kanzas.ua/
301 Moved Permanently 229 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ba1ea0fd967bbcb576e00b138f3b9690
25d59a0953c35dcf6293d2a8745f038f5d66e6ae
ddeed87d1dcf6f0ad1a555cd752b0dc5bf037211dc3818ca2c94edf0dcf53274
GET / HTTP/1.1
Host: kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:26 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 229
Connection: keep-alive
Keep-Alive: timeout=20
Location: http://www.kanzas.ua/
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 12 Sep 2022 12:08:12 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9VqNzE45uBmwYwyPEHPB-In-rg22GnoJvwxUufWhoPT4c3e8_-02Ug==
Age: 1520
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8562
Expires: Mon, 12 Sep 2022 14:56:14 GMT
Date: Mon, 12 Sep 2022 12:33:32 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eb6VWXg8eOCd8AT2L_DaTTa3nyidmJCbqOInMCDB9bKnWoxqpQ1OGg==
age: 18980
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 12 Sep 2022 12:33:32 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.kanzas.ua/
200 OK 74 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1467), with CRLF, CR, LF line terminators
Hash 749f2b132f2bc7b73a7321be757ad755
75d6ae942ff758233f148b1425b2431712fc1cef
c0757209703661c29a1bca664e0531d15330ed61deadb6786c223bc3315ccef5
GET / HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:26 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
X-Powered-By: PHP/5.4.45
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Set-Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache
www.kanzas.ua/highslide/highslide.css
200 OK 22 kB URL HTTP/1.1 www.kanzas.ua/highslide/highslide.css
IP
File type ASCII text, with CRLF line terminators
Hash 4d2323af97c0eff102e6ee30c0abe385
9697dd473c0c7cbe304f4eb7e301a59a83e490ce
1f803eabc37627b2df5d0f5250b754bb75b54edd60192dafe63dfa463072af2e
GET /highslide/highslide.css HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: text/css
Content-Length: 21524
Last-Modified: Sat, 30 Apr 2011 11:41:37 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4dbbf571-5414"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/js/jquery/jquery-migrate-1.1.1.min.js
200 OK 7.1 kB URL HTTP/1.1 www.kanzas.ua/js/jquery/jquery-migrate-1.1.1.min.js
IP
File type ASCII text, with very long lines (6923), with CRLF, LF line terminators
Hash b3abf477069c9b8aa3204d2a75c40e4f
8bdae31298879a089fbe2064b70264f5975fad4d
fdb88579b43b9c4ff6d5a7b8b69c0bf3baf07325df0fafd2917fdc301b0eac5f
GET /js/jquery/jquery-migrate-1.1.1.min.js HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: application/x-javascript
Content-Length: 7087
Last-Modified: Sun, 28 Apr 2013 11:41:25 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "517d0ae5-1baf"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/js/jquery.scrollTo.js
200 OK 7.7 kB URL HTTP/1.1 www.kanzas.ua/js/jquery.scrollTo.js
IP
Hash be8584ae8427ce42599f4f0361eb7bb1
e763af9190fb0845ba451402df715813f0f628c6
bce7c4d7a8648ad745ec0ef922c141bc017cafd1e9ced8810a754a0cbc2fe5a6
GET /js/jquery.scrollTo.js HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: application/x-javascript
Content-Length: 7715
Last-Modified: Tue, 22 Oct 2013 07:30:27 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "52662993-1e23"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7d0638db85def1a70c776e0dca26e2c0
1c738feb0ef9f19b58a91bd1755d5d053b839d9e
42163eda874ff11e6cec5c737926990d42cfb120bd0432c03741cece24bb4bbb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/plusone.js
200 OK 20 kB URL HTTP/2 apis.google.com/js/plusone.js
IP
File type ASCII text, with very long lines (1277)
Hash 202067c443611dc148225b75c0e3d556
9e6be316508f5c2a2e4b8cecc561b0e7415bd38c
5d9db864eb7c211f62d61436846b80db003b0102c903dda9bc15af29e5eefa39
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kanzas.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20362
date: Mon, 12 Sep 2022 12:33:32 GMT
expires: Mon, 12 Sep 2022 12:33:32 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "a362ed935f69c0db"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.kanzas.ua/js/brand.js
200 OK 2.7 kB URL HTTP/1.1 www.kanzas.ua/js/brand.js
IP
Hash 55a1526ebea9465f9412840bfb847aba
6ff20b223df5a70eda095e52614d7bd22784180d
9534418aa6353d58d8d25d3b166fa171e56469c8c2f3bb641bae7ab28e790786
GET /js/brand.js HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: application/x-javascript
Content-Length: 2711
Last-Modified: Wed, 10 May 2017 07:33:39 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "5912c253-a97"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/js/jquery.tools.min.js
200 OK 48 kB URL HTTP/1.1 www.kanzas.ua/js/jquery.tools.min.js
IP
File type ASCII text, with very long lines (991), with CRLF line terminators
Hash cd619ab7c9c416fcbb22f6889a63886d
f63434c5abea09fbbfc61f6322a7e7bcd1ff741f
0651cc6484dd2e810a569d4c6ff35d24e9ffb8cce2e142b5708a10954112394a
GET /js/jquery.tools.min.js HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: application/x-javascript
Content-Length: 48128
Last-Modified: Tue, 22 Oct 2013 07:21:43 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "52662787-bc00"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 437c7ccd2c357dd83d6b9a5118d4b402
e0002389b286a960b454a92aeb3d1a1e08317ff2
9a5b3bdb7765ea21d7147a0c8022198a1be6c8256fa594b53732cf59e86532b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.kanzas.ua/css/style_005.css
200 OK 54 kB URL HTTP/1.1 www.kanzas.ua/css/style_005.css
IP
Hash b21b4e838c330cfa2f77e53232de0dfb
adcad05840e1091b019a79af058e66003e04bea2
af9833afe27a47e19152460fdb68181a24d36333e7808910bcb71bf8d723f4f0
GET /css/style_005.css HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: text/css
Content-Length: 54060
Last-Modified: Fri, 07 Jun 2013 17:36:01 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "51b21a01-d32c"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/css/div-style15.css
200 OK 66 kB URL HTTP/1.1 www.kanzas.ua/css/div-style15.css
IP
Hash c4eba37e4c25880ddd52f8a72298f3f7
12a4528c2c2dfc1c837248859605840acbcf8e52
00fc197536a4048bbdd44fccad541eb411cb790dc5465e72347eecefe5d344fc
GET /css/div-style15.css HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: text/css
Content-Length: 66203
Last-Modified: Sat, 02 Apr 2016 16:38:25 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "56fff581-1029b"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/js/jquery/jquery-1.9.1_fix.min.js
200 OK 93 kB URL HTTP/1.1 www.kanzas.ua/js/jquery/jquery-1.9.1_fix.min.js
IP
File type ASCII text, with very long lines (32098)
Hash dc152f4e1e6d433eb1c3a8fc1002ea5d
b929ef77a1bac86cb7c8fb6af5739094e0b7e28d
9ee5717fd49f87b12af3802c59511bd6274be409ba61b93acc76fd7bb2160812
GET /js/jquery/jquery-1.9.1_fix.min.js HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: application/x-javascript
Content-Length: 92638
Last-Modified: Mon, 16 Dec 2013 11:58:04 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "52aeeacc-169de"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/js/flash_detect.js
200 OK 7.0 kB URL HTTP/1.1 www.kanzas.ua/js/flash_detect.js
IP
Hash 2ee7a7a27e1ce3e477a7e66c78383dbf
f66c466c7e20628029b78ed8aec573c8ab3112d6
56028f4e8369995bc6bf507ec44a93e8d3d38b6351baf3d5bf9763b17844ccb4
GET /js/flash_detect.js HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: application/x-javascript
Content-Length: 7049
Last-Modified: Thu, 24 Jan 2013 17:14:05 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "51016bdd-1b89"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/js/swfobject.js
200 OK 10 kB URL HTTP/1.1 www.kanzas.ua/js/swfobject.js
IP
File type ASCII text, with very long lines (10071)
Hash 892a543f3abb54e8ec1ada55be3b0649
5847ed101f55d51c53538a7078971e7de8fb6762
8677971b119ccdb82af697ff0e08f218490d15116f221d44301f1cc8797e67d4
GET /js/swfobject.js HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: application/x-javascript
Content-Length: 10220
Last-Modified: Sat, 31 Dec 2011 15:15:21 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4eff2709-27ec"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/js/jquery.jcarousel.min.js
200 OK 16 kB URL HTTP/1.1 www.kanzas.ua/js/jquery.jcarousel.min.js
IP
File type ASCII text, with very long lines (15337)
Hash 78706e28bbd75654f906cc9936112ffc
17839c56b4a38f9bf81fe3cfb4532f4231b3fe2f
37af6741b7afbcead54860c4b042632697c49cc89bc6d6783783a4df91fd0575
GET /js/jquery.jcarousel.min.js HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: application/x-javascript
Content-Length: 15803
Last-Modified: Fri, 07 Dec 2012 01:05:05 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "50c140c1-3dbb"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/js/slide.js
200 OK 58 kB URL HTTP/1.1 www.kanzas.ua/js/slide.js
IP
File type Unicode text, UTF-8 text, with very long lines (4967)
Hash a93f9cc3a6fc72b4691db6e8e3917b68
