Sep 2022 14:09:11 GMT
Connection: keep-alive

sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=0100007F078F20639100723102B773C3

95.216.101.186

302 Found

0 B

URL HTTP/2
sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=0100007F078F20639100723102B773C3
IP
95.216.101.186:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=0100007F078F20639100723102B773C3 HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-length: 0
expires: 0
cache-control: private, no-cache, no-store, no-cache=Set-Cookie, proxy-revalidate
set-cookie: uid=a4140260-336d-11ed-ad67-f832e4719dd9; Version=1; Path=/; Domain=.1dmp.io; Expires=Wed, 13 Sep 2023 14:09:11 GMT; SameSite=None; Secure
uid-legacy=a4140260-336d-11ed-ad67-f832e4719dd9; Version=1; Path=/; Domain=.1dmp.io; Expires=Wed, 13 Sep 2023 14:09:11 GMT
location: /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=0100007F078F20639100723102B773C3&cs=1
X-Firefox-Spdy: h2

vk.com/js/loader_nav21522076835_3.js

87.240.132.72

200 OK

503 B

URL HTTP/2
vk.com/js/loader_nav21522076835_3.js
IP
87.240.132.72:0
ASN
#47541 VKontakte Ltd

File type
data
Size
503 B (503 bytes)
Hash
31fd711b7a84bbc542ee8b2b8de404a9
d4af3cde147d89ab318789f8ef98f8eeb7b34956
0a8e5153abc4362c9e0aeef85dfccceed016ac003a5e9b4024b7a33882befd62

HTTP Headers

GET /js/loader_nav21522076835_3.js HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/widget_like.php?app=4579236&width=100%25&_ver=1&page=0&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&type=mini&verb=0&color=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&description=%D0%92%C2%A0%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D0%BD%D0%B5%D0%B5%20%D0%B2%D1%80%D0%B5%D0%BC%D1%8F%20%D0%98%D0%BD%D1%82%D0%B5%D1%80%D0%BD%D0%B5%D1%82%20%D1%81%D1%82%D0%B0%D0%BD%D0%BE%D0%B2%D0%B8%D1%82%D1%81%D1%8F%20%D0%B4%D1%80%D1%83%D0%B3%D0%B8%D0%BC.%20%D0%92%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D1%81%D1%8F%20%D0%B2%D1%81%D0%B5%20%D0%B1%D0%BE%D0%BB%D1%8C%D1%88%D0%B5%20%D1%80%D0%B0%D0%B7%D0%BD%D0%BE%D0%B3%D0%BE%20%D1%80%D0%BE%D0%B4%D0%B0%20%D0%BE%D0%B3%D1%80%D0%B0%D0%BD%D0%B8%D1%87%D0%B5%D0%BD%D0%B8%D0%B9%2C%20%D0%BC%D0%BD%D0%BE%D0%B3%D0%B8%D0%B5%20%D1%81%D0%B0%D0%B9%D1%82%D1%8B%20%D0%B1%D0%BB%D0%BE%D0%BA%D0%B8%D1%80%D1%83%D1%8E%D1%82%D1%81%D1%8F%20%D0%BF%D0%BE%C2%A0%D1%82%D0%B5%D0%BC%20%D0%B8%D0%BB%D0%B8%20%D0%B8%D0%BD%D1%8B%D0%BC%20%D0%BF%D1%80%D0%B8%D1%87%D0%B8%D0%BD%D0%B0%D0%BC%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D0%BE%2C%20%D0%B2%D1%81%D0%BB%D0%B5...&image=http%3A%2F%2Fwww.iemag.ru%2Fupload%2Fiblock%2Fd2e%2Fspunt_300.jpg&text=&h=24&height=24&startWidth=0&referrer=&183372e80bd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/javascript; charset=windows-1251
content-length: 45622
x-powered-by: KPHP/7.4.112152
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Tue, 19 Sep 2023 15:52:00 GMT; path=/; domain=.vk.com
remixstlid=9053300040383583775_GnEFzlLz4RsaTFsAn1GQ34tXVTlO0zEUtiibkXupvuc; expires=Wed, 13 Sep 2023 14:09:11 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-encoding: gzip
x-frontend: front220206
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

www.iemag.ru/images/iemag/lightbox2/images/prev.png

217.65.4.114

200 OK

1.4 kB

URL HTTP/1.1
www.iemag.ru/images/iemag/lightbox2/images/prev.png
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
PNG image data, 50 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1360 bytes)
Hash
84b76dee6b27b795e89e3649078a11c2
6640a3432f7ba7aea6129cdf7a5d3eabd47c295c
7fd9273f20fdb1229c224341271a119020a5eee74ccf6b4605730917c864caf2

HTTP Headers

GET /images/iemag/lightbox2/images/prev.png HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/images/iemag/lightbox2/css/lightbox.css
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A11; IEMAG_BANNERS=1_14_1_20092022%2C1_12_1_20092022; fid=d764f713-998e-4441-b599-bb2d29698748; __utma=209563274.345338440.1663078138.1663078138.1663078138.1; __utmb=209563274.1.10.1663078138; __utmc=209563274; __utmz=209563274.1663078138.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: image/png
Content-Length: 1360
Last-Modified: Wed, 01 Mar 2017 09:52:37 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "58b699e5-550"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/lightbox2/images/next.png

217.65.4.114

200 OK

1.4 kB

URL HTTP/1.1
www.iemag.ru/images/iemag/lightbox2/images/next.png
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
PNG image data, 50 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1350 bytes)
Hash
31f15875975aab69085470aabbfec802
777e92c050f600b4519299c3d786b8f2f459fea4
15b869b02c6fbaa8c6c26445a2dd2d9bad80fd27b1409f8179e5dd89dc89d90a

HTTP Headers

GET /images/iemag/lightbox2/images/next.png HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/images/iemag/lightbox2/css/lightbox.css
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A11; IEMAG_BANNERS=1_14_1_20092022%2C1_12_1_20092022; fid=d764f713-998e-4441-b599-bb2d29698748; __utma=209563274.345338440.1663078138.1663078138.1663078138.1; __utmb=209563274.1.10.1663078138; __utmc=209563274; __utmz=209563274.1663078138.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: image/png
Content-Length: 1350
Last-Modified: Wed, 01 Mar 2017 09:52:37 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "58b699e5-546"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

push.services.mozilla.com/

44.240.207.158

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.240.207.158:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xitilzDz/BlKHRjKuoZbPw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ej3QtF25mbTVEosv+taxeo6yhUM=

ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D

185.147.80.35

302 Found

0 B

URL HTTP/1.1
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
IP
185.147.80.35:0
ASN
#41722 Miran Ltd.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.acint.net/match?dp=95&euid=TOLWQUVK
Set-Cookie: uid=TOLWQUVK; Expires=Tue, 13 Sep 2032 00:00:00 GMT; mf2=1; Expires=Thu, 13 Oct 2022 00:00:00 GMT;

sync.upravel.com/sape/sync

144.76.138.28

302 Found

0 B

URL HTTP/2
sync.upravel.com/sape/sync
IP
144.76.138.28:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1663078151614;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1663078151614;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
31fb171798e295129be5248f3eda07b2
b956856c041df36bd0469e01bbce0dc62fa462a4
950fafeb4c66a6ad186471462da726c9b54a5acf625a37ca792c17ccb826d07b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "950FAFEB4C66A6AD186471462DA726C9B54A5ACF625A37CA792C17CCB826D07B"
Last-Modified: Sun, 11 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10373
Expires: Tue, 13 Sep 2022 17:02:04 GMT
Date: Tue, 13 Sep 2022 14:09:11 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d267b0fd435ca443f0f9b5592cb1fa0f
1878069dff6e6c10c1dbfbbd590a542ae134957b
8bc35e68cb9e0738aab92fb9c57aaef32e5fafde3c3f75ccb2848b5ea5a02f79

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BC35E68CB9E0738AAB92FB9C57AAEF32E5FAFDE3C3F75CCB2848B5EA5A02F79"
Last-Modified: Tue, 13 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14288
Expires: Tue, 13 Sep 2022 18:07:19 GMT
Date: Tue, 13 Sep 2022 14:09:11 GMT
Connection: keep-alive

vk.com/js/loader_nav21522076835_3.js

87.240.132.72

200 OK

46 kB

URL HTTP/2
vk.com/js/loader_nav21522076835_3.js
IP
87.240.132.72:0
ASN
#47541 VKontakte Ltd

File type
ASCII text, with very long lines (65536), with no line terminators
Size
46 kB (45622 bytes)
Hash
94a4263dfd20f2d1d353454722d8e066
ce0208161ca0f5d21710985f1fe8fcb99afa01de
45ba282ebd77753bcf041fbcd5845b09da658b1337c5c3e479c419fb476a0316

HTTP Headers

GET /js/loader_nav21522076835_3.js HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/widget_community.php?app=4579236&width=200px&_ver=1&gid=25763973&mode=0&color1=FFFFFF&color2=2B587A&color3=5B7FA6&class_name=&height=200&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&referrer=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&183372e80ca
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/javascript; charset=windows-1251
content-length: 45622
x-powered-by: KPHP/7.4.112152
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Tue, 12 Sep 2023 11:47:54 GMT; path=/; domain=.vk.com
remixstlid=9119587397399119132_lOz8mWC8p1pJgPUz13ltJjswPnBdTCiBaDNND5GlzPL; expires=Wed, 13 Sep 2023 14:09:11 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-encoding: gzip
x-frontend: front220206
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2

sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=0100007F078F20639100723102B773C3&cs=1

95.216.101.186

200 OK

35 B

URL HTTP/2
sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=0100007F078F20639100723102B773C3&cs=1
IP
95.216.101.186:0
ASN
#24940 Hetzner Online GmbH

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

HTTP Headers

GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=0100007F078F20639100723102B773C3&cs=1 HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: uid=a4140260-336d-11ed-ad67-f832e4719dd9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: image/gif
content-length: 35
expires: 0
cache-control: private, no-cache, no-store, no-cache=Set-Cookie, proxy-revalidate
set-cookie: uid=a4140260-336d-11ed-ad67-f832e4719dd9; Version=1; Path=/; Domain=.1dmp.io; Expires=Wed, 13 Sep 2023 14:09:11 GMT; SameSite=None; Secure
uid-legacy=a4140260-336d-11ed-ad67-f832e4719dd9; Version=1; Path=/; Domain=.1dmp.io; Expires=Wed, 13 Sep 2023 14:09:11 GMT
X-Firefox-Spdy: h2

www.iemag.ru/images/iemag/lightbox2/images/close.png

217.65.4.114

200 OK

280 B

URL HTTP/1.1
www.iemag.ru/images/iemag/lightbox2/images/close.png
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
PNG image data, 27 x 27, 8-bit colormap, non-interlaced\012- data
Size
280 B (280 bytes)
Hash
d9d2d0b1308cb694aa8116915592e2a9
3ca48361cfe0e41163023d03c26296f375bb3eac
5d62e6c90005bfb71f6abb440f9e4753681cb23bbd5e60477ab6f442d2f0e69c

HTTP Headers

GET /images/iemag/lightbox2/images/close.png HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/images/iemag/lightbox2/css/lightbox.css
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A11; IEMAG_BANNERS=1_14_1_20092022%2C1_12_1_20092022; fid=d764f713-998e-4441-b599-bb2d29698748; __utma=209563274.345338440.1663078138.1663078138.1663078138.1; __utmb=209563274.1.10.1663078138; __utmc=209563274; __utmz=209563274.1663078138.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: image/png
Content-Length: 280
Last-Modified: Wed, 01 Mar 2017 09:52:37 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "58b699e5-118"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

www.iemag.ru/images/iemag/lightbox2/images/loading.gif

217.65.4.114

200 OK

8.5 kB

URL HTTP/1.1
www.iemag.ru/images/iemag/lightbox2/images/loading.gif
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
GIF image data, version 89a, 32 x 32\012- data
Size
8.5 kB (8476 bytes)
Hash
2299ad0b3f63413f026dfec20c205b8f
cf720b50cf8dde0e1a84ce1c6a77788bfc5882d5
225aa88b6ab02c06222ec9468d62e15fa188e39cdb9431d1f55401ad380753ed

HTTP Headers

GET /images/iemag/lightbox2/images/loading.gif HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/images/iemag/lightbox2/css/lightbox.css
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A11; IEMAG_BANNERS=1_14_1_20092022%2C1_12_1_20092022; fid=d764f713-998e-4441-b599-bb2d29698748; __utma=209563274.345338440.1663078138.1663078138.1663078138.1; __utmb=209563274.1.10.1663078138; __utmc=209563274; __utmz=209563274.1663078138.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: image/gif
Content-Length: 8476
Last-Modified: Wed, 01 Mar 2017 09:52:37 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "58b699e5-211c"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bf3263f63ce5235b814592c0747013f4
9da580666d354f6af1a5f4d2908201e32ff3749d
57c74057c1129c621684ccb6264690de9e7842cb955bcb4a866efb974d386d5a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "57C74057C1129C621684CCB6264690DE9E7842CB955BCB4A866EFB974D386D5A"
Last-Modified: Mon, 12 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16878
Expires: Tue, 13 Sep 2022 18:50:29 GMT
Date: Tue, 13 Sep 2022 14:09:11 GMT
Connection: keep-alive

s.uuidksinc.net/match/396/?remote_uid=0100007F078F20639100723102B773C3

31.220.27.135

302 Found

0 B

URL HTTP/2
s.uuidksinc.net/match/396/?remote_uid=0100007F078F20639100723102B773C3
IP
31.220.27.135:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/396/?remote_uid=0100007F078F20639100723102B773C3 HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx/1.19.0
date: Tue, 13 Sep 2022 14:09:11 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=Pc0dEAQFf2vHweqUFgLu
set-cookie: jcsuuid=Pc0dEAQFf2vHweqUFgLu; expires=Wed, 13 Sep 2023 14:09:11 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2

www.acint.net/match?dp=95&euid=TOLWQUVK

185.12.125.25

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=95&euid=TOLWQUVK
IP
185.12.125.25:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=95&euid=TOLWQUVK HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMgjwcxcgCRw3O3Av0+t0bNHqzJe3gW1KTqHr5lGZ61; cSyncDp7v2=1663078151; cSyncDp14v3=1663078151; cSyncDp17=1663078151; cSyncDp32=1663078151; cSyncDp45v3=1663078151; cSyncDp53=1663078151; cSyncDp54v2=1663078151; cSyncDp62=1663078151; cSyncDp67v2=1663078151; cSyncDp68=1663078151; cSyncDp71=1663078151; cSyncDp77=1663078151; cSyncDp84=1663078151; cSyncDp85=1663078151; cSyncDp95v3=1663078151; cSyncDp101=1663078151; cSyncDp104v2=1663078151; cSyncDp107=1663078151; cSyncDp110=1663078151; cSyncDp111v2=1663078151; cSyncDp112v2=1663078151; cSyncDp125v2=1663078151; cSyncDp126=1663078151; cSyncDp127=1663078151; cSyncDp129=1663078151; cSyncDp136v2=1663078151; cSyncDp138=1663078151; cSyncDp144=1663078151; cSyncDp146=1663078151; cSyncDp148=1663078151; cSyncDp149=1663078151; cSyncDp151=1663078151; cSyncDp179=1663078151; cSyncDp186=1663078151; cSyncDp221=1663078151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.pcweek.ru/ad/banners/default.php?w=468&h=60&banner_random=78435

89.108.64.185

301 Moved Permanently

169 B

URL HTTP/1.1
www.pcweek.ru/ad/banners/default.php?w=468&h=60&banner_random=78435
IP
89.108.64.185:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
9527755784f5014d2c94dcabdf6ae892
941126eba6b0b049b4a09fb846ebd943e894e068
5b111ef9f2dbaf8e8870567dc8e2302efe2b0feb9d4ba62ce74c1039ab663523

HTTP Headers

GET /ad/banners/default.php?w=468&h=60&banner_random=78435 HTTP/1.1
Host: www.pcweek.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.2
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Location: https://www.itweek.ru/ad/banners/default.php?w=468&h=60&banner_random=78435

ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D

193.3.184.131

302 Moved Temporarily

142 B

URL HTTP/1.1
ssp-rtb.sape.ru/rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D
IP
193.3.184.131:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
142 B (142 bytes)
Hash
82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c

HTTP Headers

GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ssp-rtb.sape.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=ACB803C1078F20634D00B21E0288601A
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=wQO4rGMgjwcesgBNGmCIAgw00leYVvJdSmETmTX5OEnb6/PB; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None

stat.adlabs.ru/merge_gpsid/?sid=50&id=0100007F078F20639100723102B773C3

109.248.237.36

302 Found

0 B

URL HTTP/2
stat.adlabs.ru/merge_gpsid/?sid=50&id=0100007F078F20639100723102B773C3
IP
109.248.237.36:0
ASN
#201009 Centre of server systems Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /merge_gpsid/?sid=50&id=0100007F078F20639100723102B773C3 HTTP/1.1
Host: stat.adlabs.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Tue, 13 Sep 2022 13:57:03 GMT
content-length: 0
location: //adlmerge.com/merge_gpsid/?sid=50&id=0100007F078F20639100723102B773C3
X-Firefox-Spdy: h2

vk.com/images/upload.gif

87.240.132.72

200 OK

230 B

URL HTTP/2
vk.com/images/upload.gif
IP
87.240.132.72:0
ASN
#47541 VKontakte Ltd

File type
GIF image data, version 89a, 32 x 8\012- data
Size
230 B (230 bytes)
Hash
59cd625f8c2ce03663123d59416378a1
b8d103133aadcdbe532e5642ddce9159b7385e4e
0d7e358637c1b1caa66949aefc529c1e4488923f99e499d6be09eb8cdd0b4202

