svplotnikov.ru/shop/red/
81.177.139.211200 OK 8.7 kB IP 81.177.139.211:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (11231)
Hash b0be92c57f90b8f7829567ff030d5d2e
dc54f0a09542e35470af9324d64332818d34f4f7
8c19712485796f5caf1c17d63c7ce717a25985f47248f48bdc31a64614aad083
Analyzer Verdict Alert openphish Generic/Spear Phishing
phishtank Other
fortinet Phishing
quad9 Sinkholed
GET /shop/red/ HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 8725
Connection: keep-alive
Server: Jino.ru/mod_pizza
Set-Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7759
Expires: Wed, 01 Feb 2023 23:38:23 GMT
Date: Wed, 01 Feb 2023 21:29:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8812
Expires: Wed, 01 Feb 2023 23:55:56 GMT
Date: Wed, 01 Feb 2023 21:29:04 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 20:43:26 GMT
content-type: application/json
age: 2738
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5681
Expires: Wed, 01 Feb 2023 23:03:45 GMT
Date: Wed, 01 Feb 2023 21:29:04 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JZU+nEWlGA4hkYJwUC/WxgSyLURrbxGJXlKBASa7k42H3/JBq+HVV/eSRVMwTOVXBm1/Ogheprk1JLQb2yN4XA==
x-amz-request-id: 2FB0T278PJHT4ZJ2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 21:22:49 GMT
age: 375
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 21:29:04 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
svplotnikov.ru/shop/red/index_files/base.min.css
81.177.139.211200 OK 6.9 kB URL HTTP/1.1 svplotnikov.ru/shop/red/index_files/base.min.css
IP 81.177.139.211:0
File type ASCII text, with very long lines (52542), with no line terminators
Hash c79531a0a1779753009c253cffee9bc6
2ed73254bd3d4b197dc3e4a01425d97483cfe2ab
326cd6aceb61088088eb6b8047ada48d35e35c9248a1a444d6335df41760679a
Analyzer Verdict Alert quad9 Sinkholed
GET /shop/red/index_files/base.min.css HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: text/css
Content-Length: 6936
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Sun, 17 Jul 2022 16:17:54 GMT
ETag: "bc2f848-cd3e-5e40297f47080"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
svplotnikov.ru/shop/red/index_files/f(1).txt
81.177.139.211200 OK 199 B URL HTTP/1.1 svplotnikov.ru/shop/red/index_files/f(1).txt
IP 81.177.139.211:0
File type ASCII text, with no line terminators
Hash 90bf72e9f22b4793b9d00490c7b95b3d
db06141eb14a88aa2cc69e24d6d72b0b02f90b05
4d37e3f12a7f3f88c71f66b8a5edfe8f7af73756d897d4aa6d48566bcb61202e
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /shop/red/index_files/f(1).txt HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: text/plain; charset=cp1251
Content-Length: 199
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Sun, 17 Jul 2022 16:17:54 GMT
ETag: "bc2f819-d2-5e40297f47080"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
svplotnikov.ru/shop/red/index_files/f.txt
81.177.139.211200 OK 100 B URL HTTP/1.1 svplotnikov.ru/shop/red/index_files/f.txt
IP 81.177.139.211:0
File type ASCII text, with no line terminators
Hash bfc1048d4d1e257ff231a93bc55e2953
2fe40f4faf68137caa9a3df39754432b295bb6e2
d9e218189ff857f5c51bd09c945f591f1f5ec1940ae7a164346129f59b11017c
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /shop/red/index_files/f.txt HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: text/plain; charset=cp1251
Content-Length: 100
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Sun, 17 Jul 2022 16:17:54 GMT
ETag: "bc2f7c7-6b-5e40297f47080"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
svplotnikov.ru/shop/red/index_files/12.min.js
81.177.139.211200 OK 1.9 kB URL HTTP/1.1 svplotnikov.ru/shop/red/index_files/12.min.js
IP 81.177.139.211:0
File type ASCII text, with very long lines (7298), with no line terminators
Hash cfe6cbaf32be5f360496235e68351495
9b3e28894ebc49390982df4bf3ea5be13e3fd5e7
e5c31c29a3f3e7b76cecc329688d7677acec8dee2575fdc7fe70b89331900aff
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /shop/red/index_files/12.min.js HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: application/javascript
Content-Length: 1866
