ronex-valve.ru/
89.253.228.138301 Moved Permanently 231 B IP 89.253.228.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0952c29db6717a148ae3e96cd4b28f0a
af9f46bca5cd83a1fcd14be4824e7b76483ee982
6176a839d522b40a7a81fd6c1863cd708d9575139265d3f9b96efde17d86bcf1
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 01 Apr 2023 02:01:13 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 231
Connection: keep-alive
Location: https://ronex-valve.ru/
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6129
Expires: Sat, 01 Apr 2023 03:13:12 GMT
Date: Sat, 01 Apr 2023 01:31:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10708
Expires: Sat, 01 Apr 2023 04:29:31 GMT
Date: Sat, 01 Apr 2023 01:31:03 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 01 Apr 2023 01:28:26 GMT
content-type: application/json
age: 157
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 374c9e295a804e605c402f48ae7e2446
967394b36ecdff2dd32842f878887f061024c6b3
7652dfcb9e2d620ce1d033be8ecc53166d2881154c15decd60899415e5ac2706
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7652DFCB9E2D620CE1D033BE8ECC53166D2881154C15DECD60899415E5AC2706"
Last-Modified: Thu, 30 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5173
Expires: Sat, 01 Apr 2023 02:57:16 GMT
Date: Sat, 01 Apr 2023 01:31:03 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qpsA3WHCfmP9Orw2Rdqxx2ra8gGtmv0jeNrw3hSzKsGI9BfK/BYoW++AK6elA2K/ORzw0ez7feA=
x-amz-request-id: FNYR8XZD37KTKZ5F
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 01 Apr 2023 01:03:33 GMT
age: 1650
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 19bd415f572aba982c36d5fa0226c6a7
751fe9075c3bc0749caffc00e1dcda776becb779
213cc633851b8621be2d4513da4f389f36a985fe942732fce8b87c07fa86a848
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "213CC633851B8621BE2D4513DA4F389F36A985FE942732FCE8B87C07FA86A848"
Last-Modified: Thu, 30 Mar 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=607
Expires: Sat, 01 Apr 2023 01:41:11 GMT
Date: Sat, 01 Apr 2023 01:31:04 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 01 Apr 2023 01:31:03 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ronex-valve.ru/
89.253.228.138200 OK 6.7 kB IP 89.253.228.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (569)
Hash 4f3b9aac59115f7460d1fc91c4428bbd
f3a77467bc8bc3849fda5ebbfaf3cf54551539f2
ed5a3f32fcb8738856d4f85ae8f9cf4758b099038d6c0ee3c56f398cd5aa828d
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:13 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (6d7c6248eca6664dfcc4e40db61f67c6)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh; path=/; HttpOnly
X-Powered-By: PHP/7.4.32, PleskLin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/bitrix/cache/css/s1/roneks/page_6bfc8c4ca2ae266042f365edfb8ad3fc/page_6bfc8c4ca2ae266042f365edfb8ad3fc_v1.css?1666077459380
89.253.228.138200 OK 223 B URL HTTP/1.1 ronex-valve.ru/bitrix/cache/css/s1/roneks/page_6bfc8c4ca2ae266042f365edfb8ad3fc/page_6bfc8c4ca2ae266042f365edfb8ad3fc_v1.css?1666077459380
IP 89.253.228.138:0
Hash b1e872ab94d8821d8e6ad94a2d773f61
57440c872ae03fcedefe62eb5f42d28c4705e934
f3446d5103f4828fed6db74e2908d3d07b03bbc5b8c325432d482dd90536febf
Analyzer Verdict Alert fortinet Malware
GET /bitrix/cache/css/s1/roneks/page_6bfc8c4ca2ae266042f365edfb8ad3fc/page_6bfc8c4ca2ae266042f365edfb8ad3fc_v1.css?1666077459380 HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:13 GMT
Content-Type: text/css
Last-Modified: Tue, 18 Oct 2022 07:17:39 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"634e5313-17c"
Expires: Sat, 08 Apr 2023 02:01:13 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/css/main.css
89.253.228.138200 OK 1.1 kB URL HTTP/1.1 ronex-valve.ru/css/main.css
IP 89.253.228.138:0
Hash e7b2239510d3b176fc44257850d416fe
38f1ca55de7d3e1bbba600a9203cf2065d2704d8
1db69eab5eb8aec32edefdd881ef5fe3af7277894354c471eccba9b9d2d23ed1
GET /css/main.css HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:13 GMT
Content-Type: text/css
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"56a6507a-e37"
Expires: Sat, 08 Apr 2023 02:01:13 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/css/normalize.min.css
89.253.228.138200 OK 1.1 kB URL HTTP/1.1 ronex-valve.ru/css/normalize.min.css
IP 89.253.228.138:0
File type ASCII text, with very long lines (2443)
Hash 66d886ebfdc3c7d5144962574797e472
fe8744f9b0e32d12042fcef2fa5ec9d5ee658e47
114af3419a6b50971f3f1218f0d6ff0e53d14b724bac17fa304438787c3ec6f8
GET /css/normalize.min.css HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:13 GMT
Content-Type: text/css
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"56a6507a-9c8"
Expires: Sat, 08 Apr 2023 02:01:13 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/css/font-awesome.css
89.253.228.138200 OK 4.9 kB URL HTTP/1.1 ronex-valve.ru/css/font-awesome.css
IP 89.253.228.138:0
File type troff or preprocessor input, ASCII text, with very long lines (305)
Hash d7a5f00d65c06bff9de2c28a8a5356bb
93617d3bd15d3f2d9386f1dcd387182688dee65c
2ffbafc949cd649bbbcae6e1e53d37b0cff470c17562ad68f4608a4713609971
GET /css/font-awesome.css HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:13 GMT
Content-Type: text/css
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"56a6507a-626d"
Expires: Sat, 08 Apr 2023 02:01:13 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/js/colorbox-master/example1/colorbox.css
89.253.228.138200 OK 1.5 kB URL HTTP/1.1 ronex-valve.ru/js/colorbox-master/example1/colorbox.css
IP 89.253.228.138:0
Hash 49c9cbe442573a157237916f0dfc2679
cdb8478bcc83583abdbe6eaccd6abbc43d52c614
26201c0e6dea5a4310ff517a8c01555a6b8d95338b3c07a98e75c264680a3a03
GET /js/colorbox-master/example1/colorbox.css HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:13 GMT
Content-Type: text/css
Last-Modified: Mon, 25 Jan 2016 16:43:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"56a650a2-1153"
Expires: Sat, 08 Apr 2023 02:01:13 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/css/style.css
89.253.228.138200 OK 5.4 kB URL HTTP/1.1 ronex-valve.ru/css/style.css
IP 89.253.228.138:0
File type ASCII text, with very long lines (477)
Hash f80b2dfa1e09a2e7e440b68828094ff2
cf3305010bcef1e6b44eb3154ce41d563f689e00
85924aa870b222148ddb37ce6b7cce1809b09139d6c8462ffc8cb7100697b52f
GET /css/style.css HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:13 GMT
Content-Type: text/css
Last-Modified: Sun, 27 Mar 2016 21:45:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"56f8548d-866c"
Expires: Sat, 08 Apr 2023 02:01:13 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/js/vendor/modernizr-2.6.2.min.js
89.253.228.138200 OK 6.2 kB URL HTTP/1.1 ronex-valve.ru/js/vendor/modernizr-2.6.2.min.js
IP 89.253.228.138:0
File type HTML document, ASCII text, with very long lines (14756)
Hash 7416b7afc41bb332ec4cdcde736d3aee
245a16228caa38f1e809c69fb90e013469c985bd
9ce97f813749a8a215e6671e1c1b20637c01974c45a6b4e3733012e167b13b68
Analyzer Verdict Alert fortinet Malware
GET /js/vendor/modernizr-2.6.2.min.js HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:13 GMT
Content-Type: application/javascript
Last-Modified: Mon, 25 Jan 2016 16:43:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"56a650a2-3c36"
Expires: Sat, 08 Apr 2023 02:01:13 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/js/jquery.jcarousel.min.js
89.253.228.138200 OK 5.3 kB URL HTTP/1.1 ronex-valve.ru/js/jquery.jcarousel.min.js
IP 89.253.228.138:0
File type ASCII text, with very long lines (17998)
Hash 71669f39b8b81171f7f0785d795299ae
3a3483b4fb322b656d4fb2508c770fd96fed7edf
116a3e92f2c22afd35763582d646e07b88ff9115531df4a407f725a44bd1dd5a
Analyzer Verdict Alert fortinet Malware
