Overview

URL novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday
IP5.189.168.99
ASNContabo GmbH
Location Germany
Report completed2022-09-18 16:57:21 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-18 2 novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolyn (...) Malware
2022-09-18 2 novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolyn (...) Malware
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 trustiseverything.de Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed
2022-09-18 2 novosti123.ru Sinkholed


Files

No files detected



Passive DNS (79)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS widgets.pinterest.com (2) 6540 2013-04-10 10:19:37 UTC 2022-09-18 10:12:50 UTC 151.101.84.84
mnemonic passive DNS ocsp.godaddy.com (2) 698 2012-05-20 19:28:57 UTC 2022-09-18 05:14:33 UTC 192.124.249.24
mnemonic passive DNS imatrk.net (2) 30003 2021-10-25 16:25:34 UTC 2022-09-17 11:44:47 UTC 104.21.16.43
mnemonic passive DNS ssp.bidvol.com (1) 31817 2020-02-22 12:37:29 UTC 2022-09-18 12:26:25 UTC 65.108.1.47
mnemonic passive DNS s7.rotaban.ru (4) 0 2017-01-31 12:28:10 UTC 2022-09-13 11:12:08 UTC 91.201.254.18 Domain (rotaban.ru) ranked at: 618294
mnemonic passive DNS ads.adlook.me (1) 43352 2018-11-28 12:50:19 UTC 2022-09-16 13:26:59 UTC 5.200.50.170
mnemonic passive DNS sync.republer.com (1) 45392 2015-04-29 11:49:27 UTC 2022-09-18 16:10:11 UTC 23.88.82.46
mnemonic passive DNS m.addthis.com (1) 1448 2013-11-06 20:12:22 UTC 2022-09-18 09:42:00 UTC 23.38.200.123
mnemonic passive DNS sync.1dmp.io (2) 10017 2016-02-09 11:52:58 UTC 2022-09-18 06:47:07 UTC 78.46.100.125
mnemonic passive DNS www.google-analytics.com (2) 40 2012-10-03 01:04:21 UTC 2022-09-18 13:29:27 UTC 142.250.74.174
mnemonic passive DNS api-public.addthis.com (1) 4111 2012-05-21 13:44:35 UTC 2022-09-18 13:30:51 UTC 23.38.200.123
mnemonic passive DNS novosti123.ru (34) 0 2016-02-25 08:27:47 UTC 2022-09-18 15:25:00 UTC 5.189.168.99 Unknown ranking
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-18 04:48:15 UTC 34.117.237.239
mnemonic passive DNS acceptable.a-ads.com (1) 109567 2017-07-05 07:01:45 UTC 2022-09-18 11:09:52 UTC 213.239.205.245
mnemonic passive DNS dm-eu.hybrid.ai (1) 28847 2021-01-25 11:48:59 UTC 2022-09-18 13:18:18 UTC 37.18.103.16
mnemonic passive DNS s7.addthis.com (11) 1504 2012-05-21 03:34:04 UTC 2022-09-18 09:41:59 UTC 23.38.200.123
mnemonic passive DNS iconcnd.net (4) 14771 2020-03-10 10:33:56 UTC 2022-09-18 07:01:18 UTC 109.206.162.121
mnemonic passive DNS connect.ok.ru (2) 20169 2012-12-05 13:46:44 UTC 2022-09-18 12:05:17 UTC 217.20.147.3
mnemonic passive DNS ocsp.usertrust.com (1) 899 2012-05-21 15:43:18 UTC 2022-09-18 04:47:55 UTC 172.64.155.188
mnemonic passive DNS x01.aidata.io (2) 12188 2016-03-31 15:36:46 UTC 2022-09-17 18:12:06 UTC 89.108.119.43
mnemonic passive DNS an.yandex.ru (2) 2577 2017-01-30 05:11:51 UTC 2022-09-18 09:03:02 UTC 93.158.134.90
mnemonic passive DNS fonts.gstatic.com (4) 0 2014-08-29 13:43:22 UTC 2022-09-18 04:47:09 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS sync.upravel.com (2) 28097 2017-05-29 09:13:46 UTC 2022-09-18 07:05:54 UTC 148.251.236.115
mnemonic passive DNS ssp.adriver.ru (1) 12439 2014-01-10 13:39:33 UTC 2022-09-18 13:53:22 UTC 195.209.111.7
mnemonic passive DNS adlmerge.com (1) 146521 2017-04-06 07:10:27 UTC 2022-09-16 18:43:59 UTC 95.211.66.35
mnemonic passive DNS r3.o.lencr.org (22) 344 2020-12-02 08:52:13 UTC 2022-09-18 05:00:37 UTC 23.36.76.226
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-18 06:05:25 UTC 143.204.55.35
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-18 06:05:26 UTC 54.148.190.4
mnemonic passive DNS gdb.rferl.org (1) 109034 2012-08-06 20:45:04 UTC 2022-09-17 12:18:35 UTC 23.53.62.63
mnemonic passive DNS px.adhigh.net (1) 10272 2013-01-03 21:02:08 UTC 2022-09-18 14:03:46 UTC 194.190.76.44
mnemonic passive DNS tag.digitaltarget.ru (1) 98193 2015-07-21 14:24:58 UTC 2022-09-16 13:26:59 UTC 185.15.175.146
mnemonic passive DNS d7b18208-ea34-40d5-bbc1-20bccf64ac1c.sync.upravel.com (1) 0 No data No data 176.9.8.252 Domain (upravel.com) ranked at: 27764
mnemonic passive DNS js.cdnspace.io (1) 425080 2019-12-13 11:55:01 UTC 2022-09-15 11:33:56 UTC 109.206.162.211
mnemonic passive DNS ocsp.sectigo.com (4) 487 2018-12-17 11:31:55 UTC 2022-09-18 14:37:21 UTC 172.64.155.188
mnemonic passive DNS ocsp.globalsign.com (5) 2075 2012-05-25 06:20:55 UTC 2022-09-18 05:19:30 UTC 104.18.20.226
mnemonic passive DNS vk.com (4) 2243 2012-05-21 15:01:19 UTC 2022-09-18 14:54:17 UTC 87.240.132.67
mnemonic passive DNS acint.net (2) 22962 2014-02-14 21:23:16 UTC 2022-09-18 12:26:27 UTC 193.3.184.137
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-18 11:46:24 UTC 93.184.220.29
mnemonic passive DNS mc.yandex.ru (7) 2672 2017-01-29 05:34:36 UTC 2022-09-18 09:43:10 UTC 87.250.251.119
mnemonic passive DNS ad.a-ads.com (13) 26970 2013-04-19 21:54:57 UTC 2022-09-18 05:22:20 UTC 213.239.205.245
mnemonic passive DNS sync.bumlam.com (2) 3243 2015-08-10 21:04:25 UTC 2022-09-18 04:54:21 UTC 31.172.81.160
mnemonic passive DNS sync.dmp.otm-r.com (1) 19534 2017-02-03 07:19:51 UTC 2022-09-17 18:12:05 UTC 138.201.65.68
mnemonic passive DNS tech.rtb.mts.ru (1) 27360 2017-04-17 12:41:30 UTC 2022-09-17 17:00:19 UTC 213.87.44.187
mnemonic passive DNS ddnk.advertur.ru (2) 400762 2015-03-23 00:15:16 UTC 2022-09-08 09:09:59 UTC 88.99.165.109
mnemonic passive DNS trustiseverything.de (1) 386350 2020-09-11 12:53:45 UTC 2022-09-17 11:26:15 UTC 202.61.204.169
mnemonic passive DNS ocsp.pki.goog (4) 175 2017-06-14 07:23:31 UTC 2022-09-18 04:51:37 UTC 142.250.74.3
mnemonic passive DNS sm.rtb.mts.ru (2) 27154 2019-03-26 14:10:01 UTC 2022-09-17 17:00:18 UTC 217.66.147.163
mnemonic passive DNS 0100007fea4d2763ac032b330203a75a-sp.ops.beeline.ru (1) 0 No data No data 37.9.245.57 Domain (beeline.ru) ranked at: 20964
mnemonic passive DNS status.geotrust.com (2) 3662 2017-12-01 08:55:31 UTC 2022-09-18 07:53:30 UTC 93.184.220.29
mnemonic passive DNS img-getpocket.cdn.mozilla.net (8) 1631 2017-09-01 03:40:57 UTC 2022-09-18 04:20:51 UTC 34.120.237.76
mnemonic passive DNS a.utraff.com (1) 39874 2020-01-25 04:23:15 UTC 2022-09-17 12:02:13 UTC 172.67.217.151
mnemonic passive DNS ut.rktch.com (1) 41215 2018-06-04 10:29:18 UTC 2022-09-16 20:21:27 UTC 89.108.97.2
mnemonic passive DNS stat.adlabs.ru (1) 200922 2012-07-23 15:58:30 UTC 2022-09-17 18:14:48 UTC 109.248.237.37
mnemonic passive DNS cdn-rtb.sape.ru (5) 53547 2014-10-06 19:55:24 UTC 2022-09-17 13:55:36 UTC 95.181.171.231
mnemonic passive DNS ocsp2.globalsign.com (4) 1544 2012-05-21 07:12:19 UTC 2022-09-18 05:51:54 UTC 104.18.20.226
mnemonic passive DNS jswww.net (3) 474473 2016-11-19 11:18:35 UTC 2022-09-15 11:34:38 UTC 109.206.168.17
mnemonic passive DNS ads.betweendigital.com (4) 1571 2012-10-30 05:08:04 UTC 2022-09-18 12:26:25 UTC 188.42.191.196
mnemonic passive DNS sync.adkernel.com (1) 4993 2017-04-19 09:25:22 UTC 2022-09-18 07:52:54 UTC 77.245.57.72
mnemonic passive DNS z.moatads.com (1) 374 2014-02-11 16:19:47 UTC 2022-09-18 09:42:00 UTC 23.38.201.146
mnemonic passive DNS nr.bidderstack.com (1) 352019 2019-02-11 14:43:50 UTC 2022-09-18 14:03:46 UTC 46.4.70.80
mnemonic passive DNS v1.addthisedge.com (1) 1721 2019-05-22 18:56:22 UTC 2022-09-18 09:42:00 UTC 23.38.200.123
mnemonic passive DNS www.odnoklassniki.ru (2) 104138 2012-05-23 08:46:47 UTC 2022-09-16 12:19:13 UTC 217.20.155.13
mnemonic passive DNS sape-sync.rutarget.ru (1) 173587 2018-08-07 14:11:47 UTC 2022-09-16 13:26:59 UTC 45.9.26.83
mnemonic passive DNS s1.rotaban.ru (2) 928947 2017-01-31 12:28:07 UTC 2022-09-13 20:24:55 UTC 91.201.254.18
mnemonic passive DNS static.a-ads.com (4) 34827 2013-06-01 16:47:05 UTC 2022-09-18 10:55:55 UTC 213.239.205.245
mnemonic passive DNS fcgi4.gnezdo.ru (1) 69027 2020-06-11 12:55:54 UTC 2022-09-17 13:36:43 UTC 93.95.102.105
mnemonic passive DNS status.thawte.com (1) 5123 2017-11-27 12:33:51 UTC 2022-09-18 06:06:32 UTC 93.184.220.29
mnemonic passive DNS cs.agency2.ru (1) 0 2022-04-29 14:24:02 UTC 2022-09-17 13:35:28 UTC 23.111.107.44 Unknown ranking
mnemonic passive DNS redirect.frontend.weborama.fr (1) 8348 2017-05-04 15:00:27 UTC 2022-09-18 05:43:37 UTC 35.190.24.218
mnemonic passive DNS dmg.digitaltarget.ru (3) 21471 2015-04-23 14:50:51 UTC 2022-09-18 08:02:48 UTC 185.15.175.145
mnemonic passive DNS www.acint.net (63) 29072 2014-02-14 21:23:16 UTC 2022-09-17 20:32:52 UTC 193.3.184.137
mnemonic passive DNS s3.rotaban.ru (1) 0 2017-02-03 14:21:13 UTC 2022-09-12 01:50:24 UTC 91.201.254.18 Domain (rotaban.ru) ranked at: 618294
mnemonic passive DNS mediatoday.ru (1) 136083 2013-05-20 20:53:32 UTC 2022-09-16 18:44:02 UTC 139.45.228.111
mnemonic passive DNS s.uuidksinc.net (1) 3423 2015-07-20 12:00:35 UTC 2022-09-17 19:24:41 UTC 31.220.27.155
mnemonic passive DNS imcdn.co (1) 0 2022-04-22 12:00:42 UTC 2022-09-17 16:05:11 UTC 104.21.76.36 Unknown ranking
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-18 12:39:06 UTC 143.204.55.36
mnemonic passive DNS fonts.googleapis.com (2) 8877 2014-07-21 13:19:55 UTC 2022-09-18 12:17:51 UTC 142.250.74.10
mnemonic passive DNS ssp-rtb.sape.ru (2) 31166 2016-02-02 17:01:03 UTC 2022-09-17 20:32:52 UTC 193.3.184.130
mnemonic passive DNS exchange.buzzoola.com (1) 18389 2014-10-17 15:20:27 UTC 2022-09-18 14:03:46 UTC 116.202.236.172