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Sun, 17 Jul 2022 16:17:54 GMT
ETag: "bc2f746-1c82-5e40297f47080"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
svplotnikov.ru/shop/red/index_files/2.min.js
81.177.139.211200 OK 13 kB URL HTTP/1.1 svplotnikov.ru/shop/red/index_files/2.min.js
IP 81.177.139.211:0
File type ASCII text, with very long lines (42608)
Hash a1c2c876b8e28a065384dede052666c4
a17a7af49e62a3742ee1bb385380633d11950dfe
1b3b0f0d3c0b4e686def0cda4c17ee5faa27232803f7480a5eeb2249c234b50e
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /shop/red/index_files/2.min.js HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: application/javascript
Content-Length: 12848
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Sun, 17 Jul 2022 16:17:54 GMT
ETag: "bc2f7a6-a6ab-5e40297f47080"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
svplotnikov.ru/shop/red/index_files/lux.js
81.177.139.211200 OK 6.6 kB URL HTTP/1.1 svplotnikov.ru/shop/red/index_files/lux.js
IP 81.177.139.211:0
File type ASCII text, with very long lines (18304)
Hash 189305965d105ea6bed6750e3e7838c2
21097aac5c5fffcf720ce8dd4d1bd5a78ae02f4f
d199e0d9547e6af3b35f3fab8be99ead022e1f5e439a7628910bc9c47c62952a
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /shop/red/index_files/lux.js HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: application/javascript
Content-Length: 6552
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Sun, 17 Jul 2022 16:17:54 GMT
ETag: "bc2f74a-47a5-5e40297f47080"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
svplotnikov.ru/shop/red/index_files/head.min.js
81.177.139.211200 OK 17 kB URL HTTP/1.1 svplotnikov.ru/shop/red/index_files/head.min.js
IP 81.177.139.211:0
File type Unicode text, UTF-8 text, with very long lines (50621)
Hash f9b0bf129c2c53707e82080c04ad7291
25006b936520f5ab73a887d6b807a96b2ed86466
1fe9868c9a34d9c6b9488e69a923b3f8e80671d7030bef8634ddb33b8a00272e
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /shop/red/index_files/head.min.js HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: application/javascript
Content-Length: 16958
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Sun, 17 Jul 2022 16:17:54 GMT
ETag: "bc2f6a2-c5fd-5e40297f47080"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
svplotnikov.ru/shop/red/index_files/otTCF.js
81.177.139.211200 OK 15 kB URL HTTP/1.1 svplotnikov.ru/shop/red/index_files/otTCF.js
IP 81.177.139.211:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b5acc7b88db4478321fd0c0efa5a644a
0afbcb059490827e56db6d6af6a2a8a8f2fc0047
699c04247ecd4df8fc9a96f950f6202fb6631373262b0262231832c314ff25b6
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /shop/red/index_files/otTCF.js HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: application/javascript
Content-Length: 15033
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Sun, 17 Jul 2022 16:17:54 GMT
ETag: "bc2f641-10f59-5e40297f47080"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
svplotnikov.ru/shop/red/index_files/otBannerSdk.js
81.177.139.211200 OK 87 kB URL HTTP/1.1 svplotnikov.ru/shop/red/index_files/otBannerSdk.js
IP 81.177.139.211:0
File type ASCII text, with very long lines (65455)
Hash 8c704832f4ba661b97bef6885af7c003
d749d5cd84e4b57e030f2c72b9c923667dd9334a
b25c18ab2fab02b2f9d30584ecce81f731022d8092c7f6649a1a2d8e7c698827
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /shop/red/index_files/otBannerSdk.js HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Sun, 17 Jul 2022 16:17:54 GMT
ETag: "bc2f7a8-59e3a-5e40297f47080"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
svplotnikov.ru/shop/red/index_files/header.min.css
81.177.139.211200 OK 9.5 kB URL HTTP/1.1 svplotnikov.ru/shop/red/index_files/header.min.css
IP 81.177.139.211:0
File type ASCII text, with very long lines (63430), with no line terminators
Hash 33ef3602737ef539c5c794dc3d2544b2
43c20b998f22dd31adff371a8a2375f2c84f3102
06762a5d5d29cca256ef76154cdd2e355137eb805e3bcd97446c20bd34ed0321
Analyzer Verdict Alert quad9 Sinkholed
GET /shop/red/index_files/header.min.css HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: text/css