GET /js/jquery.jcarousel.min.js HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:13 GMT
Content-Type: application/javascript
Last-Modified: Thu, 03 Mar 2016 05:34:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"56d7cce9-46cb"
Expires: Sat, 08 Apr 2023 02:01:13 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/js/colorbox-master/jquery.colorbox-min.js
89.253.228.138200 OK 4.7 kB URL HTTP/1.1 ronex-valve.ru/js/colorbox-master/jquery.colorbox-min.js
IP 89.253.228.138:0
File type ASCII text, with very long lines (11812)
Hash b42dd209eaf34b90d2b0494e4791db16
59e5145a4f70e3bdf7c1e35539f8698ce0fd65ea
d697bfeb685af18832158b01c44f63a1237f9e43e8e3d9a9dde2c576736ea03c
Analyzer Verdict Alert fortinet Malware
GET /js/colorbox-master/jquery.colorbox-min.js HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:13 GMT
Content-Type: application/javascript
Last-Modified: Mon, 25 Jan 2016 16:43:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"56a650a2-2e6d"
Expires: Sat, 08 Apr 2023 02:01:13 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/js/jquery-1.8.2.min.js
89.253.228.138200 OK 33 kB URL HTTP/1.1 ronex-valve.ru/js/jquery-1.8.2.min.js
IP 89.253.228.138:0
File type Unicode text, UTF-8 text, with very long lines (65479), with CRLF line terminators
Hash dd6acf390c51dec424bdefd3ba3da000
02341bb1fdf6d68b8f1e5f5ee2053ed3bfc8c200
9e4c7798ee4a379b4003dc3b11e7dda1ad05bfdb74311dabff55d8cf9dab0c5b
Analyzer Verdict Alert fortinet Malware
GET /js/jquery-1.8.2.min.js HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:13 GMT
Content-Type: application/javascript
Last-Modified: Mon, 25 Jan 2016 16:43:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"56a650a2-16cfc"
Expires: Sat, 08 Apr 2023 02:01:13 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Last-Modified, Alert, Backoff, Content-Type, ETag, Cache-Control, Retry-After, Expires, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 01 Apr 2023 01:14:40 GMT
age: 984
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ronex-valve.ru/js/jquery-ui.js
89.253.228.138200 OK 108 kB URL HTTP/1.1 ronex-valve.ru/js/jquery-ui.js
IP 89.253.228.138:0
File type ASCII text, with very long lines (840)
Size 108 kB (107515 bytes)
Hash af4bead760bd125b6aa62fb88a32c56a
56c59b59280295ca0e256b7efa89676dc4cc26fe
2bb35b57fd488feb5ab56aa60f0db6528db2df78dcfc8b4e315606b47c98b51c
Analyzer Verdict Alert fortinet Malware
GET /js/jquery-ui.js HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:13 GMT
Content-Type: application/javascript
Last-Modified: Mon, 25 Jan 2016 16:43:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"56a650a2-6a9eb"
Expires: Sat, 08 Apr 2023 02:01:13 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash b47eb3927ff71f9cfc2d4c90167b598f
46de463a88e5f48414a3e86bcadf920a86f9cb8a
91439e34131af57fa49949444176afd3874e908934f44c7cddb3c05d6daf30f0
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 01 Apr 2023 01:31:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 31 Mar 2023 21:27:38 GMT
Expires: Sat, 01 Apr 2023 21:27:38 GMT
ETag: "46de463a88e5f48414a3e86bcadf920a86f9cb8a"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ronex-valve.ru/fonts/Plumb-Regular.woff
89.253.228.138200 OK 16 kB URL HTTP/1.1 ronex-valve.ru/fonts/Plumb-Regular.woff
IP 89.253.228.138:0
File type Web Open Font Format, CFF, length 15856, version 1.0\012- data
Hash 34836cec3d5da6eec2a75b68494a8e0d
32aa7e3ebc3233d97e973476d45c8e6889389290
fc6678a808f9f007ba7d59e0c18ba8f6b52090f40b9a8147728011b4bfd7b947
Analyzer Verdict Alert fortinet Malware
GET /fonts/Plumb-Regular.woff HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ronex-valve.ru/css/style.css
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: application/font-woff
Content-Length: 15856
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
ETag: "3df0-52a2b41799280"
Accept-Ranges: bytes
X-Powered-By: PleskLin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b3df8c73360b4239af64e11f9d2388be
dc5463ff26615b40e4eab388052790d6c30ea5e6
877b23d16abf2e0e9f649f53747e82af0b75e8595abd71728254e612847cfdb6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "877B23D16ABF2E0E9F649F53747E82AF0B75E8595ABD71728254E612847CFDB6"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3937
Expires: Sat, 01 Apr 2023 02:36:41 GMT
Date: Sat, 01 Apr 2023 01:31:04 GMT
Connection: keep-alive
ronex-valve.ru/about/objects/small/image005.jpg
89.253.228.138200 OK 115 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image005.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=15, height=2448, bps=194, PhotometricIntepretation=RGB, manufacturer=SAMSUNG, model=GT-I9300, orientation=upper-left, width=3264], progressive, precision 8, 800x600, components 3\012- data
Size 115 kB (115376 bytes)
Hash a515241d6bc68db919ee0d578a0b365b
4b48df3678e8e9940b48a29e8fc22c4891a15bdb
86a69bed65cc2aa85bf73cf5d6904fb693fed8d50dde5bc017458ae6e5ad1f4a
GET /about/objects/small/image005.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 115376
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-1c2b0"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image006.jpg
89.253.228.138200 OK 91 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image006.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=19, height=533, bps=0, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D600, orientation=upper-left, width=800], progressive, precision 8, 800x533, components 3\012- data
Hash db1fa4d6e7ef80d69a2ed55e4271fb2a
9d653f4dde9d7233bacf5aa8de24b0d058e50f34
d4f141c7a34d144ba98ba729fdc9a047a735e529c167e5539a878043197ef59d
GET /about/objects/small/image006.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 90862
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-162ee"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image010.jpg
89.253.228.138200 OK 90 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image010.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=19, height=533, bps=0, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D600, orientation=upper-left, width=800], progressive, precision 8, 800x533, components 3\012- data
Hash 4a3beff0efd5547d4e7c62a50f611029
ca2bcda279997b8d722fd9f3ba5e3cc5982f598d
a00153cc9408d8f47e1a79c2cfd34e2e5550f1535f9a3ec27e801efce7ff37e0
GET /about/objects/small/image010.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 89670
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-15e46"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image004.jpg
89.253.228.138200 OK 115 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image004.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=19, height=533, bps=0, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D600, orientation=upper-left, width=800], progressive, precision 8, 800x533, components 3\012- data
Size 115 kB (114590 bytes)
Hash 4813178960b2c1a43cfe9b478d0bd595
fb31eb6e713539e41a747007bc131652d919965e
347b2acc25a6aca5fcc6edccbdc4d1388401183e76e95e2fda581b01ea3800c4
GET /about/objects/small/image004.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 114590
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-1bf9e"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
bitrix.info/ba.js
52.211.66.100200 OK 19 kB IP 52.211.66.100:0
Hash d7ed5f2542bcb27e78d2ca374da366cd
fdcc897edb901cb697ff6b6fe5d89b59d3060e66
79462b7e4929b83e97052f57f9a8ed53e023e03c69bdf54fb3051f068db5d5c7
GET /ba.js HTTP/1.1
Host: bitrix.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 01 Apr 2023 01:31:04 GMT
content-type: application/javascript
server: nginx/1.10.1
last-modified: Wed, 19 May 2021 09:38:44 GMT
etag: W/"60a4dca4-1a03"
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