Recent reports on same IP/ASN/Domain/Screenshot

Last 4 reports on IP: 5.189.168.99

Date UQ / IDS / BL URL IP
2022-09-26 20:21:34 +0000
0 - 0 - 22 pracuj2.pl/pracownik-produkcji-z-obsluga-wozk (...) 5.189.168.99
2022-09-25 08:26:55 +0000
0 - 0 - 21 pracuj2.pl/pracownik-produkcji-z-obsluga-wozk (...) 5.189.168.99
2022-09-18 16:57:21 +0000
0 - 0 - 37 novosti123.ru/rossiyskaya-armiya-obstrelyala- (...) 5.189.168.99
2022-09-06 14:12:50 +0000
0 - 0 - 16 pracuj2.pl/ 5.189.168.99

Last 5 reports on ASN: Contabo GmbH

Date UQ / IDS / BL URL IP
2022-12-02 09:02:49 +0000
0 - 0 - 8 jandnfoods.com/ 95.111.239.188
2022-12-02 09:01:17 +0000
0 - 0 - 38 umerubab.xyz/ 173.249.2.8
2022-12-02 07:24:06 +0000
0 - 0 - 7 5.189.191.107/ 5.189.191.107
2022-12-02 05:31:37 +0000
0 - 0 - 2 hello.studioqv.com/index.php/campaigns/eq617a (...) 75.119.141.56
2022-12-02 05:15:05 +0000
0 - 0 - 7 cajonesparatpv.com/ 144.91.69.29

Last 1 reports on domain: novosti123.ru

Date UQ / IDS / BL URL IP
2022-09-18 16:57:21 +0000
0 - 0 - 37 novosti123.ru/rossiyskaya-armiya-obstrelyala- (...) 5.189.168.99

No other reports with similar screenshot



JavaScript

Executed Scripts (60)


Executed Evals (3)

#1 JavaScript::Eval (size: 5, repeated: 1) - SHA256: e301e4147dd4bf1219b6e581e403dfa8cc06f064b41dfd182198a5755fd58b2a

                                        f6 = 1;
                                    

#2 JavaScript::Eval (size: 11, repeated: 1) - SHA256: 8ee784d797ce97ed9716bb42682346deb0c7ae8ff75d7ad8ae60508907054c16

                                        addthis.cbs
                                    

#3 JavaScript::Eval (size: 8, repeated: 1) - SHA256: 3c4b9b06fe520e9d07b2150eebd412a59c91d789706d99a2b2dc9bf217604d1f

                                        _ate.cbs
                                    

Executed Writes (0)



HTTP Transactions (288)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2C25A6717245BE3746F1412AF9DD1C351E12DBB93E8E08C3DDCDACF35E419514"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6018
Expires: Sun, 18 Sep 2022 18:37:28 GMT
Date: Sun, 18 Sep 2022 16:57:10 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 18 Sep 2022 16:12:19 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DSKZJ-W7rQBauTGqJMLZSQno8sItSNjobFhBleIHsmkES0D87ElQbQ==
Age: 2691


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    99b7d23c1748d0526782b9ff9ea45f09
Sha1:   eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 18 Sep 2022 03:30:43 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dDmTsyAlQHI4Jd6pBWdcWgTdVIL3IuBrmGIn6ZXzzSjGIlnunrh0gQ==
age: 48387
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         5.189.168.99
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Pingback: http://novosti123.ru/xmlrpc.php
Location: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/
Content-Encoding: gzip
Vary: Accept-Encoding, Cookie, Accept-Encoding


--- Additional Info ---
Magic:  data
Size:   20
Md5:    7029066c27ac6f5ef18d660d5741979a
Sha1:   46c6643f07aa7f6bfe7118de926b86defc5087c4
Sha256: 59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Alerts:
  Blocklists:
    - fortinet: Malware
    - quad9: Sinkholed
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 18 Sep 2022 16:57:10 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 18 Sep 2022 16:03:22 GMT
Expires: Sun, 18 Sep 2022 16:05:31 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: K0vc4ifXu3EN1SXp-rZsXAH2OGYPfeDcsuF_OTcNc5w6rMTTJuy5lw==
Age: 3228


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4791
Cache-Control: 'max-age=158059'
Date: Sun, 18 Sep 2022 16:57:11 GMT
Last-Modified: Sun, 18 Sep 2022 15:37:20 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4GcTMaKbuL/LexBDnYN5rA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.148.190.4
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ue7PyeE9Qcy7UMDG/AkAchFCGKk=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3791
Expires: Sun, 18 Sep 2022 18:00:22 GMT
Date: Sun, 18 Sep 2022 16:57:11 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3791
Expires: Sun, 18 Sep 2022 18:00:22 GMT
Date: Sun, 18 Sep 2022 16:57:11 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3791
Expires: Sun, 18 Sep 2022 18:00:22 GMT
Date: Sun, 18 Sep 2022 16:57:11 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3791
Expires: Sun, 18 Sep 2022 18:00:22 GMT
Date: Sun, 18 Sep 2022 16:57:11 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E64C0C03925BDFAA2520D90339C90D1F8D98C432441ADB771DFE1E818220F06F"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3791
Expires: Sun, 18 Sep 2022 18:00:22 GMT
Date: Sun, 18 Sep 2022 16:57:11 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0743b1dc-9d34-4282-a031-42c70fa409f3.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5133
x-amzn-requestid: 01f39c0a-c86f-4057-a505-20200819203c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YioKkFrFoAMFhMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632420a9-5821f44144b61475180ec961;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 07:07:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: mDe4BYbMkqkO3wq6onH6c_YOfWn32Z4L9t-QW_5mwez4bcrVkrQBuw==
via: 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:38:13 GMT
age: 33538
etag: "b2aaf019e083443a6404c262206ee2e981d3165c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5133
Md5:    56ade9172e883c777dd974ca879bceba
Sha1:   b2aaf019e083443a6404c262206ee2e981d3165c
Sha256: c8407ad191143d2d947464b357d8426efb334cb165c4fa5ca01573d8f7ca7b76
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04886f03-31f4-47c0-acd2-574924b72575.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6290
x-amzn-requestid: b7d7b028-880e-43b8-bdb1-0e3def6d3b15
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn6KnHdsoAMFrvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263d76-058b5c892bbf924416fba4fe;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: oICxyn_l7TpzNmv_4kAFS8imbfr5v9XEtMEBDQgvfU1hXtlF1Ke7QA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:54:29 GMT
age: 68562
etag: "90538e8f73cc087fc919ae12bfee36ab8093be82"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6290
Md5:    74d382fa046c33833751eb8753cc5576
Sha1:   90538e8f73cc087fc919ae12bfee36ab8093be82
Sha256: 2a4ff9c05299ddd6019bc88a1c4c1e59d3e561eb455335c71da2ddefd24907fe
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2512deb9-0912-4851-b376-b8bcb67ed3ef.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10554
x-amzn-requestid: 07497447-33e7-4f60-a3ff-974f581c5704
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn5tlG_7IAMFaIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263cbd-1964dc6548cb5f7c09f65b78;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:31:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BLfMTudduK95E9WeV9h987RYPa2RjQTtcl6jkjAZxgSWmCfUTnxU4A==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:43:11 GMT
age: 69240
etag: "0b00e1a594dc88c8fb05044a69cc0ba1eafc4946"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10554
Md5:    7334a6bdb209350f41e4640960c9ce2a
Sha1:   0b00e1a594dc88c8fb05044a69cc0ba1eafc4946
Sha256: bf946afeb52d95f27e2a271486accf87a0c169e5e78f6d57cace80564e2ed668
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1d192c6-d447-4ad9-b142-a9258211f67d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5827
x-amzn-requestid: a30d5a61-ccb2-4582-8298-1abb79830dda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yl7VSF21IAMFvGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63257288-5b79117f185617fb0f37a845;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 07:08:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2cYYmknnm5GHRMA69N-dqXXKHb1-tfN1PuRYB5xxtRJK5Gk3-PO0Bw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 07:16:15 GMT
age: 34856
etag: "4a5b84c77bd53f4c94e1af4a702f6f85b46b51b0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5827
Md5:    29f4a52fb629dce4ef8038d4df7ea58a
Sha1:   4a5b84c77bd53f4c94e1af4a702f6f85b46b51b0
Sha256: 32cee35b22110b83738f49f49edb6efcedb54fe793d5ccc900004e16e3fefda3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0418a582-b5aa-4754-a162-d731a3e53f86.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5448
x-amzn-requestid: 3b63d209-af92-4d64-866a-d8f677aa62a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn659H9DIAMFQag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263ea5-30e7f8a32603ba70671addec;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:39:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: JKenU-KwXFVEu-tZnc_yoDis5Lt-2tY0RcjH7ZT592hqp0tIUF25Lg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Sat, 17 Sep 2022 21:49:01 GMT
etag: "ac0d1af96508d026f9a1252d358660bd5671f9bd"
age: 68890
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5448
Md5:    c9a9211e94d6aa2429e9663ef317707e
Sha1:   ac0d1af96508d026f9a1252d358660bd5671f9bd
Sha256: 36663b67119ae58b665e43d86b73045472cf23d73bf2c981754f479989690791
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11919
x-amzn-requestid: 2f547c1f-2f5d-4707-8f6c-fe9dfff51383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfS4FI9oAMFScw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145ab-3c967f2653d06c1c079f88c1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QgOb-hraq20XpHk_0Cyz2UMxaIEjP8ilIXt2VuhiRJWJAOG5EuAb5A==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 05:49:05 GMT
age: 40086
etag: "786c333cf08456aea446a55c547520572e1c2df9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11919
Md5:    f003d8b6e12692fb16dddd6827deead8
Sha1:   786c333cf08456aea446a55c547520572e1c2df9
Sha256: d79ea50cfc0f237b3de8f1826cbae1de0b1dbc632a5a06b08d9640abedded935
                                        