Content-Length: 9492
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Sun, 17 Jul 2022 16:17:54 GMT
ETag: "bc2f77e-f7c6-5e40297f47080"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
svplotnikov.ru/shop/red/index_files/gpt.js
81.177.139.211200 OK 28 kB URL HTTP/1.1 svplotnikov.ru/shop/red/index_files/gpt.js
IP 81.177.139.211:0
File type ASCII text, with very long lines (42289)
Hash bc15ff2370d1e3151d527412689e9ccf
d6e7bbd07239574b003b269dcad47e90c7885a95
c73114678a7390c4bd9a2368a1ce140ca19f5eee70e28533f681016df7ad1cc2
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /shop/red/index_files/gpt.js HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: application/javascript
Content-Length: 28344
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Sun, 17 Jul 2022 16:17:54 GMT
ETag: "bc2f7aa-146b9-5e40297f47080"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
svplotnikov.ru/shop/red/index_files/0.min.js
81.177.139.211200 OK 21 kB URL HTTP/1.1 svplotnikov.ru/shop/red/index_files/0.min.js
IP 81.177.139.211:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 7dccda900195700ee1a560b85cb687cc
4b3e5e8ae30c446f525687991d242590c2ac5593
649c20af617d0a366fdedd9a002bd19cd19edc19ad225341bb8604a93286838c
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /shop/red/index_files/0.min.js HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: application/javascript
Content-Length: 21283
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Sun, 17 Jul 2022 16:17:54 GMT
ETag: "bc2f7a0-108ca-5e40297f47080"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
i.ibb.co/rvJSbmd/button-anmelden-mit-swisspass.png
162.19.58.156200 OK 4.0 kB URL HTTP/2 i.ibb.co/rvJSbmd/button-anmelden-mit-swisspass.png
IP 162.19.58.156:0
File type PNG image data, 354 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 72e93030e66c338d5d027ec9e37e3b7f
c1592c93a34f1678ee4352454f0b2a351b915fff
2935f6cbdebc3fdf2a3807e29d6cb7c47ae93ab1b509f9c8fec2f61bd524abd0
GET /rvJSbmd/button-anmelden-mit-swisspass.png HTTP/1.1
Host: i.ibb.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://svplotnikov.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 21:29:04 GMT
content-type: image/png
content-length: 3957
last-modified: Sun, 17 Jul 2022 18:01:43 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn-icons-png.flaticon.com/512/197/197571.png
23.38.202.22200 OK 12 kB URL HTTP/2 cdn-icons-png.flaticon.com/512/197/197571.png
IP 23.38.202.22:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 85ca59c60c9179d7b3e9b6ab03b407c7
ab58b6b91fd5a7c243389fc49dff53bb7f0f94b5
9ead1bc194a3a01035de7f65160c91b32604d2c788b35a914543c34ef451cd3a
GET /512/197/197571.png HTTP/1.1
Host: cdn-icons-png.flaticon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://svplotnikov.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 14 Feb 2022 13:04:10 GMT
etag: "85ca59c60c9179d7b3e9b6ab03b407c7"
content-type: image/png
accept-ranges: bytes
content-length: 11636
expires: Wed, 01 Feb 2023 21:29:04 GMT
date: Wed, 01 Feb 2023 21:29:04 GMT
vary: Accept-Encoding
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=31536000
x-default-rule: YES
X-Firefox-Spdy: h2
cdn-icons-png.flaticon.com/512/197/197560.png
23.38.202.22200 OK 16 kB URL HTTP/2 cdn-icons-png.flaticon.com/512/197/197560.png
IP 23.38.202.22:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash a7d33e1998b1eee77ff4bf6a742be232
5e3fb88d04337365ff23d1fc95104323871f9f49
0d075f82e2b4f4fa762101ae95488a425d2df9f40c5b7e120954509c635879bf
GET /512/197/197560.png HTTP/1.1
Host: cdn-icons-png.flaticon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://svplotnikov.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 14 Feb 2022 13:03:22 GMT
etag: "a7d33e1998b1eee77ff4bf6a742be232"
content-type: image/png
accept-ranges: bytes
content-length: 16395
expires: Wed, 01 Feb 2023 21:29:04 GMT
date: Wed, 01 Feb 2023 21:29:04 GMT
vary: Accept-Encoding
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=31536000
x-default-rule: YES
X-Firefox-Spdy: h2