HTTP Headers

GET /images/upload.gif HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: image/gif
content-length: 230
last-modified: Tue, 22 Sep 2020 20:30:00 GMT
etag: "5f6a5ec8-e6"
expires: Tue, 20 Sep 2022 14:09:11 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2

www.acint.net/match?dp=127&euid=Pc0dEAQFf2vHweqUFgLu

185.12.125.25

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=127&euid=Pc0dEAQFf2vHweqUFgLu
IP
185.12.125.25:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=127&euid=Pc0dEAQFf2vHweqUFgLu HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMgjwcxcgCRw3O3Av0+t0bNHqzJe3gW1KTqHr5lGZ61; cSyncDp7v2=1663078151; cSyncDp14v3=1663078151; cSyncDp17=1663078151; cSyncDp32=1663078151; cSyncDp45v3=1663078151; cSyncDp53=1663078151; cSyncDp54v2=1663078151; cSyncDp62=1663078151; cSyncDp67v2=1663078151; cSyncDp68=1663078151; cSyncDp71=1663078151; cSyncDp77=1663078151; cSyncDp84=1663078151; cSyncDp85=1663078151; cSyncDp95v3=1663078151; cSyncDp101=1663078151; cSyncDp104v2=1663078151; cSyncDp107=1663078151; cSyncDp110=1663078151; cSyncDp111v2=1663078151; cSyncDp112v2=1663078151; cSyncDp125v2=1663078151; cSyncDp126=1663078151; cSyncDp127=1663078151; cSyncDp129=1663078151; cSyncDp136v2=1663078151; cSyncDp138=1663078151; cSyncDp144=1663078151; cSyncDp146=1663078151; cSyncDp148=1663078151; cSyncDp149=1663078151; cSyncDp151=1663078151; cSyncDp179=1663078151; cSyncDp186=1663078151; cSyncDp221=1663078151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

acint.net/match?dp=14&euid=ACB803C1078F20634D00B21E0288601A

185.12.125.25

200 OK

43 B

URL HTTP/2
acint.net/match?dp=14&euid=ACB803C1078F20634D00B21E0288601A
IP
185.12.125.25:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=14&euid=ACB803C1078F20634D00B21E0288601A HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMgjwcxcgCRw3O3Av0+t0bNHqzJe3gW1KTqHr5lGZ61; cSyncDp7v2=1663078151; cSyncDp14v3=1663078151; cSyncDp17=1663078151; cSyncDp32=1663078151; cSyncDp45v3=1663078151; cSyncDp53=1663078151; cSyncDp54v2=1663078151; cSyncDp62=1663078151; cSyncDp67v2=1663078151; cSyncDp68=1663078151; cSyncDp71=1663078151; cSyncDp77=1663078151; cSyncDp84=1663078151; cSyncDp85=1663078151; cSyncDp95v3=1663078151; cSyncDp101=1663078151; cSyncDp104v2=1663078151; cSyncDp107=1663078151; cSyncDp110=1663078151; cSyncDp111v2=1663078151; cSyncDp112v2=1663078151; cSyncDp125v2=1663078151; cSyncDp126=1663078151; cSyncDp127=1663078151; cSyncDp129=1663078151; cSyncDp136v2=1663078151; cSyncDp138=1663078151; cSyncDp144=1663078151; cSyncDp146=1663078151; cSyncDp148=1663078151; cSyncDp149=1663078151; cSyncDp151=1663078151; cSyncDp179=1663078151; cSyncDp186=1663078151; cSyncDp221=1663078151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

ut.rktch.com/matchspm?pi=1000005&pui=0100007F078F20639100723102B773C3

89.108.97.2

302 Found

0 B

URL HTTP/1.1
ut.rktch.com/matchspm?pi=1000005&pui=0100007F078F20639100723102B773C3
IP
89.108.97.2:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /matchspm?pi=1000005&pui=0100007F078F20639100723102B773C3 HTTP/1.1
Host: ut.rktch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: nginx/1.22.0
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Length: 0
Connection: keep-alive
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
Set-Cookie: b_uid=2a684d4424f496283e71aa6cbb73eccb899c; Max-Age=2592000; Expires=Thu, 13 Oct 2022 14:09:11 GMT; Domain=rktch.com; Secure; SameSite=None
Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Content-Type, Accept, Authorization
Access-Control-Allow-Credentials: true

sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0

144.76.138.28

302 Found

0 B

URL HTTP/2
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP
144.76.138.28:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: session_tptc=1663078151614
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: nginx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: image/png
content-length: 0
location: https://17c3a75a-86bb-4b32-9446-653bac17e008.sync.upravel.com/sape/sync?ud_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyIsImh0dHBzOi8vd3d3LmFjaW50Lm5ldC8iXX19
set-cookie: user_id=17c3a75a-86bb-4b32-9446-653bac17e008;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=17c3a75a-86bb-4b32-9446-653bac17e008;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bf3263f63ce5235b814592c0747013f4
9da580666d354f6af1a5f4d2908201e32ff3749d
57c74057c1129c621684ccb6264690de9e7842cb955bcb4a866efb974d386d5a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "57C74057C1129C621684CCB6264690DE9E7842CB955BCB4A866EFB974D386D5A"
Last-Modified: Mon, 12 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 13 Sep 2022 20:09:11 GMT
Date: Tue, 13 Sep 2022 14:09:11 GMT
Connection: keep-alive

www.pcweek.ru/ad/banners/default.php?w=468&h=60&banner_random=47391

89.108.64.185

301 Moved Permanently

169 B

URL HTTP/1.1
www.pcweek.ru/ad/banners/default.php?w=468&h=60&banner_random=47391
IP
89.108.64.185:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
169 B (169 bytes)
Hash
9527755784f5014d2c94dcabdf6ae892
941126eba6b0b049b4a09fb846ebd943e894e068
5b111ef9f2dbaf8e8870567dc8e2302efe2b0feb9d4ba62ce74c1039ab663523

HTTP Headers

GET /ad/banners/default.php?w=468&h=60&banner_random=47391 HTTP/1.1
Host: www.pcweek.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.2
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Location: https://www.itweek.ru/ad/banners/default.php?w=468&h=60&banner_random=47391

ocsp2.globalsign.com/gsalphasha2g2

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsalphasha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1423 bytes)
Hash
aa00a380593beabc331f2ffb00255966
766edd1b58f369c63cf7d61b214cfdcb0f5a2910
fd7f88690f98b9689a404557c430c16b2cafc61951943ec640a17df3986959ca

HTTP Headers

POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 17 Sep 2022 11:00:37 GMT
ETag: "766edd1b58f369c63cf7d61b214cfdcb0f5a2910"
Last-Modified: Tue, 13 Sep 2022 11:00:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1242
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a17590a8b5b512-OSL

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9a0517270116a9ffc9eeb2e47c510e0b
a17cb81b8048fc882893a40a846cc5b59ccf06f4
3aa01be602a216a41f3b9c6ae631d70df37990ef0279e3b60f6d48bb1f4b68f8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3AA01BE602A216A41F3B9C6AE631D70DF37990EF0279E3B60F6D48BB1F4B68F8"
Last-Modified: Sun, 11 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10613
Expires: Tue, 13 Sep 2022 17:06:04 GMT
Date: Tue, 13 Sep 2022 14:09:11 GMT
Connection: keep-alive

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
3113864d4ed50fd5d862229d9415edbd
612ffc4a37fd67dd5cb0d2debed7b79a6f19a0d9
25ee53c50bccf269b78a61568ac145cac37704fa106fb9e82d1d6c159f965c6d

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 17 Sep 2022 10:22:05 GMT
ETag: "612ffc4a37fd67dd5cb0d2debed7b79a6f19a0d9"
Last-Modified: Tue, 13 Sep 2022 10:22:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1694
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a17590dfa2b4f3-OSL

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0c7e1d33969ba122c657e99098ecf643
c69e167f7a52cd53b99708ee6597be2eecdac047
09dcf7c885ac7fb48c15ebfd84eda63d5aaaa29ede48ab2dc1ddffd23013c20c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "09DCF7C885AC7FB48C15EBFD84EDA63D5AAAA29EDE48AB2DC1DDFFD23013C20C"
Last-Modified: Sun, 11 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2276
Expires: Tue, 13 Sep 2022 14:47:07 GMT
Date: Tue, 13 Sep 2022 14:09:11 GMT
Connection: keep-alive

sync.republer.com/match?dsp=sape

23.88.82.46

204 No Content

0 B

URL HTTP/2
sync.republer.com/match?dsp=sape
IP
23.88.82.46:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?dsp=sape HTTP/1.1
Host: sync.republer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Tue, 13 Sep 2022 14:09:11 GMT
strict-transport-security: max-age=0
X-Firefox-Spdy: h2

st6-21.vk.com/js/api/widgets/al_like.js?30

95.142.206.1

200 OK

3.7 kB

URL HTTP/2
st6-21.vk.com/js/api/widgets/al_like.js?30
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
ASCII text
Size
3.7 kB (3727 bytes)
Hash
402cb6e6d78d1c96861a277bfdf62d32
ba3749968a1d483f42b81b6968ee372ed723cf05
c15130e30b3976f1671b1816c99f115839d7f9fb10de237538abb5d79250eb4a

HTTP Headers

GET /js/api/widgets/al_like.js?30 HTTP/1.1
Host: st6-21.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: application/x-javascript
content-length: 3727
last-modified: Tue, 22 Sep 2020 20:30:00 GMT
etag: "5f6a5ec8-e8f"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
x-frontend: front6-21
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
accept-ranges: bytes
X-Firefox-Spdy: h2

www.iemag.ru/favicon.ico

217.65.4.114

200 OK

894 B

URL HTTP/1.1
www.iemag.ru/favicon.ico
IP
217.65.4.114:0
ASN
#29076 Filanco LLC

File type
MS Windows icon resource - 1 icon, 16x16, 24 bits/pixel\012- data
Size
894 B (894 bytes)
Hash
0e0f01727a667e981c1471f78669855a
0443a2d3576b09b478355e1cf4204c7fffd04f02
718b68e788ebc53b9bbb4680e4e178c77317e0851b2372901290b6b9c4ec3315

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.iemag.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/columns/detail.php?ID=31796
Cookie: PHPSESSID=a38c6dbc579c538934ce60f8ec417994; IEMAG_GUEST_ID=11938316; IEMAG_LAST_VISIT=13.09.2022+17%3A09%3A11; IEMAG_BANNERS=1_14_1_20092022%2C1_12_1_20092022; fid=d764f713-998e-4441-b599-bb2d29698748; __utma=209563274.345338440.1663078138.1663078138.1663078138.1; __utmb=209563274.1.10.1663078138; __utmc=209563274; __utmz=209563274.1663078138.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1; BX_USER_ID=854fd3919450282c9abccefdff6dcbc6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 894
Last-Modified: Fri, 14 Dec 2007 13:08:36 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "47628054-37e"
Strict-Transport-Security: max-age=31536000
Content-Security-Policy: upgrade-insecure-requests
Accept-Ranges: bytes

sync.dmp.otm-r.com/match/sape?id=0100007F078F20639100723102B773C3

159.69.72.5

204 No Content

0 B

URL HTTP/2
sync.dmp.otm-r.com/match/sape?id=0100007F078F20639100723102B773C3
IP
159.69.72.5:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/sape?id=0100007F078F20639100723102B773C3 HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx/1.17.0
date: Tue, 13 Sep 2022 14:09:11 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
3113864d4ed50fd5d862229d9415edbd
612ffc4a37fd67dd5cb0d2debed7b79a6f19a0d9
25ee53c50bccf269b78a61568ac145cac37704fa106fb9e82d1d6c159f965c6d

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 17 Sep 2022 10:22:05 GMT
ETag: "612ffc4a37fd67dd5cb0d2debed7b79a6f19a0d9"
Last-Modified: Tue, 13 Sep 2022 10:22:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1694
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a17591295bb512-OSL

match.new-programmatic.com/userbind?src=sape&id=0100007F078F20639100723102B773C3

217.65.2.150

204 No Content

0 B

URL HTTP/1.1
match.new-programmatic.com/userbind?src=sape&id=0100007F078F20639100723102B773C3
IP
217.65.2.150:0
ASN
#3175 Filanco LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /userbind?src=sape&id=0100007F078F20639100723102B773C3 HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: nginx/1.18.0
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin

st6-21.vk.com/css/al/ui_common.f84b667095c1513ae4a5.css

95.142.206.1

200 OK

15 kB

URL HTTP/2
st6-21.vk.com/css/al/ui_common.f84b667095c1513ae4a5.css
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Size
15 kB (14869 bytes)
Hash
831b71f604cb609c95a3ad0fb7801f13
8b446ddcaf992d2fe7b4e2dd1354bcf8374eae82
b3d8a0327b074828e847af15d8633e65262914a9d5471ad46823addff2597596

HTTP Headers

GET /css/al/ui_common.f84b667095c1513ae4a5.css HTTP/1.1
Host: st6-21.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/css
content-length: 14869
last-modified: Thu, 01 Sep 2022 09:23:05 GMT
etag: "631079f9-3a15"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
x-frontend: front6-21
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
accept-ranges: bytes
X-Firefox-Spdy: h2

st6-21.vk.com/dist/vendors.a3918699998c336f7925.js?979c75a7f31c38dad033

95.142.206.1

200 OK

66 kB

URL HTTP/2
st6-21.vk.com/dist/vendors.a3918699998c336f7925.js?979c75a7f31c38dad033
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (35598), with LF, NEL line terminators
Size
66 kB (66096 bytes)
Hash
072a504f9d1da732702a1591befc7903
d327ab8bcabf7c247b86d961c2168ed5af8de347
9de1fb4cf0212bc88a8eb7e600ff3223a108c45ed2b9a77679f81ffd05cf3e41

HTTP Headers

GET /dist/vendors.a3918699998c336f7925.js?979c75a7f31c38dad033 HTTP/1.1
Host: st6-21.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: application/x-javascript
content-length: 66096
last-modified: Fri, 09 Sep 2022 12:53:13 GMT
etag: "631b3739-10230"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
x-frontend: front6-21
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
accept-ranges: bytes
X-Firefox-Spdy: h2

st6-21.vk.com/dist/palette.4bf277d762d64ef3a7d6.js?9c49cf022973bc19760e

95.142.206.1

200 OK

25 kB

URL HTTP/2
st6-21.vk.com/dist/palette.4bf277d762d64ef3a7d6.js?9c49cf022973bc19760e
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65531), with no line terminators
Size
25 kB (24661 bytes)
Hash
f8c71b16aafaa6c49022262e30351c50
d0961821fd4bd53b9347ad82fe7e65c3d4ac360f
d0d1743ad647490b8809552a42d4672abbba17a4e40dd3452ec9728b99cc45d7

HTTP Headers

GET /dist/palette.4bf277d762d64ef3a7d6.js?9c49cf022973bc19760e HTTP/1.1
Host: st6-21.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: application/x-javascript
content-length: 24661
last-modified: Wed, 17 Aug 2022 12:29:46 GMT
etag: "62fcdf3a-6055"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
x-frontend: front6-21
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
3113864d4ed50fd5d862229d9415edbd
612ffc4a37fd67dd5cb0d2debed7b79a6f19a0d9
25ee53c50bccf269b78a61568ac145cac37704fa106fb9e82d1d6c159f965c6d

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 17 Sep 2022 10:22:05 GMT
ETag: "612ffc4a37fd67dd5cb0d2debed7b79a6f19a0d9"
Last-Modified: Tue, 13 Sep 2022 10:22:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1694
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a17591785db4f3-OSL

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
3113864d4ed50fd5d862229d9415edbd
612ffc4a37fd67dd5cb0d2debed7b79a6f19a0d9
25ee53c50bccf269b78a61568ac145cac37704fa106fb9e82d1d6c159f965c6d

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 17 Sep 2022 10:22:05 GMT
ETag: "612ffc4a37fd67dd5cb0d2debed7b79a6f19a0d9"
Last-Modified: Tue, 13 Sep 2022 10:22:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1694
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a17591aa47b512-OSL

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2b0562185eb4a381a9ed4bf237038de6
ac4dcbe66da772508ad880a067b59a6472dbce2f
51ce0a8f3ee0c55cff3f2b48294b3c35000fd2e8eb0e8690588b15841387d112

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51CE0A8F3EE0C55CFF3F2B48294B3C35000FD2E8EB0E8690588B15841387D112"
Last-Modified: Mon, 12 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14855
Expires: Tue, 13 Sep 2022 18:16:46 GMT
Date: Tue, 13 Sep 2022 14:09:11 GMT
Connection: keep-alive

st6-21.vk.com/dist/common.10d27d9b61949505b066.js?2950cbd22bf9e38ac82a91b

95.142.206.1

200 OK

223 kB

URL HTTP/2
st6-21.vk.com/dist/common.10d27d9b61949505b066.js?2950cbd22bf9e38ac82a91b
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65447)
Size
223 kB (223105 bytes)
Hash
2a2c3ee3a8613321779bbfb794e5aeea
588430b778866b56f8ceace05ffb9ffc5d648085
abc46acf65fe9da7845cae0fabc7a30e0a0c36106ee293ab1b979bfddd47c9b6

HTTP Headers

GET /dist/common.10d27d9b61949505b066.js?2950cbd22bf9e38ac82a91b HTTP/1.1
Host: st6-21.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: application/x-javascript
content-length: 223105
last-modified: Tue, 13 Sep 2022 12:51:37 GMT
etag: "63207cd9-36781"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
x-frontend: front6-21
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
accept-ranges: bytes
X-Firefox-Spdy: h2

st6-21.vk.com/dist/web/ui_common.bd14b46915622488a35a.css

95.142.206.1

200 OK

5.3 kB

URL HTTP/2
st6-21.vk.com/dist/web/ui_common.bd14b46915622488a35a.css
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (16930)
Size
5.3 kB (5337 bytes)
Hash
9dc991e7ce4c1d5ef507fda9ecafac70
8a3f51a255dd06aed76a131332091506cb77c1de
aa9fe74d5ee767041c5b2cdbdd06e1ad74312e928974719a32165da0ff38a590

HTTP Headers

GET /dist/web/ui_common.bd14b46915622488a35a.css HTTP/1.1
Host: st6-21.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/css
content-length: 5337
last-modified: Wed, 31 Aug 2022 12:53:21 GMT
etag: "630f59c1-14d9"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
x-frontend: front6-21
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
accept-ranges: bytes
X-Firefox-Spdy: h2

st6-21.vk.com/dist/web/ui_common.7ceb60d12631a7e5616a.js?

95.142.206.1

200 OK

21 kB

URL HTTP/2
st6-21.vk.com/dist/web/ui_common.7ceb60d12631a7e5616a.js?
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Size
21 kB (21001 bytes)
Hash
3bb7114bf339eb8e2491d1d66f8fddb9
821d681d777478ac943ffd522dc1c57ced19e42f
983839b00e1b8621c307d50bb48bf80e4189827a489fee59a4cce96fed779d9a

HTTP Headers

GET /dist/web/ui_common.7ceb60d12631a7e5616a.js? HTTP/1.1
Host: st6-21.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: application/x-javascript
content-length: 21001
last-modified: Tue, 13 Sep 2022 09:20:01 GMT
etag: "63204b41-5209"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
x-frontend: front6-21
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
accept-ranges: bytes
X-Firefox-Spdy: h2

st6-21.vk.com/dist/web/audioplayer.bd14b46915622488a35a.css

95.142.206.1

200 OK

5.3 kB

URL HTTP/2
st6-21.vk.com/dist/web/audioplayer.bd14b46915622488a35a.css
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (16930)
Size
5.3 kB (5337 bytes)
Hash
9dc991e7ce4c1d5ef507fda9ecafac70
8a3f51a255dd06aed76a131332091506cb77c1de
aa9fe74d5ee767041c5b2cdbdd06e1ad74312e928974719a32165da0ff38a590

HTTP Headers

GET /dist/web/audioplayer.bd14b46915622488a35a.css HTTP/1.1
Host: st6-21.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/css
content-length: 5337
last-modified: Wed, 31 Aug 2022 12:53:21 GMT
etag: "630f59c1-14d9"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
x-frontend: front6-21
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
accept-ranges: bytes
X-Firefox-Spdy: h2

st6-21.vk.com/dist/web/audioplayer.a973faf2d3af5fffdd34.js?

