r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15981
Expires: Fri, 09 Dec 2022 21:31:31 GMT
Date: Fri, 09 Dec 2022 17:05:10 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4467
Expires: Fri, 09 Dec 2022 18:19:37 GMT
Date: Fri, 09 Dec 2022 17:05:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 16:08:19 GMT
content-type: application/json
age: 3411
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6908
Expires: Fri, 09 Dec 2022 19:00:18 GMT
Date: Fri, 09 Dec 2022 17:05:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: XLvi3vd0S9DtqDAeg/G3l2E/6gWwZNkQ8IGRgvv9tyHMbU63a8uDIHUSFLvI1fvmF+tor2aDWKs=
x-amz-request-id: 2PMQNQVP90SHNR27
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 16:48:24 GMT
age: 1006
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip
301 Moved Permanently 121 B URL HTTP/1.1 krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 5cbe626c1f61e805eb290876b50e2735
b9da4ace4c9eba3ee71a571655dd94b8c38ad01b
8821f65778c160da52cd33cf5895be317d4b364fb25a92a4585dcab06cfdbc38
Analyzer Verdict Alert fortinet Malware
GET /upload/iblock/9ae/vector_vt-50ml_soft.zip HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg1_=bTs3CLEua0TbhKVs24Cn; Domain=.krikam.net; HttpOnly; Path=/; Expires=Sat, 09-Dec-2023 17:05:10 GMT
Date: Fri, 09 Dec 2022 17:05:10 GMT
Content-Type: text/html
Location: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip
Content-Encoding: gzip
Vary: Accept-Encoding
Age: 0
DDG-Cache-Status: MISS,MISS
Transfer-Encoding: chunked
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:10 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a2aa656559e6ce7c6a01d4fe7da0168d
37a72086919fe8167d4e7d63961c3754167e8c81
e7990bc3f57f69e9ee6bff0289e3c0dd544423a73ca110fd4c3833d4aeb397c7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E7990BC3F57F69E9EE6BFF0289E3C0DD544423A73CA110FD4C3833D4AEB397C7"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15610
Expires: Fri, 09 Dec 2022 21:25:21 GMT
Date: Fri, 09 Dec 2022 17:05:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 16:33:13 GMT
age: 1918
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4969
Cache-Control: max-age=149073
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 17:05:11 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 10:29:44 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lDjuzbi2f8Yd4kufEjaXaQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: r/GgvvK6rIuqz7roYzb5HzRz4b8=
krikam.net/images/kakaya_raciya.png
200 OK 13 kB URL HTTP/2 krikam.net/images/kakaya_raciya.png
IP
File type PNG image data, 260 x 270, 8-bit colormap, non-interlaced\012- data
Hash 4b4c74be952c108c6acf201853d74ba6
ba8721033d4a3f3fa7b60afbec9440fc728ab87f
7b06274cb91e3e08f07d7c81ddd24701ce6e1360d2f4ab0eaa54df465f918883
GET /images/kakaya_raciya.png HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:11 GMT
content-type: image/png
content-length: 12774
last-modified: Tue, 19 Apr 2022 14:22:52 GMT
etag: "31e6-5dd029cb7a44f"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:11 GMT
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/bitrix/tools/bxready/.default/no-image.png
200 OK 1.6 kB URL HTTP/2 krikam.net/bitrix/tools/bxready/.default/no-image.png
IP
File type PNG image data, 85 x 85, 8-bit/color RGB, non-interlaced\012- data
Hash 77ca04a9cb8713a927865b48a74417c0
b56908bd27f20e605dde8d9186501f71f26f5393
2300a9ceb459fdd237ee8322877839743f082db5cb9ba0cb65d8a0a1deca866b
GET /bitrix/tools/bxready/.default/no-image.png HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:11 GMT
content-type: image/png
content-length: 1555
last-modified: Tue, 19 Apr 2022 14:22:48 GMT
etag: "613-5dd029c7e739c"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:11 GMT
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/images/krikamnet_logo_vector_white%203.png
200 OK 32 kB URL HTTP/2 krikam.net/images/krikamnet_logo_vector_white%203.png
IP
File type PNG image data, 721 x 208, 8-bit/color RGBA, non-interlaced\012- data
Hash 0cc9dac858d5b7d962fa319c8b6e4636
96cf16d4cef371d9c75a5d43c20a1c1b96cba3d0
24495e7b1f2a70236940f35856541423183d9a57800f6047485bcc36a9df6c58
GET /images/krikamnet_logo_vector_white%203.png HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: image/png
content-length: 32398
last-modified: Thu, 08 Dec 2022 11:27:42 GMT
etag: "7e8e-5ef4f5345b934"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:11 GMT
age: 2
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/bitrix/js/ui/fonts/opensans/opensans-regular.woff
200 OK 67 kB URL HTTP/2 krikam.net/bitrix/js/ui/fonts/opensans/opensans-regular.woff
IP
File type Web Open Font Format, TrueType, length 67328, version 1.0\012- data
Hash 9ee27ecb1c4b98e4e52892fff5049826
7d189111693bb782c4b4a4c97c7520215672949d
3c49d5554bef01dc496ee12c0ff20b46a035fe5625fef7798ec243894cafb5d1
Analyzer Verdict Alert fortinet Malware
GET /bitrix/js/ui/fonts/opensans/opensans-regular.woff HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://krikam.net/bitrix/cache/css/s1/market_column/kernel_main/kernel_main_v1.css?1660820987198290
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: application/font-woff
content-length: 67328
last-modified: Tue, 19 Apr 2022 14:22:30 GMT
etag: "10700-5dd029b6060e2"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/images/krikamnet_logo_3x.png
200 OK 46 kB URL HTTP/2 krikam.net/images/krikamnet_logo_3x.png
IP
File type PNG image data, 721 x 219, 8-bit/color RGBA, non-interlaced\012- data
Hash fd21c36e772c8da4c81c646819c55f85
514908f18ffd8b7e958b888cf468202b8f5aaa8a
077c5141fc5fb9288ff5e3a83280b7a71e9a70b2fda130eb639ee762ffa7d53e
GET /images/krikamnet_logo_3x.png HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/bitrix/cache/css/s1/market_column/template_39aff30e977e2c9d387d1d9ff24de638/template_39aff30e977e2c9d387d1d9ff24de638_v1.css?1660820987166659
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: image/png
content-length: 46344
last-modified: Thu, 08 Dec 2022 11:02:29 GMT
etag: "b508-5ef4ef91ae5e8"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/header_icons/bag_grey.svg
200 OK 948 B URL HTTP/2 krikam.net/local/templates/market_column/images/icons/header_icons/bag_grey.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 563b146ab0ca5397ec9560f3bea63ab1
793ac594a7f207c7f80d1f3f53cea793423fb122
ff9959f4d3bbd960d5f9b69d46682681bc5b18c0730fe91a1b6c752007e0f4c4
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/header_icons/bag_grey.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/bitrix/cache/css/s1/market_column/template_39aff30e977e2c9d387d1d9ff24de638/template_39aff30e977e2c9d387d1d9ff24de638_v1.css?1660820987166659
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"32d-5dd029cd3b7d8"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/soc_icons/soc_instagram.svg
200 OK 1.1 kB URL HTTP/2 krikam.net/local/templates/market_column/images/icons/soc_icons/soc_instagram.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f2d5f518619f0897843b3528ab8d4f36
43c2a571b4c935491f1d87e59c384bc043bf4b79
53b60a8b6f95577808d0a49490a9d48e0f5f9068163c0868a6ccee4105722288