svplotnikov.ru/shop/red/index_files/aframe.html
81.177.139.211200 OK 542 B URL HTTP/1.1 svplotnikov.ru/shop/red/index_files/aframe.html
IP 81.177.139.211:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (765)
Hash a1d9332bc06ba2a899e5286a5eed52e1
02746abb0bdea1f54fc96a49c00f56925e1251d9
5c94055ad055e9c45b47bffff9175a85c7d96ae71e36000773677ad7c6bbefcc
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /shop/red/index_files/aframe.html HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128; lux_uid=167528696775018151
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: text/html; charset=cp1251
Content-Length: 542
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Sun, 17 Jul 2022 16:17:56 GMT
ETag: "bc2f817-358-5e4029812f500"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
svplotnikov.ru/shop/red/index_files/pubads_impl_2022071401.js
81.177.139.211200 OK 145 B URL HTTP/1.1 svplotnikov.ru/shop/red/index_files/pubads_impl_2022071401.js
IP 81.177.139.211:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5e610eda263540ba05be0d6b5cf807a2
269663c27bdb68d880847d4f7bd4b62796926c93
682e5b3b42807f8a40d9f12d20c12a824dbf1dfcda7fefab7c81a08a35c9bfca
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /shop/red/index_files/pubads_impl_2022071401.js HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Sun, 17 Jul 2022 16:17:54 GMT
ETag: "bc2f821-5e359-5e40297f47080"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 21:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
svplotnikov.ru/shop/red/index_files/sodar
81.177.139.211200 OK 0 B URL HTTP/1.1 svplotnikov.ru/shop/red/index_files/sodar
IP 81.177.139.211:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /shop/red/index_files/sodar HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/index_files/aframe.html
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128; lux_uid=167528696775018151
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:04 GMT
Content-Type: text/html; charset=cp1251
Content-Length: 0
Connection: keep-alive
Server: Jino.ru/mod_pizza
Last-Modified: Sun, 17 Jul 2022 16:17:54 GMT
ETag: "bc2f782-0-5e40297f47080"
Accept-Ranges: bytes
securepubads.g.doubleclick.net/pagead/ppub_config?ippd=svplotnikov.ru
142.250.74.130200 OK 39 B URL HTTP/2 securepubads.g.doubleclick.net/pagead/ppub_config?ippd=svplotnikov.ru
IP 142.250.74.130:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1f06da0066a70d18338c5ca7b0de18ca
d62716c0e9b1ef47f99d8be70f8ec7f167c33804
7f381fa5d3af45273661bedf2269fe6b9ccd9c0e3d90b60cac580093b4516159
GET /pagead/ppub_config?ippd=svplotnikov.ru HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://svplotnikov.ru
Connection: keep-alive
Referer: http://svplotnikov.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
date: Wed, 01 Feb 2023 21:29:04 GMT
expires: Wed, 01 Feb 2023 21:29:04 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 39
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 01-Feb-2023 21:44:04 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 21:29:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 5c3eefc46893b39873f7e9fc0198a3b9
c1a9ef6ad4aceba0113fd61ed885b1b00e28cd4c
dfd7011d1b47075b0d874fd62915d4efddbafd462326bd1582aff7226aa0e42f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=100881
Date: Wed, 01 Feb 2023 21:29:04 GMT
Etag: "63d9a775-1d7"
Expires: Fri, 03 Feb 2023 01:30:25 GMT
Last-Modified: Tue, 31 Jan 2023 23:42:45 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yLZqcgYlXuXbaXr3snuqAaXYMnrOiCLi1VQTcLHm1qey4pj96XqNiw==
Age: 6460
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 5c3eefc46893b39873f7e9fc0198a3b9
c1a9ef6ad4aceba0113fd61ed885b1b00e28cd4c
dfd7011d1b47075b0d874fd62915d4efddbafd462326bd1582aff7226aa0e42f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=99650
Date: Wed, 01 Feb 2023 21:29:04 GMT
Etag: "63d9a775-1d7"
Expires: Fri, 03 Feb 2023 01:09:54 GMT
Last-Modified: Tue, 31 Jan 2023 23:42:45 GMT
Server: ECS (bsa/EB18)
X-Cache: Miss from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OTJB6CM6S4bgOhBULdNrqBbXtMpgMBe2aRxvl3HqmL_4v34nC4PLyw==