set-cookie: bx_user_id=a24afe7af989761d9c5498875ca3e935; expires=Tue, 29-Mar-33 01:31:04 GMT; path=/; domain=bitrix.info; SameSite=None; Secure
access-control-allow-origin: *
expires: Mon, 03 Apr 2023 01:31:04 GMT
cache-control: max-age=172800
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
ronex-valve.ru/fonts/fontawesome-webfont.woff?v=4.1.0
89.253.228.138200 OK 84 kB URL HTTP/1.1 ronex-valve.ru/fonts/fontawesome-webfont.woff?v=4.1.0
IP 89.253.228.138:0
File type Web Open Font Format, TrueType, length 83760, version 1.0\012- data
Hash fdf491ce5ff5b2da02708cd0e9864719
7f2f3c55c2de192387c351b995115f6b79e09173
66db52b456efe7e29cec11fa09421d03cb09e37ed1b567307ec0444fd605ce31
Analyzer Verdict Alert fortinet Malware
GET /fonts/fontawesome-webfont.woff?v=4.1.0 HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://ronex-valve.ru/css/font-awesome.css
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: application/font-woff
Content-Length: 83760
Connection: keep-alive
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
ETag: "14730-52a2b41799280"
Accept-Ranges: bytes
X-Powered-By: PleskLin
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
ronex-valve.ru/img/header_back.png
89.253.228.138200 OK 30 kB URL HTTP/1.1 ronex-valve.ru/img/header_back.png
IP 89.253.228.138:0
File type PNG image data, 1800 x 212, 8-bit/color RGB, non-interlaced\012- data
Hash 9826dd171a80bafc7ed998d4adddf4b8
64412995556b739ed680446c96d17ce03292db4a
b6facf45f695c5c96ac07ed350d8ae644401125583c35b1845172e7eda065b33
GET /img/header_back.png HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/png
Last-Modified: Sun, 27 Mar 2016 21:31:33 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"56f85135-7495"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/images/header-menu-line.png
89.253.228.138200 OK 152 B URL HTTP/1.1 ronex-valve.ru/images/header-menu-line.png
IP 89.253.228.138:0
File type PNG image data, 2 x 20, 8-bit/color RGB, non-interlaced\012- data
Hash 5e52e1e4844a5e5adb702410180a4315
b82ec27473fe216117b3dec248b8938216bcb912
dc74f79d7fac1cf934239a90fabe1e0229c37ef0f044c7385816ac0806a9f9b8
GET /images/header-menu-line.png HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/css/style.css
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/png
Last-Modified: Mon, 25 Jan 2016 16:43:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"56a650a2-8b"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/images/img2.jpg
89.253.228.138200 OK 39 kB URL HTTP/1.1 ronex-valve.ru/images/img2.jpg
IP 89.253.228.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1800x183, components 3\012- data
Hash 5ddbcb5e7955f6b3224207ffa98e5104
655aefa10c58ce49f4c53100dd037094913661ad
e88abfd9ab93f76f138d6603a3c3ec07359d1ae4f5be8b3eef920cd07567586e
GET /images/img2.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/css/style.css
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 39181
Last-Modified: Mon, 25 Jan 2016 16:43:14 GMT
Connection: keep-alive
ETag: "56a650a2-990d"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image001.jpg
89.253.228.138200 OK 513 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image001.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=15, height=2448, bps=194, PhotometricIntepretation=RGB, manufacturer=SAMSUNG, model=GT-I9300, orientation=upper-left, width=3264], baseline, precision 8, 800x600, components 3\012- data
Size 513 kB (512663 bytes)
Hash c106dc502d4ac0bfbecb32cb171f8f8a
a46a28d3206fba198fb8b9a63c667185f2c6cf2a
59c54b2d9b43bcde284da3b82fc035271476de5208c8e3f45f5c89655f6320b0
GET /about/objects/small/image001.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 512663
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-7d297"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/images/img.jpg
89.253.228.138200 OK 226 kB URL HTTP/1.1 ronex-valve.ru/images/img.jpg
IP 89.253.228.138:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1200x182, components 3\012- data
Size 226 kB (226309 bytes)
Hash 7cdbfb624567c07d726d06408916ac8f
511cfa1bd10258d3759475a6f399eb865f1f0304
2a360c9d08d542dc865243ae6492dec558316da9b69b5cc7d79074ffb24b1bd4
GET /images/img.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 226309
Last-Modified: Mon, 25 Jan 2016 16:43:14 GMT
Connection: keep-alive
ETag: "56a650a2-37405"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/upload/medialibrary/13b/800-11-3-table.jpg
89.253.228.138200 OK 28 kB URL HTTP/1.1 ronex-valve.ru/upload/medialibrary/13b/800-11-3-table.jpg
IP 89.253.228.138:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 36x36, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2015:04:20 12:38:29], baseline, precision 8, 150x200, components 3\012- data
Hash bd9fe4b627ce1f418835704d6d14b5ac
c42e3018b71c2aced73f40a732497a5f7c2ec46f
2626a7d94a63ef7997f48e71d4ce52b732348f930527d64fb7947942bc3ce5d2
GET /upload/medialibrary/13b/800-11-3-table.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 27727
Last-Modified: Wed, 03 Feb 2016 06:36:15 GMT
Connection: keep-alive
ETag: "56b19fdf-6c4f"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image003.jpg
89.253.228.138200 OK 470 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image003.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=15, height=2448, bps=194, PhotometricIntepretation=RGB, manufacturer=SAMSUNG, model=GT-I9300, orientation=upper-left, width=3264], baseline, precision 8, 800x600, components 3\012- data
Size 470 kB (469720 bytes)
Hash c813e53a89ca94fd3c143ffbf3371beb
4e6adb8317c772e93b23a1e4bf41ce618fa77d63
cfb85722d5e746d4eebb353554116a4da97a30a60017f8c882e395067630a7cd
GET /about/objects/small/image003.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 469720
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-72ad8"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image002.jpg
89.253.228.138200 OK 418 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image002.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=19, height=530, bps=0, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D7000, orientation=upper-left, width=800], baseline, precision 8, 800x530, components 3\012- data
Size 418 kB (418395 bytes)
Hash eaf6149a461d2d030de32e0a9f453a32
40c5d96e977b3f98bf90f46ee15134e4861283eb
e544abd01fc1c1a1cb19aefd672c2cac30c3f5decc32c4f28ccd8d5ff64e2a52
GET /about/objects/small/image002.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 418395
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-6625b"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/upload/medialibrary/c28/800-11-2-table.jpg
89.253.228.138200 OK 28 kB URL HTTP/1.1 ronex-valve.ru/upload/medialibrary/c28/800-11-2-table.jpg
IP 89.253.228.138:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 36x36, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2015:04:20 12:38:10], baseline, precision 8, 150x200, components 3\012- data
Hash 0c3ffb80c534e30fb9619eae176b72da
eb7724969eacd90461b9baf091adb021967941df
ec106bffcc1f7c4ebfee8f1def8a04b85a693d87057ec2ac607e2597f53e4af6
GET /upload/medialibrary/c28/800-11-2-table.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 27926
Last-Modified: Wed, 03 Feb 2016 06:36:15 GMT
Connection: keep-alive
ETag: "56b19fdf-6d16"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/upload/medialibrary/4ba/800-11-5-table.jpg
89.253.228.138200 OK 28 kB URL HTTP/1.1 ronex-valve.ru/upload/medialibrary/4ba/800-11-5-table.jpg
IP 89.253.228.138:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 36x36, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2015:04:20 12:38:51], baseline, precision 8, 150x200, components 3\012- data
Hash 4179a776f904f5fad45134d35c541cf4
99cc0f2c4b87b8247a5961469982b663dabf763f