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/soc_icons/soc_instagram.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:11 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"4b6-5dd029cd3c778"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:11 GMT
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v15/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v15/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 14720, version 1.0\012- data
Hash d08c09f2f169f4a6edbcf8b8d1636cb4
5a6a45d6f98752b11ccb7c4f0f6fd7faf18ad1a7
482994b911cc3e869aa8ace6d9932d67b68de83ea2885207ce165ff04c38d7bc
GET /s/opensans/v15/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://krikam.net
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14720
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 19:02:10 GMT
expires: Thu, 07 Dec 2023 19:02:10 GMT
cache-control: public, max-age=31536000
age: 165782
last-modified: Wed, 11 Oct 2017 21:49:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/css/fonts/opensansbold.woff2
200 OK 24 kB URL HTTP/2 krikam.net/local/templates/market_column/css/fonts/opensansbold.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 24448, version 1.6554\012- data
Hash 313824e85557a721d326424b6eb63fec
9151d135da182e904fe1b568f80749d51a88df8b
8c9fba713be2ea7e35b6e266736a713c00328d61759e401890794831b6db525e
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/css/fonts/opensansbold.woff2 HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://krikam.net/bitrix/cache/css/s1/market_column/kernel_main/kernel_main_v1.css?1660820987198290
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Sun, 24 Jul 2022 04:19:48 GMT
content-length: 24448
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: "5f80-5dd029cd33ad7"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Mon, 24 Jul 2023 04:19:48 GMT
age: 11969124
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/money_icons/$_qiwi.svg
200 OK 11 kB URL HTTP/2 krikam.net/local/templates/market_column/images/icons/money_icons/$_qiwi.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 670358edda9ccbb40793049415d45011
bd12d35465c308023e6c947eee8fa6f8d4b7bd70
f2cef7641788c63d56219c1d4035b110073b22fb2475de2f4fdc82869e4f1bd2
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/money_icons/$_qiwi.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"917-5dd029cd3c778"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
content-encoding: br
vary: Accept-Encoding
age: 2
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash 44e9cfe5071adc8d8186579319c9cd89
79cbd9b827c94cd58db448accd3ed58289236238
1374e168fb9bf413edabec4a4be5ea1515c5b814fcf1164880bcf1b0d7ab835b
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 17:05:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 13 Dec 2022 13:20:40 GMT
ETag: "79cbd9b827c94cd58db448accd3ed58289236238"
Last-Modified: Fri, 09 Dec 2022 13:20:41 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776f53023dcdb4fd-OSL
krikam.net/local/templates/market_column/images/icons/header_icons/envelope.svg
200 OK 1.1 kB URL HTTP/2 krikam.net/local/templates/market_column/images/icons/header_icons/envelope.svg
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text
Hash 184ab11472bb596f299680bd70572124
28882d41fed21b25c7249dd9058a3eeae9cdf95a
4a9e61c54b26f5583090d606d629e5634b89aff58a0ef97ee3c3db35e3f0f9df
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/header_icons/envelope.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/bitrix/cache/css/s1/market_column/template_39aff30e977e2c9d387d1d9ff24de638/template_39aff30e977e2c9d387d1d9ff24de638_v1.css?1660820987166659
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"4ec-5dd029cd3b7d8"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/css/fonts/opensans.woff2
200 OK 25 kB URL HTTP/2 krikam.net/local/templates/market_column/css/fonts/opensans.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 24908, version 1.6554\012- data
Hash 48aa7ad98beedc63d82925f45fd8e72c
d699b7850b233ef8c0ad83fd4e9a95b8c19c0275
2c003703a07bac02b8e42b49562a2cdb95b9b68ef4bd669b6c9c7e9919f7dbe7
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/css/fonts/opensans.woff2 HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://krikam.net/bitrix/cache/css/s1/market_column/kernel_main/kernel_main_v1.css?1660820987198290
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Sun, 20 Nov 2022 04:59:08 GMT
content-length: 24908
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: "614c-5dd029cd33ad7"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Mon, 20 Nov 2023 04:59:08 GMT
age: 1685164
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
krikam.net/ajax/basket_action.php?ajaxbuy=yes&template=fixed&rg=0.07042335314641279
200 OK 937 B URL HTTP/2 krikam.net/ajax/basket_action.php?ajaxbuy=yes&template=fixed&rg=0.07042335314641279
IP
File type ISO-8859 text, with CRLF, LF line terminators
Hash 6ccd4031bcf9345fc34c70bf36ca5193
99e5f7bd9fe8a67ae3000e63816404dcd40c544c
405432d981827dde4bf6e6a7bc3c1293ca4f83e6ca510ea7bef9195d447ad1f9
GET /ajax/basket_action.php?ajaxbuy=yes&template=fixed&rg=0.07042335314641279 HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: text/html; charset=windows-1251
content-length: 937
p3p: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
x-powered-cms: Bitrix Site Manager (a21ebe23dcd0971adf9348f7f21ba495)
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: max-age=31536000, private, must-revalidate
pragma: no-cache
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
krikam.net/ajax/compare.php?ajaxbuy=yes&rg=0.8825429991639264
200 OK 362 B URL HTTP/2 krikam.net/ajax/compare.php?ajaxbuy=yes&rg=0.8825429991639264
IP
File type HTML document, ISO-8859 text
Hash 9ab30f1b9c1ba0fdf933d6fdba75d140
421f12eb0d06cbbe53efd5311082648c309cd76e
6098269317376a3418dc92bd0784e7d7e81a1086cbd7e0919b9a78209bdf43cc
GET /ajax/compare.php?ajaxbuy=yes&rg=0.8825429991639264 HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: text/html; charset=windows-1251
content-length: 362
p3p: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
x-powered-cms: Bitrix Site Manager (a21ebe23dcd0971adf9348f7f21ba495)
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: max-age=31536000, private, must-revalidate
pragma: no-cache
x-frame-options: SAMEORIGIN
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash dc5bc63fd2c03bd3cf883f968003657d
4adfe46f3d88516e0edce9297b597f8eb34788cd
301d321653d1acc808ac5a854af94d14445ef86737da21192309035634492d32
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 09 Dec 2022 17:05:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 08 Dec 2022 21:59:23 GMT
Expires: Fri, 09 Dec 2022 21:59:23 GMT
ETag: "4adfe46f3d88516e0edce9297b597f8eb34788cd"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
cdn-ru.bitrix24.ru/b12183/crm/form/app.js?19335
200 OK 17 kB URL HTTP/2 cdn-ru.bitrix24.ru/b12183/crm/form/app.js?19335
IP
Hash 63515644b471164494c57e7104dbf359
ab92c9c63ccece9278271db2db8bb7904aed0ddb
056b1e78db8c57b746b2fe15af79da9099913b32b63e7bb8b944154507c354c4
GET /b12183/crm/form/app.js?19335 HTTP/1.1
Host: cdn-ru.bitrix24.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: application/javascript
x-req-id: QemD174e
last-modified: Tue, 14 Dec 2021 07:34:07 GMT
etag: W/"b5a3d1a60e21ea4693be377b11c7e54a"
x-host: hb-front14
content-encoding: gzip
expires: Sun, 08 Jan 2023 17:05:12 GMT
cache-control: max-age=2592000
server-timing: t1;dur=0.024, t2;dur=0.024, t3;dur=0.000, tc1;dur=47000, tc2;dur=1500, tc3;dur=20
x-bitrix-lb: mail-lb-01
X-Firefox-Spdy: h2
baltway.bitrix24.ru/bitrix/js/crm/site/form/dist/app.bundle.min.js?19335
200 OK 97 kB URL HTTP/2 baltway.bitrix24.ru/bitrix/js/crm/site/form/dist/app.bundle.min.js?19335
IP
Hash 25278ea8803c19218b13b771407e318a
517d00112df21c2d91f22fa6749810c2157c93c4
36223a9a7978181e21e3c88707cc0e338745fd8bd2aca811202320ea88d92303
GET /bitrix/js/crm/site/form/dist/app.bundle.min.js?19335 HTTP/1.1
Host: baltway.bitrix24.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: application/x-javascript
last-modified: Mon, 03 Oct 2022 13:38:40 GMT
etag: W/"633ae5e0-47ab5"
expires: Sat, 07 Jan 2023 01:58:46 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
server-timing: t1;dur=0.001, t2;dur=, t3;dur=, tc1;dur=47250, tc2;dur=1250, tc3;dur=20
x-bitrix-ri: 548297fb6304c9150d44b04aca674ed7
x-bitrix-lb: mail-lb-01
X-Firefox-Spdy: h2
popup-static.unisender.com/service/forms.js?v=1.27.4
200 OK 66 kB URL HTTP/2 popup-static.unisender.com/service/forms.js?v=1.27.4
IP
Hash 6ea849330aa7d0077e5166725e1d849a
9ea3178d6fd71a9551c23e5d894910ccf7a76cb9
de3068163397b3fa398808123e1dc5d9710d8f1f627a9bbef86759818569eae7
GET /service/forms.js?v=1.27.4 HTTP/1.1
Host: popup-static.unisender.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 27 Sep 2022 13:12:35 GMT
etag: W/"6332f6c3-36e48"
expires: Sat, 10 Dec 2022 17:05:12 GMT
cache-control: max-age=86400
content-encoding: gzip
x-robots-tag: noindex,nofollow
x-powered-by: EmailDelivery
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11111
Expires: Fri, 09 Dec 2022 20:10:23 GMT
Date: Fri, 09 Dec 2022 17:05:12 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11111
Expires: Fri, 09 Dec 2022 20:10:23 GMT
Date: Fri, 09 Dec 2022 17:05:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c94003641bb5a7595e7004f80f95d22
3446450df60d732f9021d5bfd5f5f7c6c870d9ec
4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 17:48:22 GMT
age: 83810
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: N-zFZ8yeL7RrOZ5xfqvfBaE3zcXWecvr6Jd-93nKiUZlCXp2n2_Bgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:41:46 GMT
age: 48206
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 730ba1a8edb79ba6f83b46d1ba5aed7b
55a236fedf6f5f7ca2bb88ae13e20846a50fd36d
f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:44:29 GMT
age: 33643
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H067kZXU_djWxbWO34bYMqa0xZ-WF9ntEBhZ-kV_TDoJFXQL_J1hqQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:34:27 GMT
age: 48645
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7Dp35PIr_WYUI1bBa21AvmCMEPi0d3jnhuS8eEk3Q3CXRcGWAnkD8g==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 16:56:53 GMT
age: 499
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 400d1465-ecbf-4d95-8aa8-4dce5dca0716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctluwGo4oAMFhTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee991-6dba29ae7065d5347a1a420d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Lazl-stakC-31gMuQ2WzH9uFkIb0g7HaaM3xkwSFdFJMWKTaKqrBEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:07:07 GMT
age: 46685
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
krikam.net/favicon.png
200 OK 11 kB IP
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash fc1894b4c797494ddabb696ff8cdab28
b4dcfbddda98bbf914e806f0f17126b9927d2812
934dd3e272969182fa83c4dffccf2d7c316c80a14884173877e8759c4cbb6e70
GET /favicon.png HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: image/png
content-length: 11241
last-modified: Wed, 20 Apr 2022 08:42:31 GMT
etag: "2be9-5dd11f9578bc0"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bf8858fa52de668b0013cf9ce66d290c
9c319173ee6a48c6e717e9e8764008564aabe7ba
93df528ead5887cbbcf51f83c9e6ffa451861ae3145296ab3dfc269067080933
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 17:05:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 09 Dec 2022 16:41:08 GMT
expires: Fri, 09 Dec 2022 18:41:08 GMT
cache-control: public, max-age=7200
age: 1445
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash b73601cfb1b4caea4dffc17ca95811c9
d3bf77171c79a686e6a75f053d891da6fb380ded
c2399d937748c650471d4a7eb83e85341f932d2725689bab6b321660d31b642b
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 17:05:13 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 13 Dec 2022 15:04:30 GMT
ETag: "d3bf77171c79a686e6a75f053d891da6fb380ded"
Last-Modified: Fri, 09 Dec 2022 15:04:31 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1853
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 776f53086d220b45-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bf8858fa52de668b0013cf9ce66d290c
9c319173ee6a48c6e717e9e8764008564aabe7ba
93df528ead5887cbbcf51f83c9e6ffa451861ae3145296ab3dfc269067080933
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 17:05:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vk.com/js/api/openapi.js?162
200 OK 23 kB URL HTTP/2 vk.com/js/api/openapi.js?162
IP
File type ASCII text, with very long lines (3849)
Hash 6b56e2aa629cc5f334bba9e200af3bfe
1e99707868f45c499400d95e75348c3d7b7686f5
7cb4aa1277e9f29f5c6d21c642b7c08cfce199332e30395c20995847a0db3fab
GET /js/api/openapi.js?162 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Fri, 09 Dec 2022 17:05:13 GMT
content-type: application/x-javascript
content-length: 23318
last-modified: Fri, 02 Dec 2022 07:14:40 GMT
etag: "6389a5e0-5b16"
content-encoding: br
expires: Tue, 13 Dec 2022 17:05:13 GMT
cache-control: max-age=345600
x-frontend: front605110
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
200 OK 74 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (598)
Hash 1a5da2d1a98a493b4c8afe8b03c8c406
8a359aebaeb96faf18be6ab782a56db7d47de607
fe720067e49fb7bbc23b61b978352d26dee95d035f69bde667df72e1ecf7e346
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73711
date: Fri, 09 Dec 2022 17:05:13 GMT
access-control-allow-origin: *
etag: "6392ed22-11fef"
expires: Fri, 09 Dec 2022 18:05:13 GMT
last-modified: Fri, 09 Dec 2022 11:09:06 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
vk.com/rtrg?p=VK-RTRG-438139-6qNQ&metatag_url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&metatag_title=%D0%9E%D1%88%D0%B8%D0%B1%D0%BA%D0%B0%20404.%20%D0%A1%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%20%D0%BD%D0%B5%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD%D0%B0.
200 OK 65 B URL HTTP/2 vk.com/rtrg?p=VK-RTRG-438139-6qNQ&metatag_url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&metatag_title=%D0%9E%D1%88%D0%B8%D0%B1%D0%BA%D0%B0%20404.%20%D0%A1%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%20%D0%BD%D0%B5%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD%D0%B0.
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ec4341fe3a8b2c4880fbfe0ef9cde34f
a0947414eb426b2939ca1a05fc870763f6bfc63f
01229c58f8015c623259e635969b8520945e2e0de1927a1375d48ad0ce915463
GET /rtrg?p=VK-RTRG-438139-6qNQ&metatag_url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&metatag_title=%D0%9E%D1%88%D0%B8%D0%B1%D0%BA%D0%B0%20404.%20%D0%A1%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%20%D0%BD%D0%B5%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD%D0%B0. HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: kittenx
date: Fri, 09 Dec 2022 17:05:13 GMT
content-type: image/gif
content-length: 65
x-powered-by: KPHP/7.4.112815
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Sat, 09 Dec 2023 01:01:44 GMT; path=/; domain=.vk.com
remixstlid=9096513976670494082_MKUbhCck7j4LGLQxZ8853HgfTuTFAhRgFnydIlwZwVz; expires=Sat, 09 Dec 2023 17:05:13 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
content-encoding: gzip
x-frontend: front605110
strict-transport-security: max-age=15768000
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 09 Dec 2022 17:05:13 GMT
access-control-allow-origin: *
etag: "6392ed22-2b"
expires: Fri, 09 Dec 2022 18:05:13 GMT
accept-ranges: bytes
last-modified: Fri, 09 Dec 2022 11:09:06 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/46244097/1?wmode=7&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afp%3A1589%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A942%3Acn%3A1%3Adp%3A0%3Als%3A309057961085%3Ahid%3A492294058%3Az%3A0%3Ai%3A20221209170512%3Aet%3A1670605512%3Ac%3A1%3Arn%3A274745574%3Arqn%3A1%3Au%3A16706055121048944869%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C477%2C0%2C732%2C0%2C%2C928%2C20%2C%2C%2C%2C2148%3Aco%3A0%3Ans%3A1670605509570%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670605512%3At%3A%D0%9E%D1%88%D0%B8%D0%B1%D0%BA%D0%B0%20404.%20%D0%A1%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%20%D0%BD%D0%B5%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD%D0%B0.&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
200 OK 878 B URL HTTP/2 mc.yandex.ru/watch/46244097/1?wmode=7&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afp%3A1589%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A942%3Acn%3A1%3Adp%3A0%3Als%3A309057961085%3Ahid%3A492294058%3Az%3A0%3Ai%3A20221209170512%3Aet%3A1670605512%3Ac%3A1%3Arn%3A274745574%3Arqn%3A1%3Au%3A16706055121048944869%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C477%2C0%2C732%2C0%2C%2C928%2C20%2C%2C%2C%2C2148%3Aco%3A0%3Ans%3A1670605509570%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670605512%3At%3A%D0%9E%D1%88%D0%B8%D0%B1%D0%BA%D0%B0%20404.%20%D0%A1%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%20%D0%BD%D0%B5%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD%D0%B0.&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (878), with no line terminators
Hash a9e355b1800c38188b03cb1e5b76563e
51e64c452c66315904e930701bec32eaf0aad920
cb435b4007f4f2a314d8812d8f26f12a552dec51ec7488e124506b0aa568ed81
GET /watch/46244097/1?wmode=7&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3Awy278c4xrecmji309n1ev%3Afp%3A1589%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A942%3Acn%3A1%3Adp%3A0%3Als%3A309057961085%3Ahid%3A492294058%3Az%3A0%3Ai%3A20221209170512%3Aet%3A1670605512%3Ac%3A1%3Arn%3A274745574%3Arqn%3A1%3Au%3A16706055121048944869%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A0%2C0%2C477%2C0%2C732%2C0%2C%2C928%2C20%2C%2C%2C%2C2148%3Aco%3A0%3Ans%3A1670605509570%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670605512%3At%3A%D0%9E%D1%88%D0%B8%D0%B1%D0%BA%D0%B0%20404.%20%D0%A1%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%20%D0%BD%D0%B5%20%D0%BD%D0%B0%D0%B9%D0%B4%D0%B5%D0%BD%D0%B0.&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://krikam.net
Referer: https://krikam.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 878
date: Fri, 09 Dec 2022 17:05:13 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://krikam.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 17:05:13 GMT
last-modified: Fri, 09-Dec-2022 17:05:13 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2556512b197b09798af71bea10bb4bbb
23b647aca5f8294ae82fa8cc7e2215ebe3347b60
3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 17:05:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-107278303-4&cid=1340273076.1670605512&jid=1576188464&gjid=1091879904&_gid=139324154.1670605512&_u=YEBAAEAAAAAAACAAI~&z=1267662419
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-107278303-4&cid=1340273076.1670605512&jid=1576188464&gjid=1091879904&_gid=139324154.1670605512&_u=YEBAAEAAAAAAACAAI~&z=1267662419
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-107278303-4&cid=1340273076.1670605512&jid=1576188464&gjid=1091879904&_gid=139324154.1670605512&_u=YEBAAEAAAAAAACAAI~&z=1267662419 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://krikam.net
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://krikam.net
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 09 Dec 2022 17:05:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2556512b197b09798af71bea10bb4bbb
23b647aca5f8294ae82fa8cc7e2215ebe3347b60
3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 17:05:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b5cba4e1962a1fe17c9021f3e418975a
01293d7e4084011451f7d17936ab2427504cdb1a
ecfe30d3abc32ca9f933303d75b2055642d3c7c8197af08fe2c314394699594b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 17:05:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6c33a1d5d0fc5fe73ec55ac938817ea4
bfc100af7973feb3a7c3501dda66589f08bc6bde
668f1beac80500f1748643c27de6e413b0676a2fa94b0fbb7ef94b1cbab16e50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 17:05:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-107278303-4&cid=1340273076.1670605512&jid=1576188464&_u=YEBAAEAAAAAAACAAI~&z=2064004604
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-107278303-4&cid=1340273076.1670605512&jid=1576188464&_u=YEBAAEAAAAAAACAAI~&z=2064004604
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-107278303-4&cid=1340273076.1670605512&jid=1576188464&_u=YEBAAEAAAAAAACAAI~&z=2064004604 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 17:05:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-107278303-4&cid=1340273076.1670605512&jid=1576188464&_u=YEBAAEAAAAAAACAAI~&z=2064004604
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-107278303-4&cid=1340273076.1670605512&jid=1576188464&_u=YEBAAEAAAAAAACAAI~&z=2064004604
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-107278303-4&cid=1340273076.1670605512&jid=1576188464&_u=YEBAAEAAAAAAACAAI~&z=2064004604 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Dec 2022 17:05:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 32d90ff0cc366730c3633c1201b4c058
f4175292b607197a15085e14bf69df301dff6706
b4b2f80fbe9b02f3d54dc35a3738c31a4d7cb5a5e528fcbce50263d8c458231a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 17:05:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
popup-static.unisender.com/service/vendors/raven.js
200 OK 14 kB URL HTTP/2 popup-static.unisender.com/service/vendors/raven.js
IP
Hash d1860717ec27e02b9feeb9e030e43be4
730bbf76ea16996c705765be0b15036b4b3d1fac
3d8a7f6713feb10ac99866b165f13114d11478865dd9f3b376bf2abc870166d7
GET /service/vendors/raven.js HTTP/1.1
Host: popup-static.unisender.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:13 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 27 Sep 2022 13:12:34 GMT
etag: W/"6332f6c2-5de2"
expires: Sat, 10 Dec 2022 17:05:13 GMT
cache-control: max-age=86400
content-encoding: gzip
x-robots-tag: noindex,nofollow
x-powered-by: EmailDelivery
X-Firefox-Spdy: h2
popup.unisender.com/web/pixel/stats/?type=pageview&url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&vid=4621271414&client=52985&source=typein&device=pc&u_s=(direct)
200 OK 42 B URL HTTP/2 popup.unisender.com/web/pixel/stats/?type=pageview&url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&vid=4621271414&client=52985&source=typein&device=pc&u_s=(direct)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /web/pixel/stats/?type=pageview&url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&vid=4621271414&client=52985&source=typein&device=pc&u_s=(direct) HTTP/1.1
Host: popup.unisender.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:13 GMT
content-type: image/gif
content-length: 42
x-frame-options: SAMEORIGIN
vary: Cookie
set-cookie: vid=4621271414; expires=Wed, 07 Jun 2023 17:05:13 GMT; Path=/
access-control-allow-credentials: true
x-robots-tag: noindex,nofollow
x-powered-by: EmailDelivery
X-Firefox-Spdy: h2
popup.unisender.com/web/pixel/stats/?type=bucket&form=74205&settings=71972&conditions=241739&vid=4621271414&client=52985&source=typein&device=pc&url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&u_s=(direct)
200 OK 42 B URL HTTP/2 popup.unisender.com/web/pixel/stats/?type=bucket&form=74205&settings=71972&conditions=241739&vid=4621271414&client=52985&source=typein&device=pc&url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&u_s=(direct)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /web/pixel/stats/?type=bucket&form=74205&settings=71972&conditions=241739&vid=4621271414&client=52985&source=typein&device=pc&url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&u_s=(direct) HTTP/1.1
Host: popup.unisender.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:13 GMT
content-type: image/gif
content-length: 42
x-frame-options: SAMEORIGIN
vary: Cookie
set-cookie: vid=4621271414; expires=Wed, 07 Jun 2023 17:05:13 GMT; Path=/
access-control-allow-credentials: true
x-robots-tag: noindex,nofollow
x-powered-by: EmailDelivery
X-Firefox-Spdy: h2
popup.unisender.com/web/pixel/host/?vid=4621271414&client=52985&host=krikam.net
200 OK 42 B URL HTTP/2 popup.unisender.com/web/pixel/host/?vid=4621271414&client=52985&host=krikam.net
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /web/pixel/host/?vid=4621271414&client=52985&host=krikam.net HTTP/1.1
Host: popup.unisender.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:13 GMT
content-type: image/gif
content-length: 42
x-frame-options: SAMEORIGIN
vary: Cookie
set-cookie: vid=4621271414; expires=Wed, 07 Jun 2023 17:05:13 GMT; Path=/
access-control-allow-credentials: true
x-robots-tag: noindex,nofollow
x-powered-by: EmailDelivery
X-Firefox-Spdy: h2
cdn-ru.bitrix24.ru/b12183/sender/2d1/2d10539e6a773a8b0addd8fd0c9966c9/e8281f8f8affe7a560b5b7cdec4bffa7.jpg
200 OK 31 kB URL HTTP/2 cdn-ru.bitrix24.ru/b12183/sender/2d1/2d10539e6a773a8b0addd8fd0c9966c9/e8281f8f8affe7a560b5b7cdec4bffa7.jpg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 733x448, components 3\012- data
Hash 98390703a26d00bc010c9c76df69efb9
bf29e8707d641110102fd86467ffb33a5003ac89
a1f52e31d9c802c79ea89d352cdeba84e28aa22dad4a87271fb709c8ec08f570
GET /b12183/sender/2d1/2d10539e6a773a8b0addd8fd0c9966c9/e8281f8f8affe7a560b5b7cdec4bffa7.jpg HTTP/1.1
Host: cdn-ru.bitrix24.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:13 GMT
content-type: image/jpeg
content-length: 31374
x-req-id: 369RqUFT7
last-modified: Thu, 14 Jan 2021 09:31:26 GMT
etag: "98390703a26d00bc010c9c76df69efb9"
x-host: hb-front14
expires: Sun, 08 Jan 2023 17:05:13 GMT
cache-control: max-age=2592000
server-timing: t1;dur=0.023, t2;dur=0.022, t3;dur=0.000, tc1;dur=48000, tc2;dur=1500, tc3;dur=34
x-bitrix-lb: mail-lb-01
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/46244097?wmode=0&wv-part=1&wv-hit=492294058&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&rn=494579155&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670605516%3Aw%3A1268x939%3Av%3A942%3Az%3A0%3Ai%3A20221209170515%3Au%3A16706055121048944869%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670605516&t=gdpr(14)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/46244097?wmode=0&wv-part=1&wv-hit=492294058&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&rn=494579155&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670605516%3Aw%3A1268x939%3Av%3A942%3Az%3A0%3Ai%3A20221209170515%3Au%3A16706055121048944869%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670605516&t=gdpr(14)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/46244097?wmode=0&wv-part=1&wv-hit=492294058&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&rn=494579155&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670605516%3Aw%3A1268x939%3Av%3A942%3Az%3A0%3Ai%3A20221209170515%3Au%3A16706055121048944869%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670605516&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 223258
Origin: https://krikam.net
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 09 Dec 2022 17:05:16 GMT
access-control-allow-origin: https://krikam.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 17:05:16 GMT
last-modified: Fri, 09-Dec-2022 17:05:16 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/46244097?wmode=0&wv-part=1&wv-hit=492294058&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&rn=617840744&wv-type=3&browser-info=we%3A1%3Aet%3A1670605516%3Aw%3A1268x939%3Av%3A942%3Az%3A0%3Ai%3A20221209170515%3Au%3A16706055121048944869%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670605516&t=gdpr(14)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/46244097?wmode=0&wv-part=1&wv-hit=492294058&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&rn=617840744&wv-type=3&browser-info=we%3A1%3Aet%3A1670605516%3Aw%3A1268x939%3Av%3A942%3Az%3A0%3Ai%3A20221209170515%3Au%3A16706055121048944869%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670605516&t=gdpr(14)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/46244097?wmode=0&wv-part=1&wv-hit=492294058&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&rn=617840744&wv-type=3&browser-info=we%3A1%3Aet%3A1670605516%3Aw%3A1268x939%3Av%3A942%3Az%3A0%3Ai%3A20221209170515%3Au%3A16706055121048944869%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670605516&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: https://krikam.net
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 09 Dec 2022 17:05:16 GMT
access-control-allow-origin: https://krikam.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 17:05:16 GMT
last-modified: Fri, 09-Dec-2022 17:05:16 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/46244097?wmode=0&wv-part=2&wv-hit=492294058&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&rn=428889028&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670605517%3Aw%3A1268x939%3Av%3A942%3Az%3A0%3Ai%3A20221209170516%3Au%3A16706055121048944869%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670605517&t=gdpr(14)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/46244097?wmode=0&wv-part=2&wv-hit=492294058&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&rn=428889028&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670605517%3Aw%3A1268x939%3Av%3A942%3Az%3A0%3Ai%3A20221209170516%3Au%3A16706055121048944869%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670605517&t=gdpr(14)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/46244097?wmode=0&wv-part=2&wv-hit=492294058&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&rn=428889028&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670605517%3Aw%3A1268x939%3Av%3A942%3Az%3A0%3Ai%3A20221209170516%3Au%3A16706055121048944869%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670605517&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 544
Origin: https://krikam.net
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 09 Dec 2022 17:05:17 GMT
access-control-allow-origin: https://krikam.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 17:05:17 GMT
last-modified: Fri, 09-Dec-2022 17:05:17 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/46244097?wv-check=32661&wv-type=0&wmode=0&wv-part=1&wv-hit=492294058&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&rn=755123595&browser-info=we%3A1%3Aet%3A1670605519%3Aw%3A1268x939%3Av%3A942%3Az%3A0%3Ai%3A20221209170518%3Au%3A16706055121048944869%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670605519&t=gdpr(14)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/46244097?wv-check=32661&wv-type=0&wmode=0&wv-part=1&wv-hit=492294058&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&rn=755123595&browser-info=we%3A1%3Aet%3A1670605519%3Aw%3A1268x939%3Av%3A942%3Az%3A0%3Ai%3A20221209170518%3Au%3A16706055121048944869%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670605519&t=gdpr(14)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/46244097?wv-check=32661&wv-type=0&wmode=0&wv-part=1&wv-hit=492294058&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&rn=755123595&browser-info=we%3A1%3Aet%3A1670605519%3Aw%3A1268x939%3Av%3A942%3Az%3A0%3Ai%3A20221209170518%3Au%3A16706055121048944869%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670605519&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://krikam.net
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 09 Dec 2022 17:05:19 GMT
access-control-allow-origin: https://krikam.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 17:05:19 GMT
last-modified: Fri, 09-Dec-2022 17:05:19 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
cdn-ru.bitrix24.ru/b12183/crm/form/loader_14.js?9281141
200 OK 3.6 kB URL HTTP/2 cdn-ru.bitrix24.ru/b12183/crm/form/loader_14.js?9281141
IP
Hash 141663f24ceaaf4b6271c7e0e8e1102e
7c458e960c4430c4b6dc3b78a1a906ddb805bf19
f14c1cadba36398b5c936ac291ac9aeb032ad1f65230eb1e44258ba773072431
GET /b12183/crm/form/loader_14.js?9281141 HTTP/1.1
Host: cdn-ru.bitrix24.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:14 GMT
content-type: application/javascript
x-req-id: 2xd8xncAe
last-modified: Tue, 14 Dec 2021 07:35:30 GMT
etag: W/"47de9cfd4eca47556484717961b9517b"
x-host: hb-front14
content-encoding: gzip
expires: Sun, 08 Jan 2023 17:05:14 GMT
cache-control: max-age=2592000
server-timing: t1;dur=0.015, t2;dur=0.014, t3;dur=0.000, tc1;dur=47875, tc2;dur=750, tc3;dur=25
x-bitrix-lb: mail-lb-01
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/46244097?wmode=0&wv-part=3&wv-hit=492294058&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&rn=291380587&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670605519%3Aw%3A1268x939%3Av%3A942%3Az%3A0%3Ai%3A20221209170518%3Au%3A16706055121048944869%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670605519&t=gdpr(14)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/46244097?wmode=0&wv-part=3&wv-hit=492294058&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&rn=291380587&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670605519%3Aw%3A1268x939%3Av%3A942%3Az%3A0%3Ai%3A20221209170518%3Au%3A16706055121048944869%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670605519&t=gdpr(14)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/46244097?wmode=0&wv-part=3&wv-hit=492294058&page-url=https%3A%2F%2Fkrikam.net%2Fupload%2Fiblock%2F9ae%2Fvector_vt-50ml_soft.zip%2F&rn=291380587&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670605519%3Aw%3A1268x939%3Av%3A942%3Az%3A0%3Ai%3A20221209170518%3Au%3A16706055121048944869%3Avf%3Awy278c4xrecmji309n1ev%3Ast%3A1670605519&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://krikam.net
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 09 Dec 2022 17:05:19 GMT
access-control-allow-origin: https://krikam.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 09-Dec-2022 17:05:19 GMT
last-modified: Fri, 09-Dec-2022 17:05:19 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/header_icons/pin.svg
200 OK 0 B URL HTTP/2 krikam.net/local/templates/market_column/images/icons/header_icons/pin.svg
IP
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/header_icons/pin.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/bitrix/cache/css/s1/market_column/template_39aff30e977e2c9d387d1d9ff24de638/template_39aff30e977e2c9d387d1d9ff24de638_v1.css?1660820987166659
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"3ad-5dd029cd3c778"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
popup-static.unisender.com/service/loader.js?c=52985
200 OK 0 B URL HTTP/2 popup-static.unisender.com/service/loader.js?c=52985
IP
GET /service/loader.js?c=52985 HTTP/1.1
Host: popup-static.unisender.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 27 Sep 2022 13:12:35 GMT
etag: W/"6332f6c3-318"
expires: Sat, 10 Dec 2022 17:05:12 GMT
cache-control: max-age=86400
content-encoding: gzip
x-robots-tag: noindex,nofollow
x-powered-by: EmailDelivery
X-Firefox-Spdy: h2
krikam.net/load/gtm.js?id=GTM-K322PSC
200 OK 0 B URL HTTP/2 krikam.net/load/gtm.js?id=GTM-K322PSC
IP
Analyzer Verdict Alert fortinet Malware
GET /load/gtm.js?id=GTM-K322PSC HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 19 Apr 2022 14:22:52 GMT
etag: W/"1d1a9-5dd029cb830ef-gzip"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
vary: Accept-Encoding
content-encoding: br
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
bitrix.info/ba.js
200 OK 0 B IP
GET /ba.js HTTP/1.1
Host: bitrix.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: application/javascript
server: nginx/1.10.1
last-modified: Wed, 19 May 2021 09:38:44 GMT
etag: W/"60a4dca4-1a03"
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
set-cookie: bx_user_id=9b3b3ac2a296c0a0430ab42ef165098a; expires=Mon, 06-Dec-32 17:05:12 GMT; path=/; domain=bitrix.info; SameSite=None; Secure
access-control-allow-origin: *
expires: Sun, 11 Dec 2022 17:05:12 GMT
cache-control: max-age=172800
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/search-white.svg
200 OK 0 B URL HTTP/2 krikam.net/local/templates/market_column/images/icons/search-white.svg
IP
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/search-white.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/bitrix/cache/css/s1/market_column/template_39aff30e977e2c9d387d1d9ff24de638/template_39aff30e977e2c9d387d1d9ff24de638_v1.css?1660820987166659
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"87e-5dd029cd3c778"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/bitrix/cache/css/s1/market_column/template_39aff30e977e2c9d387d1d9ff24de638/template_39aff30e977e2c9d387d1d9ff24de638_v1.css?1660820987166659
200 OK 0 B URL HTTP/2 krikam.net/bitrix/cache/css/s1/market_column/template_39aff30e977e2c9d387d1d9ff24de638/template_39aff30e977e2c9d387d1d9ff24de638_v1.css?1660820987166659
IP
Analyzer Verdict Alert fortinet Malware
GET /bitrix/cache/css/s1/market_column/template_39aff30e977e2c9d387d1d9ff24de638/template_39aff30e977e2c9d387d1d9ff24de638_v1.css?1660820987166659 HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:11 GMT
content-type: text/css
last-modified: Thu, 18 Aug 2022 11:09:47 GMT
etag: W/"28b03-5e68204ff6f4d-gzip"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:11 GMT
vary: Accept-Encoding
content-encoding: br
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/bitrix/js/main/core/core.js?1661440339564311
200 OK 0 B URL HTTP/2 krikam.net/bitrix/js/main/core/core.js?1661440339564311
IP
GET /bitrix/js/main/core/core.js?1661440339564311 HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 25 Aug 2022 15:12:19 GMT
etag: W/"89c57-5e7123938bac0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
vary: Accept-Encoding
content-encoding: br
age: 2
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/header_icons/call.svg
200 OK 0 B URL HTTP/2 krikam.net/local/templates/market_column/images/icons/header_icons/call.svg
IP
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/header_icons/call.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/bitrix/cache/css/s1/market_column/template_39aff30e977e2c9d387d1d9ff24de638/template_39aff30e977e2c9d387d1d9ff24de638_v1.css?1660820987166659
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"7c6-5dd029cd3b7d8"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/header_icons/login.svg
200 OK 0 B URL HTTP/2 krikam.net/local/templates/market_column/images/icons/header_icons/login.svg
IP
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/header_icons/login.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/bitrix/cache/css/s1/market_column/template_39aff30e977e2c9d387d1d9ff24de638/template_39aff30e977e2c9d387d1d9ff24de638_v1.css?1660820987166659
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"3b8-5dd029cd3b7d8"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
popup-static.unisender.com/service/vendors/underscore.js
200 OK 0 B URL HTTP/2 popup-static.unisender.com/service/vendors/underscore.js
IP
GET /service/vendors/underscore.js HTTP/1.1
Host: popup-static.unisender.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:13 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Tue, 27 Sep 2022 13:12:34 GMT
etag: W/"6332f6c2-3f56"
expires: Sat, 10 Dec 2022 17:05:13 GMT
cache-control: max-age=86400
content-encoding: gzip
x-robots-tag: noindex,nofollow
x-powered-by: EmailDelivery
X-Firefox-Spdy: h2
krikam.net/upload/iblock/cde/dalnoboy_anons.jpg
200 OK 0 B URL HTTP/2 krikam.net/upload/iblock/cde/dalnoboy_anons.jpg
IP
GET /upload/iblock/cde/dalnoboy_anons.jpg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:11 GMT
content-type: text/html; charset=cp1251
last-modified: Tue, 19 Apr 2022 14:23:37 GMT
etag: W/"2b26-5dd029f66b7c8-gzip"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:11 GMT
vary: Accept-Encoding
content-encoding: br
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/bitrix/js/main/popup/dist/main.popup.bundle.css?165693472626345
200 OK 0 B URL HTTP/2 krikam.net/bitrix/js/main/popup/dist/main.popup.bundle.css?165693472626345
IP
Analyzer Verdict Alert fortinet Malware
GET /bitrix/js/main/popup/dist/main.popup.bundle.css?165693472626345 HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:11 GMT
content-type: text/css
last-modified: Mon, 04 Jul 2022 11:38:46 GMT
etag: W/"66e9-5e2f92dc70562-gzip"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:11 GMT
vary: Accept-Encoding
content-encoding: br
age: 3
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/soc_icons/soc_telegram.svg
200 OK 0 B URL HTTP/2 krikam.net/local/templates/market_column/images/icons/soc_icons/soc_telegram.svg
IP
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/soc_icons/soc_telegram.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"414-5dd029cd3c778"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
content-encoding: br
vary: Accept-Encoding
age: 2
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/money_icons/$_visa.svg
200 OK 0 B URL HTTP/2 krikam.net/local/templates/market_column/images/icons/money_icons/$_visa.svg
IP
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/money_icons/$_visa.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"45b-5dd029cd3c778"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
content-encoding: br
vary: Accept-Encoding
age: 2
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/money_icons/$_mir-logo.svg
200 OK 0 B URL HTTP/2 krikam.net/local/templates/market_column/images/icons/money_icons/$_mir-logo.svg
IP
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/money_icons/$_mir-logo.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:11 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"4fc-5dd029cd3c778"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:11 GMT
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/soc_icons/soc_facebook.svg
200 OK 0 B URL HTTP/2 krikam.net/local/templates/market_column/images/icons/soc_icons/soc_facebook.svg
IP
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/soc_icons/soc_facebook.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:11 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"248-5dd029cd3c778"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:11 GMT
content-encoding: br
vary: Accept-Encoding
age: 3
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
cdn-ru.bitrix24.ru/b12183/crm/form/loader_26.js?9281141
200 OK 0 B URL HTTP/2 cdn-ru.bitrix24.ru/b12183/crm/form/loader_26.js?9281141
IP
GET /b12183/crm/form/loader_26.js?9281141 HTTP/1.1
Host: cdn-ru.bitrix24.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: application/javascript
x-req-id: KnxWnkqo
last-modified: Tue, 14 Dec 2021 07:44:53 GMT
etag: W/"88ab551f12c51c80adb8075110149d37"
x-host: hb-front14
content-encoding: gzip
expires: Sun, 08 Jan 2023 17:05:12 GMT
cache-control: max-age=2592000
server-timing: t1;dur=0.030, t2;dur=0.030, t3;dur=0.000, tc1;dur=47000, tc2;dur=7750, tc3;dur=20
x-bitrix-lb: mail-lb-01
X-Firefox-Spdy: h2
cdn-ru.bitrix24.ru/b12183/crm/site_button/loader_6_8dmsef.js?27843425
200 OK 0 B URL HTTP/2 cdn-ru.bitrix24.ru/b12183/crm/site_button/loader_6_8dmsef.js?27843425
IP
GET /b12183/crm/site_button/loader_6_8dmsef.js?27843425 HTTP/1.1
Host: cdn-ru.bitrix24.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: application/javascript
x-req-id: mbUsUxpb
last-modified: Thu, 13 Oct 2022 19:52:01 GMT
etag: W/"c330df40453c09a2b8882af2424797d8"
x-host: hb-front15
content-encoding: gzip
expires: Sun, 11 Dec 2022 17:05:12 GMT
cache-control: max-age=172800
server-timing: t1;dur=0.000, t2;dur=, t3;dur=, tc1;dur=47625, tc2;dur=1500, tc3;dur=22
x-bitrix-lb: mail-lb-01
X-Firefox-Spdy: h2
krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip
301 Moved Permanently 0 B URL HTTP/2 krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip
IP
Analyzer Verdict Alert fortinet Malware
GET /upload/iblock/9ae/vector_vt-50ml_soft.zip HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: ddos-guard
set-cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; Domain=.krikam.net; HttpOnly; Path=/; Expires=Sat, 09-Dec-2023 17:05:11 GMT
date: Fri, 09 Dec 2022 16:55:14 GMT
content-type: text/html; charset=iso-8859-1
location: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
cache-control: max-age=31536000
expires: Sat, 09 Dec 2023 16:55:14 GMT
age: 597
ddg-cache-status: HIT,MISS
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/i-telephona.svg
200 OK 0 B URL HTTP/2 krikam.net/local/templates/market_column/images/icons/i-telephona.svg
IP
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/i-telephona.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:11 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"5e4-5dd029cd3c778"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:11 GMT
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/money_icons/$_mastercard.svg
200 OK 0 B URL HTTP/2 krikam.net/local/templates/market_column/images/icons/money_icons/$_mastercard.svg
IP
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/money_icons/$_mastercard.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:11 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"bb3-5dd029cd3c778"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:11 GMT
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
cdn-ru.bitrix24.ru/b12183/crm/form/loader_16.js?9281141
200 OK 0 B URL HTTP/2 cdn-ru.bitrix24.ru/b12183/crm/form/loader_16.js?9281141
IP
GET /b12183/crm/form/loader_16.js?9281141 HTTP/1.1
Host: cdn-ru.bitrix24.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:14 GMT
content-type: application/javascript
x-req-id: G6RuiNRE
last-modified: Tue, 14 Dec 2021 07:36:06 GMT
etag: W/"e944078d08d3bbc2adbedb4ac5b4c757"
x-host: hb-front14
content-encoding: gzip
expires: Sun, 08 Jan 2023 17:05:14 GMT
cache-control: max-age=2592000
server-timing: t1;dur=0.036, t2;dur=0.036, t3;dur=0.001, tc1;dur=47875, tc2;dur=750, tc3;dur=20
x-bitrix-lb: mail-lb-01
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/soc_icons/soc_vk.svg
200 OK 0 B URL HTTP/2 krikam.net/local/templates/market_column/images/icons/soc_icons/soc_vk.svg
IP
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/soc_icons/soc_vk.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:11 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"3ba-5dd029cd3c778"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:11 GMT
content-encoding: br
vary: Accept-Encoding
age: 2
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/money_icons/$_yandex_dengi_icon.svg
200 OK 0 B URL HTTP/2 krikam.net/local/templates/market_column/images/icons/money_icons/$_yandex_dengi_icon.svg
IP
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/money_icons/$_yandex_dengi_icon.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"2d4-5dd029cd3c778"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
content-encoding: br
vary: Accept-Encoding
age: 2
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/soc_icons/soc_viber.svg
200 OK 0 B URL HTTP/2 krikam.net/local/templates/market_column/images/icons/soc_icons/soc_viber.svg
IP
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/soc_icons/soc_viber.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"826-5dd029cd3c778"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
content-encoding: br
vary: Accept-Encoding
age: 2
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/bitrix/cache/js/s1/market_column/default_017ad5f7d55a70225c8d776b1d2275c9/default_017ad5f7d55a70225c8d776b1d2275c9_v1.js?166082098733316
200 OK 0 B URL HTTP/2 krikam.net/bitrix/cache/js/s1/market_column/default_017ad5f7d55a70225c8d776b1d2275c9/default_017ad5f7d55a70225c8d776b1d2275c9_v1.js?166082098733316
IP
GET /bitrix/cache/js/s1/market_column/default_017ad5f7d55a70225c8d776b1d2275c9/default_017ad5f7d55a70225c8d776b1d2275c9_v1.js?166082098733316 HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 18 Aug 2022 11:09:47 GMT
etag: W/"8224-5e68204fde8ad-gzip"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
vary: Accept-Encoding
content-encoding: br
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/local/templates/market_column/images/icons/soc_icons/soc_youtube.svg
200 OK 0 B URL HTTP/2 krikam.net/local/templates/market_column/images/icons/soc_icons/soc_youtube.svg
IP
Analyzer Verdict Alert fortinet Malware
GET /local/templates/market_column/images/icons/soc_icons/soc_youtube.svg HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: image/svg+xml
last-modified: Tue, 19 Apr 2022 14:22:54 GMT
etag: W/"2a3-5dd029cd3c778"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
content-encoding: br
vary: Accept-Encoding
age: 2
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
baltway.bitrix24.ru/bitrix/js/crm/site/form/dist/app.bundle.min.css?19335
200 OK 0 B URL HTTP/2 baltway.bitrix24.ru/bitrix/js/crm/site/form/dist/app.bundle.min.css?19335
IP
GET /bitrix/js/crm/site/form/dist/app.bundle.min.css?19335 HTTP/1.1
Host: baltway.bitrix24.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: text/css
last-modified: Mon, 03 Oct 2022 13:37:53 GMT
etag: W/"633ae5b1-1180e"
expires: Sat, 07 Jan 2023 01:58:46 GMT
cache-control: max-age=2592000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
server-timing: t1;dur=0.001, t2;dur=, t3;dur=, tc1;dur=47250, tc2;dur=1250, tc3;dur=20
x-bitrix-ri: 5ecd59ff8bd458d99e463ec383374c6b
x-bitrix-lb: mail-lb-01
X-Firefox-Spdy: h2
krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
404 Not Found 0 B URL HTTP/2 krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
IP
Analyzer Verdict Alert fortinet Malware
GET /upload/iblock/9ae/vector_vt-50ml_soft.zip/ HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:11 GMT
content-type: text/html; charset=windows-1251
p3p: policyref="/bitrix/p3p.xml", CP="NON DSP COR CUR ADM DEV PSA PSD OUR UNR BUS UNI COM NAV INT DEM STA"
x-powered-cms: Bitrix Site Manager (a21ebe23dcd0971adf9348f7f21ba495)
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: max-age=31536000, private, must-revalidate
pragma: no-cache
x-frame-options: SAMEORIGIN
set-cookie: PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; path=/; domain=krikam.net; HttpOnly
BITRIX_SM_GUEST_ID=18321885; expires=Mon, 04-Dec-2023 17:05:11 GMT; Max-Age=31104000; path=/; domain=krikam.net
BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11; expires=Mon, 04-Dec-2023 17:05:11 GMT; Max-Age=31104000; path=/; domain=krikam.net
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
krikam.net/bitrix/cache/js/s1/market_column/template_a6adb5d7e635a68e581fda90c4a73544/template_a6adb5d7e635a68e581fda90c4a73544_v1.js?1660820987476823
200 OK 0 B URL HTTP/2 krikam.net/bitrix/cache/js/s1/market_column/template_a6adb5d7e635a68e581fda90c4a73544/template_a6adb5d7e635a68e581fda90c4a73544_v1.js?1660820987476823
IP
Analyzer Verdict Alert fortinet Malware
GET /bitrix/cache/js/s1/market_column/template_a6adb5d7e635a68e581fda90c4a73544/template_a6adb5d7e635a68e581fda90c4a73544_v1.js?1660820987476823 HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:11 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 18 Aug 2022 11:09:47 GMT
etag: W/"74697-5e68204ff8e8d-gzip"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:11 GMT
vary: Accept-Encoding
content-encoding: br
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/bitrix/cache/css/s1/market_column/kernel_main/kernel_main_v1.css?1660820987198290
200 OK 0 B URL HTTP/2 krikam.net/bitrix/cache/css/s1/market_column/kernel_main/kernel_main_v1.css?1660820987198290
IP
Analyzer Verdict Alert fortinet Malware
GET /bitrix/cache/css/s1/market_column/kernel_main/kernel_main_v1.css?1660820987198290 HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:11 GMT
content-type: text/css
last-modified: Thu, 18 Aug 2022 11:09:47 GMT
etag: W/"30692-5e68204fabc2b-gzip"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:11 GMT
vary: Accept-Encoding
content-encoding: br
age: 3
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
krikam.net/bitrix/js/main/popup/dist/main.popup.bundle.js?1656934726109107
200 OK 0 B URL HTTP/2 krikam.net/bitrix/js/main/popup/dist/main.popup.bundle.js?1656934726109107
IP
Analyzer Verdict Alert fortinet Malware
GET /bitrix/js/main/popup/dist/main.popup.bundle.js?1656934726109107 HTTP/1.1
Host: krikam.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://krikam.net/upload/iblock/9ae/vector_vt-50ml_soft.zip/
Cookie: __ddg1_=4heB0LXeRw1Kt3l21TIh; PHPSESSID=AeBoS0pig4OUp1v0ZPvp2Khazu6MP0r2; BITRIX_SM_GUEST_ID=18321885; BITRIX_SM_LAST_VISIT=09.12.2022+20%3A05%3A11
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 09 Dec 2022 17:05:12 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 04 Jul 2022 11:38:46 GMT
etag: W/"1aa33-5e2f92dc70562-gzip"
accept-ranges: bytes
cache-control: max-age=31536000, private, must-revalidate
expires: Sat, 09 Dec 2023 17:05:12 GMT
vary: Accept-Encoding
content-encoding: br
age: 2
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
92.255.104.245
54.200.107.47
104.18.21.226
195.13.237.88
95.101.11.115
54.170.84.130
93.184.220.29