95.142.206.1

200 OK

1.7 kB

URL HTTP/2
st6-21.vk.com/dist/web/audioplayer.a973faf2d3af5fffdd34.js?
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (3563), with no line terminators
Size
1.7 kB (1714 bytes)
Hash
a2f18e9877a36fd565ecc4fcb1e02b17
14817ddf4732b2eece3dc2d50ea81a542374b6eb
46876b81f2256e5ba04da5972a56b26d032920b7c4285776fc0931de11c51350

HTTP Headers

GET /dist/web/audioplayer.a973faf2d3af5fffdd34.js? HTTP/1.1
Host: st6-21.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: application/x-javascript
content-length: 1714
last-modified: Tue, 07 Jun 2022 12:50:04 GMT
etag: "629f497c-6b2"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
x-frontend: front6-21
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
accept-ranges: bytes
X-Firefox-Spdy: h2

st6-21.vk.com/css/al/widget_community.ad42a33851e9f0531ecc.css

95.142.206.1

200 OK

2.6 kB

URL HTTP/2
st6-21.vk.com/css/al/widget_community.ad42a33851e9f0531ecc.css
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (15610)
Size
2.6 kB (2644 bytes)
Hash
7a0e6b73077102ce1485f326995efa93
6b41b20ad9257ec949236211a55d96600831254d
78a0cdec44b90b8de5d7c1048ce8cc2e03589c208ee62d4951c79ad066862ab8

HTTP Headers

GET /css/al/widget_community.ad42a33851e9f0531ecc.css HTTP/1.1
Host: st6-21.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/css
content-length: 2644
last-modified: Fri, 17 Jun 2022 10:18:50 GMT
etag: "62ac550a-a54"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
x-frontend: front6-21
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
accept-ranges: bytes
X-Firefox-Spdy: h2

bitrix.info/bx_stat

34.247.209.163

200 OK

5.4 kB

URL HTTP/2
bitrix.info/bx_stat
IP
34.247.209.163:0
ASN
#16509 AMAZON-02

File type
JSON data\012- data
Size
5.4 kB (5379 bytes)
Hash
9a7871fcd17eeebe59ecbc905d3dfa5d
625cf074f3bf44c31381d13334e487f36402869d
772712827986601089d63cac46e2d11174ac450b7a65dc0451d84171aebbbd9d

HTTP Headers

POST /bx_stat HTTP/1.1
Host: bitrix.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 430
Origin: https://www.iemag.ru
Connection: keep-alive
Referer: https://www.iemag.ru/
Cookie: bx_user_id=854fd3919450282c9abccefdff6dcbc6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: application/javascript
server: nginx/1.10.1
etag: 854fd3919450282c9abccefdff6dcbc6
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
set-cookie: bx_user_id=854fd3919450282c9abccefdff6dcbc6; expires=Fri, 10-Sep-32 14:09:11 GMT; path=/; domain=bitrix.info; SameSite=None; Secure
access-control-allow-origin: https://www.iemag.ru
access-control-allow-credentials: true
X-Firefox-Spdy: h2

st6-21.vk.com/dist/web/likes.dc023372a4b0549e2e40.js?

95.142.206.1

200 OK

6.3 kB

URL HTTP/2
st6-21.vk.com/dist/web/likes.dc023372a4b0549e2e40.js?
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (16916), with no line terminators
Size
6.3 kB (6292 bytes)
Hash
df3741fd39c6ae8601d51b9bbd3d78d0
a9af0630d3f91307bc2186c48c85105ca2fc6846
87611a9621f0d1cfb5cea6f7e68e866657ce0980b767b39fa4d9370a7179c468

HTTP Headers

GET /dist/web/likes.dc023372a4b0549e2e40.js? HTTP/1.1
Host: st6-21.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: application/x-javascript
content-length: 6292
last-modified: Wed, 17 Aug 2022 12:29:46 GMT
etag: "62fcdf3a-1894"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
x-frontend: front6-21
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
accept-ranges: bytes
X-Firefox-Spdy: h2

st6-21.vk.com/dist/api/widgets/community.js?1

95.142.206.1

200 OK

249 kB

URL HTTP/2
st6-21.vk.com/dist/api/widgets/community.js?1
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65465)
Size
249 kB (248759 bytes)
Hash
96a1318a98baef7b2c5f9a67fa6bad30
95c00d3b764ba1bb6884d02e1a9755c8839b78fc
e78bffc3c985f3d40e39d3ae77f34adb92846965cf1792594f47b44a7781cf83

HTTP Headers

GET /dist/api/widgets/community.js?1 HTTP/1.1
Host: st6-21.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: application/x-javascript
content-length: 248759
last-modified: Tue, 30 Aug 2022 15:18:26 GMT
etag: "630e2a42-3cbb7"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
x-frontend: front6-21
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
accept-ranges: bytes
X-Firefox-Spdy: h2

st6-21.vk.com/js/api/xdm.js?9

95.142.206.1

200 OK

2.8 kB

URL HTTP/2
st6-21.vk.com/js/api/xdm.js?9
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
ASCII text
Size
2.8 kB (2846 bytes)
Hash
3621f21a6215d1660754d2a2d1947af5
6480e04e1e4a82bf63c1322fe17dbff2037f3e06
3ffe8143f00123797a9a41d9444fce19a8935e6f34378293cb22b8b0705df6ea

HTTP Headers

GET /js/api/xdm.js?9 HTTP/1.1
Host: st6-21.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: application/x-javascript
content-length: 2846
last-modified: Tue, 22 Sep 2020 20:30:00 GMT
etag: "5f6a5ec8-b1e"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
x-frontend: front6-21
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
accept-ranges: bytes
X-Firefox-Spdy: h2

st6-21.vk.com/css/al/lite.6af08af59db160f1d821.css

95.142.206.1

200 OK

38 kB

URL HTTP/2
st6-21.vk.com/css/al/lite.6af08af59db160f1d821.css
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65533), with no line terminators
Size
38 kB (37993 bytes)
Hash
f216d6b20fc1a3385226e1db6844417b
613bc87fb2c1a62a222188851332de43bd074114
35daa1690fa18b3f99865c44d62c4feec50b3477d4825c82670ed5f9a2d96449

HTTP Headers

GET /css/al/lite.6af08af59db160f1d821.css HTTP/1.1
Host: st6-21.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/css
content-length: 37993
last-modified: Tue, 06 Sep 2022 09:51:42 GMT
etag: "6317182e-9469"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
x-frontend: front6-21
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
e022d1bd73bc11bb9b8567a656413071
fba69a3b6acb3262c8276bd2bf8310b1bb93da61
9ef07ecd63154f558f1807d2540c3bfeafe041a63f42664860c003dd0d2fa7a7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 12 Sep 2022 11:46:17 GMT
Expires: Mon, 19 Sep 2022 11:46:16 GMT
Etag: "fba69a3b6acb3262c8276bd2bf8310b1bb93da61"
Cache-Control: max-age=509224,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74a1759118a4b4e8-OSL

sync.bumlam.com/?src=sap1&uid=0100007F078F20639100723102B773C3

31.172.81.172

302 Moved Temporarily

0 B

URL HTTP/1.1
sync.bumlam.com/?src=sap1&uid=0100007F078F20639100723102B773C3
IP
31.172.81.172:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sap1&uid=0100007F078F20639100723102B773C3 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRhNDUzMzdiNC0zMzZkLTExZWQtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Mon, 08 Sep 2042 14:09:11 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARiHnoKZBmIgMDEwMDAwN0YwNzhGMjA2MzkxMDA3MjMxMDJCNzczQzOiARCkUze0M20R7YbgACWQwGR8
ETag: a45337b4-336d-11ed-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0

mediatoday.ru/core/match.gif?s=32&id=0100007F078F20639100723102B773C3

139.45.228.111

200 OK

43 B

URL HTTP/2
mediatoday.ru/core/match.gif?s=32&id=0100007F078F20639100723102B773C3
IP
139.45.228.111:0
ASN
#9002 RETN Limited

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b

HTTP Headers

GET /core/match.gif?s=32&id=0100007F078F20639100723102B773C3 HTTP/1.1
Host: mediatoday.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.22.0
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: image/gif
content-length: 43
p3p: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
cache-control: no-cache, max-age=0, must-revalidate, no-store
pragma: no-cache
expires: Thursday, 01-Jan-1970 00:00:00 GMT
set-cookie: idntfy=VUn6gw7DW5EWY9L; expires=Fri, 10-Sep-2032 14:09:11 GMT; domain=mediatoday.ru; path=/core; SameSite=None; Secure
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a4dc572a19b9c56ebbf770ce4cfa9375
51612d5215b1804b5b82d62571ccebae6d86f011
f9cd0e64f4073ae43b39d8abc7820cfe38d3690f74eb228dd9934bccad0d6a37

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F9CD0E64F4073AE43B39D8ABC7820CFE38D3690F74EB228DD9934BCCAD0D6A37"
Last-Modified: Sun, 11 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5155
Expires: Tue, 13 Sep 2022 15:35:06 GMT
Date: Tue, 13 Sep 2022 14:09:11 GMT
Connection: keep-alive

ocsp.globalsign.com/gsgccr3dvtlsca2020

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1414 bytes)
Hash
a1de19823d6788e0bc95c855ff1eb4c0
68717c5324835cb6675913a7af906e5321618f5a
c8b8f93ce2df3f63e076e1da5daaf411db6d3c7c44604bfe5588b01d4f2b92a9

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sat, 17 Sep 2022 10:10:04 GMT
ETag: "68717c5324835cb6675913a7af906e5321618f5a"
Last-Modified: Tue, 13 Sep 2022 10:10:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2520
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a17591cb0ab4ee-OSL

ocsp.globalsign.com/gsrsaovsslca2018

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
c0ef404323f467f66fb0b020369c7815
dbf30ff077bb750f346932a699fe92e8cdf68ce7
794021da26e54a54a8a9ae4ea483edde091349c4f54d25af50a8899cd8a5bdd8

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 17 Sep 2022 11:10:08 GMT
ETag: "dbf30ff077bb750f346932a699fe92e8cdf68ce7"
Last-Modified: Tue, 13 Sep 2022 11:10:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1761
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a175928929b51d-OSL

ocsp.globalsign.com/gsrsaovsslca2018

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
c0ef404323f467f66fb0b020369c7815
dbf30ff077bb750f346932a699fe92e8cdf68ce7
794021da26e54a54a8a9ae4ea483edde091349c4f54d25af50a8899cd8a5bdd8

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 17 Sep 2022 11:10:08 GMT
ETag: "dbf30ff077bb750f346932a699fe92e8cdf68ce7"
Last-Modified: Tue, 13 Sep 2022 11:10:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1761
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a1759289480b39-OSL

st6-21.vk.com/css/al/widgets.47486d37242644617dbc.css

95.142.206.1

200 OK

4.0 kB

URL HTTP/2
st6-21.vk.com/css/al/widgets.47486d37242644617dbc.css
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (27076)
Size
4.0 kB (4044 bytes)
Hash
25ff56013dbef0968a1cc9fc65fee8b4
0ae4ee6717f8f06a0e60d9dbce6291516edaa111
6914974b8d56dad2a5f13e7ce971a98b9199d740cdf8845ae095b4bf57836dc8

HTTP Headers

GET /css/al/widgets.47486d37242644617dbc.css HTTP/1.1
Host: st6-21.vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/css
content-length: 4044
last-modified: Fri, 17 Jun 2022 10:18:50 GMT
etag: "62ac550a-fcc"
content-encoding: br
expires: Sat, 17 Sep 2022 14:09:11 GMT
cache-control: max-age=345600
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
x-frontend: front6-21
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
06b01706be34b7cc15ad64518983d29d
70ff86d6a0af580dec4f75339f0fc402156c2f2e
b0289bdac2018705c1368ee774a13956393c259844edd9c3617aa3698513d78c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0289BDAC2018705C1368EE774A13956393C259844EDD9C3617AA3698513D78C"
Last-Modified: Mon, 12 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13603
Expires: Tue, 13 Sep 2022 17:55:55 GMT
Date: Tue, 13 Sep 2022 14:09:12 GMT
Connection: keep-alive

cs.agency2.ru/p?ssp=sp&uid=0100007F078F20639100723102B773C3

23.111.107.44

301 Moved Permanently

0 B

URL HTTP/1.1
cs.agency2.ru/p?ssp=sp&uid=0100007F078F20639100723102B773C3
IP
23.111.107.44:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p?ssp=sp&uid=0100007F078F20639100723102B773C3 HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=fbb5dacb-abb0-4c40-9b0b-e5348b8f38a4
Set-Cookie: uuid=fbb5dacb-abb0-4c40-9b0b-e5348b8f38a4; expires=Mon, 04 Sep 2023 14:09:12 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44

sync.bumlam.com/?src=sap1&s_data=CAIQARiHnoKZBmIgMDEwMDAwN0YwNzhGMjA2MzkxMDA3MjMxMDJCNzczQzOiARCkUze0M20R7YbgACWQwGR8

31.172.81.172

200 OK

0 B

URL HTTP/1.1
sync.bumlam.com/?src=sap1&s_data=CAIQARiHnoKZBmIgMDEwMDAwN0YwNzhGMjA2MzkxMDA3MjMxMDJCNzczQzOiARCkUze0M20R7YbgACWQwGR8
IP
31.172.81.172:0
ASN
#44066 diva-e Datacenters GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?src=sap1&s_data=CAIQARiHnoKZBmIgMDEwMDAwN0YwNzhGMjA2MzkxMDA3MjMxMDJCNzczQzOiARCkUze0M20R7YbgACWQwGR8 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiRhNDUzMzdiNC0zMzZkLTExZWQtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRhNDUzMzdiNC0zMzZkLTExZWQtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Mon, 08 Sep 2042 14:09:12 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
3113864d4ed50fd5d862229d9415edbd
612ffc4a37fd67dd5cb0d2debed7b79a6f19a0d9
25ee53c50bccf269b78a61568ac145cac37704fa106fb9e82d1d6c159f965c6d

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 17 Sep 2022 10:22:05 GMT
ETag: "612ffc4a37fd67dd5cb0d2debed7b79a6f19a0d9"
Last-Modified: Tue, 13 Sep 2022 10:22:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1695
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a175933b02b4f3-OSL

exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D

94.130.13.220

301 Moved Permanently

115 B

URL HTTP/2
exchange.buzzoola.com/cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D
IP
94.130.13.220:0
ASN
#24940 Hetzner Online GmbH

File type
HTML document, ASCII text
Size
115 B (115 bytes)
Hash
b444d24a88bad413f958629c10a6d124
9f90a5f6152269a2b68bf1104204546ebbea6d9d
6ce6997fdf99ac35f7aa75624f54e868ed47405ed68c8ef915ebcb73d9cf7fa2

HTTP Headers

GET /cookiesync/redirect/sape?redirect_url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D126%26euid%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: text/html; charset=utf-8
content-length: 115
location: https://www.acint.net/match?dp=126&euid=4bf91965-50a7-4583-6503-330be43e512d
serverid: TODO
X-Firefox-Spdy: h2

i.mycdn.me/i?r=AyH4iRPQ2q0otWIFepML2LxRDF9zmR2JTODxGTjzgoTUKQ

217.20.152.213

200 OK

448 B

URL HTTP/2
i.mycdn.me/i?r=AyH4iRPQ2q0otWIFepML2LxRDF9zmR2JTODxGTjzgoTUKQ
IP
217.20.152.213:0
ASN
#47764 Mail.Ru LLC

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
448 B (448 bytes)
Hash
9048450cf95bfba267abfaab7d74b4b1
9d2f3a8d67801947156316c4a88859b36ef950e2
9c53cbc6a01363d06a672333ad1baa7985442a3d2beb724ddf06408d34fdf514

HTTP Headers

GET /i?r=AyH4iRPQ2q0otWIFepML2LxRDF9zmR2JTODxGTjzgoTUKQ HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.ok.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: apache
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/webp
content-length: 448
accept-ranges: bytes
last-modified: Fri, 15 Jul 2022 14:09:12 GMT
expires: Sat, 10 Jun 2023 14:09:12 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

i.mycdn.me/i?r=AzExTCcIQuhnRIX9gBwt8KAM1HyfBCd6YSlkqZLTMfirBUf2Ogbu0q6XUs9YwmoV134&fn=sqr_50

217.20.152.213

200 OK

2.3 kB

URL HTTP/2
i.mycdn.me/i?r=AzExTCcIQuhnRIX9gBwt8KAM1HyfBCd6YSlkqZLTMfirBUf2Ogbu0q6XUs9YwmoV134&fn=sqr_50
IP
217.20.152.213:0
ASN
#47764 Mail.Ru LLC

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 64x64, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
2.3 kB (2290 bytes)
Hash
0b7ab3bb6979f55d78915a82e22a2699
7dc769e89a190dfee6d704e728bfd3139dc0febd
0ab87a4d93ecd0e1c04cf34896f299aacd4773c009b659e55906538ae9a60abe

HTTP Headers

GET /i?r=AzExTCcIQuhnRIX9gBwt8KAM1HyfBCd6YSlkqZLTMfirBUf2Ogbu0q6XUs9YwmoV134&fn=sqr_50 HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.ok.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: apache
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/webp
content-length: 2290
accept-ranges: bytes
last-modified: Fri, 15 Jul 2022 14:09:12 GMT
expires: Sat, 10 Jun 2023 14:09:12 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

i.mycdn.me/i?r=AyH4iRPQ2q0otWIFepML2LxR0zCyNu2mcBLdvtKNqoAQng&fn=sqr_50

217.20.152.213

200 OK

1.2 kB

URL HTTP/2
i.mycdn.me/i?r=AyH4iRPQ2q0otWIFepML2LxR0zCyNu2mcBLdvtKNqoAQng&fn=sqr_50
IP
217.20.152.213:0
ASN
#47764 Mail.Ru LLC

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 64x64, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.2 kB (1238 bytes)
Hash
71178bbb7a7281cd58593742d6097ae7
6e4c584591d6055c35166df248067e8a8f6258f1
3c2f1a698565c60b500c62c824cf431e0cbc7f289b410b94b5afa262ef578835