facbf15d4f5d79161e31c9cde95c6b0786976c9aecc3f04cf4248d7834a32076
GET /upload/medialibrary/4ba/800-11-5-table.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 27621
Last-Modified: Wed, 03 Feb 2016 06:36:15 GMT
Connection: keep-alive
ETag: "56b19fdf-6be5"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
push.services.mozilla.com/
35.162.160.191101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.160.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UmAr0Zay4c76JayjhTeibQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2JUT6AWEXlel9U9ZdfDSjXIXF14=
ronex-valve.ru/images/footer-menu-line.png
89.253.228.138200 OK 147 B URL HTTP/1.1 ronex-valve.ru/images/footer-menu-line.png
IP 89.253.228.138:0
File type PNG image data, 1 x 20, 8-bit/color RGB, non-interlaced\012- data
Hash d8cf4b1c638001cb7970e7dec3674597
d43a498f0198bd266f872d9ded6df53d16e0b239
d94325e11711b25a832152c4aaf995fcf7222b6c705041a9d1af1c58c79d079e
GET /images/footer-menu-line.png HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/css/style.css
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/png
Last-Modified: Mon, 25 Jan 2016 16:43:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"56a650a2-86"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/upload/iblock/de9/DSC03418.jpg
89.253.228.138200 OK 7.9 kB URL HTTP/1.1 ronex-valve.ru/upload/iblock/de9/DSC03418.jpg
IP 89.253.228.138:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 200x133, components 3\012- data
Hash 84fd7f0b487b37a6cade9f59488d0813
e63a3fa3f78497a040d0559a387d99b5617f94c0
05bfe1fb103f5b1a92785b8b3546e7ceba7850d3d71b7be897cc5800b060c275
GET /upload/iblock/de9/DSC03418.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 7859
Last-Modified: Tue, 14 Sep 2021 11:18:20 GMT
Connection: keep-alive
ETag: "614084fc-1eb3"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/images/logo-footer.png
89.253.228.138200 OK 2.1 kB URL HTTP/1.1 ronex-valve.ru/images/logo-footer.png
IP 89.253.228.138:0
File type PNG image data, 197 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 8962f960a02a6d03d95b130d22c37afe
92b7f75e94e305e2f6d538a8b948991a926990fd
9f4005d3cf0d0b0c1670b4375e7a6e66c3c0b3e0b2fe5699421b3f73cf237152
GET /images/logo-footer.png HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/png
Last-Modified: Mon, 25 Jan 2016 16:43:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"56a650a2-804"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/upload/iblock/cc8/%D0%94%D0%B5%D0%BD%D1%8C%20%D0%BF%D1%80%D0%BE%D0%B5%D0%BA%D1%82%D0%B8%D1%80%D0%BE%D0%B2%D1%89%D0%B8%D0%BA%D0%B0%202021.jpg
89.253.228.138200 OK 7.3 kB URL HTTP/1.1 ronex-valve.ru/upload/iblock/cc8/%D0%94%D0%B5%D0%BD%D1%8C%20%D0%BF%D1%80%D0%BE%D0%B5%D0%BA%D1%82%D0%B8%D1%80%D0%BE%D0%B2%D1%89%D0%B8%D0%BA%D0%B0%202021.jpg
IP 89.253.228.138:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 200x150, components 3\012- data
Hash 32f2418ae699c20dd8f8bc31cfab2aa1
ede8b85a7645d755ed3c87704cc7c745f43cdba5
f053f667061bbfd5f7e1c9ba1dcb46780705ef58c3f51565ca167a9586099519
GET /upload/iblock/cc8/%D0%94%D0%B5%D0%BD%D1%8C%20%D0%BF%D1%80%D0%BE%D0%B5%D0%BA%D1%82%D0%B8%D1%80%D0%BE%D0%B2%D1%89%D0%B8%D0%BA%D0%B0%202021.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 7258
Last-Modified: Wed, 17 Nov 2021 08:07:47 GMT
Connection: keep-alive
ETag: "6194b853-1c5a"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/upload/iblock/5e7/IMG-20200828-WA0024.jpg
89.253.228.138200 OK 4.7 kB URL HTTP/1.1 ronex-valve.ru/upload/iblock/5e7/IMG-20200828-WA0024.jpg
IP 89.253.228.138:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 200x97, components 3\012- data
Hash b3c73a0b74209ef8c23b75245ebe535e
24e917081eccad46b6174b66447f8b133814a0a1
2481c1d2189bc3659661262cd8d674b6dee7489c874a758e627d468ae2e6787a
GET /upload/iblock/5e7/IMG-20200828-WA0024.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 4694
Last-Modified: Wed, 18 Aug 2021 09:47:06 GMT
Connection: keep-alive
ETag: "611cd71a-1256"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/images/logo.png
89.253.228.138200 OK 2.4 kB URL HTTP/1.1 ronex-valve.ru/images/logo.png
IP 89.253.228.138:0
File type PNG image data, 230 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 7dc3f01bd711ad4c550b0c882a27e7b4
da5ff3fea4f98df90b879f1091e0a681ead61928
66294f8e796a1be0ae781b948e6ed41c18276ff8274cdf8f3aaf242307a78873
GET /images/logo.png HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/png
Last-Modified: Mon, 25 Jan 2016 16:43:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"56a650a2-95b"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/about/objects/small/image007.jpg
89.253.228.138200 OK 108 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image007.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=16, height=600, bps=0, PhotometricIntepretation=RGB, manufacturer=Apple, model=iPhone 5s, orientation=upper-left, width=800], progressive, precision 8, 800x600, components 3\012- data
Size 108 kB (108071 bytes)
Hash 0c008b8b4207cb80b28083693bc37c75
e001469a692d9be407dae9486959602bdcf360c4
5ae9873ce1d4bcdb2a1937e509299c41dbdc47bdb3425a39d1051551bafafb4c
GET /about/objects/small/image007.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 108071
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-1a627"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image009.jpg
89.253.228.138200 OK 106 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image009.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=16, height=600, bps=0, PhotometricIntepretation=RGB, manufacturer=Apple, model=iPhone 5s, orientation=upper-left, width=800], progressive, precision 8, 800x600, components 3\012- data
Size 106 kB (105624 bytes)
Hash 0e9ca5f7822fa28cf30546bdcb37ee25
d5902448a51f03388595fd45c89a24ef55f7b6ff
d24c2abf9e3efb4de4a3609b08bfa430358a93e8dd8929330ca85953ed77668c
GET /about/objects/small/image009.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 105624
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-19c98"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image011.jpg
89.253.228.138200 OK 123 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image011.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=19, height=533, bps=0, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D600, orientation=upper-left, width=800], progressive, precision 8, 800x533, components 3\012- data
Size 123 kB (123004 bytes)
Hash 878067b0f48207f8282e490b688d6c5d
012cd8b1ba13fc201e7ea41c319ecddc85badfcb
00c186f370dac0b9c4bc7f7ccc90768b835f823655e713d19af17a74d2aefe4b
GET /about/objects/small/image011.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 123004
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-1e07c"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image008.jpg
89.253.228.138200 OK 124 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image008.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=16, height=600, bps=0, PhotometricIntepretation=RGB, manufacturer=Apple, model=iPhone 5s, orientation=upper-left, width=800], progressive, precision 8, 800x600, components 3\012- data
Size 124 kB (124235 bytes)
Hash 7fad4af0e4ef114437b0cafc0be9dd9e
89935ec7cbaf8dc3c36e07589fcdb1cac6f61673
fc18d72db9dc57005068d0df78aac9714c45b22dbb390fafec1bc005043b8aed
GET /about/objects/small/image008.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 124235
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-1e54b"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image012.jpg
89.253.228.138200 OK 116 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image012.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=16, height=600, bps=0, PhotometricIntepretation=RGB, manufacturer=Apple, model=iPhone 5s, orientation=upper-left, width=800], progressive, precision 8, 800x600, components 3\012- data