Age: 5229
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 5c3eefc46893b39873f7e9fc0198a3b9
c1a9ef6ad4aceba0113fd61ed885b1b00e28cd4c
dfd7011d1b47075b0d874fd62915d4efddbafd462326bd1582aff7226aa0e42f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Wed, 01 Feb 2023 21:29:04 GMT
Etag: "63d9a775-1d7"
Server: ECS (dcb/7F3A)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: eG1cm6bS_QHfPjs4K__MDT5io8ewBM-IN1yNxc_Q6Inyxz2lvrKRVA==
cdn.app.sbb.ch/fonts/v1_6_subset/SBBWeb-Thin.woff2
52.29.111.168200 OK 15 kB URL HTTP/2 cdn.app.sbb.ch/fonts/v1_6_subset/SBBWeb-Thin.woff2
IP 52.29.111.168:0
File type Web Open Font Format (Version 2), TrueType, length 14592, version 1.0\012- data
Hash 5e7610c6ee3c32c6c19a945af5ba85e3
bc415536f4defc8beaceb5585a91564cb050c241
d54c676681d2c4e3b931e77908b1345441a0cf6e8f2339d4d3a56c1083aab7e6
GET /fonts/v1_6_subset/SBBWeb-Thin.woff2 HTTP/1.1
Host: cdn.app.sbb.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://svplotnikov.ru
Connection: keep-alive
Referer: http://svplotnikov.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 21:29:04 GMT
content-type: application/font-woff2
content-length: 14592
server: nginx/1.23.2
last-modified: Fri, 17 Dec 2021 15:16:26 GMT
vary: Accept-Encoding
etag: "61bca9ca-3900"
expires: Thu, 01 Feb 2024 21:29:04 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
cache-control: max-age=31536000, public, private
accept-ranges: bytes
set-cookie: 9527f1a32486d650b0687919ffd41c2b=49fbd2303654fcc7ce62f0ef80d7860e; path=/; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
cdn.app.sbb.ch/fonts/v1_6_subset/SBBWeb-Roman.woff2
52.29.111.168200 OK 14 kB URL HTTP/2 cdn.app.sbb.ch/fonts/v1_6_subset/SBBWeb-Roman.woff2
IP 52.29.111.168:0
File type Web Open Font Format (Version 2), TrueType, length 14152, version 1.0\012- data
Hash 82e55d1865d40988204fa60522628f4b
e9d74fb23204a62c520d19b8fae3f0193539cdfb
966a89b8080879ba41c6b9f15c5efb58182c33a0d2d1e08748beb554b28b4997
GET /fonts/v1_6_subset/SBBWeb-Roman.woff2 HTTP/1.1
Host: cdn.app.sbb.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://svplotnikov.ru
Connection: keep-alive
Referer: http://svplotnikov.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 21:29:04 GMT
content-type: application/font-woff2
content-length: 14152
server: nginx/1.23.2
last-modified: Fri, 17 Dec 2021 15:16:26 GMT
vary: Accept-Encoding
etag: "61bca9ca-3748"
expires: Thu, 01 Feb 2024 21:29:04 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
cache-control: max-age=31536000, public, private
accept-ranges: bytes
set-cookie: 9527f1a32486d650b0687919ffd41c2b=c4ec8c8cc8b23a500a81798217b8ec6d; path=/; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 20:49:05 GMT
age: 2400
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.app.sbb.ch/fonts/v1_6_subset/SBBWeb-Bold.woff2
52.29.111.168200 OK 14 kB URL HTTP/2 cdn.app.sbb.ch/fonts/v1_6_subset/SBBWeb-Bold.woff2
IP 52.29.111.168:0
File type Web Open Font Format (Version 2), TrueType, length 14272, version 1.0\012- data
Hash dc04de1d44c514385e815f3e8c1c80d7
c8932161c80c1b65e006f79f4a9d04dc2e3f8b37
f069a80a8f0838dc76f55359c8599ee04d3c66004c6513de7cbf382df4bb59e2
GET /fonts/v1_6_subset/SBBWeb-Bold.woff2 HTTP/1.1
Host: cdn.app.sbb.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://svplotnikov.ru
Connection: keep-alive
Referer: http://svplotnikov.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 01 Feb 2023 21:29:04 GMT
content-type: application/font-woff2
content-length: 14272
server: nginx/1.23.2
last-modified: Fri, 17 Dec 2021 15:16:26 GMT
vary: Accept-Encoding
etag: "61bca9ca-37c0"
expires: Thu, 01 Feb 2024 21:29:04 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Mx-ReqToken,X-Requested-With
cache-control: max-age=31536000, public, private
accept-ranges: bytes
set-cookie: 9527f1a32486d650b0687919ffd41c2b=e6a760d677c872db62cd8894a0d8af4c; path=/; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 21:29:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcScja8EW4PSt2ay-0oJAKt6aDQ00rVhyOxOTg&usqp=CAU