HTTP Headers

GET /i?r=AyH4iRPQ2q0otWIFepML2LxR0zCyNu2mcBLdvtKNqoAQng&fn=sqr_50 HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.ok.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: apache
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/webp
content-length: 1238
accept-ranges: bytes
last-modified: Fri, 15 Jul 2022 14:09:12 GMT
expires: Sat, 10 Jun 2023 14:09:12 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

i.mycdn.me/i?r=AyH4iRPQ2q0otWIFepML2LxR0p10Ip48psvUsxQ4vSRsmg&fn=sqr_50

217.20.152.213

200 OK

1.4 kB

URL HTTP/2
i.mycdn.me/i?r=AyH4iRPQ2q0otWIFepML2LxR0p10Ip48psvUsxQ4vSRsmg&fn=sqr_50
IP
217.20.152.213:0
ASN
#47764 Mail.Ru LLC

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 64x64, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.4 kB (1376 bytes)
Hash
099c3c7c7951fea62c3b901a5a34eda4
fa5e81faaf06b67d17fce30123d5439ed0966a77
e0a545937d8266832a8a47d69c82c1caf838c3f1c11d17c11a0a373573852446

HTTP Headers

GET /i?r=AyH4iRPQ2q0otWIFepML2LxR0p10Ip48psvUsxQ4vSRsmg&fn=sqr_50 HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.ok.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: apache
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/webp
content-length: 1376
accept-ranges: bytes
last-modified: Fri, 15 Jul 2022 14:09:12 GMT
expires: Sat, 10 Jun 2023 14:09:12 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

i.mycdn.me/i?r=AzExTCcIQuhnRIX9gBwt8KAMpFCklsZmOOB3ZFXrKfjAwOlcZv4kcN-rt3hGXq_1kmo&fn=sqr_50

217.20.152.213

200 OK

982 B

URL HTTP/2
i.mycdn.me/i?r=AzExTCcIQuhnRIX9gBwt8KAMpFCklsZmOOB3ZFXrKfjAwOlcZv4kcN-rt3hGXq_1kmo&fn=sqr_50
IP
217.20.152.213:0
ASN
#47764 Mail.Ru LLC

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 64x64, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
982 B (982 bytes)
Hash
90468b9af289c4dbc87e65a8febc0425
e0bb36672cd69482ea5ddc25a57126ea184adeea
9a9c82905ae7254d0233d2ec206b16b9d136c73b15042609b1fffecd6576ed46

HTTP Headers

GET /i?r=AzExTCcIQuhnRIX9gBwt8KAMpFCklsZmOOB3ZFXrKfjAwOlcZv4kcN-rt3hGXq_1kmo&fn=sqr_50 HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.ok.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: apache
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/webp
content-length: 982
accept-ranges: bytes
last-modified: Fri, 15 Jul 2022 14:09:12 GMT
expires: Sat, 10 Jun 2023 14:09:12 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

i.mycdn.me/i?r=AyH4iRPQ2q0otWIFepML2LxRigeAdySilDL7EuoDJ3smUg&fn=sqr_50

217.20.152.213

200 OK

2.0 kB

URL HTTP/2
i.mycdn.me/i?r=AyH4iRPQ2q0otWIFepML2LxRigeAdySilDL7EuoDJ3smUg&fn=sqr_50
IP
217.20.152.213:0
ASN
#47764 Mail.Ru LLC

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 64x64, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
2.0 kB (2012 bytes)
Hash
2bc6075563a530071c678ab50b9eb8fa
04a1601fab962a6cedeef8f4cc3c4c85e462e688
cb55ca6bf904be47732faffa505be7755f07fbcd4bc95b49e39342f93909479f

HTTP Headers

GET /i?r=AyH4iRPQ2q0otWIFepML2LxRigeAdySilDL7EuoDJ3smUg&fn=sqr_50 HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.ok.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: apache
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/webp
content-length: 2012
accept-ranges: bytes
last-modified: Fri, 15 Jul 2022 14:09:12 GMT
expires: Sat, 10 Jun 2023 14:09:12 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

i.mycdn.me/i?r=AyH4iRPQ2q0otWIFepML2LxRe-hcz2b2KaPo2-wqSgAu_g&fn=sqr_50

217.20.152.213

200 OK

1.8 kB

URL HTTP/2
i.mycdn.me/i?r=AyH4iRPQ2q0otWIFepML2LxRe-hcz2b2KaPo2-wqSgAu_g&fn=sqr_50
IP
217.20.152.213:0
ASN
#47764 Mail.Ru LLC

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 64x64, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.8 kB (1830 bytes)
Hash
2e1257b40a801bf130142c29f44dca3c
5d3c1208875b4780899c853d1546b12793583a8f
e18019cede1b87c3cc13349f703c387a8b2f0348b7ac7ddb7e84dbbfe0bab88b

HTTP Headers

GET /i?r=AyH4iRPQ2q0otWIFepML2LxRe-hcz2b2KaPo2-wqSgAu_g&fn=sqr_50 HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.ok.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: apache
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/webp
content-length: 1830
accept-ranges: bytes
last-modified: Fri, 15 Jul 2022 14:09:12 GMT
expires: Sat, 10 Jun 2023 14:09:12 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

i.mycdn.me/i?r=AzExTCcIQuhnRIX9gBwt8KAMxy7zmJqHc6kFamGAJ2H89eD3UZdxdFzNpqosxgNlGeo&fn=sqr_50

217.20.152.213

200 OK

1.2 kB

URL HTTP/2
i.mycdn.me/i?r=AzExTCcIQuhnRIX9gBwt8KAMxy7zmJqHc6kFamGAJ2H89eD3UZdxdFzNpqosxgNlGeo&fn=sqr_50
IP
217.20.152.213:0
ASN
#47764 Mail.Ru LLC

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 64x64, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.2 kB (1220 bytes)
Hash
324dec21dde6ea23dd2e2eede2fb8de4
bb2a80950e84c9b601d3290dc09fbd64e6f79c9f
534ecb549e19f76e56fef94b040ef2452fc1f1c0ba4f7209a19ebeadd6276cc4

HTTP Headers

GET /i?r=AzExTCcIQuhnRIX9gBwt8KAMxy7zmJqHc6kFamGAJ2H89eD3UZdxdFzNpqosxgNlGeo&fn=sqr_50 HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.ok.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: apache
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/webp
content-length: 1220
accept-ranges: bytes
last-modified: Fri, 15 Jul 2022 14:09:12 GMT
expires: Sat, 10 Jun 2023 14:09:12 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.itweek.ru/ad/banners/default.php?w=468&h=60&banner_random=78435

89.108.64.185

200 OK

509 B

URL HTTP/1.1
www.itweek.ru/ad/banners/default.php?w=468&h=60&banner_random=78435
IP
89.108.64.185:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (509), with no line terminators
Size
509 B (509 bytes)
Hash
02fd50215578fbdba69183695ec50442
cd9add702e747254126f01a2bb535279c6af63c1
880fd2bb5897cb0a59ae7897feea75225abd0cb97d963afdc20b02a9f3781a0b

HTTP Headers

GET /ad/banners/default.php?w=468&h=60&banner_random=78435 HTTP/1.1
Host: www.itweek.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: text/html; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (3222b1348a34a01b9fa843f3be1fd542)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=hqkFfijOIu1HAEgZFl7Yu4PloWqu5j1g; path=/; domain=itweek.ru; HttpOnly
itWeek_BANNERS=1_147_1_20092022; expires=Fri, 08-Sep-2023 14:09:12 GMT; Max-Age=31104000; path=/; domain=itweek.ru; secure

0100007f078f20639100723102b773c3-sp.ops.beeline.ru/p?ssp=sp&id=0100007F078F20639100723102B773C3

37.9.245.57

301 Moved Permanently

0 B

URL HTTP/2
0100007f078f20639100723102b773c3-sp.ops.beeline.ru/p?ssp=sp&id=0100007F078F20639100723102B773C3
IP
37.9.245.57:0
ASN
#16345 PVimpelCom

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p?ssp=sp&id=0100007F078F20639100723102B773C3 HTTP/1.1
Host: 0100007f078f20639100723102b773c3-sp.ops.beeline.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 13 Sep 2022 14:09:12 GMT
content-length: 0
location: https://www.acint.net/match?dp=111&euid=5fdc7269-335b-4e0b-8cf4-e1f6170859a2
access-control-allow-origin: *
cache-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: BeeAID=5fdc7269-335b-4e0b-8cf4-e1f6170859a2; expires=Mon, 04 Sep 2023 14:09:12 GMT; domain=ops.beeline.ru; path=/; secure; SameSite=None
access-control-allow-credentials: true, true
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS, GET, HEAD, POST, OPTIONS, PUT, DELETE
access-control-allow-headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
x-route: http://upstream_cookiesync
x-host: 192.168.152.38
X-Firefox-Spdy: h2

i.mycdn.me/i?r=AzExTCcIQuhnRIX9gBwt8KAMbnqg8mT03oz6EEKKn4Qk82h2oV7Zwerf2Ewkax0MCg0&fn=sqr_50

217.20.152.213

200 OK

1.4 kB

URL HTTP/2
i.mycdn.me/i?r=AzExTCcIQuhnRIX9gBwt8KAMbnqg8mT03oz6EEKKn4Qk82h2oV7Zwerf2Ewkax0MCg0&fn=sqr_50
IP
217.20.152.213:0
ASN
#47764 Mail.Ru LLC

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 64x64, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.4 kB (1366 bytes)
Hash
554328074c27ba4f0b5f9e2f9bb50c10
be64b0dd93f198bedda708e47aa90d33eca0b5fb
4dbbce3941f0be609eaf446e102705ae59cf77de671253b71059934f967d59c0

HTTP Headers

GET /i?r=AzExTCcIQuhnRIX9gBwt8KAMbnqg8mT03oz6EEKKn4Qk82h2oV7Zwerf2Ewkax0MCg0&fn=sqr_50 HTTP/1.1
Host: i.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.ok.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: apache
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/webp
content-length: 1366
accept-ranges: bytes
last-modified: Fri, 15 Jul 2022 14:09:12 GMT
expires: Sat, 10 Jun 2023 14:09:12 GMT
cache-control: private, max-age=100000000
etag: "686897696a7c876b7e"
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

www.itweek.ru/ad/banners/default.php?w=468&h=60&banner_random=47391

89.108.64.185

200 OK

509 B

URL HTTP/1.1
www.itweek.ru/ad/banners/default.php?w=468&h=60&banner_random=47391
IP
89.108.64.185:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (509), with no line terminators
Size
509 B (509 bytes)
Hash
6939fd6fa3bc75e4676ca2c263feadcc
b8903cb6b959a59dd5680ce4fbd902b74797d5f5
8769ce1ea58b3c3d22ac94e19e459d989cbe3b280eed6298eca39c22269c80e4

HTTP Headers

GET /ad/banners/default.php?w=468&h=60&banner_random=47391 HTTP/1.1
Host: www.itweek.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iemag.ru/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: text/html; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (3222b1348a34a01b9fa843f3be1fd542)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=Mi1KZVBVfwGq2DwwiN3Utw6FDVmHmPpk; path=/; domain=itweek.ru; HttpOnly
itWeek_BANNERS=1_149_1_20092022; expires=Fri, 08-Sep-2023 14:09:12 GMT; Max-Age=31104000; path=/; domain=itweek.ru; secure

www.acint.net/match?dp=186&euid=fbb5dacb-abb0-4c40-9b0b-e5348b8f38a4

185.12.125.25

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=186&euid=fbb5dacb-abb0-4c40-9b0b-e5348b8f38a4
IP
185.12.125.25:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=186&euid=fbb5dacb-abb0-4c40-9b0b-e5348b8f38a4 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMgjwcxcgCRw3O3Av0+t0bNHqzJe3gW1KTqHr5lGZ61; cSyncDp7v2=1663078151; cSyncDp14v3=1663078151; cSyncDp17=1663078151; cSyncDp32=1663078151; cSyncDp45v3=1663078151; cSyncDp53=1663078151; cSyncDp54v2=1663078151; cSyncDp62=1663078151; cSyncDp67v2=1663078151; cSyncDp68=1663078151; cSyncDp71=1663078151; cSyncDp77=1663078151; cSyncDp84=1663078151; cSyncDp85=1663078151; cSyncDp95v3=1663078151; cSyncDp101=1663078151; cSyncDp104v2=1663078151; cSyncDp107=1663078151; cSyncDp110=1663078151; cSyncDp111v2=1663078151; cSyncDp112v2=1663078151; cSyncDp125v2=1663078151; cSyncDp126=1663078151; cSyncDp127=1663078151; cSyncDp129=1663078151; cSyncDp136v2=1663078151; cSyncDp138=1663078151; cSyncDp144=1663078151; cSyncDp146=1663078151; cSyncDp148=1663078151; cSyncDp149=1663078151; cSyncDp151=1663078151; cSyncDp179=1663078151; cSyncDp186=1663078151; cSyncDp221=1663078151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.acint.net/match?dp=126&euid=4bf91965-50a7-4583-6503-330be43e512d

185.12.125.25

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=126&euid=4bf91965-50a7-4583-6503-330be43e512d
IP
185.12.125.25:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=126&euid=4bf91965-50a7-4583-6503-330be43e512d HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMgjwcxcgCRw3O3Av0+t0bNHqzJe3gW1KTqHr5lGZ61; cSyncDp7v2=1663078151; cSyncDp14v3=1663078151; cSyncDp17=1663078151; cSyncDp32=1663078151; cSyncDp45v3=1663078151; cSyncDp53=1663078151; cSyncDp54v2=1663078151; cSyncDp62=1663078151; cSyncDp67v2=1663078151; cSyncDp68=1663078151; cSyncDp71=1663078151; cSyncDp77=1663078151; cSyncDp84=1663078151; cSyncDp85=1663078151; cSyncDp95v3=1663078151; cSyncDp101=1663078151; cSyncDp104v2=1663078151; cSyncDp107=1663078151; cSyncDp110=1663078151; cSyncDp111v2=1663078151; cSyncDp112v2=1663078151; cSyncDp125v2=1663078151; cSyncDp126=1663078151; cSyncDp127=1663078151; cSyncDp129=1663078151; cSyncDp136v2=1663078151; cSyncDp138=1663078151; cSyncDp144=1663078151; cSyncDp146=1663078151; cSyncDp148=1663078151; cSyncDp149=1663078151; cSyncDp151=1663078151; cSyncDp179=1663078151; cSyncDp186=1663078151; cSyncDp221=1663078151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

st.mycdn.me/res/css/prod/widget/widget_group.29fe6d97.css

217.20.152.226

200 OK

80 kB

URL HTTP/2
st.mycdn.me/res/css/prod/widget/widget_group.29fe6d97.css
IP
217.20.152.226:0
ASN
#47764 Mail.Ru LLC

File type
Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Size
80 kB (80292 bytes)
Hash
f580418f13422b591136bdb730cda805
1bebe5a179be28223ce7396bfe029aad5a4e715b
5052ee2626440ebd3bbf1c497e0652b29b700c0a454b96c0416af4ca9379cc5b

HTTP Headers

GET /res/css/prod/widget/widget_group.29fe6d97.css HTTP/1.1
Host: st.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://connect.ok.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: apache
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: text/css; charset=utf-8
content-length: 80292
last-modified: Mon, 05 Sep 2022 19:34:23 GMT
vary: Accept-Encoding
content-encoding: br
expires: Wed, 13 Sep 2023 14:09:12 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2

www.acint.net/match?dp=111&euid=5fdc7269-335b-4e0b-8cf4-e1f6170859a2

185.12.125.25

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=111&euid=5fdc7269-335b-4e0b-8cf4-e1f6170859a2
IP
185.12.125.25:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=111&euid=5fdc7269-335b-4e0b-8cf4-e1f6170859a2 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMgjwcxcgCRw3O3Av0+t0bNHqzJe3gW1KTqHr5lGZ61; cSyncDp7v2=1663078151; cSyncDp14v3=1663078151; cSyncDp17=1663078151; cSyncDp32=1663078151; cSyncDp45v3=1663078151; cSyncDp53=1663078151; cSyncDp54v2=1663078151; cSyncDp62=1663078151; cSyncDp67v2=1663078151; cSyncDp68=1663078151; cSyncDp71=1663078151; cSyncDp77=1663078151; cSyncDp84=1663078151; cSyncDp85=1663078151; cSyncDp95v3=1663078151; cSyncDp101=1663078151; cSyncDp104v2=1663078151; cSyncDp107=1663078151; cSyncDp110=1663078151; cSyncDp111v2=1663078151; cSyncDp112v2=1663078151; cSyncDp125v2=1663078151; cSyncDp126=1663078151; cSyncDp127=1663078151; cSyncDp129=1663078151; cSyncDp136v2=1663078151; cSyncDp138=1663078151; cSyncDp144=1663078151; cSyncDp146=1663078151; cSyncDp148=1663078151; cSyncDp149=1663078151; cSyncDp151=1663078151; cSyncDp179=1663078151; cSyncDp186=1663078151; cSyncDp221=1663078151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.itweek.ru/images/pcweek/css/banners.css

89.108.64.185

200 OK

303 B

URL HTTP/1.1
www.itweek.ru/images/pcweek/css/banners.css
IP
89.108.64.185:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
ASCII text
Size
303 B (303 bytes)
Hash
8e3c2ef4088a749e19f0a3021cdcce5d
6707be262036409df449cb49ff0daa2172de5ee9
3a20b1bb122bddd638ef3df430fa48a1852b702bacb0687a477e002d8a1a48a6

HTTP Headers

GET /images/pcweek/css/banners.css HTTP/1.1
Host: www.itweek.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.itweek.ru/ad/banners/default.php?w=468&h=60&banner_random=78435
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: text/css
Content-Length: 303
Last-Modified: Mon, 27 Jul 2020 16:26:56 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "5f1f0050-12f"
Accept-Ranges: bytes

www.itweek.ru/upload/bx/05f/05fa58341113c8c6026bd1b8011c4662.gif

89.108.64.185

200 OK

8.2 kB

URL HTTP/1.1
www.itweek.ru/upload/bx/05f/05fa58341113c8c6026bd1b8011c4662.gif
IP
89.108.64.185:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
GIF image data, version 89a, 468 x 60\012- data
Size
8.2 kB (8205 bytes)
Hash
948114242ecba70ffefc9873cf74319e
d4fc044a1e02df8a69a1831193da7f770bfffec6
e846f03f91709b18ea82b52b62d9ec1c1aad7a17b4c352d4d46ae0a8fc8c3ce7