Size 116 kB (116042 bytes)
Hash 4314f5840d56c10824e841643e240366
adcf2e26db1ce977b96644d3733d0e0645796afa
8dc650e5300ec6d2cda5b7f6507c9d91c37e093c757ae8cbe28769bcb45a60d1
GET /about/objects/small/image012.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 116042
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-1c54a"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image013.jpg
89.253.228.138200 OK 76 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image013.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=16, height=1152, bps=206, PhotometricIntepretation=RGB, manufacturer=SAMSUNG, model=SM-T531, orientation=upper-left, width=2048], progressive, precision 8, 800x450, components 3\012- data
Hash d3c8d0246916e427c86d74288e09c96b
04c7d4aa64f5af7b151b87186afcf8f3082ef01b
03267725c4ca2e06aa8f5a9b00e8f926d1a19adb29ac9e330c6a189cd02d0860
GET /about/objects/small/image013.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 76525
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-12aed"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image014.jpg
89.253.228.138200 OK 110 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image014.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=16, height=2988, bps=206, PhotometricIntepretation=RGB, manufacturer=samsung, model=SM-G900FD, orientation=upper-left, width=5312], progressive, precision 8, 800x450, components 3\012- data
Size 110 kB (109514 bytes)
Hash 97d25046cd2a8a88e5799f137f1b2590
1a255df9bb6b506e862c89ee37b5c7a7475f3e19
0e5869c90c99be44733b12b9b1bb1542998bdad8cbaafb3bcfca14b34e9bdd01
GET /about/objects/small/image014.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 109514
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-1abca"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image015.jpg
89.253.228.138200 OK 125 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image015.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=16, height=533, bps=0, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D600, orientation=upper-left, width=800], progressive, precision 8, 800x533, components 3\012- data
Size 125 kB (125268 bytes)
Hash 64b20e5a7a0e8b413b6203afd2408daf
8bee826b762d0b636629492a5a8faa9ca1d03aa0
c3e7eeed29f764f57d8b43c79cbc366b7c6ac1f0ebc9be2070cb316b963efd93
GET /about/objects/small/image015.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 125268
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-1e954"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image016.jpg
89.253.228.138200 OK 94 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image016.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=19, height=533, bps=0, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D600, orientation=upper-left, width=800], progressive, precision 8, 800x533, components 3\012- data
Hash 26e79f6cf276e3cf7f96a3df94a97447
f7a9a30b1f90288258e2a4ee6600a93bdfe51162
d1e718872c13c3edd66f07004a637b864bc92f9d0d6a0cace5ac6c3c48525813
GET /about/objects/small/image016.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 94053
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-16f65"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image017.jpg
89.253.228.138200 OK 89 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image017.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=16, height=533, bps=0, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D600, orientation=upper-left, width=800], progressive, precision 8, 800x533, components 3\012- data
Hash 0aae5786076f9e89adbd902bdfd4cb86
f8a5be738b8a5974d5b8dbcbb66fe4d08bd81847
14b8a0414d96f5806f69e85e24c590f5061e6e3848c9194c70db24ae715ac9d7
GET /about/objects/small/image017.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 89080
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-15bf8"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/img/oblojka.png
89.253.228.138200 OK 621 kB URL HTTP/1.1 ronex-valve.ru/img/oblojka.png
IP 89.253.228.138:0
File type PNG image data, 929 x 654, 8-bit/color RGB, non-interlaced\012- data
Size 621 kB (621279 bytes)
Hash 53ddd858fd8511d7347f74516883d829
9e539c7a1af3bcc8e3bb49941bbbed3912143d3e
cc4b60ea5b5ec61c6e4d2584ab27862b968fb4b3a86f3b3caceef770acd10458
GET /img/oblojka.png HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/png
Last-Modified: Wed, 26 Feb 2020 07:37:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5e56201e-97aee"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
ronex-valve.ru/about/objects/small/image019.jpg
89.253.228.138200 OK 127 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image019.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=15, height=533, bps=194, PhotometricIntepretation=RGB, manufacturer=Canon, model=Canon EOS 550D, orientation=upper-left, width=800], progressive, precision 8, 800x533, components 3\012- data
Size 127 kB (126914 bytes)
Hash d6e9dc674661b2be7d3b483ec86fc53a
544e0bbfac4e249a8da7fbc80dda90068a6c027d
75a598d114d80821bf577f207130b51527858b811423413b5e6c770a842e1c17
GET /about/objects/small/image019.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 126914
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-1efc2"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/about/objects/small/image018.jpg
89.253.228.138200 OK 119 kB URL HTTP/1.1 ronex-valve.ru/about/objects/small/image018.jpg
IP 89.253.228.138:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=15, height=600, bps=194, PhotometricIntepretation=RGB, manufacturer=Canon, model=Canon PowerShot A710 IS, orientation=upper-left, width=800], progressive, precision 8, 800x600, components 3\012- data
Size 119 kB (118910 bytes)
Hash 617b4b70dcb5e44c40d4cb545ace1c0b
9c4de79f3f65cdd930785440ff36ffd18405ad69
7beb7c236d81e08ff18c49de3635dcaeb949811ef7bfb01a9cd56d64ac83150c
GET /about/objects/small/image018.jpg HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/jpeg
Content-Length: 118910
Last-Modified: Mon, 25 Jan 2016 16:42:34 GMT
Connection: keep-alive
ETag: "56a6507a-1d07e"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ronex-valve.ru/images/line-dotted.png
89.253.228.138404 Not Found 2.5 kB URL HTTP/1.1 ronex-valve.ru/images/line-dotted.png
IP 89.253.228.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (441), with CRLF, LF line terminators
Hash 05769e8ecf2514964951f0bac2dee352
be1874368205d9cfe1188cc7c8a4beb5c82ce23f
14e5090a9aa621be9f0f43f479372cf521be89621ec63f4230144fc3b0f43edb
GET /images/line-dotted.png HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/css/style.css
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
X-Powered-CMS: Bitrix Site Manager (6d7c6248eca6664dfcc4e40db61f67c6)
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Powered-By: PHP/7.4.32, PleskLin
Content-Encoding: gzip
ronex-valve.ru/favicon.ico
89.253.228.138200 OK 1.4 kB URL HTTP/1.1 ronex-valve.ru/favicon.ico
IP 89.253.228.138:0
File type MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel\012- data
Hash 4fb20d815a6cae3f902338cbe0c4634f
ac1f9e901010092ddc32deb22d2d83911a5a4762
7ad2a27e302828aa2a0db65ff2193d50a5b72325cbcea7e18a4ebc738f7a7620
GET /favicon.ico HTTP/1.1
Host: ronex-valve.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: PHPSESSID=JpMoUI8uf6Br6Az4MxKUvOyjdQ09VQoh; BX_USER_ID=a24afe7af989761d9c5498875ca3e935
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 01 Apr 2023 02:01:14 GMT
Content-Type: image/x-icon
Content-Length: 1406
Last-Modified: Thu, 03 Mar 2016 06:17:32 GMT
Connection: keep-alive
ETag: "56d7d6fc-57e"
Expires: Sat, 08 Apr 2023 02:01:14 GMT
Cache-Control: max-age=604800
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