                                            GET /rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/ HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Pingback: http://novosti123.ru/xmlrpc.php
Link: <http://novosti123.ru/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip
Vary: Accept-Encoding, Cookie, Accept-Encoding


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3888), with CRLF, LF line terminators
Size:   22245
Md5:    793419988e223fbac88df8a56cb5ce2f
Sha1:   b2b2b86eb2279fe4caf7653fab8ef5743a660407
Sha256: 1b7f427ad7cf51d6fe77e23903daa735e0cbf89ad261380a833343654c64c951

Alerts:
  Blocklists:
    - fortinet: Malware
    - quad9: Sinkholed
                                        
                                            GET /css?family=Open+Sans%3A400italic%2C700italic%2C400%2C700&ver=4.4.28 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/

                                         
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 18 Sep 2022 16:57:13 GMT
Date: Sun, 18 Sep 2022 16:57:13 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   793
Md5:    2de837eb869ca1ed7cbd5920d1d33d7f
Sha1:   cc1dff9972e1921849c83cfd02a51c1dff56ff04
Sha256: 08a3754c4b9d5329748aa4c9de2bda26dc6655c816d5546b71f70a869c164c26
                                        
                                            GET /css?family=Oswald%3A700&ver=4.4.28 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/

                                         
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 18 Sep 2022 16:57:13 GMT
Date: Sun, 18 Sep 2022 16:57:13 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   495
Md5:    05df6d14ef8d2b11ae6d0acefcc705f8
Sha1:   9b2a71d2da680babe4c0c040ac5039ce96004106
Sha256: f8a7acca541e8a47994627d1af380020ecabbd6fe0f1b991bf2c94ca1a290ac3
                                        
                                            GET /analytics.js HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 3835
Last-Modified: Sat, 15 Feb 2020 18:51:40 GMT
Connection: keep-alive
ETag: "5e483dbc-efb"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   3835
Md5:    d2b87877c64e722d1ff4d41b1161e5c8
Sha1:   566eae5e9bc6db4d4e89ae7c88f7eb16f3cf661f
Sha256: ed7445551591ee9189b7f3635f9e5bebd72277cecc643692f83058c5c3fee3bf

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /js/300/addthis_widget.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/

                                         
                                         23.38.200.123
HTTP/1.1 308 Permanent Redirect
Content-Type: text/html
                                        
Server: nginx/1.15.8
Content-Length: 171
Location: https://s7.addthis.com/js/300/addthis_widget.js
Date: Sun, 18 Sep 2022 16:57:13 GMT
Connection: keep-alive
X-Distribution: 99
X-Host: s7.addthis.com


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   171
Md5:    3c417e9efbcaeb3bf7e7df75cf3b22fd
Sha1:   00465aec6b8ec302eae8abb99678fc5c09c3f343
Sha256: 21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571
                                        
                                            GET /wp-content/themes/solon/bootstrap/css/bootstrap.min.css?ver=1 HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Last-Modified: Sat, 17 Dec 2016 18:43:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5855874f-b084"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (45012), with CRLF line terminators
Size:   8620
Md5:    45375a3dd1b02a5dc344ba0b9aa79b46
Sha1:   668c0c1c98fcc90aa47058106e8b1ffafebe6ed6
Sha256: 90f241bd46adc9d238f7b1477d38c76a0a4432bfb6b6bdf728b8252fb67f3323

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/solon/style.css?ver=4.4.28 HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Last-Modified: Sat, 17 Dec 2016 18:40:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"58558688-5f48"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (495), with CRLF line terminators
Size:   5375
Md5:    f759ae8afc0cabdab3624a01ce3c22ad
Sha1:   e17bf8f8dd1b5de53f83fd67062faeff6ede4ba4
Sha256: 1eea450451090959128bd0b45804fae90ac6a1bd1d932652cb179ee1e9b97971

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /analytics_data.js HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Last-Modified: Sat, 15 Feb 2020 18:51:41 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"5e483dbd-73578"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   34491
Md5:    fbfd58a2c0006db1eb1dd9bb0cc3701a
Sha1:   2aa92f3da57f10ef8fb46b3fdfea01837eb2cf3f
Sha256: 235c362b88bf797fde2f3be2db884dc2c668835db451b3c351d101279fe5aaf0

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 7200
Last-Modified: Sat, 17 Dec 2016 18:45:39 GMT
Connection: keep-alive
ETag: "585587d3-1c20"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (7085), with CRLF line terminators
Size:   7200
Md5:    512b871a2830e44259bc3ce3343afcd0
Sha1:   875bce76a77590c3c438bbc6e014b39c23c8c88d
Sha256: c4d24f6b27cc7ceea56fbec786bb1f486fdad9a1f998f760f76d1f44671e105c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /rtb-b/js/956/2/37956.js HTTP/1.1 
Host: cdn-rtb.sape.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/

                                         
                                         95.181.171.231
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Server: openresty
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 0
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "d41d8cd98f00b204e9800998ecf8427e"
Last-Modified: Sat, 17 Sep 2022 04:10:39 GMT
Vary: Origin
X-Amz-Request-Id: 1715F9F0FDC8A500
X-Xss-Protection: 1; mode=block
Expires: Sun, 18 Sep 2022 17:57:13 GMT
Cache-Control: max-age=3600
X-Cache-Status: HIT
Accept-Ranges: bytes

                                        
                                            GET /wp-content/themes/solon/js/jquery.fitvids.js?ver=1 HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 2765
Last-Modified: Sat, 17 Dec 2016 18:42:17 GMT
Connection: keep-alive
ETag: "58558709-acd"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document, ASCII text, with CRLF line terminators
Size:   2765
Md5:    5bd6170624a9c015c07c512f355e363d
Sha1:   7e309476d382c6b80e62945e7bf951114655fca1
Sha256: e63386b40f989b6b62c42b35eeec57aeaaee240a0e3516cc64c811f134ef93df

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /rtb-b/js/791/2/37791.js HTTP/1.1 
Host: cdn-rtb.sape.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/

                                         
                                         95.181.171.231
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Server: openresty
Date: Sun, 18 Sep 2022 16:57:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: W/"17cf792e10f395c2c1cec65ec3e117a1"
Last-Modified: Thu, 15 Sep 2022 21:50:56 GMT
Vary: Origin
X-Amz-Request-Id: 1715F9F0FD6C463B
X-Xss-Protection: 1; mode=block
Content-Encoding: gzip
Expires: Sun, 18 Sep 2022 17:57:13 GMT
Cache-Control: max-age=3600
X-Cache-Status: HIT


--- Additional Info ---
Magic:  ASCII text, with very long lines (5559)
Size:   42268
Md5:    30ab8311c39def37bb501ae6b295d16c
Sha1:   ac70a03de1f79608cd5927353c3fdcbdb4ab56f9
Sha256: f8c84ddc45bea17df0dc10d769bcd917b8a015fd6379735cf1a2595d71c41459
                                        
                                            GET /v1/s/loader.js HTTP/1.1 
Host: ddnk.advertur.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/

                                         
                                         88.99.165.109
HTTP/1.1 200 OK
Content-Type: application/javascript;charset=UTF-8
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 4041
Connection: keep-alive
Access-Control-Allow-Origin: *
Expires: Sun, 18 Sep 2022 16:58:13 GMT
Cache-Control: public, max-age=60
ETag: "aa099a07b27ee5dd29f708309442592e4ef3b318eed63969d7e43c21af043dbc"
Last-Modified: Mon, 27 Sep 2021 09:24:47 GMT
Content-Encoding: gzip
X-Powered-By: React/alpha


--- Additional Info ---
Magic:  ASCII text
Size:   4041
Md5:    5910531e7309d3485afcd13cce8ac624
Sha1:   637f217ace623afee8e3c8f2a1933d558575846d
Sha256: 26a0b97ae7dacb47edeae029e6ab53adf0181f4d3faa515b99d64a5904401348
                                        
                                            GET /wp-content/themes/solon/js/nicescroll-init.js?ver=1 HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 235
Last-Modified: Sat, 17 Dec 2016 18:42:18 GMT
Connection: keep-alive
ETag: "5855870a-eb"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   235
Md5:    376a680670ccfc958ab149b58345ce70
Sha1:   0f7704884962a55fe13d83c867fd9e769a1d43fc
Sha256: f058a52e660e86814f4816a123a2c71fbbde6a56e6806bac7d04c8a9ad9f7e82