HTTP Headers

GET /upload/bx/05f/05fa58341113c8c6026bd1b8011c4662.gif HTTP/1.1
Host: www.itweek.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.itweek.ru/ad/banners/default.php?w=468&h=60&banner_random=78435
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: image/gif
Content-Length: 8205
Last-Modified: Mon, 11 Jan 2021 17:06:03 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "5ffc857b-200d"
Accept-Ranges: bytes

www.itweek.ru/upload/bx/063/0636f283c3e29fc22af43bc9f6077235.gif

89.108.64.185

200 OK

7.4 kB

URL HTTP/1.1
www.itweek.ru/upload/bx/063/0636f283c3e29fc22af43bc9f6077235.gif
IP
89.108.64.185:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type
GIF image data, version 89a, 468 x 60\012- data
Size
7.4 kB (7400 bytes)
Hash
f298043151fd64068042f3655af90650
750aa365e8fe2b88c4c0f6c64cfeac22a28063dd
a126eadba135b54070144c59a227ba45f1f284e838941b3a923ba14743ba4ecb

HTTP Headers

GET /upload/bx/063/0636f283c3e29fc22af43bc9f6077235.gif HTTP/1.1
Host: www.itweek.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.itweek.ru/ad/banners/default.php?w=468&h=60&banner_random=47391
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: image/gif
Content-Length: 7400
Last-Modified: Mon, 01 Nov 2021 18:15:39 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "61802ecb-1ce8"
Accept-Ranges: bytes

status.geotrust.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
status.geotrust.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
2e7e146a55944c0a985558b875816c3a
457ff2085752aa6c7135a96627032471c989f9f1
ecba6ce668a553bf18a50eb64a3a06a52fab2be80ce16facea8d22ceb0297db6

HTTP Headers

POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4748
Cache-Control: max-age=91723
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:09:12 GMT
Etag: "631f3fc7-117"
Expires: Wed, 14 Sep 2022 15:37:55 GMT
Last-Modified: Mon, 12 Sep 2022 14:18:47 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279

st.mycdn.me/res/i/p/toolbar/logo_ok.png

217.20.152.226

200 OK

429 B

URL HTTP/2
st.mycdn.me/res/i/p/toolbar/logo_ok.png
IP
217.20.152.226:0
ASN
#47764 Mail.Ru LLC

File type
PNG image data, 16 x 29, 8-bit/color RGBA, non-interlaced\012- data
Size
429 B (429 bytes)
Hash
84220b460b859659c0d827d02faa2c81
7c91cd844ad14c9ddc3724e5a283367421e45c04
ed4c61b09eefd6c1bbeea47a520ddaed52c2e5fc4a1670cd260f8ad9fa58dc2d

HTTP Headers

GET /res/i/p/toolbar/logo_ok.png HTTP/1.1
Host: st.mycdn.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.mycdn.me/res/css/prod/widget/widget_group.29fe6d97.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: apache
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/png
content-length: 429
last-modified: Wed, 23 Mar 2022 12:18:40 GMT
vary: Accept-Encoding
expires: Wed, 13 Sep 2023 14:09:12 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

17c3a75a-86bb-4b32-9446-653bac17e008.sync.upravel.com/sape/sync?ud_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyIsImh0dHBzOi8vd3d3LmFjaW50Lm5ldC8iXX19

144.76.138.28

302 Found

0 B

URL HTTP/2
17c3a75a-86bb-4b32-9446-653bac17e008.sync.upravel.com/sape/sync?ud_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyIsImh0dHBzOi8vd3d3LmFjaW50Lm5ldC8iXX19
IP
144.76.138.28:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sape/sync?ud_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyIsImh0dHBzOi8vd3d3LmFjaW50Lm5ldC8iXX19 HTTP/1.1
Host: 17c3a75a-86bb-4b32-9446-653bac17e008.sync.upravel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: session_tptc=1663078151614; user_id=17c3a75a-86bb-4b32-9446-653bac17e008
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: nginx
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=17c3a75a-86bb-4b32-9446-653bac17e008;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=17c3a75a-86bb-4b32-9446-653bac17e008;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/match?dp=71&euid=17c3a75a-86bb-4b32-9446-653bac17e008
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2

vk.com/images/camera_50.png

87.240.132.72

200 OK

570 B

URL HTTP/2
vk.com/images/camera_50.png
IP
87.240.132.72:0
ASN
#47541 VKontakte Ltd

File type
PNG image data, 50 x 50, 8-bit/color RGB, non-interlaced\012- data
Size
570 B (570 bytes)
Hash
b17a9dcdcc1e5028061e3c769a736e0d
55a0cff39baf55044b77888f5503925319279b38
e3b9c102be54a21fc534271c42ff116be61325240fac9649023cc6adf41d8e72

HTTP Headers

GET /images/camera_50.png HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/widget_community.php?app=4579236&width=200px&_ver=1&gid=25763973&mode=0&color1=FFFFFF&color2=2B587A&color3=5B7FA6&class_name=&height=200&url=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&referrer=&title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC&183372e80ca
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/png
content-length: 570
last-modified: Tue, 22 Sep 2020 20:29:55 GMT
etag: "5f6a5ec3-23a"
expires: Tue, 20 Sep 2022 14:09:12 GMT
cache-control: max-age=604800
accept-ranges: bytes
X-Firefox-Spdy: h2

www.acint.net/match?dp=71&euid=17c3a75a-86bb-4b32-9446-653bac17e008

185.12.125.25

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=71&euid=17c3a75a-86bb-4b32-9446-653bac17e008
IP
185.12.125.25:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=71&euid=17c3a75a-86bb-4b32-9446-653bac17e008 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMgjwcxcgCRw3O3Av0+t0bNHqzJe3gW1KTqHr5lGZ61; cSyncDp7v2=1663078151; cSyncDp14v3=1663078151; cSyncDp17=1663078151; cSyncDp32=1663078151; cSyncDp45v3=1663078151; cSyncDp53=1663078151; cSyncDp54v2=1663078151; cSyncDp62=1663078151; cSyncDp67v2=1663078151; cSyncDp68=1663078151; cSyncDp71=1663078151; cSyncDp77=1663078151; cSyncDp84=1663078151; cSyncDp85=1663078151; cSyncDp95v3=1663078151; cSyncDp101=1663078151; cSyncDp104v2=1663078151; cSyncDp107=1663078151; cSyncDp110=1663078151; cSyncDp111v2=1663078151; cSyncDp112v2=1663078151; cSyncDp125v2=1663078151; cSyncDp126=1663078151; cSyncDp127=1663078151; cSyncDp129=1663078151; cSyncDp136v2=1663078151; cSyncDp138=1663078151; cSyncDp144=1663078151; cSyncDp146=1663078151; cSyncDp148=1663078151; cSyncDp149=1663078151; cSyncDp151=1663078151; cSyncDp179=1663078151; cSyncDp186=1663078151; cSyncDp221=1663078151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
34e44540355fc4121a1d38bf2993984e
070a44b9388bac1e6f3475c2ebd1a312181110ef
77b5f1a8a1f05b2bb89d13322f539c0ce9849b4b8afaf8d1d6a547ffefbe98d6

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 17 Sep 2022 11:18:10 GMT
ETag: "070a44b9388bac1e6f3475c2ebd1a312181110ef"
Last-Modified: Tue, 13 Sep 2022 11:18:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1633
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a17595e868b512-OSL

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
34e44540355fc4121a1d38bf2993984e
070a44b9388bac1e6f3475c2ebd1a312181110ef
77b5f1a8a1f05b2bb89d13322f539c0ce9849b4b8afaf8d1d6a547ffefbe98d6

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 17 Sep 2022 11:18:10 GMT
ETag: "070a44b9388bac1e6f3475c2ebd1a312181110ef"
Last-Modified: Tue, 13 Sep 2022 11:18:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1633
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a17595ff19b4f3-OSL

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
34e44540355fc4121a1d38bf2993984e
070a44b9388bac1e6f3475c2ebd1a312181110ef
77b5f1a8a1f05b2bb89d13322f539c0ce9849b4b8afaf8d1d6a547ffefbe98d6

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 17 Sep 2022 11:18:10 GMT
ETag: "070a44b9388bac1e6f3475c2ebd1a312181110ef"
Last-Modified: Tue, 13 Sep 2022 11:18:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1633
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a17595ff1eb4f3-OSL

sun6-20.userapi.com/s/v1/if1/5tRAQjXx_ELhK5zlHcC2cVh6OiIUVPG_v7y0aMnW22Veu_3rh_e9fiPP9mfuhPha8Krpsw.jpg?size=50x50&quality=96&crop=361,0,1709,1709&ava=1

95.142.206.0

200 OK

3.2 kB

URL HTTP/2
sun6-20.userapi.com/s/v1/if1/5tRAQjXx_ELhK5zlHcC2cVh6OiIUVPG_v7y0aMnW22Veu_3rh_e9fiPP9mfuhPha8Krpsw.jpg?size=50x50&quality=96&crop=361,0,1709,1709&ava=1
IP
95.142.206.0:0
ASN
#60476 My.com B.V.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size
3.2 kB (3170 bytes)
Hash
7e85a1e14c2f8beae1a01ff5c6cf4d87
d24b5bd0e8d9ab6f324637d034f36aaba17cf9b3
2d408198d367164d35d460e7a478f0ccd69db66d7e8ceb39ac9daaefda774444

HTTP Headers

GET /s/v1/if1/5tRAQjXx_ELhK5zlHcC2cVh6OiIUVPG_v7y0aMnW22Veu_3rh_e9fiPP9mfuhPha8Krpsw.jpg?size=50x50&quality=96&crop=361,0,1709,1709&ava=1 HTTP/1.1
Host: sun6-20.userapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/jpeg
content-length: 3170
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
x-imp: 510232
expires: Thu, 13 Oct 2022 14:09:12 GMT
cache-control: max-age=2592000
x-frontend: front6-20
access-control-expose-headers: X-Frontend
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
strict-transport-security: max-age=15768000
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp2.globalsign.com/gsorganizationvalsha2g2

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1459 bytes)
Hash
de76084189df71aa57a560054aa39197
78bc64213f5129919e99acd1b434c49dc5e9c1c5
743f95b86b22cf6f0545d7c1f8d8e536688a6fbba94358815f729d199963ed4a

HTTP Headers

POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 17 Sep 2022 10:42:37 GMT
ETag: "78bc64213f5129919e99acd1b434c49dc5e9c1c5"
Last-Modified: Tue, 13 Sep 2022 10:42:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2369
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a1759618a4b512-OSL

sun6-21.userapi.com/s/v1/ig2/c4fnL0ZM_itBkIRrQ0yCsKRp31NwUNAf7AQ4FulCUby-8Ck2qE7r6lZdGxyVQbv2LmIO7Z-b-soF8eGAvdeHjCGo.jpg?size=50x50&quality=96&crop=403,295,905,905&ava=1

95.142.206.1

200 OK

3.0 kB

URL HTTP/2
sun6-21.userapi.com/s/v1/ig2/c4fnL0ZM_itBkIRrQ0yCsKRp31NwUNAf7AQ4FulCUby-8Ck2qE7r6lZdGxyVQbv2LmIO7Z-b-soF8eGAvdeHjCGo.jpg?size=50x50&quality=96&crop=403,295,905,905&ava=1
IP
95.142.206.1:0
ASN
#60476 My.com B.V.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size
3.0 kB (2967 bytes)
Hash
b46afa9dd181f1060d86133c74c78b25
7a712a35cec982a9ab1f64b45c98471bd4b053a9
4e3297a5a2d44db6c7b2117e3bd86a04c27d1a8b93c6e9bbc60eb64bed80511a

HTTP Headers

GET /s/v1/ig2/c4fnL0ZM_itBkIRrQ0yCsKRp31NwUNAf7AQ4FulCUby-8Ck2qE7r6lZdGxyVQbv2LmIO7Z-b-soF8eGAvdeHjCGo.jpg?size=50x50&quality=96&crop=403,295,905,905&ava=1 HTTP/1.1
Host: sun6-21.userapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/jpeg
content-length: 2967
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
x-imp: 816318
expires: Thu, 13 Oct 2022 14:09:12 GMT
cache-control: max-age=2592000
x-frontend: front6-21
access-control-expose-headers: X-Frontend
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
strict-transport-security: max-age=15768000
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2

sun6-22.userapi.com/s/v1/if2/HVUPn0S2ytyW4hIW-vwmyDfTfLs2TFLLZ70_ll5T6Th14J_iJuswToQQC3iYWXkutjguJQog5sYL3EwtviMOPBLk.jpg?size=50x50&quality=96&crop=358,210,597,597&ava=1

95.142.206.2

200 OK

3.1 kB

URL HTTP/2
sun6-22.userapi.com/s/v1/if2/HVUPn0S2ytyW4hIW-vwmyDfTfLs2TFLLZ70_ll5T6Th14J_iJuswToQQC3iYWXkutjguJQog5sYL3EwtviMOPBLk.jpg?size=50x50&quality=96&crop=358,210,597,597&ava=1
IP
95.142.206.2:0
ASN
#60476 My.com B.V.

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Size
3.1 kB (3061 bytes)
Hash
35e289037f6eefcd3537c590ef37df2a
727f5475211b0bc88192ad3f535cd5adf1b409f1
28753be29b8852c9e9a6253ccc896b701248beb21da20cf2aebd6af3c431b749

HTTP Headers

GET /s/v1/if2/HVUPn0S2ytyW4hIW-vwmyDfTfLs2TFLLZ70_ll5T6Th14J_iJuswToQQC3iYWXkutjguJQog5sYL3EwtviMOPBLk.jpg?size=50x50&quality=96&crop=358,210,597,597&ava=1 HTTP/1.1
Host: sun6-22.userapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/jpeg
content-length: 3061
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
x-imp: 850606
expires: Thu, 13 Oct 2022 14:09:12 GMT
cache-control: max-age=2592000
x-frontend: front6-22
access-control-expose-headers: X-Frontend
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
strict-transport-security: max-age=15768000
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2

sun9-14.userapi.com/c4430/g25763973/e_2929d32b.jpg

87.240.185.141

200 OK

1.4 kB

URL HTTP/2
sun9-14.userapi.com/c4430/g25763973/e_2929d32b.jpg
IP
87.240.185.141:0
ASN
#47541 VKontakte Ltd

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 93", baseline, precision 8, 50x50, components 3\012- data
Size
1.4 kB (1378 bytes)
Hash
cfa9d4c486423c6818ae3d4013c9b5b0
97850d71ad9eddcd5b3160fcf1d8a39aa4639818
a76366b9bf6a33c26226609deeb7910d33fb488b1d663e25641448e70b1abea9

HTTP Headers

GET /c4430/g25763973/e_2929d32b.jpg HTTP/1.1
Host: sun9-14.userapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: kittenx
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/jpeg
content-length: 1378
last-modified: Mon, 04 Apr 2011 16:35:54 GMT
etag: "4d99f36a-562"
expires: Thu, 13 Oct 2022 14:09:12 GMT
cache-control: max-age=2592000
x-frontend: front224305
access-control-expose-headers: X-Frontend
strict-transport-security: max-age=15768000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-allow-headers: X-Quic
accept-ranges: bytes
X-Firefox-Spdy: h2

top-fwz1.mail.ru/counter?js=13;id=2685520;u=https%3A//www.iemag.ru/columns/detail.php%3FID%3D31796;st=1663078139352;pid=0;title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC;s=1280*1024;vp=115*24;touch=0;hds=1;frame=1;flash=;sid=278c5ce48f36e30c;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1663078139652%3A1663078139658%3A1%3Aa9cb184fb80fbf69b0fc9a7bfdbab7cd;visible=true;_=0.5738892994848479

95.163.52.67

302 Found

0 B

URL HTTP/2
top-fwz1.mail.ru/counter?js=13;id=2685520;u=https%3A//www.iemag.ru/columns/detail.php%3FID%3D31796;st=1663078139352;pid=0;title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC;s=1280*1024;vp=115*24;touch=0;hds=1;frame=1;flash=;sid=278c5ce48f36e30c;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1663078139652%3A1663078139658%3A1%3Aa9cb184fb80fbf69b0fc9a7bfdbab7cd;visible=true;_=0.5738892994848479
IP
95.163.52.67:0
ASN
#47764 Mail.Ru LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /counter?js=13;id=2685520;u=https%3A//www.iemag.ru/columns/detail.php%3FID%3D31796;st=1663078139352;pid=0;title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC;s=1280*1024;vp=115*24;touch=0;hds=1;frame=1;flash=;sid=278c5ce48f36e30c;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1663078139652%3A1663078139658%3A1%3Aa9cb184fb80fbf69b0fc9a7bfdbab7cd;visible=true;_=0.5738892994848479 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: nginx
date: Tue, 13 Sep 2022 14:09:12 GMT
content-length: 0
location: https://top-fwz1.mail.ru/counter2?js=13;id=2685520;u=https%3A//www.iemag.ru/columns/detail.php%3FID%3D31796;st=1663078139352;pid=0;title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC;s=1280*1024;vp=115*24;touch=0;hds=1;frame=1;flash=;sid=278c5ce48f36e30c;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1663078139652%3A1663078139658%3A1%3Aa9cb184fb80fbf69b0fc9a7bfdbab7cd;visible=true;_=0.5738892994848479
set-cookie: FTID=1RMYgQ0tkIIC:1663078152:2685520:::; path=/; expires=Thu, 14-Sep-23 14:09:12 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2

top-fwz1.mail.ru/counter?js=13;id=2685520;u=https%3A//www.iemag.ru/columns/detail.php%3FID%3D31796;st=1663078139531;pid=0;title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC;s=1280*1024;vp=200*216;touch=0;hds=1;frame=1;flash=;sid=55de9778e1d1e63e;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1663078139665%3A1663078139667%3A1%3Ab584789b6e9d57f2bafa8f574943c028;visible=true;_=0.7912168019028799

95.163.52.67

302 Found

0 B

URL HTTP/2
top-fwz1.mail.ru/counter?js=13;id=2685520;u=https%3A//www.iemag.ru/columns/detail.php%3FID%3D31796;st=1663078139531;pid=0;title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC;s=1280*1024;vp=200*216;touch=0;hds=1;frame=1;flash=;sid=55de9778e1d1e63e;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1663078139665%3A1663078139667%3A1%3Ab584789b6e9d57f2bafa8f574943c028;visible=true;_=0.7912168019028799
IP
95.163.52.67:0
ASN
#47764 Mail.Ru LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /counter?js=13;id=2685520;u=https%3A//www.iemag.ru/columns/detail.php%3FID%3D31796;st=1663078139531;pid=0;title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC;s=1280*1024;vp=200*216;touch=0;hds=1;frame=1;flash=;sid=55de9778e1d1e63e;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1663078139665%3A1663078139667%3A1%3Ab584789b6e9d57f2bafa8f574943c028;visible=true;_=0.7912168019028799 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: nginx
date: Tue, 13 Sep 2022 14:09:12 GMT
content-length: 0
location: https://top-fwz1.mail.ru/counter2?js=13;id=2685520;u=https%3A//www.iemag.ru/columns/detail.php%3FID%3D31796;st=1663078139531;pid=0;title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC;s=1280*1024;vp=200*216;touch=0;hds=1;frame=1;flash=;sid=55de9778e1d1e63e;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1663078139665%3A1663078139667%3A1%3Ab584789b6e9d57f2bafa8f574943c028;visible=true;_=0.7912168019028799
set-cookie: FTID=1RMYgQ0tkIIC:1663078152:2685520:::; path=/; expires=Thu, 14-Sep-23 14:09:12 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2

top-fwz1.mail.ru/counter2?js=13;id=2685520;u=https%3A//www.iemag.ru/columns/detail.php%3FID%3D31796;st=1663078139352;pid=0;title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC;s=1280*1024;vp=115*24;touch=0;hds=1;frame=1;flash=;sid=278c5ce48f36e30c;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1663078139652%3A1663078139658%3A1%3Aa9cb184fb80fbf69b0fc9a7bfdbab7cd;visible=true;_=0.5738892994848479