5788a74971e9cfd1716f65fd516e4652d65a7e2d
7750ae89d8611f8e4877855026f91a6665463da02fc015c49878a5c6fbb0a611
GET /js/slide.js HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: application/x-javascript
Content-Length: 58252
Last-Modified: Sun, 24 Mar 2013 18:37:53 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "514f4801-e38c"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/js/search_autocomplete.js
200 OK 14 kB URL HTTP/1.1 www.kanzas.ua/js/search_autocomplete.js
IP
File type Algol 68 source text\012- Pascal source, ASCII text
Hash 5a8d0521065aa1e4c2757218d4633850
b5110c494d7ec8b8600ce87d4ee217cf527aa418
fc7b270302e0826fa9d522d35f2ccc19f8bfdde1379fa640465170de56bec23f
GET /js/search_autocomplete.js HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: application/x-javascript
Content-Length: 13727
Last-Modified: Fri, 31 May 2013 15:28:57 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "51a8c1b9-359f"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/amstock/swfobject.js
200 OK 7.0 kB URL HTTP/1.1 www.kanzas.ua/amstock/swfobject.js
IP
File type ASCII text, with very long lines (6793)
Hash d05727695a2e2923cfd23e4730eacd62
698378ce2725db5d278d9013a117c96452356917
451224215a02397d73bcab9565a5fd90d761c8a985b3a643c69ba7dc74ea56bc
GET /amstock/swfobject.js HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: application/x-javascript
Content-Length: 7031
Last-Modified: Sat, 30 Apr 2011 09:50:16 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4dbbdb58-1b77"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/js/jquery-ui.min.js
200 OK 228 kB URL HTTP/1.1 www.kanzas.ua/js/jquery-ui.min.js
IP
File type ASCII text, with very long lines (32127)
Size 228 kB (228002 bytes)
Hash 3e6acb1e6426ef90d2e786a006a4ea28
326339e0b8ee351a1e706f6b1cba772e64d1ff19
16089a42741acc5fd00ab17da92be9458e8f0029fd645f159e582a7ea0f52ec1
GET /js/jquery-ui.min.js HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: application/x-javascript
Content-Length: 228002
Last-Modified: Thu, 21 Nov 2013 17:01:07 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "528e3c53-37aa2"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/highslide/highslide-with-html.js
200 OK 72 kB URL HTTP/1.1 www.kanzas.ua/highslide/highslide-with-html.js
IP
File type HTML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 2135df2b0e60379d2da3281bce4c45b1
a9d4661178e06d8357c68a32075248ca47c7efaf
2fa7f511d726d93afcf44f57477f7a3420e72349f2c31c8dabba317559e6d61e
GET /highslide/highslide-with-html.js HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: application/x-javascript
Content-Length: 71973
Last-Modified: Sat, 30 Apr 2011 11:41:37 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4dbbf571-11925"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 12 Sep 2022 11:56:07 GMT
Cache-Control: max-age=3600
Expires: Mon, 12 Sep 2022 12:47:00 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NcrKj6e-H6DGjOuN4EfAEb9L1QC0jWhyftKqGhN5JFe4Vh61EYx_uQ==
Age: 2245
www.kanzas.ua/js/jq_ui.js
200 OK 378 kB URL HTTP/1.1 www.kanzas.ua/js/jq_ui.js
IP
File type ASCII text, with CRLF line terminators
Size 378 kB (378460 bytes)
Hash 973f483489dfafa719bc1b3ededf10bc
b45fdf323e25bd770794c1cbd79bfc59aba2ee53
e28672e97ffa31d5573811b4455c5c4ad8cff993d91932b7c7de54f8b958399f
GET /js/jq_ui.js HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: application/x-javascript
Content-Length: 378460
Last-Modified: Thu, 21 Nov 2013 17:01:45 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "528e3c79-5c65c"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/js/main_016.js
200 OK 314 kB URL HTTP/1.1 www.kanzas.ua/js/main_016.js
IP
File type HTML document, Unicode text, UTF-8 text
Size 314 kB (314418 bytes)
Hash 3da78d536a020374be3c12d935cbb562
43b3e5d123df4b6772484e332820ad246f31def3
e1e27db5b2c579e149982f2495ed9c85cdf1abaace4fe28d468d8a58595f51dc
GET /js/main_016.js HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: application/x-javascript
Content-Length: 314418
Last-Modified: Sun, 13 Sep 2015 11:24:45 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "55f55cfd-4cc32"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/images/video.png
200 OK 1.1 kB URL HTTP/1.1 www.kanzas.ua/images/video.png
IP
File type PNG image data, 14 x 9, 8-bit colormap, non-interlaced\012- data
Hash b11725ab32ed4b071b8c86bd33ae0f31
b4ca059504af85c6a03d7cf08d28899ba923cc65
2768590e6f9c139c04ad8d1aab6814668a7e3cd811e8018e2ed48cd47b3af5d1
GET /images/video.png HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/png
Content-Length: 1091
Last-Modified: Thu, 10 Apr 2014 11:02:18 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "53467a3a-443"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/images/aspo_sm.png
200 OK 3.1 kB URL HTTP/1.1 www.kanzas.ua/images/aspo_sm.png
IP
File type PNG image data, 100 x 31, 8-bit/color RGB, non-interlaced\012- data
Hash 6aa2533ad0983a780c9992c869d0cdda
3eeb1f8b55be553cb021b022b727ff2607796141
3252fb0cac646c5a6273df1768260bb561d24a6cf5c6d49115a3d736469d87d9
GET /images/aspo_sm.png HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/png
Content-Length: 3146
Last-Modified: Wed, 13 Jul 2016 08:01:24 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "5785f554-c4a"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/images/news_img.jpg
200 OK 4.3 kB URL HTTP/1.1 www.kanzas.ua/images/news_img.jpg
IP
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 102x103, components 3\012- data
Hash 6ed2440c1531a566c79745da2e04b6de
b9403886906524263340c0d242aa34ae844a9d8b
5db0c02fd7d875b5801ee27dbf6dc6928e9f998f10a57e478cf4451633934e2f
GET /images/news_img.jpg HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/jpeg
Content-Length: 4326
Last-Modified: Sat, 30 Apr 2011 11:42:19 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4dbbf59b-10e6"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/usr_img/gfollow.png
200 OK 3.2 kB URL HTTP/1.1 www.kanzas.ua/usr_img/gfollow.png
IP
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 4df1de7068d3ac4951e72408514fac0b
f4beb9b172e88a9f58438ecbd5464a35fb009c65
201e6866b6623f2c09fef6d937a2f22b2865e2b1c61968d21a4b21a02a5cd9e6
GET /usr_img/gfollow.png HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/png
Content-Length: 3217
Last-Modified: Mon, 05 Mar 2012 02:50:56 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4f542a10-c91"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/images/article_img/201710101151592264.jpg
200 OK 12 kB URL HTTP/1.1 www.kanzas.ua/images/article_img/201710101151592264.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 102x103, components 3\012- data
Hash 170b39a974b779c6aa9656423f392c76
372d0edce8e3aaab4a012db350c84513b8bcf387
46d9bbd8d57b31caf323bdeb62e9bba9b84a93047d6b31b39b9b29c03f8218ff
GET /images/article_img/201710101151592264.jpg HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/jpeg
Content-Length: 12027
Last-Modified: Tue, 10 Oct 2017 08:51:59 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "59dc8a2f-2efb"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/sprites/x.gif
200 OK 49 B URL HTTP/1.1 www.kanzas.ua/sprites/x.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash ed280a0ea3cc38f3cbbc747acfbef47d
6bdcb32ee75e957a5085c010f4dfd0c716bfdadc
8f69e10876805b747a3ad08a818d46ac7e731b1af417ea6e259d9b6b7deb65c5
GET /sprites/x.gif HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/gif
Content-Length: 49
Last-Modified: Sat, 31 Dec 2011 16:41:45 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4eff3b49-31"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
ocsp.digicert.com/
200 OK 471 B IP
Hash cb674936db4af4be99c3c397eff8c6ae
de79d76bac3fae5799b0ff35ecc19360595dfb06
992b884b64f9f6fdb76a6ba91c48fed329325b95b99d8003b282879a52093c08
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5772
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:33 GMT
Last-Modified: Mon, 12 Sep 2022 10:57:21 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
www.googletagmanager.com/gtm.js?id=GTM-TBQM6G
302 Found 250 B URL HTTP/1.1 www.googletagmanager.com/gtm.js?id=GTM-TBQM6G
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash ea2acdc4ae874202a5e3df7c2160f3ed
fa917d27ecbc6007c49183f068e3bb92a32dd1c0
3bde4f21f4953100805715bfa613ef689de8b2f72336b1ed0179865a19b1c459
GET /gtm.js?id=GTM-TBQM6G HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtm.js?id=GTM-TBQM6G
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 12 Sep 2022 12:33:33 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 250
X-XSS-Protection: 0
www.kanzas.ua/sprites/h-repeat.gif
200 OK 715 B URL HTTP/1.1 www.kanzas.ua/sprites/h-repeat.gif
IP
File type GIF image data, version 89a, 2 x 565\012- data
Hash 9e265378f12876f7514df0cf18f8925f
bd86712a651b7035adafcbd5e5d099c7d1592e70