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/jquery.js?ver=1.11.3 HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Last-Modified: Sat, 17 Dec 2016 18:45:40 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"585587d4-176ee"
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (32038), with CRLF line terminators
Size:   33334
Md5:    b7026bc2624013baa8c0ed501d94a083
Sha1:   f3439ee5f5426b7d1a481fb5892f205dcde952c6
Sha256: 06a084923f65c5948067d4e57c8483e4f1d8248f6a8c44f71e5f288b686c903a

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "CD93D2F85BD1A1470182503DB4D53F0AD12CD5AC115C3E1821FC4EA19B28F45A"
Last-Modified: Sun, 18 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9034
Expires: Sun, 18 Sep 2022 19:27:47 GMT
Date: Sun, 18 Sep 2022 16:57:13 GMT
Connection: keep-alive

                                        
                                            GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/themes/modern.css?version=3.6.4 HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 1955
Last-Modified: Wed, 17 Apr 2019 17:19:04 GMT
Connection: keep-alive
ETag: "5cb76008-7a3"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   1955
Md5:    fbbbb238646441cd0e9848538c8c42b9
Sha1:   d74bd4dfdfec44ec1863a2e72f56a845b78e9dfd
Sha256: 95b04bfe5e812ff5cdd75a938c9b5da2ccecd10702050ca2fd0c907791ab7157

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/solon/js/navigation.js?ver=20120206 HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 865
Last-Modified: Sat, 17 Dec 2016 18:42:17 GMT
Connection: keep-alive
ETag: "58558709-361"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   865
Md5:    1cdf2795f0ce30a2dcd3550b42473656
Sha1:   d3018225913ce4cfbde1bf2fa7a3bda1c8884cb1
Sha256: afe14e4f0879874bd800b742602d8de76a31d4f079889d0418a60504cc0c9327

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/comment-reply.min.js?ver=4.4.28 HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 1076
Last-Modified: Thu, 13 May 2021 03:38:41 GMT
Connection: keep-alive
ETag: "609c9f41-434"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (1076), with no line terminators
Size:   1076
Md5:    9ef21a469fc37e845d6303fcfea70897
Sha1:   a86ec94ec7bee9227bcdf8d6374cabe82ae43e49
Sha256: 6b2e2d56e7b0e80d919bc65dd94f8cd95e57ad9298fc4fecc005301ea8339c9f

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/solon/js/skip-link-focus-fix.js?ver=20130115 HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 668
Last-Modified: Sat, 17 Dec 2016 18:42:18 GMT
Connection: keep-alive
ETag: "5855870a-29c"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   668
Md5:    a329b89caa2daaf20cddeb96356c93ac
Sha1:   871f139b6395bf1b724419035f1298dfb542932e
Sha256: 3d5d00052cb2db8c6ca4ab08b7511e6dbe8d2b78fc9065f44b4f4184187cc9f3

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/wp-embed.min.js?ver=4.4.28 HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 1384
Last-Modified: Thu, 13 May 2021 03:38:41 GMT
Connection: keep-alive
ETag: "609c9f41-568"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (1384), with no line terminators
Size:   1384
Md5:    2a9a2f64687bc94523f4c50c9335cc0f
Sha1:   33c874cafe5df3ea8c8756be8642f675f9cf5289
Sha256: 4114f99c5992bab27f43ae5e3c7c196ce63fac0b4b43915af913c1a30ca1f3da

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /karma/karma.js?karma=bs?nosaj=faster.mo HTTP/1.1 
Host: trustiseverything.de
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         202.61.204.169
HTTP/2 200 OK
content-type: application/javascript
                                        
cache-control: no-cache,max-age=86400
content-encoding: gzip
last-modified: Fri, 03 Jun 2022 12:15:20 GMT
accept-ranges: bytes
etag: "0bcc1974377d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
access-control-allow-origin: *
date: Sun, 18 Sep 2022 16:57:12 GMT
content-length: 138247
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (59620), with CRLF line terminators
Size:   138247
Md5:    e716dcdf85ea0cc6aade6dd49c76df43
Sha1:   c702c2359fd180d39228a0eb1d7f4979e6d5a9aa
Sha256: 996fc64e66e99ef1d5c640f095811b95394d6292c1928a142234b2c30449a00c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/solon/js/jquery.nicescroll.min.js?ver=1 HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Link: <http://novosti123.ru/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip
Vary: Accept-Encoding, Cookie, Accept-Encoding


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1327), with CRLF, LF line terminators
Size:   10358
Md5:    1eb8c2e794c71475e2511199bc4ec6aa
Sha1:   f17b26399c45e3b26439004044b6c1db6ce0f09f
Sha256: f1db8e397859ae6bc5828c23e2db07de6f6b62825ff03a73ba575d722fc97d37

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/solon/fonts/font-awesome.min.css?ver=4.4.28 HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Link: <http://novosti123.ru/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip
Vary: Accept-Encoding, Cookie, Accept-Encoding


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1327), with CRLF, LF line terminators
Size:   10358
Md5:    1eb8c2e794c71475e2511199bc4ec6aa
Sha1:   f17b26399c45e3b26439004044b6c1db6ce0f09f
Sha256: f1db8e397859ae6bc5828c23e2db07de6f6b62825ff03a73ba575d722fc97d37

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/23.jpg HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 1511
Last-Modified: Wed, 17 Apr 2019 17:19:04 GMT
Connection: keep-alive
ETag: "5cb76008-5e7"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size:   1511
Md5:    686e2aa1b2281f6a3b651b92e6bba23c
Sha1:   e18752299957bd764a939553067c0b344c9fa271
Sha256: 5b115d9dc91cbf76795a7f47fecaa9c6835491ba9d343b85e6c27b60c383e425

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/3.jpg HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 1027
Last-Modified: Wed, 17 Apr 2019 17:19:04 GMT
Connection: keep-alive
ETag: "5cb76008-403"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size:   1027
Md5:    1e196375ebc7ccbfb4c47aeb3734c109
Sha1:   1bfd1466ce267bf0bccc357fdd9e0d3a315c6532
Sha256: 1b7185720d91ae5783fe3b1825bda551f4358b223fc086d19cc1c8f98bd9dd50

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/8.jpg HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 782
Last-Modified: Wed, 17 Apr 2019 17:19:04 GMT
Connection: keep-alive
ETag: "5cb76008-30e"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size:   782
Md5:    9f64f4d91af29bb63be09192f7d122f6
Sha1:   73b8aab85d6604566f9bddcaafc372c2705f7362
Sha256: efe14882900d79069801c6cdc5fe24473aff713077077a52eac206e3754ea116

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/14.jpg HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 642
Last-Modified: Wed, 17 Apr 2019 17:19:04 GMT
Connection: keep-alive
ETag: "5cb76008-282"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size:   642
Md5:    0e210cb587f549ef14365f11c6a10f16
Sha1:   00e7ff4b7ed4cc14dd46ce4088514cd018eb0e32
Sha256: ced64c6c20d08b2615eab15db79fd3dce49bf146cacbf2701b330b5536c153d5

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/10.jpg HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 2638
Last-Modified: Wed, 17 Apr 2019 17:19:04 GMT
Connection: keep-alive
ETag: "5cb76008-a4e"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size:   2638
Md5:    33764e9f983968f74b1ab264cb9184c8
Sha1:   27fb579f179d60d84afc6132deeb1f0a5b782cf2
Sha256: aac61117f0f7db526a77018cf71cf96717ed0e1d2580c7ac4e1d79d072f137bb

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/12.jpg HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 1943
Last-Modified: Wed, 17 Apr 2019 17:19:04 GMT
Connection: keep-alive
ETag: "5cb76008-797"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size:   1943
Md5:    4b1bd61886be009037817027551965c4
Sha1:   26709d4aaa2db9d61bd3487f523b4dd5f95607d4
Sha256: 7145823139e9e52f9d4c2495f50f281bad6ced89a5d97fe4daaf073c3eca5e98

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/19.jpg HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 1909
Last-Modified: Wed, 17 Apr 2019 17:19:04 GMT
Connection: keep-alive
ETag: "5cb76008-775"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size:   1909
Md5:    9073c329e42c459c8c0f16a11d0b133f
Sha1:   8b2f7d0e084b311e55595831d6d96735f3497948
Sha256: 971db99a0de97e13c1544dc4d0185eb22f5256051d91cf70ad6930b896e86105

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/2021/02/1dc1cc0f-7b83-41cb-8c23-82048a65b09e_w1200_r1-150x150.jpg HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 6761
Last-Modified: Sun, 06 Feb 2022 06:10:08 GMT
Connection: keep-alive
ETag: "61ff6640-1a69"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 150x150, components 3\012- data
Size:   6761
Md5:    3ee8110ef6406e040c61a0eaf64be78d
Sha1:   cd170f249adf96794c7b3af8ac64aa374ccade91
Sha256: c8d61164ae455a2b9aa2666a0de423a2a96ba194b23cd9d17a4083bceca7cf68

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/9.jpg HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 580
Last-Modified: Wed, 17 Apr 2019 17:19:04 GMT
Connection: keep-alive
ETag: "5cb76008-244"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size:   580
Md5:    dbb55d7d5c04421ad6646fd778928c22
Sha1:   abf25e7a8aae99e80b2393302098bfdd92abe548
Sha256: cc0833c53d626d6d97728f8df49b68da72d493db0045d494cc00ea81a3f3cd04

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/7.jpg HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 620
Last-Modified: Wed, 17 Apr 2019 17:19:04 GMT
Connection: keep-alive
ETag: "5cb76008-26c"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size:   620
Md5:    e7f0569cccaadbe70191c5088be58c83
Sha1:   b858efcc416bfa1268e528f5fdc0bd0c7ad7e2e8
Sha256: 57e31120d8eca1a025f163bbc7f6e1829e58e2d905d876581ccbb8dbe92a0ce5

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/15.jpg HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 2626
Last-Modified: Wed, 17 Apr 2019 17:19:04 GMT
Connection: keep-alive
ETag: "5cb76008-a42"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size:   2626
Md5:    15e0b45e6771bb02c03b796a4131cbae
Sha1:   8a128fb9246bf2278f282be45f3c63b627226693
Sha256: b4b21b4758b04afc775625082a3f18ca09d93ae69cf8c1c1f79357f847f8e24a

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/18.jpg HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 4241
Last-Modified: Wed, 17 Apr 2019 17:19:04 GMT
Connection: keep-alive
ETag: "5cb76008-1091"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size:   4241
Md5:    5c16bf762666704ce04c0084061ec888
Sha1:   3d705799a2052a813e2dd43851b54c8e6542dfd0
Sha256: 94f3aef9439b20dff384179a634d118e0356636fdbd6cfe5b29d6f6072778a50