95.163.52.67

200 OK

43 B

URL HTTP/2
top-fwz1.mail.ru/counter2?js=13;id=2685520;u=https%3A//www.iemag.ru/columns/detail.php%3FID%3D31796;st=1663078139352;pid=0;title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC;s=1280*1024;vp=115*24;touch=0;hds=1;frame=1;flash=;sid=278c5ce48f36e30c;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1663078139652%3A1663078139658%3A1%3Aa9cb184fb80fbf69b0fc9a7bfdbab7cd;visible=true;_=0.5738892994848479
IP
95.163.52.67:0
ASN
#47764 Mail.Ru LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db

HTTP Headers

GET /counter2?js=13;id=2685520;u=https%3A//www.iemag.ru/columns/detail.php%3FID%3D31796;st=1663078139352;pid=0;title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC;s=1280*1024;vp=115*24;touch=0;hds=1;frame=1;flash=;sid=278c5ce48f36e30c;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1663078139652%3A1663078139658%3A1%3Aa9cb184fb80fbf69b0fc9a7bfdbab7cd;visible=true;_=0.5738892994848479 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vk.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIC:1663078152:2685520:::; path=/; expires=Thu, 14-Sep-23 14:09:12 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2

top-fwz1.mail.ru/counter2?js=13;id=2685520;u=https%3A//www.iemag.ru/columns/detail.php%3FID%3D31796;st=1663078139531;pid=0;title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC;s=1280*1024;vp=200*216;touch=0;hds=1;frame=1;flash=;sid=55de9778e1d1e63e;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1663078139665%3A1663078139667%3A1%3Ab584789b6e9d57f2bafa8f574943c028;visible=true;_=0.7912168019028799

95.163.52.67

200 OK

43 B

URL HTTP/2
top-fwz1.mail.ru/counter2?js=13;id=2685520;u=https%3A//www.iemag.ru/columns/detail.php%3FID%3D31796;st=1663078139531;pid=0;title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC;s=1280*1024;vp=200*216;touch=0;hds=1;frame=1;flash=;sid=55de9778e1d1e63e;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1663078139665%3A1663078139667%3A1%3Ab584789b6e9d57f2bafa8f574943c028;visible=true;_=0.7912168019028799
IP
95.163.52.67:0
ASN
#47764 Mail.Ru LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db

HTTP Headers

GET /counter2?js=13;id=2685520;u=https%3A//www.iemag.ru/columns/detail.php%3FID%3D31796;st=1663078139531;pid=0;title=%D0%9D%D0%BE%D0%B2%D0%B0%D1%8F%20%D1%81%D1%82%D0%B0%D1%80%D0%B0%D1%8F%20%D1%82%D0%B5%D1%85%D0%BD%D0%BE%D0%BB%D0%BE%D0%B3%D0%B8%D1%8F%20%D1%81%20%D0%B4%D0%B2%D0%BE%D0%B9%D0%BD%D1%8B%D0%BC%20%D0%B4%D0%BD%D0%BE%D0%BC;s=1280*1024;vp=200*216;touch=0;hds=1;frame=1;flash=;sid=55de9778e1d1e63e;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1663078139665%3A1663078139667%3A1%3Ab584789b6e9d57f2bafa8f574943c028;visible=true;_=0.7912168019028799 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vk.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIC:1663078152:2685520:::; path=/; expires=Thu, 14-Sep-23 14:09:12 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7c85e22b75dd559a6c65736bae63c5bd
eb57470991666108a01b8ee0adf707e1c1dc8642
bd05cc5dfc5ddd554cc9ac5395035ce302b0b74343d199a64b2dbdcac0070944

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.globalsign.com/gsgccr3dvtlsca2020

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1414 bytes)
Hash
618d32a58cb5a9b3df8499be573d8ccc
66bb955d6449993fbbbb740f6499de4742a0bdce
cd09c309b67408dcae6dd636e88d6c8c3c867154b1b7d08cc670e19b5aa6f1b9

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sat, 17 Sep 2022 11:58:23 GMT
ETag: "66bb955d6449993fbbbb740f6499de4742a0bdce"
Last-Modified: Tue, 13 Sep 2022 11:58:24 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 152
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a17597c80ab51d-OSL

cm.g.doubleclick.net/pixel?google_nid=agentstvo_sape_limited&google_hm=AQAAfwePIGORAHIxArdzww

172.217.21.162

200 OK

170 B

URL HTTP/2
cm.g.doubleclick.net/pixel?google_nid=agentstvo_sape_limited&google_hm=AQAAfwePIGORAHIxArdzww
IP
172.217.21.162:0
ASN
#15169 GOOGLE

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
170 B (170 bytes)
Hash
e7673c60af825466f83d46da72ca1635
fc0fcbee0835709ba2d28798a612bfd687903fb5
0b8a20373c6dd04e091902226d922b3688143a8938afb9d283d889de7b55ceb5

HTTP Headers

GET /pixel?google_nid=agentstvo_sape_limited&google_hm=AQAAfwePIGORAHIxArdzww HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/png
date: Tue, 13 Sep 2022 14:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
server: HTTP server (unknown)
content-length: 170
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fcgi4.gnezdo.ru/cookie_matching_ssp/Sape-dsp/0100007F078F20639100723102B773C3

93.95.102.105

204 No Content

0 B

URL HTTP/2
fcgi4.gnezdo.ru/cookie_matching_ssp/Sape-dsp/0100007F078F20639100723102B773C3
IP
93.95.102.105:0
ASN
#48347 JSC Mediasoft ekspert

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cookie_matching_ssp/Sape-dsp/0100007F078F20639100723102B773C3 HTTP/1.1
Host: fcgi4.gnezdo.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Tue, 13 Sep 2022 14:09:12 GMT
set-cookie: uid=XV9maWMgjwjCNHUpZAF1Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
X-Firefox-Spdy: h2

ocsp.globalsign.com/gsgccr3dvtlsca2020

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1414 bytes)
Hash
618d32a58cb5a9b3df8499be573d8ccc
66bb955d6449993fbbbb740f6499de4742a0bdce
cd09c309b67408dcae6dd636e88d6c8c3c867154b1b7d08cc670e19b5aa6f1b9

HTTP Headers

POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sat, 17 Sep 2022 11:58:23 GMT
ETag: "66bb955d6449993fbbbb740f6499de4742a0bdce"
Last-Modified: Tue, 13 Sep 2022 11:58:24 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 152
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a17597ef980b39-OSL

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
fa778575017848e29c35f0b4fa322acd
f973ce146f855cfad7d3935f805654cede5a8642
3e33a140deab6b5bec5463c5e86cc0075e1acceb4867de40fac2c45d39fa9e89

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 11:36:30 GMT
Expires: Tue, 20 Sep 2022 11:36:29 GMT
Etag: "f973ce146f855cfad7d3935f805654cede5a8642"
Cache-Control: max-age=595036,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74a17597a995b4e8-OSL

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
baaca048bdf5c9de3303d2edbbfa4c86
da09af4e44a1009072f254309a412aff1aadadbb
435993ce27ee7041a7a4ea5a6563499d07cb9279c9b512526bb365716bd554d0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "435993CE27EE7041A7A4EA5A6563499D07CB9279C9B512526BB365716BD554D0"
Last-Modified: Mon, 12 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21577
Expires: Tue, 13 Sep 2022 20:08:49 GMT
Date: Tue, 13 Sep 2022 14:09:12 GMT
Connection: keep-alive

ocsp.usertrust.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.usertrust.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
1ea62bea8053e1dd80152dae60b1e8c3
8771f211b4469a00e6f6563baec9d6e3139d1ace
4db8a31343e8504231caa7901f00d20fae98f19e177a7fb673a269703456ab30

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 00:38:05 GMT
Expires: Tue, 20 Sep 2022 00:38:04 GMT
Etag: "8771f211b4469a00e6f6563baec9d6e3139d1ace"
Cache-Control: max-age=603904,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1201
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a1759818b50af6-OSL

ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691

195.209.108.50

302 Moved Temporarily

0 B

URL HTTP/1.1
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
IP
195.209.108.50:0
ASN
#52007 LLC AdRiver

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-6266489705; expires=Thu, 12 Sep 2024 14:09:12 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-6266489705
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
fa778575017848e29c35f0b4fa322acd
f973ce146f855cfad7d3935f805654cede5a8642
3e33a140deab6b5bec5463c5e86cc0075e1acceb4867de40fac2c45d39fa9e89

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 13 Sep 2022 11:36:30 GMT
Expires: Tue, 20 Sep 2022 11:36:29 GMT
Etag: "f973ce146f855cfad7d3935f805654cede5a8642"
Cache-Control: max-age=595036,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74a17597cb4a0b45-OSL

ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D

188.42.196.115

302 Found

0 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
IP
188.42.196.115:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Wed, 13 Sep 2023 14:09:12 GMT; Path=/; Domain=.betweendigital.com
tuuid=ab3c16d6-4630-5200-a8ec-6129cbccee21; Max-Age=31536000; Expires=Wed, 13 Sep 2023 14:09:12 GMT; Path=/; Domain=.betweendigital.com
ut=YyCPCAAO-_CJJ1BpfDjwhUmlztXYqnBcTorbOA==; Max-Age=31536000; Expires=Wed, 13 Sep 2023 14:09:12 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2

ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=0100007F078F20639100723102B773C3

195.209.111.19

200 OK

42 B

URL HTTP/1.1
ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=0100007F078F20639100723102B773C3
IP
195.209.111.19:0
ASN
#52007 LLC AdRiver

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /cgi-bin/sync.cgi?dsp_id=153&external_id=0100007F078F20639100723102B773C3 HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive

ocsp2.globalsign.com/gsalphasha2g2

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsalphasha2g2
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1423 bytes)
Hash
0b1ea9dd55775269995155cde2d08a39
a1e86db61237ab6232a811e8931625a74c3719c6
a6fc0619ec569d3a0ded6ae0b9936454747af3ef67534fe03bd0e889250ea6a3

HTTP Headers

POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 17 Sep 2022 12:16:06 GMT
ETag: "a1e86db61237ab6232a811e8931625a74c3719c6"
Last-Modified: Tue, 13 Sep 2022 12:16:07 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2656
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a175982a9fb4f3-OSL

ocsp.godaddy.com/

192.124.249.23

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.23:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
a625b059fdcd361478ca5399be7276e1
0b19f2bfcde0b4925009bd5d84987eedc4cd78c3
5632cc409cd5e76d54d4bce62c163dc8889592c24ee49f0e0c70f23240fe0d7e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 13 Sep 2022 03:27:28 GMT
Expires: Wed, 14 Sep 2022 03:27:28 GMT
ETag: "0b19f2bfcde0b4925009bd5d84987eedc4cd78c3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

ad.mail.ru/cm.gif?p=48&id=0100007F078F20639100723102B773C3

95.163.41.56

200 OK

43 B

URL HTTP/2
ad.mail.ru/cm.gif?p=48&id=0100007F078F20639100723102B773C3
IP
95.163.41.56:0
ASN
#47764 Mail.Ru LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /cm.gif?p=48&id=0100007F078F20639100723102B773C3 HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/gif
content-length: 43
set-cookie: VID=0XT_Hb35lxYC0021HW31W8IC:::0-0-0-83ae7c8:CAASEPWC9lkAUuZFslULTDcG8p4aYEm_x5O9OqjEd1m5erGDGLNblFcrPsTHWMuaGDAG5OABQi8_-QR8BpOapjmZzj5MHm9WGEDpOOzVjgxEKr66KZLd-PpjCpn2LCmGIJK099ASM9XyoRO5hwEJ5dl0KFomVw; path=/; expires=Thu, 14-Sep-23 14:09:12 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
expires: Tue, 13 Sep 2022 20:09:12 GMT
cache-control: max-age=21600
last-modified: Tue, 13 Sep 2022 14:09:12 GMT
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
X-Firefox-Spdy: h2

status.thawte.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
status.thawte.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
26eb35ba87ff5682f5fb6709f2a4c38c
16ca5b705dc671712f32f6c8a3703ac81f007076
8565f886250097edd4b204674f7cc9f0cffd9b7d1b10c07bb992f45fe919cd04

HTTP Headers

POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 840
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:09:13 GMT
Last-Modified: Tue, 13 Sep 2022 13:55:13 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

tag.digitaltarget.ru/adcm.js

185.15.175.144

200 OK

3.1 kB

URL HTTP/1.1
tag.digitaltarget.ru/adcm.js
IP
185.15.175.144:0
ASN
#43226 SafeData LLC

File type
ASCII text, with very long lines (3051), with no line terminators
Size
3.1 kB (3051 bytes)
Hash
e7097284185069f52fc736bcd50cda13
1cdfdf2d869841202079ddf91e0a00a8610812e6
40f2a96f78f4c8484e9da6e172f5ddd3e4d7786ca29e04b96e1067a365190e80

HTTP Headers

GET /adcm.js HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:09:12 GMT
Content-Type: application/javascript
Content-Length: 3051
Last-Modified: Tue, 13 Sep 2022 14:04:40 GMT
Connection: keep-alive
ETag: "63208df8-beb"
Accept-Ranges: bytes

ads.betweendigital.com/match?bidder_id=73&external_user_id=0100007F078F20639100723102B773C3

188.42.196.115

302 Found

0 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=73&external_user_id=0100007F078F20639100723102B773C3
IP
188.42.196.115:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match?bidder_id=73&external_user_id=0100007F078F20639100723102B773C3 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: /match?bidder_id=73&external_user_id=0100007F078F20639100723102B773C3&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Wed, 13 Sep 2023 14:09:13 GMT; Path=/; Domain=.betweendigital.com
tuuid=8eb68986-b4d0-5200-829c-475ee1bcc857; Max-Age=31536000; Expires=Wed, 13 Sep 2023 14:09:13 GMT; Path=/; Domain=.betweendigital.com
ut=YyCPCQAARlB9bKgUfl5zdrpc1bLvZ_vfwSCG-g==; Max-Age=31536000; Expires=Wed, 13 Sep 2023 14:09:13 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2

sape-sync.rutarget.ru/sync

188.72.107.205

302 Moved Temporarily

0 B

URL HTTP/1.1
sape-sync.rutarget.ru/sync
IP
188.72.107.205:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sync HTTP/1.1
Host: sape-sync.rutarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Length: 0
Connection: close
Location: https://www.acint.net/match?dp=104&euid=Ws2iJimMCW7m
P3P: CP="This is not a P3P policy. Please visit http://rutarget.ru/p3p/ to get more information."
Set-Cookie: userId=Ws2iJimMCW7m; Path=/; Domain=.rutarget.ru; Expires=Sun, 12 Mar 2023 14:09:13 GMT; SameSite=None; Secure

sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D

77.245.57.72

200 OK

0 B

URL HTTP/1.1
sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
IP
77.245.57.72:0
ASN
#36057 WEBAIR-INTERNET-MTL

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D HTTP/1.1
Host: sync.adkernel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Length: 0
Connection: close

ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1

188.42.196.115

200 OK

68 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
IP
188.42.196.115:0
ASN
#7979 SERVERS-COM

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11

HTTP Headers

GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Wed, 13 Sep 2023 14:09:13 GMT; Path=/; Domain=.betweendigital.com
tuuid=86230033-c329-5200-8b8a-5e43e8aad14a; Max-Age=31536000; Expires=Wed, 13 Sep 2023 14:09:13 GMT; Path=/; Domain=.betweendigital.com
ut=YyCPCQAAVfCWpsSgXE5pmktl3-Ui7wc9COPOgw==; Max-Age=31536000; Expires=Wed, 13 Sep 2023 14:09:13 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2

ocsp.globalsign.com/gseccovsslca2018

104.18.20.226

200 OK

939 B

URL HTTP/1.1
ocsp.globalsign.com/gseccovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
939 B (939 bytes)
Hash
0cbd8d5cb60e152b6a44ef39b9902e91
1cb75e31db843e82df43ffbc037859e505b87b29
5558d89f154c71e4f96a941eb48835397c6812489fc4ada522f5e173b9b67acb

HTTP Headers

POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 17 Sep 2022 13:22:20 GMT
ETag: "1cb75e31db843e82df43ffbc037859e505b87b29"
Last-Modified: Tue, 13 Sep 2022 13:22:21 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1719
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a1759878f1b51d-OSL

redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect

35.190.24.218

302 Found

0 B

URL HTTP/2
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
IP
35.190.24.218:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: Weborama Collect Frontend
date: Tue, 13 Sep 2022 14:09:12 GMT
content-length: 0
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=80075727
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Tue, 13 Sep 2022 14:09:13 GMT
set-cookie: AFFICHE_W=rGbpH-YNX7Ws39; expires=Wed, 11 Oct 2023 14:09:13 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.globalsign.com/gsrsaovsslca2018

104.18.20.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp.globalsign.com/gsrsaovsslca2018
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1432 bytes)
Hash
e35ddffe4d310b361695b21b789790c7
5f5f9575b26158bb4d3e01f37911f406812ac75d
1104e353ac31031f6ff235f4d18fe22a2ad9eb125e9e9a7b11b9be9af69b4ff7

HTTP Headers

POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 17 Sep 2022 11:37:31 GMT
ETag: "5f5f9575b26158bb4d3e01f37911f406812ac75d"
Last-Modified: Tue, 13 Sep 2022 11:37:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1243
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74a17598b8bb0b39-OSL