ocsp.globalsign.com/gseccovsslca2018
151.101.2.133200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 151.101.2.133:0
Hash effea9422a7924e2e556b56fa08cea55
33e1ed4fb5e9715bdc0ffd86556415a738201282
4135911ef2c2a0614ba6fdc2c0cf88c0fd51ff359757594e2c2507864dc162d1
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 939
Server: nginx
Content-Type: application/ocsp-response
Expires: Wed, 05 Apr 2023 00:43:51 GMT
ETag: "33e1ed4fb5e9715bdc0ffd86556415a738201282"
Last-Modified: Sat, 01 Apr 2023 00:43:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 01 Apr 2023 01:31:05 GMT
Age: 2832
X-Served-By: cache-qpg1234-QPG, cache-bma1661-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 5, 70
X-Timer: S1680312665.359382,VS0,VE0
mc.yandex.ru/metrika/tag.js
77.88.21.119200 OK 74 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 77.88.21.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (659)
Hash a9326ffae8343d00c2908794734a004a
234737cf0fabcd62477257fde669fabbe343b2c1
7559265023cf9727da205b2d7f850814a5e7d7b98ed9eb50e279c6eddcdda1dd
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 74025
date: Sat, 01 Apr 2023 01:31:05 GMT
access-control-allow-origin: *
etag: "64241f95-12129"
expires: Sat, 01 Apr 2023 02:31:05 GMT
last-modified: Wed, 29 Mar 2023 14:23:01 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ronex-valve.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 01 Apr 2023 01:31:05 GMT
access-control-allow-origin: *
etag: "64241f95-2b"
expires: Sat, 01 Apr 2023 02:31:05 GMT
accept-ranges: bytes
last-modified: Wed, 29 Mar 2023 14:23:01 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/64923118?wmode=7&page-url=https%3A%2F%2Fronex-valve.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2brt35wtqzj%3Afp%3A1136%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A1606606893185%3Ahid%3A141930074%3Az%3A0%3Ai%3A20230401013104%3Aet%3A1680312664%3Ac%3A1%3Arn%3A530416440%3Arqn%3A1%3Au%3A1680312664663031404%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C157%2C95%2C1%2C337%2C0%2C%2C566%2C43%2C%2C%2C%2C1169%3Aco%3A0%3Ans%3A1680312662350%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1680312664%3At%3A%D0%A0%D0%9E%D0%9D%D0%95%D0%9A%D0%A1%20-%20%D1%80%D0%BE%D1%81%D1%81%D0%B8%D0%B9%D1%81%D0%BA%D0%B8%D0%B9%20%D0%BF%D1%80%D0%BE%D0%B8%D0%B7%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D0%B5%D0%BB%D1%8C%20%D0%BF%D0%BE%D0%BB%D0%BD%D0%BE%D0%BF%D1%80%D0%BE%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D1%85%20%D0%BA%D0%BE%D0%B2%D0%B0%D0%BD%D0%BE-%D0%BB%D0%B8%D1%82%D1%8B%D1%85%20%D1%88%D0%B0%D1%80%D0%BE%D0%B2%D1%8B%D1%85%20%D0%BA%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%20%D0%B4%D0%BB%D1%8F%20%D1%82%D0%B5%D0%BF%D0%BB%D0%BE%D0%B2%D1%8B%D1%85%20%D1%81%D0%B5%D1%82%D0%B5%D0%B9&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
77.88.21.119302 Found 426 B URL HTTP/2 mc.yandex.ru/watch/64923118?wmode=7&page-url=https%3A%2F%2Fronex-valve.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2brt35wtqzj%3Afp%3A1136%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A1606606893185%3Ahid%3A141930074%3Az%3A0%3Ai%3A20230401013104%3Aet%3A1680312664%3Ac%3A1%3Arn%3A530416440%3Arqn%3A1%3Au%3A1680312664663031404%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C157%2C95%2C1%2C337%2C0%2C%2C566%2C43%2C%2C%2C%2C1169%3Aco%3A0%3Ans%3A1680312662350%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1680312664%3At%3A%D0%A0%D0%9E%D0%9D%D0%95%D0%9A%D0%A1%20-%20%D1%80%D0%BE%D1%81%D1%81%D0%B8%D0%B9%D1%81%D0%BA%D0%B8%D0%B9%20%D0%BF%D1%80%D0%BE%D0%B8%D0%B7%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D0%B5%D0%BB%D1%8C%20%D0%BF%D0%BE%D0%BB%D0%BD%D0%BE%D0%BF%D1%80%D0%BE%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D1%85%20%D0%BA%D0%BE%D0%B2%D0%B0%D0%BD%D0%BE-%D0%BB%D0%B8%D1%82%D1%8B%D1%85%20%D1%88%D0%B0%D1%80%D0%BE%D0%B2%D1%8B%D1%85%20%D0%BA%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%20%D0%B4%D0%BB%D1%8F%20%D1%82%D0%B5%D0%BF%D0%BB%D0%BE%D0%B2%D1%8B%D1%85%20%D1%81%D0%B5%D1%82%D0%B5%D0%B9&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 77.88.21.119:0
File type JSON data\012- , ASCII text, with very long lines (426), with no line terminators
Hash 4d2dc0564b5a82ba02a3715ad48abe40
18b39e1a0355fe4ae924f1c10b66bb045a61b4a5
53df016b2cbd70a57626f22335f323af0528093a58917bb156322c05648b65cf
GET /watch/64923118?wmode=7&page-url=https%3A%2F%2Fronex-valve.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2brt35wtqzj%3Afp%3A1136%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A1606606893185%3Ahid%3A141930074%3Az%3A0%3Ai%3A20230401013104%3Aet%3A1680312664%3Ac%3A1%3Arn%3A530416440%3Arqn%3A1%3Au%3A1680312664663031404%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C157%2C95%2C1%2C337%2C0%2C%2C566%2C43%2C%2C%2C%2C1169%3Aco%3A0%3Ans%3A1680312662350%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1680312664%3At%3A%D0%A0%D0%9E%D0%9D%D0%95%D0%9A%D0%A1%20-%20%D1%80%D0%BE%D1%81%D1%81%D0%B8%D0%B9%D1%81%D0%BA%D0%B8%D0%B9%20%D0%BF%D1%80%D0%BE%D0%B8%D0%B7%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D0%B5%D0%BB%D1%8C%20%D0%BF%D0%BE%D0%BB%D0%BD%D0%BE%D0%BF%D1%80%D0%BE%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D1%85%20%D0%BA%D0%BE%D0%B2%D0%B0%D0%BD%D0%BE-%D0%BB%D0%B8%D1%82%D1%8B%D1%85%20%D1%88%D0%B0%D1%80%D0%BE%D0%B2%D1%8B%D1%85%20%D0%BA%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%20%D0%B4%D0%BB%D1%8F%20%D1%82%D0%B5%D0%BF%D0%BB%D0%BE%D0%B2%D1%8B%D1%85%20%D1%81%D0%B5%D1%82%D0%B5%D0%B9&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ronex-valve.ru
Connection: keep-alive
Referer: https://ronex-valve.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/64923118/1?wmode=7&page-url=https%3A%2F%2Fronex-valve.ru%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3ue65zhww2f2brt35wtqzj%3Afp%3A1136%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A991%3Acn%3A1%3Adp%3A0%3Als%3A1606606893185%3Ahid%3A141930074%3Az%3A0%3Ai%3A20230401013104%3Aet%3A1680312664%3Ac%3A1%3Arn%3A530416440%3Arqn%3A1%3Au%3A1680312664663031404%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C157%2C95%2C1%2C337%2C0%2C%2C566%2C43%2C%2C%2C%2C1169%3Aco%3A0%3Ans%3A1680312662350%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1680312664%3At%3A%D0%A0%D0%9E%D0%9D%D0%95%D0%9A%D0%A1%20-%20%D1%80%D0%BE%D1%81%D1%81%D0%B8%D0%B9%D1%81%D0%BA%D0%B8%D0%B9%20%D0%BF%D1%80%D0%BE%D0%B8%D0%B7%D0%B2%D0%BE%D0%B4%D0%B8%D1%82%D0%B5%D0%BB%D1%8C%20%D0%BF%D0%BE%D0%BB%D0%BD%D0%BE%D0%BF%D1%80%D0%BE%D1%85%D0%BE%D0%B4%D0%BD%D1%8B%D1%85%20%D0%BA%D0%BE%D0%B2%D0%B0%D0%BD%D0%BE-%D0%BB%D0%B8%D1%82%D1%8B%D1%85%20%D1%88%D0%B0%D1%80%D0%BE%D0%B2%D1%8B%D1%85%20%D0%BA%D1%80%D0%B0%D0%BD%D0%BE%D0%B2%20%D0%B4%D0%BB%D1%8F%20%D1%82%D0%B5%D0%BF%D0%BB%D0%BE%D0%B2%D1%8B%D1%85%20%D1%81%D0%B5%D1%82%D0%B5%D0%B9&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Sat, 01 Apr 2023 01:31:05 GMT
access-control-allow-origin: https://ronex-valve.ru
set-cookie: yabs-sid=818813931680312665; Path=/; SameSite=None; Secure
i=MHWqHNxuKjAGPa9hFEG79ZSf4rB3UQmMkfEhKc7r+puMWv4XJa+Xs7Ba2y6VL2BmOlfknj7ABzziFmfrwPANgftOIGw=; Expires=Tue, 29-Mar-2033 01:31:02 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=284378631680312665; Expires=Tue, 29-Mar-2033 01:31:02 GMT; Domain=.yandex.ru; Path=/; Secure; SameSite=None
yuidss=284378631680312665; Expires=Sun, 31-Mar-2024 01:31:05 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1711848665.yc.1680312665#1711848665.yrts.1680312665#1711848665.yrtsi.1680312665; Expires=Sun, 31-Mar-2024 01:31:05 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 01-Apr-2023 01:31:05 GMT
last-modified: Sat, 01-Apr-2023 01:31:05 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4315