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/11.jpg HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 2403
Last-Modified: Wed, 17 Apr 2019 17:19:04 GMT
Connection: keep-alive
ETag: "5cb76008-963"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Size:   2403
Md5:    ddb3291245cbaa55790eb36c4093c550
Sha1:   1c929680ce99a6b5873ae960f440ffd7c46b0451
Sha256: a15e780363a7c54e554c724ce6f3f5e93323562837f3db0d86b2947c03af8698

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/wordpress-23-related-posts-plugin/static/thumbs/17.jpg HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Content-Length: 17223
Last-Modified: Wed, 17 Apr 2019 17:19:04 GMT
Connection: keep-alive
ETag: "5cb76008-4347"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 150x150, components 3\012- data
Size:   17223
Md5:    a20dff5090471c85d6257543fc617901
Sha1:   132061a805fea75cb18783d0b0df68770d0550c0
Sha256: e857b935368f2912f670bee1b76aa9232a97a1f0b76af6427960ba49213ff746

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /040b0000-0aff-0242-24b6-08da221836ea_w1200_r1.jpg HTTP/1.1 
Host: gdb.rferl.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.53.62.63
HTTP/2 200 OK
content-type: image/webp
                                        
etag: "447838"
last-modified: Fri, 16 Sep 2022 01:57:16 GMT
server: Akamai Image Manager
x-serial: 1358
x-check-cacheable: YES
content-length: 244750
cache-control: private, no-transform, max-age=2365194
expires: Sun, 16 Oct 2022 01:57:07 GMT
date: Sun, 18 Sep 2022 16:57:13 GMT
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   244750
Md5:    911b725bb78dec6448b319b521ce9645
Sha1:   5c131a29d555702245d7a2ba183b0256af320e53
Sha256: 23cf415c5299823ff50519cbe1ac2e3127138fd187bdfd668ab0ed68afe10361
                                        
                                            GET /wp-content/themes/solon/js/jquery.nicescroll.min.js?ver=1 HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Pragma: no-cache
Link: <http://novosti123.ru/wp-json/>; rel="https://api.w.org/"
Content-Encoding: gzip
Vary: Accept-Encoding, Cookie, Accept-Encoding


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1327), with CRLF, LF line terminators
Size:   10358
Md5:    1eb8c2e794c71475e2511199bc4ec6aa
Sha1:   f17b26399c45e3b26439004044b6c1db6ce0f09f
Sha256: f1db8e397859ae6bc5828c23e2db07de6f6b62825ff03a73ba575d722fc97d37

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: text/html
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Sun, 18 Sep 2022 16:57:14 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Size:   26421
Md5:    707317ccaabe08d32d1bd781754e6871
Sha1:   bb82dcd3e044c960e0861c2ce878f5504e628f78
Sha256: d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
                                        
                                            GET /rotaban.js?v=1663459200000 HTTP/1.1 
Host: s1.rotaban.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/

                                         
                                         91.201.254.18
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Cache-Control: private
Content-Encoding: gzip
Server: Microsoft-IIS/8.5
X-AspNetMvc-Version: 4.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 16:57:25 GMT
Content-Length: 3637


--- Additional Info ---
Magic:  HTML document text\012- exported SGML document, ASCII text, with very long lines (9062), with no line terminators
Size:   3637
Md5:    bcdc7006f450b8d76771cc2542788b8c
Sha1:   c0e0ca7c0d307a8daae666bc183b42c85905517e
Sha256: d814c08e564d651835c54076e1d6278acdea4bae2bb00acdf6d833732c0655f6
                                        
                                            GET /921300?size=300x250 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1

                                         
                                         213.239.205.245
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Status: 200 OK
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: Phusion Passenger(R)
X-Original-Referer: http://novosti123.ru/
X-Robots-Tag: noindex, nofollow, nosnippet, noarchive
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11122)
Size:   4724
Md5:    cd96456ef9055585cb419c55a8b38f73
Sha1:   646fb0588bb8bac1fc7b0024ba6b65dbcb36477a
Sha256: 072943994bbf1f9fca87b7fc088eab06303319e951879c42d1726aaa03cd615a
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://novosti123.ru
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 26240
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 12 Sep 2022 23:30:31 GMT
Expires: Tue, 12 Sep 2023 23:30:31 GMT
Cache-Control: public, max-age=31536000
Age: 494803
Last-Modified: Mon, 15 Aug 2022 18:14:37 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 26240, version 1.0\012- data
Size:   26240
Md5:    4a90976686fcbd8296c7d7fccc04c273
Sha1:   bcb82e93ac7ad1fa2af6a37009a200f79f4cb4e5
Sha256: 59bd288e64c57e034672999e33ebda6eb5ad1575945eb563dbfb5b44f226e1e1
                                        
                                            GET /1237702?size=990x90 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1

                                         
                                         213.239.205.245
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Status: 200 OK
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: Phusion Passenger(R)
X-Original-Referer: http://novosti123.ru/
X-Robots-Tag: noindex, nofollow, nosnippet, noarchive
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11122)
Size:   4679
Md5:    aaf11be2956ae4df6dc6bfdedbf9228b
Sha1:   d6717c184a474a882970f605af3f203fd17c88cf
Sha256: da7a6fdefec0ec01a7fccbb5b7d989c744685441087393d2da4f5bbd572b8f28
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://novosti123.ru
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 12 Sep 2022 21:39:27 GMT
Expires: Tue, 12 Sep 2023 21:39:27 GMT
Cache-Control: public, max-age=31536000
Age: 501467
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /1237703?size=468x60 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1

                                         
                                         213.239.205.245
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Status: 200 OK
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: Phusion Passenger(R)
X-Original-Referer: http://novosti123.ru/
X-Robots-Tag: noindex, nofollow, nosnippet, noarchive
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11122)
Size:   4705
Md5:    1f45c7b48c8934c8cf2acede7f305b81
Sha1:   407a8d53ed41e0b598ea339d41ba764a033814c5
Sha256: 943a6f90c442d91338e134cf844062d269426cecb7df7f1be17e0157f6400fe7
                                        
                                            GET /921302?size=160x600 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1

                                         
                                         213.239.205.245
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Status: 200 OK
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: Phusion Passenger(R)
X-Original-Referer: http://novosti123.ru/
X-Robots-Tag: noindex, nofollow, nosnippet, noarchive
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11122)
Size:   4715
Md5:    3686f7dab6ef50009ab5293ffdf605b2
Sha1:   3c562c45057f026bdf884f22299709b6756daee3
Sha256: a68b3185bc277a5d3ebcd7375dd8dd9baff12fe437d945eb1002f2248c840b36
                                        
                                            GET /921303?size=200x200 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1

                                         
                                         213.239.205.245
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Status: 200 OK
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: Phusion Passenger(R)
X-Original-Referer: http://novosti123.ru/
X-Robots-Tag: noindex, nofollow, nosnippet, noarchive
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11122)
Size:   4718
Md5:    796f3f02b053258006b0466167a46a03
Sha1:   e0acff1818d7e091d6dc4901a66bc07207acb0b5
Sha256: c426cffb66fe595a6c70f4e899fd8dfda8a7ffeefe665d51055e9b1dd3ba5c4b
                                        
                                            GET /921295?size=728x90 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1

                                         
                                         213.239.205.245
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Status: 200 OK
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: Phusion Passenger(R)
X-Original-Referer: http://novosti123.ru/
X-Robots-Tag: noindex, nofollow, nosnippet, noarchive
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (11122)
Size:   4708
Md5:    b030d7b0b162e3413ef8ef67d71bf151
Sha1:   3ec560d2fbecd5791a18f90e5c71ac880bf24b0d
Sha256: 1f71491fa8456e88c8f605d9b82723cbc82f255d4bbe410a9cfdc77328acc0dc
                                        
                                            GET /1237689 HTTP/1.1 
Host: acceptable.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1

                                         
                                         213.239.205.245
HTTP/1.1 200 OK
Content-Type: text/html;charset=utf-8
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Status: 200 OK
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: Phusion Passenger(R)
X-Original-Referer: http://novosti123.ru/
X-Robots-Tag: noindex, nofollow, nosnippet, noarchive
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6851)
Size:   5653
Md5:    31675ecb533680d9ff39ebfc3d1e7d78
Sha1:   53a87cf4fc7a2f31aebe351f420259493c92fa74
Sha256: 893ad875cf510477f9972bc8521c1aa307ccb8aa88c618edd44b6108b9662f60
                                        
                                            GET /js/300/addthis_widget.js HTTP/1.1 
Host: s7.addthis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://novosti123.ru/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.38.200.123
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116535
date: Sun, 18 Sep 2022 16:57:13 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   10172
Md5:    58e5c92fd1a1fc89b8ca6d74ce4793b8
Sha1:   337771c465778aeed6de18195e0cbe9d9098d299
Sha256: 6e059f38d9d643cd149fa02dfd97d6844f9b106198e027f55e2fe1e9a1428acf
                                        
                                            GET /wp-content/plugins/related-posts-thumbnails/img/default.png HTTP/1.1 
Host: novosti123.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/rossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday/

                                         
                                         5.189.168.99
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 4577
Last-Modified: Sat, 17 Dec 2016 18:40:53 GMT
Connection: keep-alive
ETag: "585586b5-11e1"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 150 x 150, 8-bit/color RGB, non-interlaced\012- data
Size:   4577
Md5:    d2f1439e21a9642827a1a179937aff55
Sha1:   1b15aa3c7a61242dc9713e779fb15decb2d90f5c
Sha256: c6d7605e49f3024a18fbc5a4c5a020108d1b24c91f6fe467ec79548554dbbd9c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZosUJiZTaR.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://novosti123.ru
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 5856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 13 Sep 2022 19:08:17 GMT
Expires: Wed, 13 Sep 2023 19:08:17 GMT
Cache-Control: public, max-age=31536000
Age: 424137
Last-Modified: Mon, 18 Jul 2022 19:16:42 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 5856, version 1.0\012- data
Size:   5856
Md5:    5b07e2a46b403ea1a94aedd0b1b0d29c
Sha1:   f5ec3e29aea56695879552cdf8212d74d2d59f58
Sha256: 6c298c7796b872b6caa387178a0089923ed809b663bc5584601ec7c2182eb2bc
                                        