b5fed4ce67c6d2652ac15acf38bb8561fc7ddc15bd5b1452e4f614dc04c13304
GET /sprites/h-repeat.gif HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/css/style_005.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/gif
Content-Length: 715
Last-Modified: Sat, 31 Dec 2011 16:41:44 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4eff3b48-2cb"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/sprites/small.gif
200 OK 1.7 kB URL HTTP/1.1 www.kanzas.ua/sprites/small.gif
IP
File type GIF image data, version 89a, 16 x 887\012- data
Hash f71f5a8e6306aab7182212083a24c0e5
2c8fc970352b1bc4ae28e5d808bca16579b7225e
08f86d721edc6c1e02772962b75dc639130de6ec69ec0b3f3f50a8d40726220b
GET /sprites/small.gif HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/css/style_005.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/gif
Content-Length: 1657
Last-Modified: Sat, 31 Dec 2011 16:41:45 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4eff3b49-679"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/sprites/new_filter.gif
200 OK 2.8 kB URL HTTP/1.1 www.kanzas.ua/sprites/new_filter.gif
IP
File type GIF image data, version 89a, 30 x 696\012- data
Hash c71c74017f468e6cfc18a056e45c362b
f4f1d761abcd99775004cec554ee6b44c5c5c48f
f59982726d6dbdeb116daef4080b66a94f362d1bf76c43d9e24fa78f7992d672
GET /sprites/new_filter.gif HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/css/div-style15.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/gif
Content-Length: 2818
Last-Modified: Wed, 21 Mar 2012 14:43:28 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4f69e910-b02"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/sprites/button+vert_r.gif
200 OK 5.1 kB URL HTTP/1.1 www.kanzas.ua/sprites/button+vert_r.gif
IP
File type GIF image data, version 89a, 1496 x 24\012- data
Hash 198497b9bd2a00c4234f67a97dca3c76
bc1a0857853fb3c51ae93dcd33edd113de3a743f
4fc8cccdabf39caefcfd8e421cd0f0ae09637b622d559c0b56067c1e340e1b71
GET /sprites/button+vert_r.gif HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/css/div-style15.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/gif
Content-Length: 5088
Last-Modified: Sat, 31 Dec 2011 16:41:43 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4eff3b47-13e0"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/sprites/middle.gif
200 OK 3.9 kB URL HTTP/1.1 www.kanzas.ua/sprites/middle.gif
IP
File type GIF image data, version 89a, 137 x 542\012- data
Hash 0337e328b7e0a524af642b1e3e992fd0
bdc6fd006bd095ff3907b3b0b50df7b55303d2ef
16bccb0503a1528552debc704e28ab2c49d015c663b888e94490eef5a62a5f83
GET /sprites/middle.gif HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/css/div-style15.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/gif
Content-Length: 3931
Last-Modified: Sat, 31 Dec 2011 16:41:44 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4eff3b48-f5b"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/images/li.gif
200 OK 100 B URL HTTP/1.1 www.kanzas.ua/images/li.gif
IP
File type GIF image data, version 89a, 6 x 7\012- data
Hash c38233a6cb69d5f126043baf894f734d
cac560de42a35e38d8feac1e1dca5a6af8ec7e2e
2d0510627885a1b760b3a62c64a075ae61c6106cfd15b5331e634f2cde12b5d2
GET /images/li.gif HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/css/style_005.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/gif
Content-Length: 100
Last-Modified: Sat, 30 Apr 2011 11:42:12 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4dbbf594-64"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/sprites/hor_r.gif
200 OK 1.5 kB URL HTTP/1.1 www.kanzas.ua/sprites/hor_r.gif
IP
File type GIF image data, version 89a, 8 x 487\012- data
Hash 53c368ad858d848f5b622287778a44ec
68bbd05741ccad421a7b0e41a8cf947046612995
c1fa301e0720b41f25453bd0c7e58f5fb6686b7eda17a41c66bd82c76b6bd52a
GET /sprites/hor_r.gif HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/css/div-style15.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/gif
Content-Length: 1526
Last-Modified: Sat, 31 Dec 2011 16:41:44 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4eff3b48-5f6"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/images/big_line.gif
200 OK 1.6 kB URL HTTP/1.1 www.kanzas.ua/images/big_line.gif
IP
File type GIF image data, version 89a, 2000 x 1\012- data
Hash 9e179a2385c6b6d2bd0b804419e8ff9b
9c8a699909ae4ada0d82d19e78719d6236a45c10
2796fe2a17f86e760f06a0e79f37686ad24917135b72fb223d01953e154939cc
GET /images/big_line.gif HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/css/div-style15.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/gif
Content-Length: 1639
Last-Modified: Fri, 07 Oct 2011 22:24:19 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4e8f7c13-667"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/sprites/akcii.gif
200 OK 4.5 kB URL HTTP/1.1 www.kanzas.ua/sprites/akcii.gif
IP
File type GIF image data, version 89a, 200 x 669\012- data
Hash afb38755bd7a64576ce41d5dc4f4d74e
fb9f62314636aebda50385638ae29dc7ca13b1ef
018db41bce842c285e9351a7cdb0aa93e3d821598c323720ced850f194392988
GET /sprites/akcii.gif HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/css/div-style15.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/gif
Content-Length: 4472
Last-Modified: Sun, 16 Dec 2012 02:33:08 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "50cd32e4-1178"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/images/property_cat_down.png
200 OK 118 B URL HTTP/1.1 www.kanzas.ua/images/property_cat_down.png
IP
File type PNG image data, 5 x 3, 8-bit/color RGB, non-interlaced\012- data
Hash 7e7e50d43298b790bcb4e405b95d094f
2bc0eb994434e47f2f45574784fe4fc2533f1c31
aaf2d2e1280d2c9c20541339628a68c55a0ac482ad251bed1aa3fc288e712fd8
GET /images/property_cat_down.png HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/css/div-style15.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/png
Content-Length: 118
Last-Modified: Thu, 03 Jan 2013 10:51:03 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "50e56297-76"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fkanzas.ua&width=240&height=270&show_faces=true&colorscheme=light&stream=false&show_border=true&header=false
301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fkanzas.ua&width=240&height=270&show_faces=true&colorscheme=light&stream=false&show_border=true&header=false
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fkanzas.ua&width=240&height=270&show_faces=true&colorscheme=light&stream=false&show_border=true&header=false HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fkanzas.ua&width=240&height=270&show_faces=true&colorscheme=light&stream=false&show_border=true&header=false
Content-Type: text/html; charset="utf-8"
X-FB-Debug: wXzj1x+ySiBPo/6DDKVbbGowfolRtOpxNies85BZQvLsBX9dbYxBvuWceOZLKtbioM3N3qlv2eW50JHBTqYYkw==
Date: Mon, 12 Sep 2022 12:33:33 GMT
Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
Connection: keep-alive
Content-Length: 0
www.kanzas.ua/images/arrow.gif
200 OK 57 B URL HTTP/1.1 www.kanzas.ua/images/arrow.gif
IP
File type GIF image data, version 89a, 5 x 10\012- data
Hash e8eab76b2f922a209176e3b2075706a8
ef3b23d85e169437afe6dbb3c97ec0a92c84e44a
8973e21ab9d12c93677c1470a6011992eda107ad07045bf73229bb6268117785
GET /images/arrow.gif HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/css/style_005.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/gif
Content-Length: 57
Last-Modified: Sat, 30 Apr 2011 11:41:48 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4dbbf57c-39"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/images/grad_l_round.png
200 OK 3.9 kB URL HTTP/1.1 www.kanzas.ua/images/grad_l_round.png
IP
File type PNG image data, 8 x 100, 8-bit colormap, non-interlaced\012- data
Hash 3760b1c7817f9e745575d98a67c2f259
3b6bb9a6e20f8ba2181dc45834650c26c47f495f
89223ebae0c1fed07f421d2e272d19e1206f296d32dc8e36e27793c2b9781b0b
GET /images/grad_l_round.png HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/css/div-style15.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/png
Content-Length: 3936
Last-Modified: Thu, 26 Apr 2012 21:28:19 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4f99bdf3-f60"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/sprites/long.png
200 OK 1.7 kB URL HTTP/1.1 www.kanzas.ua/sprites/long.png
IP
File type PNG image data, 245 x 597, 8-bit/color RGBA, non-interlaced\012- data
Hash dec99ab6c12eb06ce314d0556f082759
d96f88c36edd7194f473b8be4b2b05c7f82ef523
9b678d4ce04905da1a66a8a6736ee7670ee726648ba28db4467e42e6b9f68896
GET /sprites/long.png HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/css/style_005.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/png
Content-Length: 1726
Last-Modified: Sat, 31 Dec 2011 16:41:44 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4eff3b48-6be"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/images/property_cat_up.png