Expires: Sat, 01 Apr 2023 02:43:01 GMT
Date: Sat, 01 Apr 2023 01:31:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4315
Expires: Sat, 01 Apr 2023 02:43:01 GMT
Date: Sat, 01 Apr 2023 01:31:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4315
Expires: Sat, 01 Apr 2023 02:43:01 GMT
Date: Sat, 01 Apr 2023 01:31:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4315
Expires: Sat, 01 Apr 2023 02:43:01 GMT
Date: Sat, 01 Apr 2023 01:31:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9870299b-1a48-4dd3-be98-dd6c45ebb2b2.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9870299b-1a48-4dd3-be98-dd6c45ebb2b2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fac2211f37cb63e1a302f02a6d60acd0
148a010cae1fd28665d515ed1427112602930a60
633d3a9d31a3070cc51beb49deb4e2f3488a6348d5299d03272783a0015ba00d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9870299b-1a48-4dd3-be98-dd6c45ebb2b2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8391
x-amzn-requestid: b012c658-c924-4d48-a85a-7524f38f43a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ClU9EHNSoAMFZDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64253520-177f2aba1c00bc0944ff6416;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 07:07:12 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: YzimQb2fpJtdH3ZTEvD4uqZDESc2Mrm_6GH7BDb6qcv9pVfGKr9azQ==
via: 1.1 50cc3f0b039433daebdf343a3f4489ae.cloudfront.net (CloudFront), 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 08:02:14 GMT
age: 62932
etag: "148a010cae1fd28665d515ed1427112602930a60"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb10f21ee-de68-4185-8874-9d35c509a4c5.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb10f21ee-de68-4185-8874-9d35c509a4c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 87a835db131d4290e217756a50efd68d
5e939a14153904d3689c0ff5a63937dd51995f96
645a510200b974481c1c509e1af2e28aac569be0a313bdcd87d516e2c2c7c4a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb10f21ee-de68-4185-8874-9d35c509a4c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10268
x-amzn-requestid: fc04a027-6d97-4cee-a8f9-99c81a481d61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CiBnMEWooAMFvJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6423e2fa-199cff0f3050c49c54e338ef;Sampled=0
x-amzn-remapped-date: Wed, 29 Mar 2023 07:04:26 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: xAqpS-Psaqh7tfPTW0wvLAhoxfXPPTwddz-rfbTK8aUCy19jzZ7uRA==
via: 1.1 ee6ea1e4552345de209d26f9ffb35d4a.cloudfront.net (CloudFront), 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 08:15:53 GMT
age: 62113
etag: "5e939a14153904d3689c0ff5a63937dd51995f96"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0797be4-c308-47e3-9657-c929f7be021e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0797be4-c308-47e3-9657-c929f7be021e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba8077c110172a232340b8c843c21704
110ce19838f6050e0df60240211e66bb95659018
ed614253863b689b947ee48c384b0d96360730d25c6a573a8f1776c0f31b4c4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0797be4-c308-47e3-9657-c929f7be021e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10139
x-amzn-requestid: a65e17df-5f88-4840-a573-8820b3734e82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CqnHJE9AoAMFdwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6427522d-13577a7f180985f20a340c8e;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:35:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: pCHOy35HMhXe7y4p5HZcpSVBS8BEEh0stYUpY7BpLJTD0sHa7xmEgw==
via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:59:12 GMT
age: 12714
etag: "110ce19838f6050e0df60240211e66bb95659018"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c193cd4520e8ee5d17cd1f3faadc1c73
b46effcb93e0ad066474ec1f67bcd54020615caf
bc824341b884278e7e69ae3bb87484ad914e5909544959ebc8f8661a545cb929
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24171d10-56ac-40e7-9d10-77b9e948da6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10128
x-amzn-requestid: bdd46a1d-4b43-4450-be32-3e3947d2fcd7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm9VELdIAMFmmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751ee-346e92d143f6fcf46db741c8;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:38 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: jidQVHgb6EK_fyGj4wYgdWEBeth8CIB5szPrwrgmirz4Q9tSYpRrsw==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:47:06 GMT
age: 13440
etag: "b46effcb93e0ad066474ec1f67bcd54020615caf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F365dc310-6867-454a-8e83-d6a28e4bc177.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F365dc310-6867-454a-8e83-d6a28e4bc177.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f992b95cc46e20672fed03dc4a3f8a7a
944f46cbcfaf9335466bfd1b23c5ef57a3503cd1
b7ee66b81aa60b9a5d8976b9e36161899aa03fab4676d44de21789231b18f658
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F365dc310-6867-454a-8e83-d6a28e4bc177.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10885
x-amzn-requestid: 129c4e54-5f31-45ab-bd0c-0ca20d561503
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm7NFNWoAMFXcA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751e1-25d9470c2225c57512a18cd6;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:25 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: BbXG1JbDaAKexpnLt_k5-r58dMSwWvF1HL7wfYqdWVIYvF6qsy1UTA==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:48:12 GMT
age: 13374
etag: "944f46cbcfaf9335466bfd1b23c5ef57a3503cd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 800c2662fd6ab8829a02b7d63084c38d
0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239
76545e9f75dc558fdb7b54550934c7775318fb4150a9309f60e65d982d2e576e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F808d12ec-c97a-4c49-976e-6025ea897112.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5950
x-amzn-requestid: 5d5a94f5-db2f-4c4c-9c9f-08c14b0ccd80
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cqm7NG2NIAMF-sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-642751e1-57c957f442c42fe148e66831;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Fri, 31 Mar 2023 21:34:25 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: KkjS04mCLqFET4v9-sePYK-zcztrds608GECT1Fxz3BEpslgxnpLOg==
via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 21:37:17 GMT
age: 14029
etag: "0917d2c376f8d2af2a436a33ce2bfe1cbdb8b239"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/64923118?wmode=0&wv-part=1&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=571511448&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1680312667%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013106%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312667&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/64923118?wmode=0&wv-part=1&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=571511448&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1680312667%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013106%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312667&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/64923118?wmode=0&wv-part=1&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=571511448&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1680312667%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013106%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312667&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 35191
Origin: https://ronex-valve.ru
Connection: keep-alive
Referer: https://ronex-valve.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 01 Apr 2023 01:31:08 GMT
access-control-allow-origin: https://ronex-valve.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 01-Apr-2023 01:31:08 GMT