                                            GET /teasers/js/791/2/37791.js HTTP/1.1 
Host: cdn-rtb.sape.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         95.181.171.231
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:13 GMT
content-security-policy: block-all-mixed-content
etag: W/"17cf792e10f395c2c1cec65ec3e117a1"
last-modified: Thu, 15 Sep 2022 21:50:56 GMT
vary: Origin
x-amz-request-id: 1715F9F0FD6C463B
x-xss-protection: 1; mode=block
content-encoding: gzip
expires: Sun, 18 Sep 2022 17:57:13 GMT
cache-control: max-age=3600
x-cache-status: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   90220
Md5:    1e4cbdad5ab5af4fdc1bbdecae6fd608
Sha1:   8186836e1a61b3295c5825f75723253c6fc2cee1
Sha256: 26507b5b1bdcd68bdc792fddcbac35e4add4f8842768aafa8184b2e9ca690ff9
                                        
                                            GET /1237704?size=336x280 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1

                                         
                                         213.239.205.245
HTTP/1.1 577
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /1237705?size=320x50 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1

                                         
                                         213.239.205.245
HTTP/1.1 577
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWvU6F15M.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://novosti123.ru
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 31744
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 13 Sep 2022 08:36:54 GMT
Expires: Wed, 13 Sep 2023 08:36:54 GMT
Cache-Control: public, max-age=31536000
Age: 462020
Last-Modified: Mon, 15 Aug 2022 18:15:49 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 31744, version 1.0\012- data
Size:   31744
Md5:    a9aef3ed998168db52e9e651edf4ba4e
Sha1:   ca678f70c5c4928cdc77f76cb7ec6805f6c85e69
Sha256: 583eb5b5e99fad92dcb5bb100a7bb831e1c8f9826e751fb84e036174dc937c73
                                        
                                            GET /1237706?size=250x250 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1

                                         
                                         213.239.205.245
HTTP/1.1 577
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /1237707?size=240x400 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1

                                         
                                         213.239.205.245
HTTP/1.1 577
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /1237708?size=200x200 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1

                                         
                                         213.239.205.245
HTTP/1.1 577
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /1237709?size=120x600 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1

                                         
                                         213.239.205.245
HTTP/1.1 577
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 0
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "BAFE7C0116CED664C079A8925520E1BE2156C6692602365FBA4D8E289B35EFF9"
Last-Modified: Fri, 16 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13632
Expires: Sun, 18 Sep 2022 20:44:26 GMT
Date: Sun, 18 Sep 2022 16:57:14 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A7FAFC4203EB69FFC969F31EA78C01BBF00713CC9F89BBE1F57FDE49B43532BC"
Last-Modified: Sat, 17 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7066
Expires: Sun, 18 Sep 2022 18:55:00 GMT
Date: Sun, 18 Sep 2022 16:57:14 GMT
Connection: keep-alive

                                        
                                            GET /921295?size=728x90 HTTP/1.1 
Host: ad.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1

                                         
                                         213.239.205.245
HTTP/1.1 577
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 0
Connection: keep-alive

                                        
                                            GET /aci.js HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: application/x-javascript
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 7461
last-modified: Mon, 16 May 2022 07:14:50 GMT
etag: "6281f9ea-1d25"
content-encoding: gzip
expires: Mon, 19 Sep 2022 04:57:14 GMT
cache-control: max-age=43200
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1408)
Size:   7461
Md5:    ae0aab6c5a2ae2e1168e74f6e6ae4741
Sha1:   2c00f69ee4bbe2ec96c0f7bb33b5f827a6195af8
Sha256: a47a88a9b6c7635e5074c25c6e3c92f399fdf8772376e94f077167241e59f9de
                                        
                                            GET /s/6e251170023449a68ae503cbcef98aca.js?v=1663520215736 HTTP/1.1 
Host: s3.rotaban.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://novosti123.ru/
Connection: keep-alive

                                         
                                         91.201.254.18
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Cache-Control: private
Content-Encoding: gzip
Server: Microsoft-IIS/8.5
X-AspNetMvc-Version: 4.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 16:57:25 GMT
Content-Length: 655


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (3187), with no line terminators
Size:   655
Md5:    f767aef0286b6c210c2d29449722c1df
Sha1:   c5b6474cfb6bb4c9e161a39806e9cfedd50e47f1
Sha256: a26dcae6d3b2b82762b3cd7e5499b1c99d2ffdd84993c744c44be7a3b53c747f
                                        
                                            GET /script.js?t=202281816 HTTP/1.1 
Host: js.cdnspace.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         109.206.162.211
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Last-Modified: Fri, 28 Jan 2022 16:49:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
ETag: W/"61f41eb0-169b9"
Expires: Sun, 18 Sep 2022 17:27:14 GMT
Cache-Control: max-age=1800, public
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (65520), with no line terminators
Size:   27866
Md5:    6a34867881de6f4af480b200943e8b0e
Sha1:   ae584c176a2d5bd394b16074eb02bd5beb0b38fa
Sha256: ad58540ade2969a8b8f9d981496209492783976ebb6f5eddca1046e5fb3bdd04
                                        
                                            GET /save_c.php?rc= HTTP/1.1 
Host: s1.rotaban.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/

                                         
                                         91.201.254.18
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: Microsoft-IIS/8.5
X-Powered-By: ASP.NET
Date: Sun, 18 Sep 2022 16:57:25 GMT
Content-Length: 1245


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size:   1245
Md5:    5343c1a8b203c162a3bf3870d9f50fd4
Sha1:   04b5b886c20d88b57eea6d8ff882624a4ac1e51d
Sha256: dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
                                        
                                            GET /mc/?dp=14 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/
Upgrade-Insecure-Requests: 1

                                         
                                         193.3.184.137
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: openresty
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/mc/?dp=14


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   142
Md5:    82c98e8e012b79c922655461171cc2fa
Sha1:   0828d79135573276005b04be42d79a8a3291292b
Sha256: 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
                                        
                                            GET /imp.gif?z=245746&b=&g=16635202158575466349&s=16635202158575973462&sw=1280&sh=1024&br=safari,413,?&r=0.22032951233219322 HTTP/1.1 
Host: s7.rotaban.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/

                                         
                                         91.201.254.18
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/8.5
X-Powered-By: ARR/3.0, ASP.NET
Date: Sun, 18 Sep 2022 16:57:25 GMT
Content-Length: 42


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    b4682377ddfbe4e7dabfddb2e543e842
Sha1:   328e472721a93345801ed5533240eac2d1f8498c
Sha256: 6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
                                        
                                            GET /imp.gif?z=245745&b=&g=16635202158575466349&s=16635202158575973462&sw=1280&sh=1024&br=safari,413,?&r=0.2298033901636395 HTTP/1.1 
Host: s7.rotaban.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/

                                         
                                         91.201.254.18
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/8.5
X-Powered-By: ARR/3.0, ASP.NET
Date: Sun, 18 Sep 2022 16:57:25 GMT
Content-Length: 42


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    b4682377ddfbe4e7dabfddb2e543e842
Sha1:   328e472721a93345801ed5533240eac2d1f8498c
Sha256: 6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
                                        
                                            GET /imp.gif?z=244955&b=&g=-1&s=-1&sw=1280&sh=1024&br=safari,413,?&r=0.6457383982660261 HTTP/1.1 
Host: s7.rotaban.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/

                                         
                                         91.201.254.18
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/8.5
X-Powered-By: ARR/3.0, ASP.NET
Date: Sun, 18 Sep 2022 16:57:25 GMT
Content-Length: 42


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    b4682377ddfbe4e7dabfddb2e543e842
Sha1:   328e472721a93345801ed5533240eac2d1f8498c
Sha256: 6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
                                        
                                            GET /imp.gif?z=260431&b=&g=16635202158575466349&s=16635202158575973462&sw=1280&sh=1024&br=safari,413,?&r=0.9386523849191803 HTTP/1.1 
Host: s7.rotaban.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/

                                         
                                         91.201.254.18
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: Microsoft-IIS/8.5
X-Powered-By: ARR/3.0, ASP.NET
Date: Sun, 18 Sep 2022 16:57:25 GMT
Content-Length: 42


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    b4682377ddfbe4e7dabfddb2e543e842
Sha1:   328e472721a93345801ed5533240eac2d1f8498c
Sha256: 6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
                                        
                                            GET /hit/?v=0.4.0&uid=9bc6a1ca-6676-4d95-b9ed-df5c80b65198&dp=14&tz=%2B00%3A00&nc=20013634&u=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=&rs=1280x1024&t=%D0%A0%D0%BE%D1%81%D1%81%D0%B8%D0%B9%D1%81%D0%BA%D0%B0%D1%8F%20%D0%B0%D1%80%D0%BC%D0%B8%D1%8F%20%D0%BE%D0%B1%D1%81%D1%82%D1%80%D0%B5%D0%BB%D1%8F%D0%BB%D0%B0%20%D0%A1%D0%B5%D0%B2%D0%B5%D1%80%D0%BE%D0%B4%D0%BE%D0%BD%D0%B5%D1%86%D0%BA%3A%20%D0%BF%D0%BE%D0%B2%D1%80%D0%B5%D0%B6%D0%B4%D0%B5%D0%BD%D0%B0%20%D0%B1%D0%BE%D0%BB%D1%8C%D0%BD%D0%B8%D1%86%D0%B0%2C%20%D0%BF%D0%BE%20%D0%BC%D0%B5%D0%BD%D1%8C%D1%88%D0%B5%D0%B9%20%D0%BC%D0%B5%D1%80%D0%B5%2010%20%D0%BF%D0%BE%D0%B3%D0%B8%D0%B1%D1%88%D0%B8%D1%85%20%C2%80%3F%20%D0%93%D0%B0%D0%B9%D0%B4%D0%B0%D0%B9&oE=1&oP=1&dT=2022-09-18T16%3A56%3A55.865&fu=8a0552e4-20aa-442d-a44e-972a5ec52ed3 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://novosti123.ru/