142.250.74.174200 OK 2.1 kB URL HTTP/2 encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcScja8EW4PSt2ay-0oJAKt6aDQ00rVhyOxOTg&usqp=CAU
IP 142.250.74.174:0
File type PNG image data, 225 x 225, 8-bit colormap, non-interlaced\012- data
Hash afedfbf3c3631b837faef4a889fc02b5
ec94529aad3a180259e5114b2ea899e9a03f3bda
d5a335190307402516082d0274bde12fa482d20ce04da3a36f79296b244509e4
GET /images?q=tbn:ANd9GcScja8EW4PSt2ay-0oJAKt6aDQ00rVhyOxOTg&usqp=CAU HTTP/1.1
Host: encrypted-tbn0.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://svplotnikov.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 2059
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 21:29:05 GMT
expires: Thu, 01 Feb 2024 21:29:05 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 17 Aug 2019 00:34:41 GMT
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5170
Expires: Wed, 01 Feb 2023 22:55:15 GMT
Date: Wed, 01 Feb 2023 21:29:05 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 21:29:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.84.241.69101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.84.241.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2N9ie70Lzmq/f7Kz5Zqi0g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1KAq05b6iAL46Gfs4uKP09HlROQ=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8086
Expires: Wed, 01 Feb 2023 23:43:52 GMT
Date: Wed, 01 Feb 2023 21:29:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8086
Expires: Wed, 01 Feb 2023 23:43:52 GMT
Date: Wed, 01 Feb 2023 21:29:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8086
Expires: Wed, 01 Feb 2023 23:43:52 GMT
Date: Wed, 01 Feb 2023 21:29:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8086
Expires: Wed, 01 Feb 2023 23:43:52 GMT
Date: Wed, 01 Feb 2023 21:29:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 68348
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _xCzARAxn6PB9wrQAL98hWvnUxQOocZFqMoS2l_CoIzOJC18bXQuSQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:53:32 GMT
age: 84934
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pU_436f27nMZKPxZZWqZekERHFTvcG5NT5p_CYEXHRPtIWjDtSA-uA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:27:41 GMT
age: 50485
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2998f7f50ac0eec931c348e8a0fb0c60
f5e411cda74cb7fb4a662f4787e9543b9749c8b5
0c81413a819e379212bf757b1c9469415aec2ac8fdf47f94ff23c420a1da20e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5736
x-amzn-requestid: 895ee89b-8d2e-42f9-a392-466557f8a0d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffEtEGk_oAMFYPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e7ed-026a1b0d79dc7eb572317bd2;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:28:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4yxwz2MFTdpb8I56VVbFU2Zz0qG_uHcYc3aDtn6boQPjhw7UFLLnYw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 10:37:09 GMT
age: 39117
etag: "f5e411cda74cb7fb4a662f4787e9543b9749c8b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 12:57:00 GMT
age: 30726
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23db22ce2120fbb0ae6109e1a046062d
2068c8d9a5bc30a17be658e198e26c64a80703cf
f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaWFP_IAMF9wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XtqfgDxskGIUmZdRj2nrGDpo9KvECk528eLZV29xNx3h7CLOu49mnQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:42:19 GMT
age: 85607
etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
svplotnikov.ru/favicon.ico
81.177.139.211200 OK 0 B URL HTTP/1.1 svplotnikov.ru/favicon.ico
IP 81.177.139.211:0
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: svplotnikov.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://svplotnikov.ru/shop/red/
Cookie: PHPSESSID=31fb3511919b64020c70981da49d3128; lux_uid=167528696775018151
HTTP/1.1 200 OK
Date: Wed, 01 Feb 2023 21:29:05 GMT
Content-Type: text/html; charset=windows-1251
Content-Length: 14258
Connection: keep-alive
Server: Jino.ru/mod_pizza
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (3be9ac3981205d87df59c0cf3b53b958)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: none