last-modified: Sat, 01-Apr-2023 01:31:08 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/64923118?wmode=0&wv-part=1&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=292700963&wv-type=3&browser-info=we%3A1%3Aet%3A1680312667%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013107%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312667&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/64923118?wmode=0&wv-part=1&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=292700963&wv-type=3&browser-info=we%3A1%3Aet%3A1680312667%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013107%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312667&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/64923118?wmode=0&wv-part=1&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=292700963&wv-type=3&browser-info=we%3A1%3Aet%3A1680312667%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013107%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312667&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://ronex-valve.ru
Connection: keep-alive
Referer: https://ronex-valve.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 01 Apr 2023 01:31:08 GMT
access-control-allow-origin: https://ronex-valve.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 01-Apr-2023 01:31:08 GMT
last-modified: Sat, 01-Apr-2023 01:31:08 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/64923118?wv-check=40914&wv-type=0&wmode=0&wv-part=1&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=165565974&browser-info=we%3A1%3Aet%3A1680312671%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013111%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312671&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/64923118?wv-check=40914&wv-type=0&wmode=0&wv-part=1&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=165565974&browser-info=we%3A1%3Aet%3A1680312671%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013111%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312671&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/64923118?wv-check=40914&wv-type=0&wmode=0&wv-part=1&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=165565974&browser-info=we%3A1%3Aet%3A1680312671%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013111%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312671&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://ronex-valve.ru
Connection: keep-alive
Referer: https://ronex-valve.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 01 Apr 2023 01:31:12 GMT
access-control-allow-origin: https://ronex-valve.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 01-Apr-2023 01:31:12 GMT
last-modified: Sat, 01-Apr-2023 01:31:12 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/64923118?wmode=0&wv-part=2&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=488221800&wv-type=3&browser-info=we%3A1%3Aet%3A1680312671%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013111%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312671&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/64923118?wmode=0&wv-part=2&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=488221800&wv-type=3&browser-info=we%3A1%3Aet%3A1680312671%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013111%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312671&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/64923118?wmode=0&wv-part=2&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=488221800&wv-type=3&browser-info=we%3A1%3Aet%3A1680312671%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013111%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312671&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://ronex-valve.ru
Connection: keep-alive
Referer: https://ronex-valve.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 01 Apr 2023 01:31:12 GMT
access-control-allow-origin: https://ronex-valve.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 01-Apr-2023 01:31:12 GMT
last-modified: Sat, 01-Apr-2023 01:31:12 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/64923118?wmode=0&wv-part=2&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=314553367&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1680312671%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013111%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312671&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/64923118?wmode=0&wv-part=2&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=314553367&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1680312671%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013111%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312671&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/64923118?wmode=0&wv-part=2&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=314553367&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1680312671%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013111%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312671&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://ronex-valve.ru
Connection: keep-alive
Referer: https://ronex-valve.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 01 Apr 2023 01:31:12 GMT
access-control-allow-origin: https://ronex-valve.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 01-Apr-2023 01:31:12 GMT
last-modified: Sat, 01-Apr-2023 01:31:12 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/64923118?wv-check=50843&wv-type=0&wmode=0&wv-part=2&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=754801705&browser-info=we%3A1%3Aet%3A1680312671%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013111%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312671&t=gdpr(14)ti(2)
77.88.21.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/64923118?wv-check=50843&wv-type=0&wmode=0&wv-part=2&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=754801705&browser-info=we%3A1%3Aet%3A1680312671%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013111%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312671&t=gdpr(14)ti(2)
IP 77.88.21.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/64923118?wv-check=50843&wv-type=0&wmode=0&wv-part=2&wv-hit=141930074&page-url=https%3A%2F%2Fronex-valve.ru%2F&rn=754801705&browser-info=we%3A1%3Aet%3A1680312671%3Aw%3A1268x939%3Av%3A991%3Az%3A0%3Ai%3A20230401013111%3Au%3A1680312664663031404%3Avf%3A3ue65zhww2f2brt35wtqzj%3Ast%3A1680312671&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 12
Origin: https://ronex-valve.ru
Connection: keep-alive
Referer: https://ronex-valve.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 01 Apr 2023 01:31:12 GMT
access-control-allow-origin: https://ronex-valve.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 01-Apr-2023 01:31:12 GMT
last-modified: Sat, 01-Apr-2023 01:31:12 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
bitrix.info/bx_stat
52.211.66.100200 OK 0 B IP 52.211.66.100:0
POST /bx_stat HTTP/1.1
Host: bitrix.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 464
Origin: https://ronex-valve.ru
Connection: keep-alive
Referer: https://ronex-valve.ru/
Cookie: bx_user_id=a24afe7af989761d9c5498875ca3e935
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 01 Apr 2023 01:31:04 GMT
content-type: application/javascript
server: nginx/1.10.1
etag: a24afe7af989761d9c5498875ca3e935
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
set-cookie: bx_user_id=a24afe7af989761d9c5498875ca3e935; expires=Tue, 29-Mar-33 01:31:04 GMT; path=/; domain=bitrix.info; SameSite=None; Secure
access-control-allow-origin: https://ronex-valve.ru
access-control-allow-credentials: true
X-Firefox-Spdy: h2