                                         
                                         193.3.184.137
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: openresty
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 142
Connection: keep-alive
Location: https://www.acint.net/hit/?v=0.4.0&uid=9bc6a1ca-6676-4d95-b9ed-df5c80b65198&dp=14&tz=%2B00%3A00&nc=20013634&u=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=&rs=1280x1024&t=%D0%A0%D0%BE%D1%81%D1%81%D0%B8%D0%B9%D1%81%D0%BA%D0%B0%D1%8F%20%D0%B0%D1%80%D0%BC%D0%B8%D1%8F%20%D0%BE%D0%B1%D1%81%D1%82%D1%80%D0%B5%D0%BB%D1%8F%D0%BB%D0%B0%20%D0%A1%D0%B5%D0%B2%D0%B5%D1%80%D0%BE%D0%B4%D0%BE%D0%BD%D0%B5%D1%86%D0%BA%3A%20%D0%BF%D0%BE%D0%B2%D1%80%D0%B5%D0%B6%D0%B4%D0%B5%D0%BD%D0%B0%20%D0%B1%D0%BE%D0%BB%D1%8C%D0%BD%D0%B8%D1%86%D0%B0%2C%20%D0%BF%D0%BE%20%D0%BC%D0%B5%D0%BD%D1%8C%D1%88%D0%B5%D0%B9%20%D0%BC%D0%B5%D1%80%D0%B5%2010%20%D0%BF%D0%BE%D0%B3%D0%B8%D0%B1%D1%88%D0%B8%D1%85%20%C2%80%3F%20%D0%93%D0%B0%D0%B9%D0%B4%D0%B0%D0%B9&oE=1&oP=1&dT=2022-09-18T16%3A56%3A55.865&fu=8a0552e4-20aa-442d-a44e-972a5ec52ed3


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   142
Md5:    82c98e8e012b79c922655461171cc2fa
Sha1:   0828d79135573276005b04be42d79a8a3291292b
Sha256: 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
                                        
                                            GET /mc/?dp=14 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://novosti123.ru/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 302 Found
content-type: text/html
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 154
location: /mc/?dp=14&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Sun, 18-Sep-22 17:07:14 GMT aid=fwAAAWMnTeozKwOsWqcDAsTHmrJnvM2JtBFJC3v9izCRR493; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   154
Md5:    cfbeaf604823f038b8b46f0ac862b98c
Sha1:   7b9eb1dac48e74fa5f418bc456cb410f88b81d98
Sha256: 20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
                                        
                                            GET /a-ads-banners/414794/300x250?region=eu-central-1 HTTP/1.1 
Host: static.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ad.a-ads.com/

                                         
                                         213.239.205.245
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 103243
Connection: keep-alive
x-amz-id-2: eZcofajq/MezmCM0zY3MQxVgQRaLUuTqm9vk8jiXfqwUri6r/IKworWK41lVGMl4QJa8DLG+3a8=
x-amz-request-id: HDZZAEDGBA6C327Z
x-amz-replication-status: COMPLETED
Last-Modified: Fri, 09 Sep 2022 13:41:45 GMT
ETag: "0741ee4d9cf79b690d81ff2e5d3d1a00"
Cache-Control: max-age=315360000
x-amz-version-id: oXaaGyh9iH2eBOFe8G.9J4KRXKIw_1Ak
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size:   103243
Md5:    0741ee4d9cf79b690d81ff2e5d3d1a00
Sha1:   64b4056d0087fef3f4a7f0e46ddf1b3b720bedce
Sha256: 10709cc9d12c633b4122cc357761c62bce52bd35afbcb3cae951d6d39964f47d
                                        
                                            GET /a-ads-banners/117609/728x90?region=eu-central-1 HTTP/1.1 
Host: static.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ad.a-ads.com/

                                         
                                         213.239.205.245
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 121188
Connection: keep-alive
x-amz-id-2: zR52J3Y3FYsW70furxHbmEF6TVVDm620IhQkU36yyV+16ek28wu+svQLntvB8klnuNYLi1GUJjQ=
x-amz-request-id: GHST5Z77M1Q4BYR4
Last-Modified: Sun, 19 Apr 2020 16:06:32 GMT
ETag: "cb60630f15566146b90b723d67a8dcfb"
Cache-Control: max-age=315360000
x-amz-version-id: u8ELTM2ullr1kzwk08p0tqFD.7JrOPfe
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 728 x 90\012- data
Size:   121188
Md5:    cb60630f15566146b90b723d67a8dcfb
Sha1:   8fef953b662bdfe33fc361022baccfc4488269ed
Sha256: 6b366a4242d9c54b0bf99f24573fff0413d9ea1e6b1ddca8ec815124ecad6459
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A0%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A1052%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=fwAAAWMnTeoutQOdkdHYAtbn2vmM0yqaAbZSrGEs9OwqbUay; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /hit/?v=0.4.0&uid=9bc6a1ca-6676-4d95-b9ed-df5c80b65198&dp=14&tz=%2B00%3A00&nc=20013634&u=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=&rs=1280x1024&t=%D0%A0%D0%BE%D1%81%D1%81%D0%B8%D0%B9%D1%81%D0%BA%D0%B0%D1%8F%20%D0%B0%D1%80%D0%BC%D0%B8%D1%8F%20%D0%BE%D0%B1%D1%81%D1%82%D1%80%D0%B5%D0%BB%D1%8F%D0%BB%D0%B0%20%D0%A1%D0%B5%D0%B2%D0%B5%D1%80%D0%BE%D0%B4%D0%BE%D0%BD%D0%B5%D1%86%D0%BA%3A%20%D0%BF%D0%BE%D0%B2%D1%80%D0%B5%D0%B6%D0%B4%D0%B5%D0%BD%D0%B0%20%D0%B1%D0%BE%D0%BB%D1%8C%D0%BD%D0%B8%D1%86%D0%B0%2C%20%D0%BF%D0%BE%20%D0%BC%D0%B5%D0%BD%D1%8C%D1%88%D0%B5%D0%B9%20%D0%BC%D0%B5%D1%80%D0%B5%2010%20%D0%BF%D0%BE%D0%B3%D0%B8%D0%B1%D1%88%D0%B8%D1%85%20%C2%80%3F%20%D0%93%D0%B0%D0%B9%D0%B4%D0%B0%D0%B9&oE=1&oP=1&dT=2022-09-18T16%3A56%3A55.865&fu=8a0552e4-20aa-442d-a44e-972a5ec52ed3 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://novosti123.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A126648%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozKwOsWqcDAsTHmrJnvM2JtBFJC3v9izCRR493
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A0%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozKwOsWqcDAsTHmrJnvM2JtBFJC3v9izCRR493
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /a-ads-banners/137986/160x600?region=eu-central-1 HTTP/1.1 
Host: static.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ad.a-ads.com/

                                         
                                         213.239.205.245
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 287248
Connection: keep-alive
x-amz-id-2: y26CeEB9rXPyQ20OPH9Fw/pUZit75Bw1FsLcSRhwTtfywn1YlbdJ9s6lzDJFnzeGXGFPFbE/gko=
x-amz-request-id: EBZ1C8JNERNF6H12
Last-Modified: Wed, 03 Feb 2021 19:46:10 GMT
ETag: "b64a86ea750d6d39d7b06e2c0a571ad9"
Cache-Control: max-age=315360000
x-amz-version-id: null
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 160 x 600\012- data
Size:   287248
Md5:    b64a86ea750d6d39d7b06e2c0a571ad9
Sha1:   e9002470274db985335701103dc1f299859d2921
Sha256: fb6e73336b455ea60aa286f00bacf47967e114b0bf4331d18e02d25eefb73a90
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A130990%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozKwOsWqcDAsTHmrJnvM2JtBFJC3v9izCRR493
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /pxl/1?dp=16&id=37791.130990.161205207.0.0.0&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozKwOsWqcDAsTHmrJnvM2JtBFJC3v9izCRR493
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /a-ads-banners/138588/468x60?region=eu-central-1 HTTP/1.1 
Host: static.a-ads.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ad.a-ads.com/

                                         
                                         213.239.205.245
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 221393
Connection: keep-alive
x-amz-id-2: n5kLXsDSpkwIcS6Q5NRkLb/RWQmAbzDM3nuvsZWIn817betDxclQHOFlMIPuUPHQVEyEI7vgU1M=
x-amz-request-id: F4ZTGEZTSEG7QD6R
Last-Modified: Thu, 11 Feb 2021 20:21:37 GMT
ETag: "5d25a1d214d515b9c00df302fe35ff6d"
Cache-Control: max-age=315360000
x-amz-version-id: null
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 468 x 60\012- data
Size:   221393
Md5:    5d25a1d214d515b9c00df302fe35ff6d
Sha1:   40df7eeac4ef53976d5680d2adb6c4e40eb82986
Sha256: b44dde225fad60229aae98d439b0f9d799e91a974fef7e37439878de979d0e30
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A130991%2C%22ev%22%3A%22loadFree%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozKwOsWqcDAsTHmrJnvM2JtBFJC3v9izCRR493
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A130991%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozKwOsWqcDAsTHmrJnvM2JtBFJC3v9izCRR493
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /pxl/1?dp=16&id=37791.130991.161977895.0.0.0&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozKwOsWqcDAsTHmrJnvM2JtBFJC3v9izCRR493
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A130990%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozKwOsWqcDAsTHmrJnvM2JtBFJC3v9izCRR493
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A130993%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozKwOsWqcDAsTHmrJnvM2JtBFJC3v9izCRR493
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A130993%2C%22ev%22%3A%22vis0%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozKwOsWqcDAsTHmrJnvM2JtBFJC3v9izCRR493
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /pxl/1?dp=16&id=37791.130993.161205212.0.0.0&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A130993%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A131001%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /pxl/1?dp=16&id=37791.131001.161205224.0.0.0&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A131001%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A441591%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /pxl/1?dp=16&id=37791.441591.161205242.0.0.0&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A441591%2C%22ev%22%3A%22run%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A441592%2C%22ev%22%3A%22vis0%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A441594%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A441595%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A442542%2C%22ev%22%3A%22vis0%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A441592%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A442478%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A442543%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A442543%2C%22ev%22%3A%22vis0%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A442542%2C%22ev%22%3A%22loadDiv%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /v2/sections/info?id%5B%5D=130262&id%5B%5D=151816 HTTP/1.1 
Host: ddnk.advertur.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://novosti123.ru
Connection: keep-alive
Referer: http://novosti123.ru/

                                         
                                         88.99.165.109
HTTP/1.1 200 OK
Content-Type: application/json;charset=UTF-8
                                        
Server: nginx
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 134
Connection: keep-alive
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Content-Encoding: gzip
X-Powered-By: React/alpha


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   134
Md5:    1b93b38c58b7f126317f5dbcd6306fd5
Sha1:   1816c0059b1a5692f59b975889fe5aef72eaaca8
Sha256: 78a3479aa7890e588e9ff02fab28a0873aefcc4284da41cbdc2809df54a6aeab
                                        