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fe792a43fbfd72d158215bb5fa087c19
5b28cebdebfdd33871fa4982f39a89f5ce3cbf99
ec9ddd9d47e4cd14bd7471042ce3060c1d119038dac5d1f02a4040c617228b0d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10319
Expires: Tue, 13 Sep 2022 17:01:12 GMT
Date: Tue, 13 Sep 2022 14:09:13 GMT
Connection: keep-alive

sm.rtb.mts.ru/p?ssp=sape&id=0100007F078F20639100723102B773C3

217.66.147.164

301 Moved Permanently

0 B

URL HTTP/1.1
sm.rtb.mts.ru/p?ssp=sape&id=0100007F078F20639100723102B773C3
IP
217.66.147.164:0
ASN
#29209 MTS PJSC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p?ssp=sape&id=0100007F078F20639100723102B773C3 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://sm.rtb.mts.ru/match/second?ssp=30&exu=0100007F078F20639100723102B773C3
Set-Cookie: dspid=116c558f-3b91-480f-a30d-917801e168ac; expires=Mon, 04 Sep 2023 14:09:13 GMT; domain=.mts.ru; path=/; secure; SameSite=None

www.acint.net/match?dp=104&euid=Ws2iJimMCW7m

185.12.125.25

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=104&euid=Ws2iJimMCW7m
IP
185.12.125.25:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=104&euid=Ws2iJimMCW7m HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMgjwcxcgCRw3O3Av0+t0bNHqzJe3gW1KTqHr5lGZ61; cSyncDp7v2=1663078151; cSyncDp14v3=1663078151; cSyncDp17=1663078151; cSyncDp32=1663078151; cSyncDp45v3=1663078151; cSyncDp53=1663078151; cSyncDp54v2=1663078151; cSyncDp62=1663078151; cSyncDp67v2=1663078151; cSyncDp68=1663078151; cSyncDp71=1663078151; cSyncDp77=1663078151; cSyncDp84=1663078151; cSyncDp85=1663078151; cSyncDp95v3=1663078151; cSyncDp101=1663078151; cSyncDp104v2=1663078151; cSyncDp107=1663078151; cSyncDp110=1663078151; cSyncDp111v2=1663078151; cSyncDp112v2=1663078151; cSyncDp125v2=1663078151; cSyncDp126=1663078151; cSyncDp127=1663078151; cSyncDp129=1663078151; cSyncDp136v2=1663078151; cSyncDp138=1663078151; cSyncDp144=1663078151; cSyncDp146=1663078151; cSyncDp148=1663078151; cSyncDp149=1663078151; cSyncDp151=1663078151; cSyncDp179=1663078151; cSyncDp186=1663078151; cSyncDp221=1663078151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 14:09:13 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

ads.betweendigital.com/match?bidder_id=73&external_user_id=0100007F078F20639100723102B773C3&crf=1

188.42.196.115

200 OK

68 B

URL HTTP/2
ads.betweendigital.com/match?bidder_id=73&external_user_id=0100007F078F20639100723102B773C3&crf=1
IP
188.42.196.115:0
ASN
#7979 SERVERS-COM

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11

HTTP Headers

GET /match?bidder_id=73&external_user_id=0100007F078F20639100723102B773C3&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Wed, 13 Sep 2023 14:09:13 GMT; Path=/; Domain=.betweendigital.com
tuuid=2f35640f-5d91-5200-8773-cdc8e45342c1; Max-Age=31536000; Expires=Wed, 13 Sep 2023 14:09:13 GMT; Path=/; Domain=.betweendigital.com
ut=YyCPCQABIRBGifG68QxrxhexSIvrwDaybkEuPA==; Max-Age=31536000; Expires=Wed, 13 Sep 2023 14:09:13 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a473b1082e4e8b35996d885bee47427b
c3db2079f9174245e8b9f19418b42db548f5f643
15e1095b8ffa8fe2d67254066133479e6cd368b1692559f66157ec6671571d70

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "15E1095B8FFA8FE2D67254066133479E6CD368B1692559F66157EC6671571D70"
Last-Modified: Mon, 12 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16123
Expires: Tue, 13 Sep 2022 18:37:56 GMT
Date: Tue, 13 Sep 2022 14:09:13 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f033f00-b116-4419-9d21-3aed9c73ea2e.jpeg

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f033f00-b116-4419-9d21-3aed9c73ea2e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8764 bytes)
Hash
9d97e56f75165efcc71ae54952ded405
28d47359e70789115b2954b6c94711bb783b3c8c
564eac2ae99724e5f43aa1ae0afe4dec03697f888f51774e70e1b9c273c2d9d6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f033f00-b116-4419-9d21-3aed9c73ea2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8764
x-amzn-requestid: 48f44e2c-3d91-46cf-8701-3c5028e0a86d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YE-gLG4_oAMFn-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63184467-46abfc77601bd90f39a2c840;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 07:12:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tE5GZDktiELwfFRC_IEAqoat6cN7vb_TA17d-zRO6saTLEGRqB94Pw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:01:47 GMT
age: 58046
etag: "28d47359e70789115b2954b6c94711bb783b3c8c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9945 bytes)
Hash
c9ab2ec10c79b91d15edb1d1e3dc763c
744fee4a0baa22ba3aa352d60620a916972b47dd
f7bb66f5bb572d73f936fc74823f51ede1f2c4e309a939b39d9529ff8f757fbe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9945
x-amzn-requestid: a347749f-a63a-4533-a274-7151b9f235ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXcX8HAKoAMF5EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa765-56cff18515b2a5b3397231df;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:40:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: lZ3FmD1gM8YBgZNt97kuYSol1kj0GQqRjyLT_7715VtH9GR1WpMDxA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:42:20 GMT
age: 59213
etag: "744fee4a0baa22ba3aa352d60620a916972b47dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9466 bytes)
Hash
6174529fff57758e958da5432344962f
05ec2076b32398d60ee77fab8c14345bc7dfe647
65284a76355864efa944dff5033575013c6d74a019a7b731e0236603f2f656a7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9466
x-amzn-requestid: ba3f7eac-61c9-4b5f-ae8a-b372906a25ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YOTeoHMKoAMFr5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bff90-1e70e2c444242a2d46387986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 03:08:00 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: -SwaUjMInlOaGpH6yK1W1a57QCQMgY-l43RdUfKVtZA1zJzMrLzC6g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 04:49:30 GMT
age: 33583
etag: "05ec2076b32398d60ee77fab8c14345bc7dfe647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7720 bytes)
Hash
ae7d16fad4da4300a1953a916fb59688
488c58f73c81bb4d45e496c458fe3197a0884c26
4d4946932d53caad6e97bcc66527bd9cad658c0cf6f4215d01943b8a9e832959

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4acf448-2a96-49a3-8257-7743a38525f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 7720
x-amzn-requestid: 7670a969-cb9c-4583-8455-10f7512ee9c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YT9YJG__oAMF4YA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e429a-674ef5a4727826ab0d60529e;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 20:18:34 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OOCryyfLht-3ebVn-5aWtQI_JnVkWxMGggv07cUoomDlgb5ogru7vg==
via: 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:01:55 GMT
age: 58038
etag: "488c58f73c81bb4d45e496c458fe3197a0884c26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7c85e22b75dd559a6c65736bae63c5bd
eb57470991666108a01b8ee0adf707e1c1dc8642
bd05cc5dfc5ddd554cc9ac5395035ce302b0b74343d199a64b2dbdcac0070944

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Sep 2022 14:09:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10849 bytes)
Hash
838f709437b2dfbede4ee15307afe217
2ab2ee20e720b78be6deb55f967ac0d8b7dad048
a3b47ce595b475f2aab6f7378888d15ba3e98453d6c8a3d88946efc5d65eedba

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a2dff5-4864-4430-8c54-6b68d2bbd35a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 10849
x-amzn-requestid: 722d8d75-0911-4b59-af65-2b408bc09d80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXbx6E9-oAMFT8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa672-74ea9343619d4a1865e34818;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:36:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4rpwcrZLDlgcwBtH7wpoHMOb8hhFbKbZSQpjWqUqbt_Sl4ud3dm9Vg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:42:18 GMT
age: 59215
etag: "2ab2ee20e720b78be6deb55f967ac0d8b7dad048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb9bab12-4fd5-4be7-b453-25dfb0d4c606.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9606 bytes)
Hash
6c824a7db30839607b01c7a164f6f6ec
bbab791971056750a46dd6ed9c5d7c8e12ab457e
872262a28a383a9eafd1f453014a3edfde4872160b772874271be6358a47449f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb9bab12-4fd5-4be7-b453-25dfb0d4c606.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9606
x-amzn-requestid: bf72ce8c-1272-42df-8958-d392210106c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIR7NFh2oAMFXIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631996ad-4646091a428db21e2dce1a61;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 07:15:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4skZVE5BinFMAJV196j5-qtDez6m26DtU8NZvU6K2VuhFnC7E1zXWw==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:56:19 GMT
age: 58374
etag: "bbab791971056750a46dd6ed9c5d7c8e12ab457e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-6266489705

195.209.108.50

302 Moved Temporarily

40 B

URL HTTP/1.1
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-6266489705
IP
195.209.108.50:0
ASN
#52007 LLC AdRiver

File type
ASCII text, with CRLF line terminators
Size
40 B (40 bytes)
Hash
251630b588179b239e8fab1ac9ef6d3a
91b91a97bc481dd2bbd5e0f3fea6ba1c4e843882
c95661e0ef6975b1df5361695a439f71a021d72c345023c3e668e84f35b3c38b

HTTP Headers

GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-6266489705 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="//adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Thu, 12 Sep 2024 14:09:13 GMT; path=/; domain=.adriver.ru;
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
Location: https://www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D

px.adhigh.net/p/cm/sape?u=0100007F078F20639100723102B773C3

193.232.150.150

302 Found

0 B

URL HTTP/2
px.adhigh.net/p/cm/sape?u=0100007F078F20639100723102B773C3
IP
193.232.150.150:0
ASN
#48061 Limited Liability Company GPM Digital Technologies

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /p/cm/sape?u=0100007F078F20639100723102B773C3 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Tue, 13 Sep 2022 14:09:13 GMT
content-length: 0
x-backend-id: f17-ru
access-control-allow-origin: *
access-control-allow-credentials: true
set-cookie: gi_u=PnKTfoyW3mM.AikABlGDNy67qw;Path=/;Domain=.adhigh.net;Expires=Wed, 13-Sep-2023 14:09:13 GMT;Secure;SameSite=None
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
location: https://px.adhigh.net/p/cm/sape?u=0100007F078F20639100723102B773C3&bounced=1
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
cd1fe03aec8f2589353f83d1d180be0c
69b0db8ce9d55c55127ae34dbcb8c838f14d676c
40658363cb51b1b17336949f0157bfae6fb099655bc1dd2cf711abfabcc7ba65

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 10 Sep 2022 02:18:46 GMT
Expires: Sat, 17 Sep 2022 02:18:45 GMT
Etag: "69b0db8ce9d55c55127ae34dbcb8c838f14d676c"
Cache-Control: max-age=302371,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74a175985a78b4e8-OSL

x01.aidata.io/0.gif?pid=9401454&id=0100007F078F20639100723102B773C3

89.108.120.76

302 Found

0 B

URL HTTP/2
x01.aidata.io/0.gif?pid=9401454&id=0100007F078F20639100723102B773C3
IP
89.108.120.76:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /0.gif?pid=9401454&id=0100007F078F20639100723102B773C3 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx
date: Tue, 13 Sep 2022 14:09:13 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=9401454&id=0100007F078F20639100723102B773C3&bounce=1
expires: Tue, 13 Sep 2022 14:09:12 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Tue, 13 Sep 2022 14:09:12 GMT
set-cookie: __upin=RkvQfnxCh9u+MLijspBqdw;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1663078153;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2

www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D

185.12.125.25

302 Found

154 B

URL HTTP/2
www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
IP
185.12.125.25:0
ASN
#50214 QWARTA LLC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319

HTTP Headers

GET /rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMgjwcxcgCRw3O3Av0+t0bNHqzJe3gW1KTqHr5lGZ61; cSyncDp7v2=1663078151; cSyncDp14v3=1663078151; cSyncDp17=1663078151; cSyncDp32=1663078151; cSyncDp45v3=1663078151; cSyncDp53=1663078151; cSyncDp54v2=1663078151; cSyncDp62=1663078151; cSyncDp67v2=1663078151; cSyncDp68=1663078151; cSyncDp71=1663078151; cSyncDp77=1663078151; cSyncDp84=1663078151; cSyncDp85=1663078151; cSyncDp95v3=1663078151; cSyncDp101=1663078151; cSyncDp104v2=1663078151; cSyncDp107=1663078151; cSyncDp110=1663078151; cSyncDp111v2=1663078151; cSyncDp112v2=1663078151; cSyncDp125v2=1663078151; cSyncDp126=1663078151; cSyncDp127=1663078151; cSyncDp129=1663078151; cSyncDp136v2=1663078151; cSyncDp138=1663078151; cSyncDp144=1663078151; cSyncDp146=1663078151; cSyncDp148=1663078151; cSyncDp149=1663078151; cSyncDp151=1663078151; cSyncDp179=1663078151; cSyncDp186=1663078151; cSyncDp221=1663078151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: openresty
date: Tue, 13 Sep 2022 14:09:13 GMT
content-type: text/html
content-length: 154
location: https://ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=0100007F078F20639100723102B773C3
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=80075727

35.190.24.218

204 No Content

0 B

URL HTTP/2
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=80075727
IP
35.190.24.218:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=80075727 HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: Weborama Collect Frontend
date: Tue, 13 Sep 2022 14:09:12 GMT
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Tue, 13 Sep 2022 14:09:13 GMT
set-cookie: AFFICHE_W=; expires=Tue, 10 Nov 2009 23:00:00 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

x01.aidata.io/0.gif?pid=9401454&id=0100007F078F20639100723102B773C3&bounce=1

89.108.120.76

204 No Content

0 B

URL HTTP/2
x01.aidata.io/0.gif?pid=9401454&id=0100007F078F20639100723102B773C3&bounce=1
IP
89.108.120.76:0
ASN
#197695 Domain names registrar REG.RU, Ltd

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /0.gif?pid=9401454&id=0100007F078F20639100723102B773C3&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Tue, 13 Sep 2022 14:09:13 GMT
expires: Tue, 13 Sep 2022 14:09:12 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Tue, 13 Sep 2022 14:09:12 GMT
set-cookie: __upin=9t7YCc9CrvaM9raIvauMog;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1663078153;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2

sm.rtb.mts.ru/match/second?ssp=30&exu=0100007F078F20639100723102B773C3

217.66.147.164

301 Moved Permanently

0 B

URL HTTP/1.1
sm.rtb.mts.ru/match/second?ssp=30&exu=0100007F078F20639100723102B773C3
IP
217.66.147.164:0
ASN
#29209 MTS PJSC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /match/second?ssp=30&exu=0100007F078F20639100723102B773C3 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://tech.rtb.mts.ru/

px.adhigh.net/p/cm/sape?u=0100007F078F20639100723102B773C3&bounced=1

193.232.150.150

200 OK

49 B

URL HTTP/2
px.adhigh.net/p/cm/sape?u=0100007F078F20639100723102B773C3&bounced=1
IP
193.232.150.150:0
ASN
#48061 Limited Liability Company GPM Digital Technologies

File type
GIF image data, version 89a, 1 x 1\012- data
Size
49 B (49 bytes)
Hash
889bc1fffc025af4685839fb516a0b8b
7f105137a4eafe93213ecd8cc34dd907c340467c
d0409a1b73dab4e29dc40f92fb431fa9133baa23b4a1ffae4897f39068110e32

HTTP Headers

GET /p/cm/sape?u=0100007F078F20639100723102B773C3&bounced=1 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:09:13 GMT
content-type: image/gif
content-length: 49
x-backend-id: f17-ru
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2

ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=0100007F078F20639100723102B773C3

195.209.111.19

200 OK

42 B

URL HTTP/1.1
ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=0100007F078F20639100723102B773C3
IP
195.209.111.19:0
ASN
#52007 LLC AdRiver

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /cgi-bin/sync.cgi?ssp_id=43&external_id=0100007F078F20639100723102B773C3 HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive

tag.digitaltarget.ru/processor.js?i=131172405884428

185.15.175.144

200 OK

16 kB

URL HTTP/1.1
tag.digitaltarget.ru/processor.js?i=131172405884428
IP
185.15.175.144:0
ASN
#43226 SafeData LLC

File type
ASCII text, with very long lines (15522), with no line terminators
Size
16 kB (15522 bytes)
Hash
42e8505040360705cec5521c9089f683
01265a2bf81afac0a2e9f82ad49401e5a34ea551
1218f0c95f2f7c35e01976a666d90ebcbc5731cf851bbf7d853af02b3c09ced6

HTTP Headers

GET /processor.js?i=131172405884428 HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Type: application/javascript
Content-Length: 15522
Last-Modified: Tue, 13 Sep 2022 14:04:41 GMT
Connection: keep-alive
ETag: "63208df9-3ca2"
Accept-Ranges: bytes

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
eb28a2e4858f3e5b697a1294ac968268
beecf85cb781dafd5164e652fa104bf6ece2e6db
559355b0d910a6fa56cdbe7af7268b200e519a2d1d05560affceaaca26ad3b39

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "559355B0D910A6FA56CDBE7AF7268B200E519A2D1D05560AFFCEAACA26AD3B39"
Last-Modified: Mon, 12 Sep 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6467
Expires: Tue, 13 Sep 2022 15:57:00 GMT
Date: Tue, 13 Sep 2022 14:09:13 GMT
Connection: keep-alive

dmg.digitaltarget.ru/1/1093/i/i?i=282635201805091.16466202738245&a=77&e=0100007F078F20639100723102B773C3&pref=https%3A%2F%2Fwww.iemag.ru%2F&c=ss:77.up:0100007F078F20639100723102B773C3.sync:up.xdua:durQSpD7DAtDZb3Uw8mLEYhU.xps:xpsdbldsSG5BjgNboIXucHfE_.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient

185.15.175.134

307 Temporary Redirect

0 B

URL HTTP/1.1
dmg.digitaltarget.ru/1/1093/i/i?i=282635201805091.16466202738245&a=77&e=0100007F078F20639100723102B773C3&pref=https%3A%2F%2Fwww.iemag.ru%2F&c=ss:77.up:0100007F078F20639100723102B773C3.sync:up.xdua:durQSpD7DAtDZb3Uw8mLEYhU.xps:xpsdbldsSG5BjgNboIXucHfE_.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP
185.15.175.134:0
ASN
#43226 SafeData LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1/1093/i/i?i=282635201805091.16466202738245&a=77&e=0100007F078F20639100723102B773C3&pref=https%3A%2F%2Fwww.iemag.ru%2F&c=ss:77.up:0100007F078F20639100723102B773C3.sync:up.xdua:durQSpD7DAtDZb3Uw8mLEYhU.xps:xpsdbldsSG5BjgNboIXucHfE_.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&i=282635201805091.16466202738245&a=77&e=0100007F078F20639100723102B773C3&pref=https%3A%2F%2Fwww.iemag.ru%2F&c=ss:77.up:0100007F078F20639100723102B773C3.sync:up.xdua:durQSpD7DAtDZb3Uw8mLEYhU.xps:xpsdbldsSG5BjgNboIXucHfE_.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
Set-Cookie: viuserid=GXYnlLHPF3CeZXAFKwXB; Max-Age=93312000; Expires=Thu, 28 Aug 2025 14:09:13 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

dmg.digitaltarget.ru/1/1093/i/i?i=282635201805091.81146388865590&a=77&e=0100007F078F20639100723102B773C3&pref=https%3A%2F%2Fwww.iemag.ru%2F&c=ss:77.up:0100007F078F20639100723102B773C3.sync:up.xdua:durQSpD7DAtDZb3Uw8mLEYhU.xps:xpsdbldsSG5BjgNboIXucHfE_.dn:acint__net.adcm:hit.tg:adcmjs_noorient