200 OK 123 B URL HTTP/1.1 www.kanzas.ua/images/property_cat_up.png
IP
File type PNG image data, 5 x 3, 8-bit/color RGB, non-interlaced\012- data
Hash 1cb9c596ca1ab2e82b5a2f2737623c90
e0ef57fb43c931bdb43af2008c7fc48bba3cac02
5e5d8d28b5f2bb12524a1d20daa1da8459eafbe6554b58b7796339af509b87d2
GET /images/property_cat_up.png HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/css/div-style15.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/png
Content-Length: 123
Last-Modified: Thu, 03 Jan 2013 10:51:03 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "50e56297-7b"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/sprites/bonus.gif
200 OK 5.5 kB URL HTTP/1.1 www.kanzas.ua/sprites/bonus.gif
IP
File type GIF image data, version 89a, 42 x 886\012- data
Hash d4f2f15701b9807a564dc49f487204e4
a76917d4a7ae0b6ee6232ad728b87b1424a5b81a
19733692a06e0613b8c6e128b504711e0855340ed84e467b0350ec68cc8ab548
GET /sprites/bonus.gif HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/css/div-style15.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/gif
Content-Length: 5469
Last-Modified: Sat, 31 Dec 2011 16:41:43 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4eff3b47-155d"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
ocsp.digicert.com/
200 OK 471 B IP
Hash 4585e9309fa6f7ccf9d5870d3bfed8a2
d70d1d29bb5423ed606b1d141b4e16419f96dd26
4a6d5a9ef46ea7146c7017ac6938c6a08056c0198905d1bda143f9cadbef8034
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1785
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:33 GMT
Last-Modified: Mon, 12 Sep 2022 12:03:48 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
www.kanzas.ua/images/logo_ua_lite.png
200 OK 3.9 kB URL HTTP/1.1 www.kanzas.ua/images/logo_ua_lite.png
IP
File type PNG image data, 135 x 100, 8-bit colormap, non-interlaced\012- data
Hash 0ee43f6c840e541c71cb462ace802177
e746ca6e0d43cf0cbf9ff1951ccf84afc8897367
31b577810ac248a9e8ac7f586bd2eeda226e409b52a40f96069d4dfd78458dc1
GET /images/logo_ua_lite.png HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/png
Content-Length: 3894
Last-Modified: Wed, 28 May 2014 13:16:15 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "5385e19f-f36"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/images/article_img/201904240542351355.jpg
200 OK 9.8 kB URL HTTP/1.1 www.kanzas.ua/images/article_img/201904240542351355.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 102x103, components 3\012- data
Hash 68742e3357863aa4000ae9777c23b5cd
75a07ff25dbcdd52d545bccfd9afd4d34179260a
438266ba1df756ebdac6547371013186cc5840871e40e267f2e3423e3df9579c
GET /images/article_img/201904240542351355.jpg HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/jpeg
Content-Length: 9773
Last-Modified: Wed, 24 Apr 2019 14:42:35 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "5cc075db-262d"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/images/article_img/201906270508228667.jpg
200 OK 10 kB URL HTTP/1.1 www.kanzas.ua/images/article_img/201906270508228667.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 102x103, components 3\012- data
Hash c17aa22423cad47afc62da7dce5afeee
bd6f9d78b8f1575d869f31b3d37a161351ab828b
a585bb917458281cb6b2d1a7146eb562853ecf23d561f7494272ecd76e50afa8
GET /images/article_img/201906270508228667.jpg HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/jpeg
Content-Length: 9975
Last-Modified: Thu, 27 Jun 2019 14:08:23 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "5d14cdd7-26f7"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/images/article_img/201906060353108436.jpg
200 OK 12 kB URL HTTP/1.1 www.kanzas.ua/images/article_img/201906060353108436.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 102x103, components 3\012- data
Hash 46281491c3d39fadf3b0eba452f8de59
819a03c61a5f3fa1fe5cc918974d67718dac4c50
b32836de717f55cdb3daebdbf7022ceb2b7ddbf72a800babc26b8ede75dfb4a2
GET /images/article_img/201906060353108436.jpg HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/jpeg
Content-Length: 11999
Last-Modified: Thu, 06 Jun 2019 12:53:10 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "5cf90cb6-2edf"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/image_storage/20150428/resized/15042810022394253.jpg
404 Not Found 168 B URL HTTP/1.1 www.kanzas.ua/image_storage/20150428/resized/15042810022394253.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ad73b8342beaa67ce0da5dd78a4ffe61
6676439a860552dee81dac8dbab2f815f536e7b9
99a66a06aed2ae4b02ddfb0d43c373ade53336020298039578d6187b1f3e8fc2
GET /image_storage/20150428/resized/15042810022394253.jpg HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 404 Not Found
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
Keep-Alive: timeout=20
www.kanzas.ua/thumb/thumbnail/111006121032301.jpg
200 OK 9.3 kB URL HTTP/1.1 www.kanzas.ua/thumb/thumbnail/111006121032301.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 102x103, components 3\012- data
Hash 12e38193337aaf7b71c876f7b7ff82a4
5182ce97106012bc973f1ed41e25d69239f2c69b
7f4e22ceca5b060e2b5219a3d1f5aeba6369da6db997fef49931e66be6692e5d
GET /thumb/thumbnail/111006121032301.jpg HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/jpeg
Content-Length: 9274
Last-Modified: Thu, 06 Oct 2011 09:10:32 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4e8d7088-243a"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/image_storage/20180821/resized/18082111222885203.jpg
200 OK 5.6 kB URL HTTP/1.1 www.kanzas.ua/image_storage/20180821/resized/18082111222885203.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 50", baseline, precision 8, 190x190, components 3\012- data
Hash 56e31c0e4e335c87734ac3a2674de88c
a69a80086bd3d12acab07fbca491f8c048d91b0a
1b8b1055f5b21726334ac7d72858e4a56e43803e28fb40465a141b63798b044c
GET /image_storage/20180821/resized/18082111222885203.jpg HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/jpeg
Content-Length: 5618
Last-Modified: Tue, 21 Aug 2018 08:22:28 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "5b7bcbc4-15f2"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/image_storage/20170504/resized/1705040624551670.jpg
200 OK 3.6 kB URL HTTP/1.1 www.kanzas.ua/image_storage/20170504/resized/1705040624551670.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 50", baseline, precision 8, 102x103, components 3\012- data
Hash a1ed2f05a8ab766b0de06ddccd21c1db
63038fc4a2ac2b3bc94bcd8a9ee17412df23afc2
9901ffe1cd61dd3fe552dfb11ca7f452cc823c585b3c2ab01b16c78ca034deea
GET /image_storage/20170504/resized/1705040624551670.jpg HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/jpeg
Content-Length: 3614
Last-Modified: Thu, 04 May 2017 15:24:55 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "590b47c7-e1e"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/image_storage/20180821/resized/18082110540872156.jpg
200 OK 7.5 kB URL HTTP/1.1 www.kanzas.ua/image_storage/20180821/resized/18082110540872156.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 50", baseline, precision 8, 190x190, components 3\012- data
Hash 05408549718f6db6b0ec7765feba1294
fffc48b5e603b27f9f6cce649ead7b0a463789ce
a0f659b210474474d8ee76e7110b1c6da6eb5caf8cae96d982b0e4c0a8177a5a
GET /image_storage/20180821/resized/18082110540872156.jpg HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/jpeg
Content-Length: 7496
Last-Modified: Tue, 21 Aug 2018 07:54:08 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "5b7bc520-1d48"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/components/stat_counter/counter.php?path=
200 OK 2 B URL HTTP/1.1 www.kanzas.ua/components/stat_counter/counter.php?path=
IP
File type ASCII text, with no line terminators
Hash 6512bd43d9caa6e02c990b0a82652dca
17ba0791499db908433b80f37c5fbc89b870084b
4fc82b26aecb47d2868c4efbe3581732a3e7cbcc6c2efb32062c08170a05eeb8
GET /components/stat_counter/counter.php?path= HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 2
Connection: keep-alive
Keep-Alive: timeout=20
X-Powered-By: PHP/5.4.45
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c3d8032059a24d14d00c2ee5d8840c01
62efae1ea6aaea612a12d42b6e5b65d24be11437
2319fe90c8b4d3cc41ec9cce275c82d19fb764015196bd1c52dfb9c5d85b9b0b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.kanzas.ua/image_storage/20190307/resized/19030712344212121.jpg
200 OK 2.4 kB URL HTTP/1.1 www.kanzas.ua/image_storage/20190307/resized/19030712344212121.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 50", baseline, precision 8, 102x103, components 3\012- data
Hash 771132f93323c7b7830b5c0230e8a516
abffe7eff65d3d38164471ee57c6ec8d8cf67162
65abe22c470f59fab50622b665c00a91aa026d71d999cae39e3b0b2a2b5a02e0
GET /image_storage/20190307/resized/19030712344212121.jpg HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/jpeg
Content-Length: 2419
Last-Modified: Thu, 07 Mar 2019 10:34:42 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "5c80f3c2-973"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.googletagmanager.com/gtm.js?id=GTM-TBQM6G
200 OK 40 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TBQM6G
IP
File type ASCII text, with very long lines (1615)
Hash 2f67c191570a17d3aa3c2a253c532649
5522a082a2659530284759eba9d2253b9d8de20a
c2eb145a0a992dba5246b70dd72176a3d4612f97975ef3d35a9c478304e2caa5
GET /gtm.js?id=GTM-TBQM6G HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.kanzas.ua/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 12 Sep 2022 12:33:33 GMT
expires: Mon, 12 Sep 2022 12:33:33 GMT
cache-control: private, max-age=900
last-modified: Mon, 12 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 39492
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.kanzas.ua/baners/1.php
200 OK 1.3 kB URL HTTP/1.1 www.kanzas.ua/baners/1.php
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 6253171b7fd62b13f1653452a78d522d
f496242fde82edcc76658e6cfdcdc5221287ef41
86909b0b1bb6ee48500f13b91442a3b4dadb1f408225e87289a3382d22b81a6f
Analyzer Verdict Alert urlquery Detects suspicious URL pattern
GET /baners/1.php HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:28 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1276
Connection: keep-alive
Keep-Alive: timeout=20
X-Powered-By: PHP/5.4.45
ocsp.digicert.com/
200 OK 471 B IP
Hash 4585e9309fa6f7ccf9d5870d3bfed8a2
d70d1d29bb5423ed606b1d141b4e16419f96dd26
4a6d5a9ef46ea7146c7017ac6938c6a08056c0198905d1bda143f9cadbef8034
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1785
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:33 GMT
Last-Modified: Mon, 12 Sep 2022 12:03:48 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TmUbFS9tNjh6XUYJ4dGU+w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DSqS45+bN0r6/lJKlvifOWI8S/4=
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c3d8032059a24d14d00c2ee5d8840c01
62efae1ea6aaea612a12d42b6e5b65d24be11437
2319fe90c8b4d3cc41ec9cce275c82d19fb764015196bd1c52dfb9c5d85b9b0b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.kanzas.ua/thumb/uploads/190319114019549.jpg
200 OK 196 kB URL HTTP/1.1 www.kanzas.ua/thumb/uploads/190319114019549.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=13, height=1600, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1065 DIY-Thermocam raw data\012- (Lepton 2.x), scale 17505-29793, spot sensor temperature 1157837045393656507638218752.000000, unit celsius, color scheme 1, calibration: offset 16511431473044149931869770612736.000000, slope 4747330387837620055059726336.000000], progressive, precision 8, 850x829, components 3\012- data
Size 196 kB (195633 bytes)
Hash 9e6b9e15b932cdf7a619da0866a659dc
7ad9b843651859e995aafac0b52c06fb4bf0c18e
d391aef74b0eeb9aeff6412120d8a30f678f0556e6a7e275006d83af1db0cff7
GET /thumb/uploads/190319114019549.jpg HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:27 GMT
Content-Type: image/jpeg
Content-Length: 195633
Last-Modified: Tue, 19 Mar 2019 09:40:19 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "5c90b903-2fc31"
Expires: Sat, 17 Sep 2022 12:33:27 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
static.xx.fbcdn.net/rsrc.php/v3/yX/l/0,cross/WmJr1_luoTx.css?_nc_x=Ij3Wp8lg5Kz
200 OK 5.3 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yX/l/0,cross/WmJr1_luoTx.css?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (4093)
Hash 53d721865684811f74e6287d461271da
b8ea226e9f320b4a3f57fb9618b905322962ff11
e5c8dd9b49d068bf6f08d3ca93a0bb2d31c6fd1067c3f878a630aa1f36abeaaf
GET /rsrc.php/v3/yX/l/0,cross/WmJr1_luoTx.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 17:30:34 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: U9chhlaEgR905ih9RhJx2g==
x-fb-debug: inN9XQjNgp8zj0IFRbOGpfcHjM5sOVIZOocFNRFjVooWp/Xg5N6OD5oyrgBVfNCcvtq+EyNfyZa+Eb7YJUyN5g==
content-length: 5342
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 12:33:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
200 OK 23 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (41977)
Hash 3ce46348c6edab150e0c6f8ce7cd0a0d
6aea70ed9afc6f514f89c0bca5a99f04c331bc24
8ac7aadd7e52746a466b2721699b1430ab4360c52d4c73dab9f51a849b73857d
GET /rsrc.php/v3iEpO4/yp/l/en_US/oRoYJ5VcosS.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 09 Sep 2023 21:34:36 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: PORjSMbtqxUODG+M580KDQ==
x-fb-debug: ID9skeGPphDMTn0QLHQVvnyG8Cp1k60q0870yM0q9WUOK7FL0TwY3F7bmyO+kENE51yQ3AtnuloCdtiAooKsSg==
content-length: 23301
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 12:33:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
200 OK 827 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (724)
Hash 29973cf3b0ef9f16fe31ed981b2f6573
f22eb80b89b5e0ae9ace854aab6676d56eaef6a1
476822c80e0a0ee078edb7a74db59378f8b1d43d2de844e28a9e9c2f68a4c8d8
GET /rsrc.php/v3/ys/l/0,cross/4_8X-2u0CDc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 11 Sep 2023 01:37:14 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: KZc887Dvnxb+Me2YGy9lcw==
x-fb-debug: J76KZ7MIaG1WhOgdxMnU+bXxxoWUIgiX37FVFVHDsWMFmgPYtTQyiboxzc18qJkuGokCNkxSoV3uy6uswzXmPQ==
content-length: 827
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 12:33:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagservices.com/tag/js/gpt.js
200 OK 29 kB URL HTTP/1.1 www.googletagservices.com/tag/js/gpt.js
IP
File type ASCII text, with very long lines (45064)
Hash e272e18ef54648e97707c79663988715
1a395c22d0339fa01696a32af56145b545681eb0
64c579481fdbea8bedaad21af61b4aec5739243e4214d789de062962d5fd7c8c
GET /tag/js/gpt.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="ads-gpt-scs"
Report-To: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
Timing-Allow-Origin: *
Content-Length: 28708
Date: Mon, 12 Sep 2022 12:33:33 GMT
Expires: Mon, 12 Sep 2022 12:33:33 GMT
Cache-Control: private, max-age=900, stale-while-revalidate=3600
ETag: "1331 / 218 of 1000 / last-modified: 1662980796"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
www.google-analytics.com/ga.js
200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Mon, 12 Sep 2022 11:04:49 GMT
Expires: Mon, 12 Sep 2022 13:04:49 GMT
Cache-Control: public, max-age=7200
Age: 5324
Last-Modified: Wed, 13 Apr 2022 21:02:38 GMT
Content-Type: text/javascript
www.kanzas.ua/images/favicon.ico
200 OK 83 kB URL HTTP/1.1 www.kanzas.ua/images/favicon.ico
IP
File type MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash efe501f7198e22acb334119e361b1066
924190139e678a8d1f9f8614511312404acb6749
d34589f1ad9866cbcf1e29d34fe12dfc7f4a479f90b597e7efdc54231697c59c
GET /images/favicon.ico HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:28 GMT
Content-Type: image/x-icon
Content-Length: 82726
Last-Modified: Sat, 30 Apr 2011 11:42:06 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4dbbf58e-14326"
Expires: Sat, 17 Sep 2022 12:33:28 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
static.xx.fbcdn.net/rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz
200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (18501)
Hash e712b0060a23b6c5ede3b67e0bb8639e
faf1f8ee5d679c27fb0fd418f63cf7d851344d26
0efe6b239b3fb45de4071c337078b2b43696cdccdf01024f527af941701239fd
GET /rsrc.php/v3/yH/r/Y88lOwaPq4F.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 10 Sep 2023 01:53:25 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 5xKwBgojtsXt47Z+C7hjng==
x-fb-debug: wO/1/5FB2oWeVlKAKAzsyGrInok9+CoElIPQyMx0Nh+DujEC9hkaU9XcihPIc47esXjSpMDYv5THddVdiJREUA==
priority: u=2
content-length: 90711
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 12:33:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (1984)
Hash 16f083b23b565db9d2f20d1ad75933c1
6d74ad139c96b1e3fc9d541419788b5b4893ec9a
36b909cd9132a8996a1bbb221d05217c31506a6951bb408deeea6aa612dc4200
GET /rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 10 Sep 2023 01:46:10 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FvCDsjtWXbnS8g0a11kzwQ==
x-fb-debug: SqEZSKRdQbfjq8Ho752+WMzVygRUmzwH/sKvyd+ffpdFLNFH3fjs75rm0PJ05WNJNDUpfmD47HBNnX0GmODYLg==
content-length: 1657
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 12:33:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz
200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (5261)
Hash 6059f2908fc78af36d89f372311116ef
431905421a858f26f5624203b0ecae7b6d8c6c42
33ba2a807c3a7a85d489d24e1a843c4361a791492fdbe68e471d2064155467f0
GET /rsrc.php/v3/yN/r/mXu1RunczE9.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 02 Sep 2023 16:40:07 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: YFnykI/HivNtifNyMREW7w==
x-fb-debug: JgpdMKfVVVh7XXJ4fSmZOjMlHtRDbDaNGgkPLsl1te/smP6V4FuZRZbpIRt3DXJh0sZ+moTj3auLbzEOlflyHQ==
content-length: 12179
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 12:33:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yx/r/9QJEUDJuAYR.js?_nc_x=Ij3Wp8lg5Kz
200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yx/r/9QJEUDJuAYR.js?_nc_x=Ij3Wp8lg5Kz
IP
File type C source, ASCII text, with very long lines (7299)
Hash 1626e8e828598e06ccd0c47e55b42304
af5c62af35bf22b593fdbe758a2feea6bc1b057f
3798dbb7df2694a222f65f4cadc92e6d133fc8f5fc2b00f326df521cd0c24b25
GET /rsrc.php/v3/yx/r/9QJEUDJuAYR.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 09 Sep 2023 23:12:41 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Fibo6ChZjgbM0MR+VbQjBA==
x-fb-debug: IH4POXnBZO2Iy5BWvyMaZujRMEZTTbo+BeC03lQcM6SlqoycndMKwUKoUO09Ld0uvA0LivtOkcrhvvqEdCzpMQ==
content-length: 15844
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 12:33:33 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
top100-images.rambler.ru/top100/w2.gif
200 OK 281 B URL HTTP/1.1 top100-images.rambler.ru/top100/w2.gif
IP
ASN #24638 Rambler Internet Holding LLC
File type GIF image data, version 89a, 88 x 31\012- data
Hash c6e41d45aeeaec83f482ba1ddbcf4d26
c51d6ecf59dd7841a793d6982582878d9371c993
f996fa1941765b7868efcc57c03008bc01ecdf914cb8aada44dfd62cbe5213c9
GET /top100/w2.gif HTTP/1.1
Host: top100-images.rambler.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 12 Sep 2022 12:33:33 GMT
Content-Type: image/gif
Content-Length: 281
Connection: keep-alive
Keep-Alive: timeout=40
Last-Modified: Wed, 02 Feb 2022 05:30:04 GMT
x-rgw-object-type: Normal
ETag: "c6e41d45aeeaec83f482ba1ddbcf4d26"
x-amz-request-id: tx000000000000135577534-00631f268f-f8aa9c-default
Set-Cookie: ruid=HQAAAB0nH2PTFhGGAUq3TwB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
P3P: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
Accept-Ranges: bytes
www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fkanzas.ua&width=240&height=270&show_faces=true&colorscheme=light&stream=false&show_border=true&header=false
200 OK 14 kB URL HTTP/2 www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fkanzas.ua&width=240&height=270&show_faces=true&colorscheme=light&stream=false&show_border=true&header=false
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (21034)
Hash c0202a899c1ff249bf32bcbe2afe881f
6c154c101106976d098cb8b5fc5e02d32281f9b3
27eb4e26ca3e72ff68583c9947f95af2a0827637e1358462192e3c2a1dc9c43a
GET /plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fkanzas.ua&width=240&height=270&show_faces=true&colorscheme=light&stream=false&show_border=true&header=false HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.kanzas.ua/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 2FAvG+pxaLIdOet/17HsW4UUG7CEuwj1j4twP2h+mj5yGHfOPjD2DuJvM26DCKt9mvCzC5Fd4WLhn/XT6NyZsQ==
date: Mon, 12 Sep 2022 12:33:33 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a14bd1157489f3be7fd9a79881839d91
523d75c28bc7ba2e2747c613a86ff3af774a91f6
e9072c6732436ab2d1c4168b0e2ae9b3df7ad8e2c0f430b955fe716f71eae225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
developers.google.com/
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.kanzas.ua/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://developers.google.com/
X-Cloud-Trace-Context: 503f4a41f0ddad9225d08acdab605b03
Date: Mon, 12 Sep 2022 12:33:33 GMT
Content-Type: text/html
Server: Google Frontend
Content-Length: 0
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=173530525&utmhn=www.kanzas.ua&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%2C%20%D0%BF%D0%BE%D0%BA%D1%83%D0%BF%D0%BA%D0%B0%2C%20%D0%B0%D1%80%D0%B5%D0%BD%D0%B4%D0%B0%20%D0%BD%D0%B5%D0%B4%D0%B2%D0%B8%D0%B6%D0%B8%D0%BC%D0%BE%D1%81%D1%82%D0%B8%20%D0%B2%20%D0%9A%D0%B8%D0%B5%D0%B2%D0%B5%20%D0%B8%20%D0%A3%D0%BA%D1%80%D0%B0%D0%B8%D0%BD%D0%B5%20%7C%20KANZAS.UA&utmhid=2082920455&utmr=-&utmp=%2F&utmht=1662986001869&utmac=UA-2220667-1&utmgtm=2wg970TBQM6G&utmcc=__utma%3D203028235.587140971.1662986002.1662986002.1662986002.1%3B%2B__utmz%3D203028235.1662986002.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=31404274&utmredir=1&utmu=qAAgAABAAAGBAAAAAgAAAAAE~
302 Found 366 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=173530525&utmhn=www.kanzas.ua&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%2C%20%D0%BF%D0%BE%D0%BA%D1%83%D0%BF%D0%BA%D0%B0%2C%20%D0%B0%D1%80%D0%B5%D0%BD%D0%B4%D0%B0%20%D0%BD%D0%B5%D0%B4%D0%B2%D0%B8%D0%B6%D0%B8%D0%BC%D0%BE%D1%81%D1%82%D0%B8%20%D0%B2%20%D0%9A%D0%B8%D0%B5%D0%B2%D0%B5%20%D0%B8%20%D0%A3%D0%BA%D1%80%D0%B0%D0%B8%D0%BD%D0%B5%20%7C%20KANZAS.UA&utmhid=2082920455&utmr=-&utmp=%2F&utmht=1662986001869&utmac=UA-2220667-1&utmgtm=2wg970TBQM6G&utmcc=__utma%3D203028235.587140971.1662986002.1662986002.1662986002.1%3B%2B__utmz%3D203028235.1662986002.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=31404274&utmredir=1&utmu=qAAgAABAAAGBAAAAAgAAAAAE~
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 8a9ede72a6c95c2e88b266284bfbf09a
955ff164c3d579a9b38f81141ea141351a674d7a
613ef0e296824fc03ccb2299ffb6ffabc354156435d0f6676b622c9606d4db18
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=173530525&utmhn=www.kanzas.ua&utmcs=UTF-8&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%D0%9F%D1%80%D0%BE%D0%B4%D0%B0%D0%B6%D0%B0%2C%20%D0%BF%D0%BE%D0%BA%D1%83%D0%BF%D0%BA%D0%B0%2C%20%D0%B0%D1%80%D0%B5%D0%BD%D0%B4%D0%B0%20%D0%BD%D0%B5%D0%B4%D0%B2%D0%B8%D0%B6%D0%B8%D0%BC%D0%BE%D1%81%D1%82%D0%B8%20%D0%B2%20%D0%9A%D0%B8%D0%B5%D0%B2%D0%B5%20%D0%B8%20%D0%A3%D0%BA%D1%80%D0%B0%D0%B8%D0%BD%D0%B5%20%7C%20KANZAS.UA&utmhid=2082920455&utmr=-&utmp=%2F&utmht=1662986001869&utmac=UA-2220667-1&utmgtm=2wg970TBQM6G&utmcc=__utma%3D203028235.587140971.1662986002.1662986002.1662986002.1%3B%2B__utmz%3D203028235.1662986002.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=31404274&utmredir=1&utmu=qAAgAABAAAGBAAAAAgAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
HTTP/1.1 302 Found
Location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-2220667-1&cid=587140971.1662986002&jid=31404274&_v=5.7.2&z=173530525
Access-Control-Allow-Origin: *
Date: Mon, 12 Sep 2022 12:33:33 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Cross-Origin-Resource-Policy: cross-origin
Content-Type: text/html; charset=UTF-8
Server: Golfe2
Content-Length: 366
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 437c7ccd2c357dd83d6b9a5118d4b402
e0002389b286a960b454a92aeb3d1a1e08317ff2
9a5b3bdb7765ea21d7147a0c8022198a1be6c8256fa594b53732cf59e86532b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 324364e9311c1f7cb5e4068f3d947d5d
ddb00dc97404cee267838983ce8bb4ae48d6647a
d6cc296b22c48f9e7bb3a905dd9e899441ae7c29faec4a62e71628e1f23d61a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-2220667-1&cid=587140971.1662986002&jid=31404274&_v=5.7.2&z=173530525
302 Found 364 B URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-2220667-1&cid=587140971.1662986002&jid=31404274&_v=5.7.2&z=173530525
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash fb38e003da9551802633387307f363b4
1ddd6ee99e60519c3256225e37c23901b4d28ac0
470c3e382538d6d2e6f50846db78791395b58fb7e05b073a6f7f3ac312bdcc6a
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-2220667-1&cid=587140971.1662986002&jid=31404274&_v=5.7.2&z=173530525 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.kanzas.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-2220667-1&cid=587140971.1662986002&jid=31404274&_v=5.7.2&z=173530525
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 12 Sep 2022 12:33:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 364
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/gpt/pubads_impl_2022090601.js
200 OK 133 kB URL HTTP/2 securepubads.g.doubleclick.net/gpt/pubads_impl_2022090601.js
IP
File type ASCII text, with very long lines (65439)
Size 133 kB (133157 bytes)
Hash 5cb47a81c27e4ff20ef48052db7e5e4b
616440e3a906b5e8a1dfd358a2592355e9f0599c
545e74a06762dfac914f51e05ac4f30d2871e9fef8c36b708d5f182fa936a6be
GET /gpt/pubads_impl_2022090601.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kanzas.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 133157
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 11 Sep 2022 09:38:11 GMT
expires: Mon, 11 Sep 2023 09:38:11 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 06 Sep 2022 08:35:00 GMT
content-type: text/javascript
age: 96922
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yw/r/UXtr_j2Fwe-.png
200 OK 573 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yw/r/UXtr_j2Fwe-.png
IP
File type PNG image data, 13 x 39, 8-bit colormap, non-interlaced\012- data
Hash d3b686ff6004b431d5019e4b51a8cc0d
34ec288bdcad2eada81c75960439bf60b95eb285
96e3e8dfde6b1042514824bac1b44282d4a76bac028f2d767f6534dce2cf3db0
GET /rsrc.php/v3/yw/r/UXtr_j2Fwe-.png HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.xx.fbcdn.net/rsrc.php/v3/yX/l/0,cross/WmJr1_luoTx.css?_nc_x=Ij3Wp8lg5Kz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: 07aG/2AEtDHVAZ5LUajMDQ==
expires: Wed, 30 Aug 2023 07:16:45 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
x-fb-debug: 9Y2sk9J87okk3DUXLG990vMTZ4IbahdyMMDVDq88DuxEL6d8iaJXYdLe4Bg6JLrHIEuMtPeAUVval8WnAlKiPA==
content-length: 573
x-fb-trip-id: 1679558926
date: Mon, 12 Sep 2022 12:33:33 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 324364e9311c1f7cb5e4068f3d947d5d
ddb00dc97404cee267838983ce8bb4ae48d6647a
d6cc296b22c48f9e7bb3a905dd9e899441ae7c29faec4a62e71628e1f23d61a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 45b55c678e2944a30a6d8160bb6e4a94
a1ac0c9681902e7d64e49bd9e146820ce2c60f4f
5a89db56a9b47aa3e426799671db9b25a42d7dd7d6881c66eca7ed37facf6bd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
200 OK 4.3 kB URL HTTP/2 ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
IP
File type ASCII text, with very long lines (2267)
Hash 3f7502705229ccec9d066c5cd75e6c31
ede1663155afaa5a5213d075e6295c6d839b05c3
2be5113d3022d1819a19f327235d287a2538a03741fc08ccd9d55cc1d78b6282
GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 4294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 08:39:19 GMT
expires: Thu, 07 Sep 2023 08:39:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 31 Aug 2022 22:11:04 GMT
content-type: text/javascript
age: 446054
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-2220667-1&cid=587140971.1662986002&jid=31404274&_v=5.7.2&z=173530525
302 Found 0 B URL HTTP/2 www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-2220667-1&cid=587140971.1662986002&jid=31404274&_v=5.7.2&z=173530525
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-2220667-1&cid=587140971.1662986002&jid=31404274&_v=5.7.2&z=173530525 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.kanzas.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Sep 2022 12:33:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-2220667-1&cid=587140971.1662986002&jid=31404274&_v=5.7.2&z=173530525&slf_rd=1&random=2539547695
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 4894843dd17150368f9e81305262c361
09c1036ec45f4da92b1749c5b0a76062d32ee681
5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cc16b956392846e1100a913453575c87
09e81e2f60ab04ca565b73ed9060380a2229cf30
3a3eecb77d71c4f1c3d706f33f33e8df527b3653906d0086089c2e5b45fd25e9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.kanzas.ua
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.kanzas.ua
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.kanzas.ua HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kanzas.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 12 Sep 2022 12:33:34 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-2220667-1&cid=587140971.1662986002&jid=31404274&_v=5.7.2&z=173530525&slf_rd=1&random=2539547695
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-2220667-1&cid=587140971.1662986002&jid=31404274&_v=5.7.2&z=173530525&slf_rd=1&random=2539547695
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-2220667-1&cid=587140971.1662986002&jid=31404274&_v=5.7.2&z=173530525&slf_rd=1&random=2539547695 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.kanzas.ua/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Sep 2022 12:33:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.kanzas.ua
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.kanzas.ua
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.kanzas.ua HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kanzas.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 12 Sep 2022 12:33:34 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cc16b956392846e1100a913453575c87
09e81e2f60ab04ca565b73ed9060380a2229cf30
3a3eecb77d71c4f1c3d706f33f33e8df527b3653906d0086089c2e5b45fd25e9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cc16b956392846e1100a913453575c87
09e81e2f60ab04ca565b73ed9060380a2229cf30
3a3eecb77d71c4f1c3d706f33f33e8df527b3653906d0086089c2e5b45fd25e9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
89046b250129d6c43809f099df085edf.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html?n=1
200 OK 3.1 kB URL HTTP/2 89046b250129d6c43809f099df085edf.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html?n=1
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5835)
Hash 3fa5e95a358d660ddb3c45769ae1357f
5f6164fbaf8cfbccfd061b00ae48dedfc16bbcd9
d32f4b680031c0e11222eb17385aa9d3b11d2903b05bff34c3d4eb6292631137
GET /safeframe/1-0-38/html/container.html?n=1 HTTP/1.1
Host: 89046b250129d6c43809f099df085edf.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kanzas.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 3108
date: Mon, 12 Sep 2022 12:33:34 GMT
expires: Tue, 12 Sep 2023 12:33:34 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 02 Mar 2021 20:17:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022090601&st=env
200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022090601&st=env
IP
File type JSON data\012- , ASCII text, with very long lines (14590), with no line terminators
Hash 77f628814c069b13e3d62239225a8c90
e99e0f1a7a7454b70012666cde748c6a0109f5f0
7c8b28402ca2e0116b50c60ee56e9d76269c2dae81db79d9bc42a2e9ec3d8b72
GET /getconfig/sodar?sv=200&tid=gpt&tv=2022090601&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.kanzas.ua
Connection: keep-alive
Referer: http://www.kanzas.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 12 Sep 2022 12:33:34 GMT
server: cafe
cache-control: private
content-length: 11083
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 3a03c878112c8ef85a7ed1cd100fbcb3
47491937066dc1e5d43a194ee32aa102166d0ba0
cbf573f248c8c192f9f81effe4ccce186b03e2094f8da66dd34e28e1eb9e62e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Sep 2022 12:33:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kanzas.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Mon, 12 Sep 2022 12:33:34 GMT
expires: Mon, 12 Sep 2022 12:33:34 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kanzas.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 07:47:45 GMT
expires: Fri, 08 Sep 2023 07:47:45 GMT
cache-control: public, max-age=31536000
age: 362749
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6436
Expires: Mon, 12 Sep 2022 14:20:50 GMT
Date: Mon, 12 Sep 2022 12:33:34 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6436
Expires: Mon, 12 Sep 2022 14:20:50 GMT
Date: Mon, 12 Sep 2022 12:33:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7ccc33ae0c85a906f2c17db281ec790
1904722d70348235d5472c54f888d2b4b991e2aa
f48edc03624f582b05b596694b76bd784f85eb9f2ca5dd025bbea9cc2ff1f096
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae1f7987-7b92-4cec-85ab-243250e02a06.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6999
x-amzn-requestid: 61e3e817-fb62-47c7-b938-2dfc6a134622
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO1mlG3XIAMFo5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3629-37c2c8982c4ccf891875c59a;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:00:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: S2TR552YpZeEbhTSAn4vdXexYpvR4Lrr-LaJmfNd7LnO0L4QM8w-Dg==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 07:13:41 GMT
age: 19193
etag: "1904722d70348235d5472c54f888d2b4b991e2aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8625e0707046e7a3715a8dbb40b1cae2
0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78
abc4c12561be08897341d9c8104c30a289357c0907e55c46895f7fb6afb2f75d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13568
x-amzn-requestid: ad06f499-3e04-414a-8a3f-6daa9e0124ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3yN1F2BIAMFoqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312fd8b-3a17f11440d2f37b23ac7f6a;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 07:08:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iNRnq8nMhoTo9oY379Ynb6uPW0vNyf3dNufU_HpXNfzxvhrAEKEzJQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:40:11 GMT
age: 53603
etag: "0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7b5d084-5c6a-4cec-9577-bb8c3a155234.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7b5d084-5c6a-4cec-9577-bb8c3a155234.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5bdaf9b909a8b8fd2f02eeb8930e2d19
3df316da4ed46403a50a0cdc688613cb1334da0b
177e68bddbfdafe455c5aa1aad9c0654c83ab91500043cbc366d1397aea53e22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7b5d084-5c6a-4cec-9577-bb8c3a155234.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10363
x-amzn-requestid: ce8239d7-9838-4fd9-9a2a-d788b2d4205b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUKcpGepIAMFvuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e5783-38cb8ddf79347e4e7fbb1041;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:47:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cms2j1USzEq1FpNcXq9W_i3WirZXI0ElxYjQYEznccjmNhGDblVVbw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 22:09:01 GMT
age: 51873
etag: "3df316da4ed46403a50a0cdc688613cb1334da0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6174529fff57758e958da5432344962f
05ec2076b32398d60ee77fab8c14345bc7dfe647
65284a76355864efa944dff5033575013c6d74a019a7b731e0236603f2f656a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F81f9b0a3-fe8f-4665-9e54-9dfaf5d4876b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9466
x-amzn-requestid: ba3f7eac-61c9-4b5f-ae8a-b372906a25ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YOTeoHMKoAMFr5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bff90-1e70e2c444242a2d46387986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 03:08:00 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: -SwaUjMInlOaGpH6yK1W1a57QCQMgY-l43RdUfKVtZA1zJzMrLzC6g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 f7283f3fe2c258cf54f8b7d3dd272e0e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 04:04:42 GMT
age: 30532
etag: "05ec2076b32398d60ee77fab8c14345bc7dfe647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6b50df-cdcd-4b44-9ed3-90a502ea29ad.jpeg
200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6b50df-cdcd-4b44-9ed3-90a502ea29ad.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 239262b6ab17cb19414c35cd4f761092
48eddcf9838e980e67cc8f9cbb05b475df2f0331
cd27cbce632d769288d9c33c5c8e887ba02df5677f10f7a6d03139b590ba24b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6b50df-cdcd-4b44-9ed3-90a502ea29ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9815
x-amzn-requestid: 89243e57-94eb-4c6b-903f-aa01df030ecc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUIxnEAjoAMF_Ig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e54d6-199403e2695b214711f5117f;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:36:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PWOeca9JRnIgEymeLVyqTBucBJ0j6OS9Rmqwd4CcAKixqo0zvb452w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:48:14 GMT
age: 53120
etag: "48eddcf9838e980e67cc8f9cbb05b475df2f0331"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg
200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c14088c4ca0d576e087feed41b7f1565
172b23f2ef39b6c3fdebb5441b10a95712206d0a
2699efa811ceac5420f5bd26c35a6f48b51854e29cbce7cbb62efb613db7d6b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8799
x-amzn-requestid: 1bcdf387-9ad2-449a-861e-3352b1744d23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUI-0G6vIAMFgbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e552b-42aa46af6315148106c4fdee;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 21:37:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: g2mxKK8L5T4YkeD8JqNUuV_KfsIq8ypRMvxhsyzSZSEIP4gDl4zLVQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 21:41:51 GMT
age: 53503
etag: "172b23f2ef39b6c3fdebb5441b10a95712206d0a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.kanzas.ua/highslide/graphics/outlines/drop-shadow.png
200 OK 2.1 kB URL HTTP/1.1 www.kanzas.ua/highslide/graphics/outlines/drop-shadow.png
IP
File type PNG image data, 40 x 3000, 8-bit gray+alpha, non-interlaced\012- data
Hash 1fc2eb3de80baea2bc85dc373670ecd4
90c718ca34fa1d7c82a5b5b6949acb89c2aaa77f
e5b23d855ab38d3c982e95d49894d4febd754baf5072d2049979254ad9663219
GET /highslide/graphics/outlines/drop-shadow.png HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b; __utma=203028235.587140971.1662986002.1662986002.1662986002.1; __utmb=203028235.1.10.1662986002; __utmc=203028235; __utmz=203028235.1662986002.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt_UA-2220667-1=1; __gads=ID=3dfa38a5d4198395-2203513b1ece002d:T=1662986014:S=ALNI_MbjQFcBKEooJ_t2_5bS9VfXBF20Yg
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:30 GMT
Content-Type: image/png
Content-Length: 2091
Last-Modified: Sat, 30 Apr 2011 11:41:43 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4dbbf577-82b"
Expires: Sat, 17 Sep 2022 12:33:30 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/highslide/graphics/zoomout.cur
200 OK 326 B URL HTTP/1.1 www.kanzas.ua/highslide/graphics/zoomout.cur
IP
File type MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @7x7\012- data
Hash e5f236bf2b60f8c8fc1867d70636a046
2d1695a011edd32a1abc5329dcf4b8ee196d5e7f
110a21ee3616bfa86b492bb237eeb946ee4a643d7bb77a7fd2b131311f5ccf72
GET /highslide/graphics/zoomout.cur HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b; __utma=203028235.587140971.1662986002.1662986002.1662986002.1; __utmb=203028235.1.10.1662986002; __utmc=203028235; __utmz=203028235.1662986002.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt_UA-2220667-1=1; __gads=ID=3dfa38a5d4198395-2203513b1ece002d:T=1662986014:S=ALNI_MbjQFcBKEooJ_t2_5bS9VfXBF20Yg
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:30 GMT
Content-Type: application/octet-stream
Content-Length: 326
Last-Modified: Sat, 30 Apr 2011 11:41:42 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4dbbf576-146"
Expires: Sat, 17 Sep 2022 12:33:30 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/highslide/graphics/loader.white.gif
200 OK 673 B URL HTTP/1.1 www.kanzas.ua/highslide/graphics/loader.white.gif
IP
File type GIF image data, version 89a, 16 x 16\012- data
Hash 2a6692973429d7a74513bfa8bcb5be20
f2af060f1cadbc9065c8c465c648dc01be67cc12
1eb9e7880f723999a4ed63eece6a6e4d4976833d3c16dc18b4ace3971728ab0d
GET /highslide/graphics/loader.white.gif HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/highslide/highslide.css
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b; __utma=203028235.587140971.1662986002.1662986002.1662986002.1; __utmb=203028235.1.10.1662986002; __utmc=203028235; __utmz=203028235.1662986002.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt_UA-2220667-1=1; __gads=ID=3dfa38a5d4198395-2203513b1ece002d:T=1662986014:S=ALNI_MbjQFcBKEooJ_t2_5bS9VfXBF20Yg
HTTP/1.1 200 OK
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:30 GMT
Content-Type: image/gif
Content-Length: 673
Last-Modified: Sat, 30 Apr 2011 11:41:41 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4dbbf575-2a1"
Expires: Sat, 17 Sep 2022 12:33:30 GMT
Cache-Control: max-age=432000
Accept-Ranges: bytes
www.kanzas.ua/image_storage/20150428/resized/15042810022394253.jpg
404 Not Found 168 B URL HTTP/1.1 www.kanzas.ua/image_storage/20150428/resized/15042810022394253.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ad73b8342beaa67ce0da5dd78a4ffe61
6676439a860552dee81dac8dbab2f815f536e7b9
99a66a06aed2ae4b02ddfb0d43c373ade53336020298039578d6187b1f3e8fc2
GET /image_storage/20150428/resized/15042810022394253.jpg HTTP/1.1
Host: www.kanzas.ua
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kanzas.ua/
Cookie: Kanzas=fnk37s3i8injfu3lv1294mjse0; b=b; __utma=203028235.587140971.1662986002.1662986002.1662986002.1; __utmb=203028235.1.10.1662986002; __utmc=203028235; __utmz=203028235.1662986002.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt_UA-2220667-1=1; __gads=ID=3dfa38a5d4198395-2203513b1ece002d:T=1662986014:S=ALNI_MbjQFcBKEooJ_t2_5bS9VfXBF20Yg
HTTP/1.1 404 Not Found
Server: nginx/1.4.2
Date: Mon, 12 Sep 2022 12:33:34 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
Keep-Alive: timeout=20
accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Fwww.kanzas.ua&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__
200 OK 0 B URL HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Fwww.kanzas.ua&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__
IP
GET /o/oauth2/postmessageRelay?parent=http%3A%2F%2Fwww.kanzas.ua&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kanzas.ua/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 12 Sep 2022 12:33:33 GMT
content-security-policy: script-src 'nonce-3ihi8HOs7kCLLdAfQSlnzA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport, require-trusted-types-for 'script';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
developers.google.com/
200 OK 0 B IP
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.kanzas.ua/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 07 Sep 2022 00:41:35 GMT
content-type: text/html; charset=utf-8
set-cookie: _ga_devsite=GA1.3.705863000.1662986015; Expires=Wed, 11 Sep 2024 12:33:35 GMT; Max-Age=63072000; Path=/
content-security-policy: base-uri 'self'; object-src 'none'; script-src 'strict-dynamic' 'unsafe-inline' https: http: 'nonce-lc/ibBL8oT5y1igFXb1d/61+ER0xX/' 'unsafe-eval'; report-uri https://csp.withgoogle.com/csp/devsite/v2
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
cache-control: no-cache, must-revalidate
expires: 0
pragma: no-cache
content-encoding: gzip
x-cloud-trace-context: 41e44aab81da98307278ffb13cca5d4f
vary: Accept-Encoding
date: Mon, 12 Sep 2022 12:33:35 GMT
server: Google Frontend
content-length: 21552
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
213.186.117.54
34.120.237.76
157.240.200.14
93.184.220.29
81.19.89.1
23.33.119.27
0.0.0.0