                                            GET /sync?ssp=sape HTTP/1.1 
Host: a.utraff.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.217.151
HTTP/2 204 No Content
content-type: text/plain
                                        
date: Sun, 18 Sep 2022 16:57:14 GMT
set-cookie: preutid=1; Expires=Tue, 18 Oct 2022 19:57:14 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/ preutid=1; Expires=Tue, 18 Oct 2022 19:57:14 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kcT8pKm43%2FgUN1DV7H7onrU1g11BnkHEd4jklVrvKrc%2FhoWFdCOQoj2JWhpgPVpcgm0waReChXMshN78uiYz0%2FJbd7GLtYBGdgKWp6Gq7G6UgFzzyJGad8sOOwg%2F9hs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74cb9e9a2c1cfac4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

                                        
                                            GET /match?id=106&vid=0100007FEA4D2763AC032B330203A75A HTTP/1.1 
Host: dm-eu.hybrid.ai
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         37.18.103.16
HTTP/2 204 No Content
                                        
date: Sun, 18 Sep 2022 16:57:14 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=1be9c08f304aae995844; expires=Mon, 18 Sep 2023 16:57:14 GMT; domain=.hybrid.ai; path=/; samesite=none
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 501
x-xss-protection: 1; mode=block
access-control-allow-origin: *
server: Hybrid Web Server
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7D5B2B1D8E7444E0C311BCC2BB7F5D245A4C808584B8B35CD67566340C6617B9"
Last-Modified: Fri, 16 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3855
Expires: Sun, 18 Sep 2022 18:01:29 GMT
Date: Sun, 18 Sep 2022 16:57:14 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "3A1D17C653B53BCEDA0649BD46A6D62E0D37EFF5E4908B4556080D76C99221DC"
Last-Modified: Sat, 17 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18658
Expires: Sun, 18 Sep 2022 22:08:12 GMT
Date: Sun, 18 Sep 2022 16:57:14 GMT
Connection: keep-alive

                                        
                                            GET /rmatch/?r=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D14%26euid%3D%24%7BUSER_ID%7D HTTP/1.1 
Host: ssp-rtb.sape.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         193.3.184.130
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
                                        
Server: openresty
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 142
Connection: keep-alive
P3P: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Location: https://acint.net/match?dp=14&euid=A9B803C1EA4D27634C00877D02A87B50
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=wQO4qWMnTep9hwBMUHuoAnxGZ6vMgx/USLnYJMIeg1ZKl/h6; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   142
Md5:    82c98e8e012b79c922655461171cc2fa
Sha1:   0828d79135573276005b04be42d79a8a3291292b
Sha256: 745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
                                        
                                            GET /data/?callback=sapeRTB_63274dd8_85527433&srtbid=37791&scids=161205207,161977895,161205224,161205242&sx=1268&sy=939&ref=&u=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&allimps=1&fl=0&v=3&tz=%2B00%3A00 HTTP/1.1 
Host: ssp-rtb.sape.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         193.3.184.130
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
                                        
Server: openresty
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 47
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Content-Encoding: gzip
Expires: Wed, 19 Apr 2000 11:43:00 GMT
Cache-Control: private, no-cache, no-store, must-revalidate, max-age=0
Set-Cookie: sspuid=wQO4qmMnTeocrQD+Mc0FAgsCE5jLMEbNWxTP1X9PIcfuyKVo; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.ssp-rtb.sape.ru; path=/; Secure; SameSite=None


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   47
Md5:    1e86ca3adb7b926f60748bf21780e4be
Sha1:   4464ac428f0d7805d5a2de26779410a34bb4047c
Sha256: 24944b7819ea2dcafa595a8ff8b3f0d7318cef054bd3d1045962463154aa0ca1
                                        
                                            GET /csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D HTTP/1.1 
Host: ads.adlook.me
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         5.200.50.170
HTTP/2 302 Found
                                        
location: https://acint.net/match?dp=110&euid=df34b653ab714e9d8075643844086aac
server: Kestrel
set-cookie: adlm_userId=df34b653ab714e9d8075643844086aac; expires=Sun, 17 Sep 2023 21:00:00 GMT; path=/; SameSite=None; secure
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "B720F0DAE3B4A334B1493853D4A6B0503B681494B845AD8A5482798BACD4B31E"
Last-Modified: Sat, 17 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19239
Expires: Sun, 18 Sep 2022 22:17:53 GMT
Date: Sun, 18 Sep 2022 16:57:14 GMT
Connection: keep-alive

                                        
                                            GET /match?dsp=sape HTTP/1.1 
Host: sync.republer.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.88.82.46
HTTP/2 204 No Content
                                        
server: nginx
date: Sun, 18 Sep 2022 16:57:14 GMT
strict-transport-security: max-age=0
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A6833C3131662BE3F65679A10A8184EB0F3DFFE780E47A9A5D826CB2B780E00D"
Last-Modified: Fri, 16 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11241
Expires: Sun, 18 Sep 2022 20:04:35 GMT
Date: Sun, 18 Sep 2022 16:57:14 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FE053FD05FBC169190899577B2E24938C89042DA1BB32247C7E529A5057D8720"
Last-Modified: Sat, 17 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8163
Expires: Sun, 18 Sep 2022 19:13:17 GMT
Date: Sun, 18 Sep 2022 16:57:14 GMT
Connection: keep-alive

                                        
                                            GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=0100007FEA4D2763AC032B330203A75A HTTP/1.1 
Host: sync.1dmp.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         78.46.100.125
HTTP/2 302 Found
                                        
server: nginx
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 0
expires: 0
cache-control: private, no-cache, no-store, no-cache=Set-Cookie, proxy-revalidate
set-cookie: uid=f236f202-3772-11ed-8677-901b0e934d81; Version=1; Path=/; Domain=.1dmp.io; Expires=Mon, 18 Sep 2023 16:57:14 GMT; SameSite=None; Secure uid-legacy=f236f202-3772-11ed-8677-901b0e934d81; Version=1; Path=/; Domain=.1dmp.io; Expires=Mon, 18 Sep 2023 16:57:14 GMT
location: /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=0100007FEA4D2763AC032B330203A75A&cs=1
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 18 Sep 2022 16:57:14 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 18 Sep 2022 00:21:03 GMT
Expires: Sun, 25 Sep 2022 00:21:02 GMT
Etag: "4ae50c94f39c12046d8522d440f5bb81781d4e9a"
Cache-Control: max-age=544427,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74cb9e9b3c1cb4f3-OSL

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "19469649E3026AB3C171900AE1497E842B0C06760EDD2053DAEDF6CB45AAD055"
Last-Modified: Fri, 16 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3723
Expires: Sun, 18 Sep 2022 17:59:17 GMT
Date: Sun, 18 Sep 2022 16:57:14 GMT
Connection: keep-alive

                                        
                                            GET /core/match.gif?s=32&id=0100007FEA4D2763AC032B330203A75A HTTP/1.1 
Host: mediatoday.ru
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.228.111
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx/1.22.0
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
p3p: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
cache-control: no-cache, max-age=0, must-revalidate, no-store
pragma: no-cache
expires: Thursday, 01-Jan-1970 00:00:00 GMT
set-cookie: idntfy=VUqdKVO4X467ssh; expires=Wed, 15-Sep-2032 16:57:14 GMT; domain=mediatoday.ru; path=/core; SameSite=None; Secure
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            GET /pxl/3?dp=16&id=37791.130990.161205207.0.0.0&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1; cSyncDp7v2=1663520234; cSyncDp14v3=1663520234; cSyncDp17=1663520234; cSyncDp32=1663520234; cSyncDp45v3=1663520234; cSyncDp53=1663520234; cSyncDp54v2=1663520234; cSyncDp62=1663520234; cSyncDp67v2=1663520234; cSyncDp68=1663520234; cSyncDp71=1663520234; cSyncDp77=1663520234; cSyncDp84=1663520234; cSyncDp85=1663520234; cSyncDp95v3=1663520234; cSyncDp101=1663520234; cSyncDp104v2=1663520234; cSyncDp107=1663520234; cSyncDp110=1663520234; cSyncDp111v2=1663520234; cSyncDp112v2=1663520234; cSyncDp125v2=1663520234; cSyncDp126=1663520234; cSyncDp127=1663520234; cSyncDp129=1663520234; cSyncDp136v2=1663520234; cSyncDp138=1663520234; cSyncDp144=1663520234; cSyncDp146=1663520234; cSyncDp148=1663520234; cSyncDp149=1663520234; cSyncDp151=1663520234; cSyncDp178=1663520234; cSyncDp179=1663520234; cSyncDp186=1663520234; cSyncDp221=1663520234
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         193.3.184.137
HTTP/2 200 OK
content-type: image/gif
                                        
server: openresty
date: Sun, 18 Sep 2022 16:57:14 GMT
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    ad4b0f606e0f8465bc4c4c170b37e1a3
Sha1:   50b30fd5f87c85fe5cba2635cb83316ca71250d7
Sha256: cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
                                        
                                            GET /rtbw/1?dp=14&cd=%7B%22st%22%3A37791%2C%22sc%22%3A0%2C%22pl%22%3A130990%2C%22ev%22%3A%22vis0%22%2C%22et%22%3A%22srtb%22%2C%22ec%22%3A0%7D&sid=63274dd7-a6a7-f07u-mg2t-8klmgzw5srk0&ref=http%3A%2F%2Fnovosti123.ru%2Frossiyskaya-armiya-obstrelyala-severodoneck-povreghdena-bolynica-po-menyshey-mere-10-pogibshih-gayday%2F&r=1663520216 HTTP/1.1 
Host: www.acint.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://novosti123.ru/
Cookie: test_cookie=CheckForPermission; aid=fwAAAWMnTeozxAOq9xThAizmCn6JGwTu5wWW5Z5ncqrSbci1; cSyncDp7v2=1663520234; cSyncDp14v3=1663520234; cSyncDp17=1663520234; cSyncDp32=1663520234; cSyncDp45v3=1663520234; cSyncDp53=1663520234; cSyncDp54v2=1663520234; cSyncDp62=1663520234; cSyncDp67v2=1663520234; cSyncDp68=1663520234; cSyncDp71=1663520234; cSyncDp77=1663520234; cSyncDp84=1663520234; cSyncDp85=1663520234; cSyncDp95v3=1663520234; cSyncDp101=1663520234; cSyncDp104v2=1663520234; cSyncDp107=1663520234; cSyncDp110=1663520234; cSyncDp111v2=1663520234; cSyncDp112v2=1663520234; cSyncDp125v2=1663520234; cSyncDp126=1663520234; cSyncDp127=1663520234; cSyncDp129=1663520234; cSyncDp136v2=1663520234; cSyncDp138=1663520234; cSyncDp