185.15.175.134

307 Temporary Redirect

0 B

URL HTTP/1.1
dmg.digitaltarget.ru/1/1093/i/i?i=282635201805091.81146388865590&a=77&e=0100007F078F20639100723102B773C3&pref=https%3A%2F%2Fwww.iemag.ru%2F&c=ss:77.up:0100007F078F20639100723102B773C3.sync:up.xdua:durQSpD7DAtDZb3Uw8mLEYhU.xps:xpsdbldsSG5BjgNboIXucHfE_.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP
185.15.175.134:0
ASN
#43226 SafeData LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1/1093/i/i?i=282635201805091.81146388865590&a=77&e=0100007F078F20639100723102B773C3&pref=https%3A%2F%2Fwww.iemag.ru%2F&c=ss:77.up:0100007F078F20639100723102B773C3.sync:up.xdua:durQSpD7DAtDZb3Uw8mLEYhU.xps:xpsdbldsSG5BjgNboIXucHfE_.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&i=282635201805091.81146388865590&a=77&e=0100007F078F20639100723102B773C3&pref=https%3A%2F%2Fwww.iemag.ru%2F&c=ss:77.up:0100007F078F20639100723102B773C3.sync:up.xdua:durQSpD7DAtDZb3Uw8mLEYhU.xps:xpsdbldsSG5BjgNboIXucHfE_.dn:acint__net.adcm:hit.tg:adcmjs_noorient
Set-Cookie: viuserid=.7O9Uhm1r.BvVpA73qhB; Max-Age=93312000; Expires=Thu, 28 Aug 2025 14:09:13 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

tech.rtb.mts.ru/

213.87.44.187

204 No Content

0 B

URL HTTP/1.1
tech.rtb.mts.ru/
IP
213.87.44.187:0
ASN
#13174 MTS PJSC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: tech.rtb.mts.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Server: nginx/1.20.2
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Set-Cookie: mts_id=b0f91107-b66b-4a31-aace-a3065d6c9077; Domain=mts.ru; expires=Thu, 22 Jul 2032 14:09:13 GMT; SameSite=None; Secure
mts_id_last_sync=1663078153; Domain=mts.ru; expires=Thu, 22 Jul 2032 14:09:13 GMT; SameSite=None; Secure
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With

dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&i=282635201805091.16466202738245&a=77&e=0100007F078F20639100723102B773C3&pref=https%3A%2F%2Fwww.iemag.ru%2F&c=ss:77.up:0100007F078F20639100723102B773C3.sync:up.xdua:durQSpD7DAtDZb3Uw8mLEYhU.xps:xpsdbldsSG5BjgNboIXucHfE_.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient

185.15.175.134

200 OK

64 B

URL HTTP/1.1
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&i=282635201805091.16466202738245&a=77&e=0100007F078F20639100723102B773C3&pref=https%3A%2F%2Fwww.iemag.ru%2F&c=ss:77.up:0100007F078F20639100723102B773C3.sync:up.xdua:durQSpD7DAtDZb3Uw8mLEYhU.xps:xpsdbldsSG5BjgNboIXucHfE_.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP
185.15.175.134:0
ASN
#43226 SafeData LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
64 B (64 bytes)
Hash
ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8

HTTP Headers

GET /awg/custom/1093/i/i?call_source=awg&i=282635201805091.16466202738245&a=77&e=0100007F078F20639100723102B773C3&pref=https%3A%2F%2Fwww.iemag.ru%2F&c=ss:77.up:0100007F078F20639100723102B773C3.sync:up.xdua:durQSpD7DAtDZb3Uw8mLEYhU.xps:xpsdbldsSG5BjgNboIXucHfE_.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&i=282635201805091.81146388865590&a=77&e=0100007F078F20639100723102B773C3&pref=https%3A%2F%2Fwww.iemag.ru%2F&c=ss:77.up:0100007F078F20639100723102B773C3.sync:up.xdua:durQSpD7DAtDZb3Uw8mLEYhU.xps:xpsdbldsSG5BjgNboIXucHfE_.dn:acint__net.adcm:hit.tg:adcmjs_noorient

185.15.175.134

200 OK

64 B

URL HTTP/1.1
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&i=282635201805091.81146388865590&a=77&e=0100007F078F20639100723102B773C3&pref=https%3A%2F%2Fwww.iemag.ru%2F&c=ss:77.up:0100007F078F20639100723102B773C3.sync:up.xdua:durQSpD7DAtDZb3Uw8mLEYhU.xps:xpsdbldsSG5BjgNboIXucHfE_.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP
185.15.175.134:0
ASN
#43226 SafeData LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
64 B (64 bytes)
Hash
ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8

HTTP Headers

GET /awg/custom/1093/i/i?call_source=awg&i=282635201805091.81146388865590&a=77&e=0100007F078F20639100723102B773C3&pref=https%3A%2F%2Fwww.iemag.ru%2F&c=ss:77.up:0100007F078F20639100723102B773C3.sync:up.xdua:durQSpD7DAtDZb3Uw8mLEYhU.xps:xpsdbldsSG5BjgNboIXucHfE_.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Sep 2022 14:09:13 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only

www.acint.net/ping/?v=0.4.0&uid=7dce5348-ac14-470f-bc11-b20d34c2eed0&dp=10&tz=%2B00%3A00&nc=73600871&dT=2022-09-13T14%3A09%3A01.093

185.12.125.25

200 OK

43 B

URL HTTP/2
www.acint.net/ping/?v=0.4.0&uid=7dce5348-ac14-470f-bc11-b20d34c2eed0&dp=10&tz=%2B00%3A00&nc=73600871&dT=2022-09-13T14%3A09%3A01.093
IP
185.12.125.25:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /ping/?v=0.4.0&uid=7dce5348-ac14-470f-bc11-b20d34c2eed0&dp=10&tz=%2B00%3A00&nc=73600871&dT=2022-09-13T14%3A09%3A01.093 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMgjwcxcgCRw3O3Av0+t0bNHqzJe3gW1KTqHr5lGZ61; cSyncDp7v2=1663078151; cSyncDp14v3=1663078151; cSyncDp17=1663078151; cSyncDp32=1663078151; cSyncDp45v3=1663078151; cSyncDp53=1663078151; cSyncDp54v2=1663078151; cSyncDp62=1663078151; cSyncDp67v2=1663078151; cSyncDp68=1663078151; cSyncDp71=1663078151; cSyncDp77=1663078151; cSyncDp84=1663078151; cSyncDp85=1663078151; cSyncDp95v3=1663078151; cSyncDp101=1663078151; cSyncDp104v2=1663078151; cSyncDp107=1663078151; cSyncDp110=1663078151; cSyncDp111v2=1663078151; cSyncDp112v2=1663078151; cSyncDp125v2=1663078151; cSyncDp126=1663078151; cSyncDp127=1663078151; cSyncDp129=1663078151; cSyncDp136v2=1663078151; cSyncDp138=1663078151; cSyncDp144=1663078151; cSyncDp146=1663078151; cSyncDp148=1663078151; cSyncDp149=1663078151; cSyncDp151=1663078151; cSyncDp179=1663078151; cSyncDp186=1663078151; cSyncDp221=1663078151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 14:09:14 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

www.acint.net/match?dp=129&euid=prsk91oziz

185.12.125.25

200 OK

43 B

URL HTTP/2
www.acint.net/match?dp=129&euid=prsk91oziz
IP
185.12.125.25:0
ASN
#50214 QWARTA LLC

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /match?dp=129&euid=prsk91oziz HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMgjwcxcgCRw3O3Av0+t0bNHqzJe3gW1KTqHr5lGZ61; cSyncDp7v2=1663078151; cSyncDp14v3=1663078151; cSyncDp17=1663078151; cSyncDp32=1663078151; cSyncDp45v3=1663078151; cSyncDp53=1663078151; cSyncDp54v2=1663078151; cSyncDp62=1663078151; cSyncDp67v2=1663078151; cSyncDp68=1663078151; cSyncDp71=1663078151; cSyncDp77=1663078151; cSyncDp84=1663078151; cSyncDp85=1663078151; cSyncDp95v3=1663078151; cSyncDp101=1663078151; cSyncDp104v2=1663078151; cSyncDp107=1663078151; cSyncDp110=1663078151; cSyncDp111v2=1663078151; cSyncDp112v2=1663078151; cSyncDp125v2=1663078151; cSyncDp126=1663078151; cSyncDp127=1663078151; cSyncDp129=1663078151; cSyncDp136v2=1663078151; cSyncDp138=1663078151; cSyncDp144=1663078151; cSyncDp146=1663078151; cSyncDp148=1663078151; cSyncDp149=1663078151; cSyncDp151=1663078151; cSyncDp179=1663078151; cSyncDp186=1663078151; cSyncDp221=1663078151
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 14:09:14 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2

ocsp.godaddy.com/

192.124.249.23

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.23:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
a625b059fdcd361478ca5399be7276e1
0b19f2bfcde0b4925009bd5d84987eedc4cd78c3
5632cc409cd5e76d54d4bce62c163dc8889592c24ee49f0e0c70f23240fe0d7e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 13 Sep 2022 14:09:15 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 13 Sep 2022 03:27:28 GMT
Expires: Wed, 14 Sep 2022 03:27:28 GMT
ETag: "0b19f2bfcde0b4925009bd5d84987eedc4cd78c3"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

connect.ok.ru/dk?st.cmd=WidgetGroup&st.groupId=52505975062679&st.fid=__okGroup0&st.hoster=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&st.settings=%7Bwidth%3A200%2Cheight%3A230%7D

217.20.147.3

200 OK

0 B

URL HTTP/2
connect.ok.ru/dk?st.cmd=WidgetGroup&st.groupId=52505975062679&st.fid=__okGroup0&st.hoster=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&st.settings=%7Bwidth%3A200%2Cheight%3A230%7D
IP
217.20.147.3:0
ASN
#47764 Mail.Ru LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /dk?st.cmd=WidgetGroup&st.groupId=52505975062679&st.fid=__okGroup0&st.hoster=https%3A%2F%2Fwww.iemag.ru%2Fcolumns%2Fdetail.php%3FID%3D31796&st.settings=%7Bwidth%3A200%2Cheight%3A230%7D HTTP/1.1
Host: connect.ok.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: apache
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/html;charset=UTF-8
vary: Accept-Encoding
set-cookie: bci=-8957150634095675664; Domain=.ok.ru; Expires=Sun, 01-Oct-2090 17:23:18 GMT; Path=/; Secure; HttpOnly
_statid=be2958a9-1a9f-46ba-9cc5-208a4b500f03; Domain=.ok.ru; Expires=Sun, 01-Oct-2090 17:23:18 GMT; Path=/; Secure; HttpOnly
landref=www.iemag.ru; Domain=.ok.ru; Path=/; Secure
content-security-policy: default-src data: 'self' 'unsafe-inline' 'unsafe-eval' ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me wss://ad.mail.ru *.mail.ru *.imgsmail.ru *.mradx.net *.serving-sys.com *.googleapis.com *.gstatic.com www.google.com https://api-maps.yandex.ru yastatic.net yandex.st *.doubleverify.com *.adsafeprotected.com https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://football.sportmail.ru *.google.ru *.google.com *.googlesyndication.com *.yandex.ru blob:;  script-src 'unsafe-inline' 'unsafe-eval' *.mail.ru https://*.mail.ru *.imgsmail.ru *.mradx.net ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me mc.yandex.ru an.yandex.ru yastatic.net yandex.st *.google-analytics.com api-maps.yandex.ru https://api-maps.yandex.ru https://clck.yandex.ru *.googleapis.com *.gstatic.com www.google.com www.youtube.com https://www.youtube.com *.ytimg.com https://*.ytimg.com *.doubleverify.com *.dvtps.com *.doubleclick.net *.googletagservices.com *.googlesyndication.com *.googleadservices.com *.goodgame.ru https://*.goodgame.ru https://*.moatads.com *.adlooxtracking.com *.adlooxtracking.ru *.adsafeprotected.com *.serving-sys.com *.serving-sys.ru *.weborama.fr *.weborama-tech.ru https://enterprise.api-maps.yandex.ru https://suggest-maps.yandex.ru https://*.hit.gemius.pl https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://gum.criteo.com https://football.sportmail.ru *.googletagmanager.com connect.facebook.net *.google.ru *.google.com *.googlesyndication.com yandex.ru;  worker-src blob: 'self';  connect-src * wss: blob:;  font-src * data: blob:; frame-src * blob: 'self';  img-src * data: blob: about:;  media-src * data: blob:;  object-src *;  report-uri /csp/report;
content-security-policy-report-only: default-src data: blob: about: 'self' 'unsafe-inline' 'unsafe-eval' https: wss:; report-uri /csp/report?always;
cache-control: no-cache, no-store
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000;includeSubdomains;preload
rendered-blocks: WidgetPage
content-encoding: br
X-Firefox-Spdy: h2

an.yandex.ru/mapuid/sapeis/0100007F078F20639100723102B773C3

87.250.250.90

302 Found

0 B

URL HTTP/2
an.yandex.ru/mapuid/sapeis/0100007F078F20639100723102B773C3
IP
87.250.250.90:0
ASN
#13238 YANDEX LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mapuid/sapeis/0100007F078F20639100723102B773C3 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/sapeis/0100007F078F20639100723102B773C3?redir-setuniq=1
date: Tue, 13 Sep 2022 14:09:13 GMT
set-cookie: yandexuid=8571294351663078153; domain=.yandex.ru; path=/; expires=Fri, 10-Sep-2032 14:09:13 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 13 Sep 2022 14:09:13 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Tue, 13 Sep 2022 14:09:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

bitrix.info/ba.js

34.247.209.163

200 OK

0 B

URL HTTP/2
bitrix.info/ba.js
IP
34.247.209.163:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /ba.js HTTP/1.1
Host: bitrix.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 13 Sep 2022 14:09:10 GMT
content-type: application/javascript
server: nginx/1.10.1
last-modified: Wed, 19 May 2021 09:38:44 GMT
etag: W/"60a4dca4-1a03"
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
set-cookie: bx_user_id=854fd3919450282c9abccefdff6dcbc6; expires=Fri, 10-Sep-32 14:09:10 GMT; path=/; domain=bitrix.info; SameSite=None; Secure
access-control-allow-origin: *
expires: Thu, 15 Sep 2022 14:09:10 GMT
cache-control: max-age=172800
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

connect.ok.ru/connect.js

217.20.147.3

200 OK

0 B

URL HTTP/2
connect.ok.ru/connect.js
IP
217.20.147.3:0
ASN
#47764 Mail.Ru LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /connect.js HTTP/1.1
Host: connect.ok.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.iemag.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: apache
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2

adlmerge.com/merge_gpsid/?sid=50&id=0100007F078F20639100723102B773C3

95.211.66.35

200 OK

0 B

URL HTTP/2
adlmerge.com/merge_gpsid/?sid=50&id=0100007F078F20639100723102B773C3
IP
95.211.66.35:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /merge_gpsid/?sid=50&id=0100007F078F20639100723102B773C3 HTTP/1.1
Host: adlmerge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.16.0
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: image/gif
iseu: eu
X-Firefox-Spdy: h2

ssp.bidvol.com/usersync?dspcsid=8&redirect=1

65.108.1.48

302 Found

0 B

URL HTTP/2
ssp.bidvol.com/usersync?dspcsid=8&redirect=1
IP
65.108.1.48:0
ASN
#24940 Hetzner Online GmbH

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: nginx/1.14.0
date: Tue, 13 Sep 2022 14:09:13 GMT
x-request-id: cb605cfa-07fa-42d7-b0fd-6f067af8ae90
set-cookie: bvuid=prsk91oziz; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=prsk91oziz; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
location: https://www.acint.net/match?dp=129&euid=prsk91oziz
X-Firefox-Spdy: h2

www.acint.net/mc/?dp=10&tc=1

185.12.125.25

200 OK

0 B

URL HTTP/2
www.acint.net/mc/?dp=10&tc=1
IP
185.12.125.25:0
ASN
#50214 QWARTA LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mc/?dp=10&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.iemag.ru/
Connection: keep-alive
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMgjwcxcgCRw3O3Av0+t0bNHqzJe3gW1KTqHr5lGZ61
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: openresty
date: Tue, 13 Sep 2022 14:09:11 GMT
content-type: text/html
set-cookie: cSyncDp7v2=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp14v3=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp32=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v3=1663078151; expires=Wed, 14-Sep-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp54v2=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v2=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp77=1663078151; expires=Tue, 27-Sep-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp84=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v3=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp101=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1663078151; expires=Tue, 27-Sep-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp111v2=1663078151; expires=Tue, 27-Sep-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp112v2=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v2=1663078151; expires=Wed, 28-Sep-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v2=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp138=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp144=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp179=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp221=1663078151; expires=Thu, 13-Oct-22 14:09:11 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2

an.yandex.ru/mapuid/sapeis/0100007F078F20639100723102B773C3?redir-setuniq=1

87.250.250.90

200 OK

0 B

URL HTTP/2
an.yandex.ru/mapuid/sapeis/0100007F078F20639100723102B773C3?redir-setuniq=1
IP
87.250.250.90:0
ASN
#13238 YANDEX LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /mapuid/sapeis/0100007F078F20639100723102B773C3?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
timing-allow-origin: *
date: Tue, 13 Sep 2022 14:09:13 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 13 Sep 2022 14:09:13 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Tue, 13 Sep 2022 14:09:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

top-fwz1.mail.ru/js/code.js

95.163.52.67

200 OK

0 B

URL HTTP/2
top-fwz1.mail.ru/js/code.js
IP
95.163.52.67:0
ASN
#47764 Mail.Ru LLC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/code.js HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vk.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 13 Sep 2022 14:09:12 GMT
content-type: application/javascript
last-modified: Tue, 13 Sep 2022 11:16:19 GMT
set-cookie: FTID=1RMYgQ0tkIIC:1663078152:0:::; path=/; expires=Thu, 14-Sep-23 14:09:12 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
etag: W/"63206683-7e5d"
expires: Tue, 13 Sep 2022 15:09:12 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: max-age=3600, private
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (63)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP