guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
301 Moved Permanently 278 B URL HTTP/1.1 guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b1e4a2a9f0ffe4d526af15f366067423
fb720164b1db9a223951cb821cc6285c40f384ef
2d862e8acd99af0f20a84b6dd801c09ec3256910e2a0547b3adb5717b51509d9
GET /yeat-drum-kit-reddit-stranitsa-skachivaniya.html HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 03 Sep 2022 18:33:26 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 03 Sep 2022 17:43:07 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XO6K96FqzgFTPXCz91hxy_Oh0q748m8DOPrRU8Rkw-Pej_NmO-zQZw==
Age: 3019
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8061
Expires: Sat, 03 Sep 2022 20:47:47 GMT
Date: Sat, 03 Sep 2022 18:33:26 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 03 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wfaHfNhSaqIqwyOmEg5vo3OigpA_ZRqbJL3vNjoJVh2fkoNhBWVkoA==
age: 62289
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 912d157a02297c02c165a48a3af3eb01
e21f69caf54a4ecdc4ab72e687851fc0b1b57a3d
dd92c1a9cbfe2c20792489c2e8380e24103f0f4c0bb127473e12b230cf83eabf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD92C1A9CBFE2C20792489C2E8380E24103F0F4C0BB127473E12B230CF83EABF"
Last-Modified: Sat, 03 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11938
Expires: Sat, 03 Sep 2022 21:52:24 GMT
Date: Sat, 03 Sep 2022 18:33:26 GMT
Connection: keep-alive
guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
200 OK 9.6 kB URL HTTP/1.1 guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5799), with CRLF, LF line terminators
Hash af6804ad1834c1c3670ad2cc7ff77e5b
d8265c9bd59f7dbf205c9fdee9ebf827dd0ca95d
7b147a617ca4b76df9c7c5012825b8123c5a691681a4c90b4e3a13c8ac7352db
GET /yeat-drum-kit-reddit-stranitsa-skachivaniya.html HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:26 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.0.33
Vary: Accept-Encoding
Cache-Control: public, max-age=0, no-cache, no-transform
X-Hyper-Cache: hit - plain-https
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 18:33:26 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
guitarist1.ru/wp-includes/js/jquery/jquery.js?ver=1.12.4
200 OK 34 kB URL HTTP/1.1 guitarist1.ru/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP
File type ASCII text, with very long lines (32077)
Hash 083d41219f58a781aed9e606874c9ee9
ee4d9e6b2a6b1cdf9d16258981194d3e163485b1
67416b22702e776df8d4e9205c357ee7e0f618c7ca4ab6075f9381b66beca2f2
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:26 GMT
Content-Type: application/javascript
Last-Modified: Sun, 22 May 2016 21:00:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"57421dd0-17ba0"
Expires: Mon, 03 Oct 2022 18:33:26 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
guitarist1.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
200 OK 4.0 kB URL HTTP/1.1 guitarist1.ru/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
File type ASCII text, with very long lines (9959)
Hash c3b3a5268f141e34b6cd4cfb63a64bc3
adcb27303f4527ec3bd64feaff9c2b824e544e13
ef681842dd14bdf46f5b38f181e450bc6af20193500257b4eee065f5dec0c7ab
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:26 GMT
Content-Type: application/javascript
Last-Modified: Thu, 19 May 2016 21:00:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"573e2950-2748"
Expires: Mon, 03 Oct 2022 18:33:26 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 9439a7cde73fea464c1463febdda0556
6a0030d4f26b2e9658700708c82e7ce6120ce93c
c3a5a489f4ef8c8cce54dbd819c5cf573740317ea3718ccd6804a03374739199
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
guitarist1.ru/wp-content/plugins/wp-swfobject/2.0/swfobject.js
200 OK 3.9 kB URL HTTP/1.1 guitarist1.ru/wp-content/plugins/wp-swfobject/2.0/swfobject.js
IP
File type ASCII text, with very long lines (10071)
Hash 70d98ddc48d3dc817635a20285838121
99924bd3d686d7e32019baedb08b437cf8939e1d
033773886e4bcfa566bad623ebe3e008f00595db3bac13ed8626b5e3e0ad5be1
GET /wp-content/plugins/wp-swfobject/2.0/swfobject.js HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:26 GMT
Content-Type: application/javascript
Last-Modified: Fri, 25 Aug 2017 21:00:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"59a08fd0-27ec"
Expires: Mon, 03 Oct 2022 18:33:26 GMT
Cache-Control: max-age=2592000
Content-Encoding: gzip
guitarist1.ru/wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/bbspoiler/inc/bbspoiler.css,wp-content/plugins/contextual-related-posts/css/default-style.css,wp-content/plugins/gif-animation-preview/gapplayer.min.css,wp-content/plugins/vi-random-posts-widget/css/virp-frontend.css,wp-content/plugins/vi-random-posts-widget/css/font-awesome.css,wp-content/plugins/video-embed-optimizer/styles/styles.css,wp-content/plugins/easy-table-of-contents/vendor/icomoon/style.min.css,wp-content/plugins/easy-table-of-contents/assets/css/screen.min.css,wp-content/themes/inventor/css/bootstrap.css,wp-content/themes/inventor/style.css
200 OK 30 kB URL HTTP/1.1 guitarist1.ru/wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/bbspoiler/inc/bbspoiler.css,wp-content/plugins/contextual-related-posts/css/default-style.css,wp-content/plugins/gif-animation-preview/gapplayer.min.css,wp-content/plugins/vi-random-posts-widget/css/virp-frontend.css,wp-content/plugins/vi-random-posts-widget/css/font-awesome.css,wp-content/plugins/video-embed-optimizer/styles/styles.css,wp-content/plugins/easy-table-of-contents/vendor/icomoon/style.min.css,wp-content/plugins/easy-table-of-contents/assets/css/screen.min.css,wp-content/themes/inventor/css/bootstrap.css,wp-content/themes/inventor/style.css
IP
File type ASCII text, with very long lines (19380)
Hash 34b39d957ea8d3ec2ec86949e93911ec
f12081e0486186ef13fe1b04ccbc553ec1164c2c
d797740e822bc5f7eac46e04a49bbd55a419b2dcb0f76098f8e9e7bf569af94a
GET /wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/bbspoiler/inc/bbspoiler.css,wp-content/plugins/contextual-related-posts/css/default-style.css,wp-content/plugins/gif-animation-preview/gapplayer.min.css,wp-content/plugins/vi-random-posts-widget/css/virp-frontend.css,wp-content/plugins/vi-random-posts-widget/css/font-awesome.css,wp-content/plugins/video-embed-optimizer/styles/styles.css,wp-content/plugins/easy-table-of-contents/vendor/icomoon/style.min.css,wp-content/plugins/easy-table-of-contents/assets/css/screen.min.css,wp-content/themes/inventor/css/bootstrap.css,wp-content/themes/inventor/style.css HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:26 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 30273
Connection: keep-alive
X-Powered-By: PHP/7.0.33
Expires: Sun, 04 Sep 2022 18:33:26 GMT
Vary: Accept-Encoding
Cache-Control: max-age=86400
Content-Encoding: gzip
Last-Modified: Sun, 12 Dec 2021 18:08:51 GMT
fonts.googleapis.com/css?family=Raleway%3A300%2C400%2C600%2C700%2C800%2C900&ver=4.7.3
200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Raleway%3A300%2C400%2C600%2C700%2C800%2C900&ver=4.7.3
IP
Hash 3888279f9d0797234fbbafbe8c06fed6
161f911ad43afa908c8b4175a182acc2a9737c12
361b29c218c61fa38fd9402d93862491940996feb7c65a407ac8643a761673fd
GET /css?family=Raleway%3A300%2C400%2C600%2C700%2C800%2C900&ver=4.7.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Sep 2022 18:33:26 GMT
date: Sat, 03 Sep 2022 18:33:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash f8bc53d25e39dd9ede4cef24ed6634e6
cc77af69ffbead54a40e985e84db2cbe16030d52
e80579d73b10f71217d259d76f5736acf922653e603f5264fde216e07c596ca8
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 18:33:26 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Wed, 07 Sep 2022 15:36:51 GMT
ETag: "cc77af69ffbead54a40e985e84db2cbe16030d52"
Last-Modified: Sat, 03 Sep 2022 15:36:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745092e67848b51d-OSL
guitarist1.ru/wp-content/plugins/bwp-minify/min/?f=wp-content/themes/inventor/css/theme-responsive.css,wp-content/themes/inventor/css/nivo-slider.css,wp-content/plugins/tablepress/css/default.min.css,wp-content/plugins/sociable-re/sociable.css,wp-content/plugins/mango-buttons/public/style/mb-button.css
200 OK 5.9 kB URL HTTP/1.1 guitarist1.ru/wp-content/plugins/bwp-minify/min/?f=wp-content/themes/inventor/css/theme-responsive.css,wp-content/themes/inventor/css/nivo-slider.css,wp-content/plugins/tablepress/css/default.min.css,wp-content/plugins/sociable-re/sociable.css,wp-content/plugins/mango-buttons/public/style/mb-button.css
IP
File type ASCII text, with very long lines (7600)
Hash 95fab269fcc8114949ab318ba4409a82
02e9cc0132c38c441b9824a79face3920d4a6783
ffe48c44705e88c69a4c936b407e39fd69cbcd36702999313c735bae7a1b64bd
GET /wp-content/plugins/bwp-minify/min/?f=wp-content/themes/inventor/css/theme-responsive.css,wp-content/themes/inventor/css/nivo-slider.css,wp-content/plugins/tablepress/css/default.min.css,wp-content/plugins/sociable-re/sociable.css,wp-content/plugins/mango-buttons/public/style/mb-button.css HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 5884
Connection: keep-alive
X-Powered-By: PHP/7.0.33
Expires: Sun, 04 Sep 2022 18:33:26 GMT
Vary: Accept-Encoding
Cache-Control: max-age=86400
Content-Encoding: gzip
Last-Modified: Sun, 29 Oct 2017 22:00:00 GMT
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 03 Sep 2022 17:38:16 GMT
Expires: Sat, 03 Sep 2022 17:39:36 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qwZROnmSRrfXlgItpEFaAjlD-xJguENqtaJTX7tJ8reEQXZgltC0KA==
Age: 3311
guitarist1.ru/wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/easy-fancybox/css/jquery.fancybox.min.css
200 OK 1.1 kB URL HTTP/1.1 guitarist1.ru/wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/easy-fancybox/css/jquery.fancybox.min.css
IP
File type ASCII text, with very long lines (4275), with no line terminators
Hash ad6ca6aad6bfaacb278505c18907bc79
d727d6d4b37a1476b4e3fb7d8b3060a604c88b8d
54d0adcf58c0c0fe4332392a271c71d70d228ac7299a02a0417ed7c45b5136cc
GET /wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/easy-fancybox/css/jquery.fancybox.min.css HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 1128
Connection: keep-alive
X-Powered-By: PHP/7.0.33
Expires: Sun, 04 Sep 2022 18:33:27 GMT
Vary: Accept-Encoding
Cache-Control: max-age=86400
Content-Encoding: gzip
Last-Modified: Sun, 19 Apr 2020 01:09:28 GMT
ocsp.digicert.com/
200 OK 471 B IP
Hash 4fc12f0a98aa28ccb56e0b56d7e40ded
f7efcfb8b4f4aa40268bada3fec380820a70ee35
a34aa9b7db949a583c3f1b4d87fed415a11d119c9615b5e710c3125173f8a277
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5471
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:27 GMT
Last-Modified: Sat, 03 Sep 2022 17:02:16 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
guitarist1.ru/wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/bbspoiler/inc/bbspoiler.js,wp-content/themes/inventor/js/jquery.nivo.slider.js,wp-content/themes/inventor/js/bootstrap.js,wp-content/themes/inventor/js/custom.js
200 OK 14 kB URL HTTP/1.1 guitarist1.ru/wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/bbspoiler/inc/bbspoiler.js,wp-content/themes/inventor/js/jquery.nivo.slider.js,wp-content/themes/inventor/js/bootstrap.js,wp-content/themes/inventor/js/custom.js
IP
File type ASCII text, with very long lines (1705)
Hash 24f5d92e28a782b55459c4863aafccc4
d30c6bc8ac5b79ed981c77c9e2c89f74c3ba3dff
16ddc31b7a4ca90fa954be8f8da0acb767036d1706bfa9b2e9c64192b0d13919
GET /wp-content/plugins/bwp-minify/min/?f=wp-content/plugins/bbspoiler/inc/bbspoiler.js,wp-content/themes/inventor/js/jquery.nivo.slider.js,wp-content/themes/inventor/js/bootstrap.js,wp-content/themes/inventor/js/custom.js HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 14475
Connection: keep-alive
X-Powered-By: PHP/7.0.33
Expires: Sun, 04 Sep 2022 18:33:27 GMT
Vary: Accept-Encoding
Cache-Control: max-age=86400
Content-Encoding: gzip
Last-Modified: Sat, 30 Sep 2017 21:00:00 GMT
guitarist1.ru/wp-content/uploads/2020/08/metro-boomin-drum-kit-130820-150x150.jpg
200 OK 6.8 kB URL HTTP/1.1 guitarist1.ru/wp-content/uploads/2020/08/metro-boomin-drum-kit-130820-150x150.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 150x150, components 3\012- data
Hash 60a7e2406beaf53eb064509e2ac195b5
41b1d9d1b20129a35c8ea447c87f4bfc0213c44e
9a7868d55a564fb7eb7039739ae47e0eb215cb26eaf898ca8088e6c29842b832
GET /wp-content/uploads/2020/08/metro-boomin-drum-kit-130820-150x150.jpg HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: image/jpeg
Content-Length: 6751
Last-Modified: Thu, 13 Aug 2020 13:29:47 GMT
Connection: keep-alive
ETag: "5f35404b-1a5f"
Expires: Mon, 03 Oct 2022 18:33:27 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
guitarist1.ru/wp-content/uploads/2020/08/ronny-j-drum-kit-160820-150x150.jpg
200 OK 4.8 kB URL HTTP/1.1 guitarist1.ru/wp-content/uploads/2020/08/ronny-j-drum-kit-160820-150x150.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 150x150, components 3\012- data
Hash 381e0d44081b3ca36db7c4dbc104f8a2
26dc09f6eda625af8a0669d3d7d58f368ab6fd2e
8d60ca9d2abd4e227b799222a8603630bb5e596f6cd3fd02cf54668f29975574
GET /wp-content/uploads/2020/08/ronny-j-drum-kit-160820-150x150.jpg HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: image/jpeg
Content-Length: 4805
Last-Modified: Sun, 16 Aug 2020 15:08:56 GMT
Connection: keep-alive
ETag: "5f394c08-12c5"
Expires: Mon, 03 Oct 2022 18:33:27 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
guitarist1.ru/wp-content/uploads/2020/08/cashmoneyap-drum-kits-210820-150x150.jpg
200 OK 8.4 kB URL HTTP/1.1 guitarist1.ru/wp-content/uploads/2020/08/cashmoneyap-drum-kits-210820-150x150.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 150x150, components 3\012- data
Hash 5a36bf2d663ef8cae7fc6ee6a8655ae2
a788214286d143e5ec0475739590a67b82fdc41c
7b5355bd7ddd945f639b2bad4b710b6bc1562360cec905bfca009b4e3f3d877d
GET /wp-content/uploads/2020/08/cashmoneyap-drum-kits-210820-150x150.jpg HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: image/jpeg
Content-Length: 8423
Last-Modified: Fri, 21 Aug 2020 19:02:37 GMT
Connection: keep-alive
ETag: "5f401a4d-20e7"
Expires: Mon, 03 Oct 2022 18:33:27 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
guitarist1.ru/wp-content/uploads/2020/08/drill-drum-kits-uk-160820-150x150.jpg
200 OK 7.9 kB URL HTTP/1.1 guitarist1.ru/wp-content/uploads/2020/08/drill-drum-kits-uk-160820-150x150.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 150x150, components 3\012- data
Hash 7e34dcfb6311bb9c8e83697753b9fcb3
ee58ed9658eee2361ca7542215a89175b11cc83b
8fa2887fe27c3a33b9365cdddda3eef127969931bee0490f578a2a9e30dce615
GET /wp-content/uploads/2020/08/drill-drum-kits-uk-160820-150x150.jpg HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: image/jpeg
Content-Length: 7916
Last-Modified: Sun, 16 Aug 2020 14:23:13 GMT
Connection: keep-alive
ETag: "5f394151-1eec"
Expires: Mon, 03 Oct 2022 18:33:27 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
guitarist1.ru/wp-content/uploads/2020/08/iy-beats-drum-kit-150820-150x150.jpg
200 OK 7.7 kB URL HTTP/1.1 guitarist1.ru/wp-content/uploads/2020/08/iy-beats-drum-kit-150820-150x150.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 150x150, components 3\012- data
Hash 6c31b87c83323465bee58c922e4002a7
46a15c5ced6a6813608b5856fba3d7e2c1279d37
7117390cb07fc431f8016bcc40c2af648034ac54f532db0a128513168d784a26
GET /wp-content/uploads/2020/08/iy-beats-drum-kit-150820-150x150.jpg HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: image/jpeg
Content-Length: 7735
Last-Modified: Sat, 15 Aug 2020 16:29:50 GMT
Connection: keep-alive
ETag: "5f380d7e-1e37"
Expires: Mon, 03 Oct 2022 18:33:27 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
guitarist1.ru/wp-content/uploads/2020/08/aom-drum-kit-vol-1-140820-150x150.jpg
200 OK 7.2 kB URL HTTP/1.1 guitarist1.ru/wp-content/uploads/2020/08/aom-drum-kit-vol-1-140820-150x150.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 150x150, components 3\012- data
Hash be009611ccd5d68330332145f2034798
a638667ef8207d6911fa7e0a5428adaca3b8d744
6a61146f77f7a7eeec87db74acc96dff86d737312ba2063b98782004aaafe9a8
GET /wp-content/uploads/2020/08/aom-drum-kit-vol-1-140820-150x150.jpg HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: image/jpeg
Content-Length: 7213
Last-Modified: Thu, 13 Aug 2020 22:44:26 GMT
Connection: keep-alive
ETag: "5f35c24a-1c2d"
Expires: Mon, 03 Oct 2022 18:33:27 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
guitarist1.ru/wp-content/uploads/2020/08/lil-peep-drum-kits-160820-150x150.jpg
200 OK 11 kB URL HTTP/1.1 guitarist1.ru/wp-content/uploads/2020/08/lil-peep-drum-kits-160820-150x150.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 150x150, components 3\012- data
Hash 1c39c9cb0f8160adcdeeaeaed85296c1
6dbc0905146acae2d4563a783099aae9974a18b6
3178646ed6d4b86fc734e7a8d2cfcf01b36a28d17d0b9a2fa2dbe982e95968ff
GET /wp-content/uploads/2020/08/lil-peep-drum-kits-160820-150x150.jpg HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: image/jpeg
Content-Length: 10593
Last-Modified: Sun, 16 Aug 2020 17:48:02 GMT
Connection: keep-alive
ETag: "5f397152-2961"
Expires: Mon, 03 Oct 2022 18:33:27 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
guitarist1.ru/wp-content/uploads/2021/12/yeat-drum-kit-091221-150x150.jpg
200 OK 7.2 kB URL HTTP/1.1 guitarist1.ru/wp-content/uploads/2021/12/yeat-drum-kit-091221-150x150.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 150x150, components 3\012- data
Hash 989f00da53b2bce5824e34fee16bf50e
a40a00a182d7b90c95c9a7f0bca94c9bf49fcd5c
54c04bf4c64f90ff74d07ccc2cf79767fe689a4c8065b51ed15480f9bb24da73
GET /wp-content/uploads/2021/12/yeat-drum-kit-091221-150x150.jpg HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: image/jpeg
Content-Length: 7172
Last-Modified: Thu, 09 Dec 2021 19:44:39 GMT
Connection: keep-alive
ETag: "61b25ca7-1c04"
Expires: Mon, 03 Oct 2022 18:33:27 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
guitarist1.ru/wp-content/plugins/sociable-re/images/services-sprite.gif
200 OK 55 B URL HTTP/1.1 guitarist1.ru/wp-content/plugins/sociable-re/images/services-sprite.gif
IP
File type GIF image data, version 89a, 16 x 16\012- data
Hash 09f0966ffe796444b7632a9db7373096
bb926bd9423a14af4a71a72df97e14b9ddf786bc
2b2799953f8837cbd3083af62995f00ff8878826694718e7d9859fab580df2ac
GET /wp-content/plugins/sociable-re/images/services-sprite.gif HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: image/gif
Content-Length: 55
Last-Modified: Sat, 12 Nov 2016 22:00:00 GMT
Connection: keep-alive
ETag: "582790e0-37"
Expires: Mon, 03 Oct 2022 18:33:27 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: D9PpnrrGl3TPZ9+Nd/dbGw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: JKD5fdjqaVfDTgUZhPWOhJdk06E=
guitarist1.ru/wp-content/plugins/intelly-related-posts/assets/images/simple-arrow.png
200 OK 1.3 kB URL HTTP/1.1 guitarist1.ru/wp-content/plugins/intelly-related-posts/assets/images/simple-arrow.png
IP
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 006849bd75bbbb96d5b1f5997bbeb52a
21ce90bf8bc0105fe13d635d5f9b8404d8759e82
56c87ee1e1a6878217897741f85a8048012b693a4cb6b03804a322d8fed02a88
GET /wp-content/plugins/intelly-related-posts/assets/images/simple-arrow.png HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: image/png
Content-Length: 1286
Last-Modified: Sat, 05 Feb 2022 14:41:40 GMT
Connection: keep-alive
ETag: "61fe8ca4-506"
Expires: Mon, 03 Oct 2022 18:33:27 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
guitarist1.ru/wp-content/plugins/sociable-re/images/services-sprite.png
200 OK 57 kB URL HTTP/1.1 guitarist1.ru/wp-content/plugins/sociable-re/images/services-sprite.png
IP
File type PNG image data, 360 x 108, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d464cc12072f8a58f180fbff8411c40
aad17feb923a3ff9a9c1fa67a5bb4ae9d44d283f
1119f83b9ef85672220b30346cfad402045aad6c8fd87bef37b9c08750b2a129
GET /wp-content/plugins/sociable-re/images/services-sprite.png HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: image/png
Content-Length: 56843
Last-Modified: Sat, 12 Nov 2016 22:00:00 GMT
Connection: keep-alive
ETag: "582790e0-de0b"
Expires: Mon, 03 Oct 2022 18:33:27 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c6585b1c4c6eb0eda5af837cb73802c8
737917c8f5fc0943d276a0f1f174a5c581b20a50
944fa34456feb70c219c0a8c1d14c508ae84cf11ade81d7777645da1d2f762a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "944FA34456FEB70C219C0A8C1D14C508AE84CF11ADE81D7777645DA1D2F762A1"
Last-Modified: Thu, 01 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3419
Expires: Sat, 03 Sep 2022 19:30:26 GMT
Date: Sat, 03 Sep 2022 18:33:27 GMT
Connection: keep-alive
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyCkIT5lu.woff2
200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyCkIT5lu.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 25640, version 1.0\012- data
Hash a76940a6dbf58b7014bdaa4211cd384b
90407725b851547b0a63e863d8880f6a531f425f
3aaa08d1c1434c3dd80f3ae7b73884fd1570ddc777b9bc2beaeeb1648373cffd
GET /s/raleway/v28/1Ptug8zYS_SKggPNyCkIT5lu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25640
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 22:29:25 GMT
expires: Tue, 29 Aug 2023 22:29:25 GMT
cache-control: public, max-age=31536000
age: 417842
last-modified: Mon, 18 Jul 2022 19:41:19 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 21:13:12 GMT
expires: Tue, 29 Aug 2023 21:13:12 GMT
cache-control: public, max-age=31536000
age: 422415
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 26240, version 1.0\012- data
Hash 4a90976686fcbd8296c7d7fccc04c273
bcb82e93ac7ad1fa2af6a37009a200f79f4cb4e5
59bd288e64c57e034672999e33ebda6eb5ad1575945eb563dbfb5b44f226e1e1
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26240
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 19:01:39 GMT
expires: Tue, 29 Aug 2023 19:01:39 GMT
cache-control: public, max-age=31536000
age: 430308
last-modified: Mon, 15 Aug 2022 18:14:37 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 18:53:20 GMT
expires: Tue, 29 Aug 2023 18:53:20 GMT
cache-control: public, max-age=31536000
age: 430807
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
guitarist1.ru/wp-content/plugins/bwp-minify/min/?f=wp-includes/js/imagesloaded.min.js,wp-content/plugins/gif-animation-preview/gapplayer.min.js,wp-content/plugins/video-embed-optimizer/scripts/scripts.min.js,wp-content/plugins/q2w3-fixed-widget/js/q2w3-fixed-widget.min.js,wp-content/plugins/easy-fancybox/js/jquery.fancybox.min.js,wp-content/plugins/easy-fancybox/js/jquery.easing.min.js,wp-content/plugins/easy-fancybox/js/jquery.mousewheel.min.js,wp-includes/js/wp-embed.min.js
200 OK 13 kB URL HTTP/1.1 guitarist1.ru/wp-content/plugins/bwp-minify/min/?f=wp-includes/js/imagesloaded.min.js,wp-content/plugins/gif-animation-preview/gapplayer.min.js,wp-content/plugins/video-embed-optimizer/scripts/scripts.min.js,wp-content/plugins/q2w3-fixed-widget/js/q2w3-fixed-widget.min.js,wp-content/plugins/easy-fancybox/js/jquery.fancybox.min.js,wp-content/plugins/easy-fancybox/js/jquery.easing.min.js,wp-content/plugins/easy-fancybox/js/jquery.mousewheel.min.js,wp-includes/js/wp-embed.min.js
IP
File type ASCII text, with very long lines (19792)
Hash 7ea69b8c1cb5670a10ef4e61eda874d4
646fa9ff1fc438db0d2745daa942eb7b6d2e9f5f
621f882d8535aaf4559a0265b2cc521f72b6bf123946e5bdf49fbd61bf6c5d18
GET /wp-content/plugins/bwp-minify/min/?f=wp-includes/js/imagesloaded.min.js,wp-content/plugins/gif-animation-preview/gapplayer.min.js,wp-content/plugins/video-embed-optimizer/scripts/scripts.min.js,wp-content/plugins/q2w3-fixed-widget/js/q2w3-fixed-widget.min.js,wp-content/plugins/easy-fancybox/js/jquery.fancybox.min.js,wp-content/plugins/easy-fancybox/js/jquery.easing.min.js,wp-content/plugins/easy-fancybox/js/jquery.mousewheel.min.js,wp-includes/js/wp-embed.min.js HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: application/x-javascript; charset=utf-8
Content-Length: 13361
Connection: keep-alive
X-Powered-By: PHP/7.0.33
Expires: Sun, 04 Sep 2022 18:33:27 GMT
Vary: Accept-Encoding
Cache-Control: max-age=86400
Content-Encoding: gzip
Last-Modified: Sun, 19 Apr 2020 01:09:28 GMT
absoluteroute.com/bens/vinos.js?23601&u=null&a=0.4147065591529081
200 OK 140 kB URL HTTP/1.1 absoluteroute.com/bens/vinos.js?23601&u=null&a=0.4147065591529081
IP
ASN #6681 Rozetka Sp. z o.o.
File type ASCII text, with very long lines (727)
Size 140 kB (140149 bytes)
Hash 301ae439f8a72f4e2bb9628dd6238419
c20e7362f97c567e48cb3f1eabeffc0518c54ab8
262fb310831ca25a974c932cce35483e2ec5f344a6e824a60c06ed06fd199954
GET /bens/vinos.js?23601&u=null&a=0.4147065591529081 HTTP/1.1
Host: absoluteroute.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NON DSP COR CURa TIA"
Set-Cookie: uuid=16622295881532635802; expires=Mon, 02-Sep-2024 18:33:27 GMT; Max-Age=63072000; path=/; samesite=None; domain=.absoluteroute.com; secure
guitarist1.ru/wp-content/uploads/2016/11/favicon1.ico
200 OK 932 B URL HTTP/1.1 guitarist1.ru/wp-content/uploads/2016/11/favicon1.ico
IP
File type MS Windows icon resource - 1 icon, 16x16, 24 bits/pixel\012- data
Hash 247aba9ab39731932341974a703b48d0
f0829e67f1bd90883836baaf1969d65717ab3783
57c4e030fc4e3186dd185df5e6a91fd2f19b5aade03cca0bf5a1b2a1b172a3d0
GET /wp-content/uploads/2016/11/favicon1.ico HTTP/1.1
Host: guitarist1.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/yeat-drum-kit-reddit-stranitsa-skachivaniya.html
Cookie: u_count=%5B0%2C0%5D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 18:33:27 GMT
Content-Type: image/x-icon
Content-Length: 932
Last-Modified: Mon, 14 Nov 2016 22:00:00 GMT
Connection: keep-alive
ETag: "582a33e0-3a4"
Expires: Mon, 03 Oct 2022 18:33:27 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0fb935f05e6aaba744f686e2bb3928f9
5b8211247e237b44ddd5bc3df47063bfcac84b0e
a998f91aa98aee49510e973a892dd630395bb1af087c7dbc77b61d29bef2bf68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sjsmartcontent.org/wns/event
200 OK 57 kB URL HTTP/2 sjsmartcontent.org/wns/event
IP
File type JSON data\012- , ASCII text, with very long lines (2897)
Hash ee25149cc188f1d3a9e2d611c14c330a
28ac126479a7fb82506ed297eb98c1ee47138379
c0ebaa8089836c482dcd765ae535475ac88396898face41472dda2ee9aa994fc
Analyzer Verdict Alert fortinet Malware
POST /wns/event HTTP/1.1
Host: sjsmartcontent.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 195
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Sat, 03 Sep 2022 18:33:27 GMT
content-type: text/plain; charset=UTF-8
access-control-allow-origin: https://guitarist1.ru
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0fb935f05e6aaba744f686e2bb3928f9
5b8211247e237b44ddd5bc3df47063bfcac84b0e
a998f91aa98aee49510e973a892dd630395bb1af087c7dbc77b61d29bef2bf68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gseccovsslca2018
200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 405581b334d7f542dcffce9d4e2937fd
2c0920c1b9bcf58412c2c9e6d8ad7e16ae74b710
bf227d4ca5b763c597a512bba69a9e068874cfa8fc4b9ad9abac8b0ec9ce7018
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 18:33:28 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Wed, 07 Sep 2022 14:45:08 GMT
ETag: "2c0920c1b9bcf58412c2c9e6d8ad7e16ae74b710"
Last-Modified: Sat, 03 Sep 2022 14:45:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2904
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745092ee2b45b51d-OSL
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 9f916d80d770da0447111052bfb68f8d
4054d625c44a42101c16c69c58a0a2e64eb6e593
de881cf272c7484e1cd2b8f086491b6f6971623ec07e4dfe83b29a91caa64ca6
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 18:33:28 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Wed, 07 Sep 2022 17:53:47 GMT
ETag: "4054d625c44a42101c16c69c58a0a2e64eb6e593"
Last-Modified: Sat, 03 Sep 2022 17:53:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 534
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745092ee2eb00b49-OSL
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 9f916d80d770da0447111052bfb68f8d
4054d625c44a42101c16c69c58a0a2e64eb6e593
de881cf272c7484e1cd2b8f086491b6f6971623ec07e4dfe83b29a91caa64ca6
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 18:33:28 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Wed, 07 Sep 2022 17:53:47 GMT
ETag: "4054d625c44a42101c16c69c58a0a2e64eb6e593"
Last-Modified: Sat, 03 Sep 2022 17:53:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 534
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745092ee3b55b51d-OSL
mc.yandex.ru/metrika/watch.js
200 OK 57 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (569)
Hash c88af7521379660d8b1c4cfaad1362f4
f4a277fbd562a31d329bf4561878c2512be3b4a0
3e33643c480df9268cc54e0086082dd14e1791ba6bc161c0ec81c5855b0acca5
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 56896
date: Sat, 03 Sep 2022 18:33:28 GMT
access-control-allow-origin: *
etag: "6312122a-de40"
expires: Sat, 03 Sep 2022 19:33:28 GMT
last-modified: Fri, 02 Sep 2022 17:24:42 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cebfe28b301ffe9583a29d4e2e787a07
c312300cb020f4f61edaf4b51394aa889bc815e8
faf415663681aab7051de03f75a3163352ff9cffa4f72e38f56d4e0eb337af4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=guitarist1.ru
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=guitarist1.ru
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=guitarist1.ru HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Sep 2022 18:33:28 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=guitarist1.ru
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=guitarist1.ru
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=guitarist1.ru HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Sep 2022 18:33:28 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2d7a177ba4f5d07378f3f80625ca76d4
aeb98c6fcc81f8337738537995dc458e4ca05744
81581b3594ced0fbfec9a2b0818692ba149112c2aecf167c661d52f26dd5904f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=guitarist1.ru&callback=_gfp_s_&client=ca-pub-6384081082195434
200 OK 199 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=guitarist1.ru&callback=_gfp_s_&client=ca-pub-6384081082195434
IP
File type ASCII text, with no line terminators
Hash d43b0a0875f43993152531594118d925
84707fbd4bc2694a5d7b648e0a809f9161a3e7db
9d7f6907ba9262addb0d242a0b2e05401be4a571ca9c0e11547abd585b155159
GET /gampad/cookie.js?domain=guitarist1.ru&callback=_gfp_s_&client=ca-pub-6384081082195434 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Sep 2022 18:33:28 GMT
server: cafe
cache-control: private
content-length: 199
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 1a4f17bd63350fcbd827d3598f23afa1
6bd2b6656712c2ca057e2a22baebbf20b3cd3772
9303c40cbc559e8a5bdcde4a1bd32c41e1b9403fcee96b5581bf511499eedb3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9665d92cfb2f9db5f7032ed692dff0e0
2ca6220de116f04429a7ce3f3c8f95cae61db137
5cc77ac9117df4aa52cc268287bf82f9dde172f1bcd7f640d3f0ef04a5ed07c5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gseccovsslca2018
200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 3ab2475bb1999a6fab9e8ed127b6db07
5e9ef855d0de6581b52408f6b45f8cf376c46146
21d4f157ad79f7110cead0b3fdfddf2d6f88c1adf1d1528e08fbe6b240d3d39f
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 18:33:28 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Wed, 07 Sep 2022 17:18:13 GMT
ETag: "5e9ef855d0de6581b52408f6b45f8cf376c46146"
Last-Modified: Sat, 03 Sep 2022 17:18:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 374
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745092f03de7b51d-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2d7a177ba4f5d07378f3f80625ca76d4
aeb98c6fcc81f8337738537995dc458e4ca05744
81581b3594ced0fbfec9a2b0818692ba149112c2aecf167c661d52f26dd5904f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yastatic.net/partner-code-bundles/641907/9a698e3fe199e0f5793c.js
200 OK 11 kB URL HTTP/2 yastatic.net/partner-code-bundles/641907/9a698e3fe199e0f5793c.js
IP
File type ASCII text, with very long lines (40310)
Hash 0838326516e381c42b44bbe6a16a4202
879aae783cf1bdd6baa4e8faf455e5b5936ef5df
f2cd98df13c5ae0d067f71cac00ecdc8a174078810df47fa44cd34e498331665
GET /partner-code-bundles/641907/9a698e3fe199e0f5793c.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: text/javascript; charset=utf-8
content-length: 10909
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "0838326516e381c42b44bbe6a16a4202"
expires: Tue, 03 Sep 2052 01:07:16 GMT
last-modified: Thu, 01 Sep 2022 18:08:05 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yandex.ru/ads/system/context.js
200 OK 81 kB URL HTTP/2 yandex.ru/ads/system/context.js
IP
File type Unicode text, UTF-8 text, with very long lines (65464), with no line terminators
Hash 364bea1e9ef0aac41285e329e0593d36
760dbd26fe14b051a48c119462c5371f44c2ab8d
40440f7653dc5ad7fa7b2c82bb8451841691393a34b833cf69745bf06a76002e
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
timing-allow-origin: *
nel: {"report_to": "network-errors", "max_age": 86400, "success_fraction": 0.001, "failure_fraction": 0.1}
x-content-type-options: nosniff
access-control-allow-origin: *
set-cookie: i=9qX1pcNMKWcm8TD91E6AKzs6MZPcBh0IcLNT++cVgU9X/laTvUIsY4puYH9bRCElzDdXtjpNLSMoOC4aklyvhBmdiDM=; Path=/; Domain=.yandex.ru; Expires=Mon, 02-Sep-2024 18:33:28 GMT; SameSite=None; Secure; HttpOnly
expires: Sat, 03 Sep 2022 19:33:28 GMT
x-yandex-req-id: 1662230008087472-2708131995714098965-sas6-5259-79d-sas-l7-balancer-8080-BAL-6172
report-to: { "group": "network-errors", "max_age": 86400, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
cache-control: private, max-age=3600
content-encoding: br
content-type: text/javascript; charset=utf-8
x-robots-tag: noindex, noarchive, nofollow
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 9141ba26ef2c0c456e220fed6dcef447
0baa89ae4ca780a6bdf5055a333e41889f64a4bf
16f8446192cf6d8e38e587b59c55df722efb2b870683486917da287295241c89
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4404
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:28 GMT
Last-Modified: Sat, 03 Sep 2022 17:20:04 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
mc.yandex.ru/metrika/advert.gif
200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 03 Sep 2022 18:33:28 GMT
access-control-allow-origin: *
etag: "6312122a-2b"
expires: Sat, 03 Sep 2022 19:33:28 GMT
accept-ranges: bytes
last-modified: Fri, 02 Sep 2022 17:24:42 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/641907/337b10d1b61a921653c1.js
200 OK 4.5 kB URL HTTP/2 yastatic.net/partner-code-bundles/641907/337b10d1b61a921653c1.js
IP
File type ASCII text, with very long lines (13535)
Hash 5ac6656aeefb04168e44a8ff1d879a7c
2a912762179d2af64236e486ba8f929c342c431a
1431d3eed9a4f5324946696bbb258ea41fb331ad1f607f3b101a600f71a46fa2
GET /partner-code-bundles/641907/337b10d1b61a921653c1.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: text/javascript; charset=utf-8
content-length: 4463
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "5ac6656aeefb04168e44a8ff1d879a7c"
expires: Tue, 03 Sep 2052 01:05:18 GMT
last-modified: Thu, 01 Sep 2022 18:08:05 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
adfox-c2s-ams.creativecdn.com/bidder/adfox/bids
204 No Content 0 B URL HTTP/2 adfox-c2s-ams.creativecdn.com/bidder/adfox/bids
IP
ASN #204995 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bidder/adfox/bids HTTP/1.1
Host: adfox-c2s-ams.creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 355
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 03 Sep 2022 18:33:28 GMT
access-control-allow-origin: https://guitarist1.ru
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 3600
vary: Origin
content-type: application/json;charset=utf-8
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 4a365014bf99b29ac3390b63e16e11c2
6073a2856cbb9047b3d3c7c3f987c4accd647f20
03ed6d164a44792468b4894e2954738c018efc773b36451650c4c8570cc7df72
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 18:33:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 16:09:18 GMT
Expires: Fri, 09 Sep 2022 16:09:17 GMT
Etag: "6073a2856cbb9047b3d3c7c3f987c4accd647f20"
Cache-Control: max-age=509148,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 745092f0eba40b06-OSL
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash 08c2c7f448e9b717560a0e52e88754a8
027ffbe7e54fdb0161acd89a1884f3d3c1baa051
d04a04c5629b920505f334a9e194e091961d8215bb48f89ef88489205577cd2b
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 18:33:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Wed, 07 Sep 2022 16:02:12 GMT
ETag: "027ffbe7e54fdb0161acd89a1884f3d3c1baa051"
Last-Modified: Sat, 03 Sep 2022 16:02:13 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 360
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745092f14c6d1bfa-OSL
yastatic.net/partner-code-bundles/641907/f60821e9b87e4e83ebed.js
200 OK 19 kB URL HTTP/2 yastatic.net/partner-code-bundles/641907/f60821e9b87e4e83ebed.js
IP
File type ASCII text, with very long lines (65494)
Hash afc85e648b5e6868eec864bd3844addd
52d2ad698a10a1110d5b5390557c2fe7fd114cbe
249c4ce14bf73008feacbd05476e85133afbc8bc140096e7a3e70fa69e006223
GET /partner-code-bundles/641907/f60821e9b87e4e83ebed.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: text/javascript; charset=utf-8
content-length: 18629
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "afc85e648b5e6868eec864bd3844addd"
expires: Tue, 03 Sep 2052 01:05:18 GMT
last-modified: Thu, 01 Sep 2022 18:08:06 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/safeframe-bundles/0.83/host.js
200 OK 8.9 kB URL HTTP/2 yastatic.net/safeframe-bundles/0.83/host.js
IP
File type ASCII text, with very long lines (33703), with no line terminators
Hash f80882bf67cf261aa08d636da095149a
3e5bf3fbdb45c9696f9b925d3e71b2e9777c82cd
4794febaad77bf94edba1c860dbcf9612722ad0a18b95831dad359b0bba4bed6
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: text/javascript; charset=utf-8
content-length: 8878
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "f80882bf67cf261aa08d636da095149a"
expires: Tue, 03 Sep 2052 01:05:56 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash d853ce34c66849c6987cb841a7f9010e
48496f623895d973932e08f77149932e88944f54
035f42c416ef9ab4518105dfcb5dbdb50fc6597047242d31e77081a68d714ba5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 18:33:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 31 Aug 2022 12:21:00 GMT
Expires: Wed, 07 Sep 2022 12:20:59 GMT
Etag: "48496f623895d973932e08f77149932e88944f54"
Cache-Control: max-age=322650,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 745092f14be10b06-OSL
status.geotrust.com/
200 OK 278 B IP
Hash 9810476ac45f69542098277da9caa87f
8b53ca946af4b7fd3181220d18a1fbe51a30a4bf
6f03f70ba705816ad2911fadbc33e8d64adf4c3418f5e35d4f15d1eb078110ce
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1704
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:28 GMT
Last-Modified: Sat, 03 Sep 2022 18:05:04 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
yastatic.net/partner-code-bundles/641907/e2bc1b4ba26be48c08ac.js
200 OK 111 kB URL HTTP/2 yastatic.net/partner-code-bundles/641907/e2bc1b4ba26be48c08ac.js
IP
File type ASCII text, with very long lines (65497)
Size 111 kB (110740 bytes)
Hash 333a80567c1948377bf309be17aaf5de
7af29aa30d0b3512f6050f618e6b4f7572020f95
cd0268bea0f9b7e5a59eba1e75609accfd73e43e7a25d9c1902b712859082f2a
GET /partner-code-bundles/641907/e2bc1b4ba26be48c08ac.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: text/javascript; charset=utf-8
content-length: 110740
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "333a80567c1948377bf309be17aaf5de"
expires: Tue, 03 Sep 2052 01:05:18 GMT
last-modified: Thu, 01 Sep 2022 18:08:06 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
ads.betweendigital.com/adjson?t=adfox
200 OK 1.5 kB URL HTTP/2 ads.betweendigital.com/adjson?t=adfox
IP
Hash 7c9bda6778e3ab4b27ad7e9550cb2518
8fa60612eaedb14dc922057a0990d9a4d85a94df
929f45207c1ec88d1629708d2e92b2aa008d3dd4e7e5d2aef72e12fc879585b7
POST /adjson?t=adfox HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 316
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
cache-control: no-cache, no-store, max-age=0, must-revalidate
access-control-allow-origin: https://guitarist1.ru
access-control-allow-credentials: true
set-cookie: dc=lux1; Max-Age=31536000; Expires=Sun, 03 Sep 2023 18:33:28 GMT; Path=/; Domain=.betweendigital.com
tuuid=3d45d57d-d417-52f6-b1cd-82c4d2de1f3c; Max-Age=31536000; Expires=Sun, 03 Sep 2023 18:33:28 GMT; Path=/; Domain=.betweendigital.com
ut=YxOd-AAINZDzbazt9_M6qZ-DGC1AhaElgU8AcQ==; Max-Age=31536000; Expires=Sun, 03 Sep 2023 18:33:28 GMT; Path=/; Domain=.betweendigital.com
unm=1; Max-Age=31536000; Expires=Sun, 03 Sep 2023 18:33:28 GMT; Path=/; Domain=.betweendigital.com
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
yhb.p.otm-r.com/yhb
200 OK 11 B IP
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with no line terminators
Hash 9cc989d2e211083e0a170316914f1d06
392cd18d051f72b887529ac2998da54749f1338f
846949c5a40e3ffbb702473e54dfac0646541aa624a844369b6e24e51ddaf96b
POST /yhb HTTP/1.1
Host: yhb.p.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 310
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.6
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: text/plain; charset=utf-8
content-length: 11
access-control-allow-credentials: true
access-control-allow-origin: https://guitarist1.ru
set-cookie: mpid=NjMxMzlkZjgwY2QxMmE5ZA==; Path=/; Domain=otm-r.com; Max-Age=31536000; Secure; SameSite=None
vary: Origin
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash fe4e94848deb36e5dfd22d835eb99d2c
b4afd283a69d325e787e46c9141b8d48da661dec
c52ddf09a7b7e487750f3f03cf7e14d191008028e4e349a3cfb2794fde19f902
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 18:33:28 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Wed, 07 Sep 2022 15:59:31 GMT
ETag: "b4afd283a69d325e787e46c9141b8d48da661dec"
Last-Modified: Sat, 03 Sep 2022 15:59:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1596
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 745092f1fb510b49-OSL
mc.yandex.ru/watch/40922379/1?wmode=7&page-url=https%3A%2F%2Fguitarist1.ru%2Fyeat-drum-kit-reddit-stranitsa-skachivaniya.html&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A1528%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A581405218909%3Ahid%3A857507934%3Az%3A0%3Ai%3A20220903183325%3Aet%3A1662230006%3Ac%3A1%3Arn%3A89406096%3Arqn%3A1%3Au%3A1662230006135931833%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662230003483%3Ads%3A1%2C74%2C35%2C0%2C320%2C0%2C%2C1270%2C28%2C%2C%2C%2C1759%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662230006%3At%3AYeat%20Drum%20Kit%20REDDIT%20-%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%20%D1%81%D0%BA%D0%B0%D1%87%D0%B8%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
200 OK 419 B URL HTTP/2 mc.yandex.ru/watch/40922379/1?wmode=7&page-url=https%3A%2F%2Fguitarist1.ru%2Fyeat-drum-kit-reddit-stranitsa-skachivaniya.html&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A1528%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A581405218909%3Ahid%3A857507934%3Az%3A0%3Ai%3A20220903183325%3Aet%3A1662230006%3Ac%3A1%3Arn%3A89406096%3Arqn%3A1%3Au%3A1662230006135931833%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662230003483%3Ads%3A1%2C74%2C35%2C0%2C320%2C0%2C%2C1270%2C28%2C%2C%2C%2C1759%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662230006%3At%3AYeat%20Drum%20Kit%20REDDIT%20-%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%20%D1%81%D0%BA%D0%B0%D1%87%D0%B8%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (419), with no line terminators
Hash c35856849ddf272c42447990c14b8370
2c437853476f4a38f648beab18f1df919bfbe90b
3d04dca44eefdefbc3ee96491fe14de9ac418c859f175f572e6676818f011865
GET /watch/40922379/1?wmode=7&page-url=https%3A%2F%2Fguitarist1.ru%2Fyeat-drum-kit-reddit-stranitsa-skachivaniya.html&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A1528%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A581405218909%3Ahid%3A857507934%3Az%3A0%3Ai%3A20220903183325%3Aet%3A1662230006%3Ac%3A1%3Arn%3A89406096%3Arqn%3A1%3Au%3A1662230006135931833%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662230003483%3Ads%3A1%2C74%2C35%2C0%2C320%2C0%2C%2C1270%2C28%2C%2C%2C%2C1759%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662230006%3At%3AYeat%20Drum%20Kit%20REDDIT%20-%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%20%D1%81%D0%BA%D0%B0%D1%87%D0%B8%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://guitarist1.ru
Referer: https://guitarist1.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 419
date: Sat, 03 Sep 2022 18:33:28 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://guitarist1.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 03-Sep-2022 18:33:28 GMT
last-modified: Sat, 03-Sep-2022 18:33:28 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
static.criteo.net/js/ld/publishertag.js
200 OK 40 kB URL HTTP/2 static.criteo.net/js/ld/publishertag.js
IP
Hash 9b73ffb38115bd128f3e8b3b93455014
44abcdf28f8de144c68522a35ddb67353a1e0f6d
c93211e209c40f8f869c7463a449be3ea8039fd496fcddd827bf74f741c00900
GET /js/ld/publishertag.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: text/javascript
last-modified: Tue, 23 Aug 2022 00:22:12 GMT
etag: W/"63041db4-1ddab"
expires: Sun, 04 Sep 2022 18:33:28 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 312 B IP
Hash 746ea7afe0d6e99107f4c77c64f48b16
97cbcc6200b9e035b9e6a0496a9a05714acc68bd
c4765207f1fb36c31f998f005f171d00aac8a722226eaa13f4f86ee73a2f1449
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1715
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:28 GMT
Last-Modified: Sat, 03 Sep 2022 18:04:53 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 312
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220831&st=env
200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220831&st=env
IP
File type JSON data\012- , ASCII text, with very long lines (14465), with no line terminators
Hash dc6f953d7b812e52a8ada66530cafb58
3a839d9fa713418f763389789b443fed95d43228
18e2d0cebd38a65383719d93ce3ef3947cf24f15f7cfcf2c083f8db335b3cebb
GET /getconfig/sodar?sv=200&tid=gda&tv=r20220831&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Sep 2022 18:33:28 GMT
server: cafe
cache-control: private
content-length: 10984
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bidder.criteo.com/cdb?ptv=128&profileId=184&cb=40617278942
204 No Content 0 B URL HTTP/2 bidder.criteo.com/cdb?ptv=128&profileId=184&cb=40617278942
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdb?ptv=128&profileId=184&cb=40617278942 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 919
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 03 Sep 2022 18:33:28 GMT
vary: Origin
server: Finatra
timing-allow-origin: *
access-control-allow-origin: https://guitarist1.ru
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4414
Expires: Sat, 03 Sep 2022 19:47:02 GMT
Date: Sat, 03 Sep 2022 18:33:28 GMT
Connection: keep-alive
px.adhigh.net/rtb/yandex_hb
307 Temporary Redirect 0 B URL HTTP/2 px.adhigh.net/rtb/yandex_hb
IP
ASN #48061 Limited Liability Company GPM Digital Technologies
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /rtb/yandex_hb HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 352
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
server: nginx
date: Sat, 03 Sep 2022 18:33:28 GMT
content-length: 0
access-control-allow-origin: https://guitarist1.ru
access-control-allow-credentials: true
x-backend-id: f12-ru
set-cookie: gi_u=xI83hZDALnA.AikABlGDBKETog;Path=/;Domain=.adhigh.net;Expires=Sun, 03-Sep-2023 18:33:28 GMT;Secure;SameSite=None
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
location: https://px.adhigh.net/rtb/yandex_hb?bounced=1
X-Firefox-Spdy: h2
matchid.adfox.yandex.ru/getcookie
200 OK 88 B URL HTTP/2 matchid.adfox.yandex.ru/getcookie
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 120ab2d76e8018294802093c690d33e6
ca3e4ef6f35af21557a97e364c62c7b6ca8dc891
48c606538182ba90423c232efab1e76fe39d7b842b4ecede1b181b78545fffbe
GET /getcookie HTTP/1.1
Host: matchid.adfox.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 88
access-control-allow-credentials: true
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: application/json
timing-allow-origin: *
access-control-allow-origin: https://guitarist1.ru
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4414
Expires: Sat, 03 Sep 2022 19:47:02 GMT
Date: Sat, 03 Sep 2022 18:33:28 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4414
Expires: Sat, 03 Sep 2022 19:47:02 GMT
Date: Sat, 03 Sep 2022 18:33:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23b580e2b673257d24b9c2e80c4c48ce
f3a3d835a37f9b23e7458f9b7bc721bc415b61cc
c0e3559fde3dd08cdbd360f39dddcc98dd7c1b3aebd0861cc07105872a116d11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7501
x-amzn-requestid: bf297fc4-9164-45ee-bfab-06761a52e3ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eMJEP1IAMFdpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312771a-6b3e6416133d67a83d8a1469;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: datd5eYK6nOAUdEpy_y4gcqsVmCqjP4qhzTnlJ9pSrquoYk2PPugTA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:02:34 GMT
age: 73854
etag: "f3a3d835a37f9b23e7458f9b7bc721bc415b61cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c199f7fc2a2857dec134bfdb2673e28c
af3989072b658e2de119d006ae4ca1703468913d
e57411ba0221f6ffa7baf7c374ec790959a66d6a683fad40883ef01cf67e35c3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6976
x-amzn-requestid: da379546-9525-4e13-b9f0-a6446839df66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eNeG7kIAMF4-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63127722-37399f67565b06e7111095cd;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5SORUPJgJ_gKKs4hSa4EzCCQA6B1dmyO1EC-gCBvFKl2R2hV0mYTeA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:39:01 GMT
age: 71667
etag: "af3989072b658e2de119d006ae4ca1703468913d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d78cbff83c152b84864606781a29563d
8bdbc6e135be6e582d0e23754399422e3792777b
3c385de9ade05e1652ccc386e73aaccc4c223a07b81af4c5fdf3f73a166909f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14061
x-amzn-requestid: 43535b37-15c9-4a28-a7c0-f43482948382
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqlhGFX4IAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630db606-77bd935d4364050f230ba5da;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 07:02:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: y_-knSwUodyBxS8I8PAoUexT6Z4o0Aq7m62v7HrRjm7vV-jP0VuCpw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 06:26:07 GMT
age: 43641
etag: "8bdbc6e135be6e582d0e23754399422e3792777b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 955f2a35bd6b3802670e7fa8a7cda833
4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GHd4FOjIO1OP7wSOVcnOryE5ux4hlr_kC0dfJs3LqgQUbxMzuFxc1A==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 21:37:28 GMT
age: 75360
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4cb62c7c522b71c62a97630d8330ef5
950611314b81428b3d80ff8659272cc800cf48b6
3fd0bbf8a1fe8776136d611d6b99b909b71e6af3a13f8794338af2f0026b59ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7975
x-amzn-requestid: d4695cb0-76ed-495c-b548-d7819edd6d90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XwqDSGuDIAMF6kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631023ae-7ba42ae9407c626a02d10e7f;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 03:14:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: paxjtCjggGuEMbpwW1HmCdQOemdktodVUl-grweVuYke_NynMIHMlg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 03:54:34 GMT
age: 52734
etag: "950611314b81428b3d80ff8659272cc800cf48b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.criteo.net/images/pixel.gif?ch=2
200 OK 43 B URL HTTP/2 static.criteo.net/images/pixel.gif?ch=2
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /images/pixel.gif?ch=2 HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: image/gif
content-length: 43
last-modified: Tue, 09 Dec 2008 16:52:36 GMT
etag: "493ea254-2b"
expires: Tue, 29 Aug 2023 18:33:28 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
mc.yandex.ru/watch/40922379?wmode=7&page-url=https%3A%2F%2Fguitarist1.ru%2Fyeat-drum-kit-reddit-stranitsa-skachivaniya.html&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A1528%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A581405218909%3Ahid%3A857507934%3Az%3A0%3Ai%3A20220903183325%3Aet%3A1662230006%3Ac%3A1%3Arn%3A89406096%3Arqn%3A1%3Au%3A1662230006135931833%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662230003483%3Ads%3A1%2C74%2C35%2C0%2C320%2C0%2C%2C1270%2C28%2C%2C%2C%2C1759%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662230006%3At%3AYeat%20Drum%20Kit%20REDDIT%20-%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%20%D1%81%D0%BA%D0%B0%D1%87%D0%B8%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
302 Found 5.0 kB URL HTTP/2 mc.yandex.ru/watch/40922379?wmode=7&page-url=https%3A%2F%2Fguitarist1.ru%2Fyeat-drum-kit-reddit-stranitsa-skachivaniya.html&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A1528%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A581405218909%3Ahid%3A857507934%3Az%3A0%3Ai%3A20220903183325%3Aet%3A1662230006%3Ac%3A1%3Arn%3A89406096%3Arqn%3A1%3Au%3A1662230006135931833%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662230003483%3Ads%3A1%2C74%2C35%2C0%2C320%2C0%2C%2C1270%2C28%2C%2C%2C%2C1759%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662230006%3At%3AYeat%20Drum%20Kit%20REDDIT%20-%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%20%D1%81%D0%BA%D0%B0%D1%87%D0%B8%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60769237af4f32c663d494d91a672d08
31305131f340191799484f212e15513bd1204e88
6df36e459f3a2d0271732b645009b116e6671363f6c3050d22bbfe2d911a77bd
GET /watch/40922379?wmode=7&page-url=https%3A%2F%2Fguitarist1.ru%2Fyeat-drum-kit-reddit-stranitsa-skachivaniya.html&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A1528%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A581405218909%3Ahid%3A857507934%3Az%3A0%3Ai%3A20220903183325%3Aet%3A1662230006%3Ac%3A1%3Arn%3A89406096%3Arqn%3A1%3Au%3A1662230006135931833%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662230003483%3Ads%3A1%2C74%2C35%2C0%2C320%2C0%2C%2C1270%2C28%2C%2C%2C%2C1759%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662230006%3At%3AYeat%20Drum%20Kit%20REDDIT%20-%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%20%D1%81%D0%BA%D0%B0%D1%87%D0%B8%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/40922379/1?wmode=7&page-url=https%3A%2F%2Fguitarist1.ru%2Fyeat-drum-kit-reddit-stranitsa-skachivaniya.html&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3A2ocpriggyfyr946elviuuw%3Afp%3A1528%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A581405218909%3Ahid%3A857507934%3Az%3A0%3Ai%3A20220903183325%3Aet%3A1662230006%3Ac%3A1%3Arn%3A89406096%3Arqn%3A1%3Au%3A1662230006135931833%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662230003483%3Ads%3A1%2C74%2C35%2C0%2C320%2C0%2C%2C1270%2C28%2C%2C%2C%2C1759%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-5cbccea2ed3dd5c7a75380ef1cbfadf6-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662230006%3At%3AYeat%20Drum%20Kit%20REDDIT%20-%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%20%D1%81%D0%BA%D0%B0%D1%87%D0%B8%D0%B2%D0%B0%D0%BD%D0%B8%D1%8F&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Sat, 03 Sep 2022 18:33:28 GMT
access-control-allow-origin: https://guitarist1.ru
set-cookie: yandexuid=7132381471662230008; Expires=Sun, 03-Sep-2023 18:33:28 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=7132381471662230008; Expires=Sun, 03-Sep-2023 18:33:28 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=2661114531662230008; Path=/; SameSite=None; Secure
i=CYk/hn/yKq+toiG2+IAa8Fwdcl+xeOZOHaFIholWfanP2/ddk4VhfRM91MCFj+ui4qcD/WnBfU+anwzQe/r72+REows=; Expires=Tue, 31-Aug-2032 18:33:24 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1693766008.yrts.1662230008#1693766008.yrtsi.1662230008; Expires=Sun, 03-Sep-2023 18:33:28 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 03-Sep-2022 18:33:28 GMT
last-modified: Sat, 03-Sep-2022 18:33:28 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
static.criteo.net/images/pixel.gif?ch=1
200 OK 43 B URL HTTP/2 static.criteo.net/images/pixel.gif?ch=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /images/pixel.gif?ch=1 HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: image/gif
content-length: 43
last-modified: Tue, 09 Dec 2008 16:52:36 GMT
etag: "493ea254-2b"
expires: Tue, 29 Aug 2023 18:33:28 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash dfe1fbb87f4c18f02c645d7dbe667406
e78b12ad21586958fd1126b5c91057e2e168183d
6110dacd0f764fb0dc689a8d430b2f44e02d8c0791f39d67190bbb991c969c5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sat, 03 Sep 2022 18:33:28 GMT
expires: Sat, 03 Sep 2022 18:33:28 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
px.adhigh.net/rtb/yandex_hb?bounced=1
200 OK 11 B URL HTTP/2 px.adhigh.net/rtb/yandex_hb?bounced=1
IP
ASN #48061 Limited Liability Company GPM Digital Technologies
File type JSON data\012- , ASCII text, with no line terminators
Hash 9cc989d2e211083e0a170316914f1d06
392cd18d051f72b887529ac2998da54749f1338f
846949c5a40e3ffbb702473e54dfac0646541aa624a844369b6e24e51ddaf96b
POST /rtb/yandex_hb?bounced=1 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 352
Origin: https://guitarist1.ru
Referer: https://guitarist1.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: application/json;charset=utf-8
content-length: 11
access-control-allow-origin: https://guitarist1.ru
access-control-allow-credentials: true
x-backend-id: f12-ru
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/bg/CgETvhyXIYksjpVuZOiCWYZFr3TNicAtz6hsjYVMHCQ.js
200 OK 16 kB URL HTTP/2 pagead2.googlesyndication.com/bg/CgETvhyXIYksjpVuZOiCWYZFr3TNicAtz6hsjYVMHCQ.js
IP
File type ASCII text, with very long lines (35877)
Hash b9afd7edcd4d83ccd5dfd1176088825d
5647fc2254ec7df798adec3b279c9e2cec90edd6
500a16d7af7f5c46cfffec8c7b9abb2ce29f2c38bcd2124e0e8f4cf41c9b0978
GET /bg/CgETvhyXIYksjpVuZOiCWYZFr3TNicAtz6hsjYVMHCQ.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 15836
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 19:48:02 GMT
expires: Wed, 30 Aug 2023 19:48:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Aug 2022 10:58:00 GMT
content-type: text/javascript
age: 341126
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6b6b5ffecd53193507458fbe6e66d3f0
c96009132e435078cd79e19b19eeb0dbcf9abef3
229806893f073d6d725880c375c2f72ab09221a46095e1203d7379c1a29b8bef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 314 B IP
Hash e2bfb90e98c2cc52fbc918232b675509
81504b856c749f8f6b0961f7934730d12a02b859
4aefe3b9cc2ed5c5298c53fa4a74307beb7d58d1a768dfa82bed4922f92e0a91
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1846
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:28 GMT
Last-Modified: Sat, 03 Sep 2022 18:02:42 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 314
www.google.com/recaptcha/api2/aframe
200 OK 511 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash c4d59c3ddcf57b1552f16aeaeb8a20f4
39b7391930e6ba0a1c20ae457550f000b41016da
a2602eaa035d76f154f091a6eb123a6e5d25a40acd4bab71caec18355a8eb55a
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sat, 03 Sep 2022 18:33:28 GMT
date: Sat, 03 Sep 2022 18:33:28 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-a8ieF7Cv7FrrbESuXBL8vg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 511
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dnacdn.net/dna
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 18:33:28 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=Xlk_-l80M0RITmhlJTJCZkMwOUJGQlhaMUN2czU1OEZFTHVlMmdvcmZQaVVSeDMxRVlqcW0lMkI5U20wNUJTSXpyd3ByeHY3MA; expires=Thu, 28 Sep 2023 18:33:28 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 260545
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20220831&jk=496052749796577&rc=
204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20220831&jk=496052749796577&rc=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&li=gda_r20220831&jk=496052749796577&rc= HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 03 Sep 2022 18:33:29 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dnacdn.net/dna
200 OK 439 B IP
Hash d9d6cd0c63f5ee4fb61ffbbfaeca02bd
3d5e8096a21485c0165c423fe0958965926ffbec
06aa6f15a3f8ee29035cf28205f48b576408600516c1b697d59689b47e372fbe
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=Xlk_-l80M0RITmhlJTJCZkMwOUJGQlhaMUN2czU1OEZFTHVlMmdvcmZQaVVSeDMxRVlqcW0lMkI5U20wNUJTSXpyd3ByeHY3MA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=snmouF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czU1OEZFTHVlMmdvcmZQaVVSeDMxRWFHTDZsaW1aV20xTTlXTjZDbEVTbWo; expires=Thu, 28 Sep 2023 18:33:29 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 272047
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 588f803eb3ec2b3213cc6a2d132615f0
3656f5e8a109223ebaf6b9dfd0bb7c81a19d88d7
5c00757b1158e2c99bd7a6f5ff033a109f7e06f7aa8bffc6562003ad354c8363
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6327
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 18:33:29 GMT
Etag: "63124365-139"
Last-Modified: Sat, 03 Sep 2022 16:48:02 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
ag.gbc.criteo.com/newidsd
200 OK 353 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP
File type JSON data\012- , ASCII text, with very long lines (405), with no line terminators
Hash 36d64d345eb6ac8f8c9d5257537800ab
0e23d4a32c278cdaf0b49bcf1ef465730065c60a
07695989c8fa55075a2e1c33a1d0ac2dd57c543d382202aa8fd9c1909909f627
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 56446
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220831&jk=496052749796577&bg=!0tGl0ZXNAAZTikH4c4o7ACkAdvg8WkBDUb0oyic8pW0nnwHJJaZ86DvUv7QGXYWnZrqX5UxxqE0NFAIAAAChUgAAAAJoAQcKARPjxBMrIk2Q89G-PT9hMw7I63dzD3mBlJIWd3iNRQ18bt47mqr-2zP82e1bqyRKmgtWHILlOxsl1p4u7phc6Mp_Egfh9qbpo4SozDOVVIuMvEVyglvRfsfP8hHQkka3OTECFWbhN_tWfi1vXF77xRemON1SY8sntFXg7vJCATwBJ9yYaKFIZQ-_c_d6PM1ZUZLIrp8IzFOlD1l0tzPVXTO6VbwYGHPWi_y2lsRkeON9YTmjRI-9zD3q0TuchSxlW1RqeraYTeLe2fbvJ4BDUvJKBbfXMXwGLhsqswl049PzOjwO1ao0liXMzcB_tqj2QJ_MAELZQZU51GV55_Dt1DYJmwY6NjxQAAfzQY5QHBpyY9yU-pkChgkxf1SFITwfSELjFFhczL4pYMGozDjNzH--oOtvcOzShpDUrkbXdREWS8UedvgbLa9RGg58881HG7hHdbQLptX3xIeTzE0n8tGVCV4USk4X2yHRwgjKWBVwcpV62XS9DUavrJP9HCj1vaBC9FAzGxNkJ2lRlXHP5wR_HLh8PoY3n-NlkidgKtS3prTdCMTuWAcx6IOuWfR4PQWp6LdMDtiOpQdNxd74x5EywCrW85oB2FEBmcfEVguRBlzf-ad2Vmkmdne8oYiXyKT8_-mEKTGq2X3Wy5H4EQYJYPZJA7T8OU-DmLTuWvGlYQL6Co1FmqrM-thzis0eEDzJtppPwDUkKIdCMBQyty-Lxlx0_1a3HhPuKLgUPloxhqMLGIaX5wwHXSeTvz6TaKRY9qjHi591kCswF6OTe4tMkT94Uqo0OF9r2EVxPkpIs-DJ9gy0CcsSMjCrZS3QnWFYjLkzfddixtWfRC8m18OP-lwTikiTfgfQJU1fJt2T7At-BIWp-IwbPPR-jq8JMpQF1dxDXcIfy4CHaTDq7Xjo3LxEsODtDdPsjwDcHT-HS3xxSM54yA99KqRPrdptmH_gJ-Zq4W-dT1o_ENHOR8xsNlQaKg0x1k-4X8jx2V9j5NIqNp602c5r2KBrSB2Nk38c5joA2oexmmpeZXecIt47yd5AvMowIulcCDKcL8DQtkOft75VmUzB0E6MkMpKwajz8rFAF1mu6zGy4dDbZIfI-eM6_AIBuM7LHMKjgx-qQ2UGliwOkHnLhC3b64Sxr1OOD5h1Le55PC_xDuutXlKe7r7fnUnXSA3diCfkEqwEN0bMP4t0EXJvAniVxmFguK61f6Ztto5ARBybZzQ
204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220831&jk=496052749796577&bg=!0tGl0ZXNAAZTikH4c4o7ACkAdvg8WkBDUb0oyic8pW0nnwHJJaZ86DvUv7QGXYWnZrqX5UxxqE0NFAIAAAChUgAAAAJoAQcKARPjxBMrIk2Q89G-PT9hMw7I63dzD3mBlJIWd3iNRQ18bt47mqr-2zP82e1bqyRKmgtWHILlOxsl1p4u7phc6Mp_Egfh9qbpo4SozDOVVIuMvEVyglvRfsfP8hHQkka3OTECFWbhN_tWfi1vXF77xRemON1SY8sntFXg7vJCATwBJ9yYaKFIZQ-_c_d6PM1ZUZLIrp8IzFOlD1l0tzPVXTO6VbwYGHPWi_y2lsRkeON9YTmjRI-9zD3q0TuchSxlW1RqeraYTeLe2fbvJ4BDUvJKBbfXMXwGLhsqswl049PzOjwO1ao0liXMzcB_tqj2QJ_MAELZQZU51GV55_Dt1DYJmwY6NjxQAAfzQY5QHBpyY9yU-pkChgkxf1SFITwfSELjFFhczL4pYMGozDjNzH--oOtvcOzShpDUrkbXdREWS8UedvgbLa9RGg58881HG7hHdbQLptX3xIeTzE0n8tGVCV4USk4X2yHRwgjKWBVwcpV62XS9DUavrJP9HCj1vaBC9FAzGxNkJ2lRlXHP5wR_HLh8PoY3n-NlkidgKtS3prTdCMTuWAcx6IOuWfR4PQWp6LdMDtiOpQdNxd74x5EywCrW85oB2FEBmcfEVguRBlzf-ad2Vmkmdne8oYiXyKT8_-mEKTGq2X3Wy5H4EQYJYPZJA7T8OU-DmLTuWvGlYQL6Co1FmqrM-thzis0eEDzJtppPwDUkKIdCMBQyty-Lxlx0_1a3HhPuKLgUPloxhqMLGIaX5wwHXSeTvz6TaKRY9qjHi591kCswF6OTe4tMkT94Uqo0OF9r2EVxPkpIs-DJ9gy0CcsSMjCrZS3QnWFYjLkzfddixtWfRC8m18OP-lwTikiTfgfQJU1fJt2T7At-BIWp-IwbPPR-jq8JMpQF1dxDXcIfy4CHaTDq7Xjo3LxEsODtDdPsjwDcHT-HS3xxSM54yA99KqRPrdptmH_gJ-Zq4W-dT1o_ENHOR8xsNlQaKg0x1k-4X8jx2V9j5NIqNp602c5r2KBrSB2Nk38c5joA2oexmmpeZXecIt47yd5AvMowIulcCDKcL8DQtkOft75VmUzB0E6MkMpKwajz8rFAF1mu6zGy4dDbZIfI-eM6_AIBuM7LHMKjgx-qQ2UGliwOkHnLhC3b64Sxr1OOD5h1Le55PC_xDuutXlKe7r7fnUnXSA3diCfkEqwEN0bMP4t0EXJvAniVxmFguK61f6Ztto5ARBybZzQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20220831&jk=496052749796577&bg=!0tGl0ZXNAAZTikH4c4o7ACkAdvg8WkBDUb0oyic8pW0nnwHJJaZ86DvUv7QGXYWnZrqX5UxxqE0NFAIAAAChUgAAAAJoAQcKARPjxBMrIk2Q89G-PT9hMw7I63dzD3mBlJIWd3iNRQ18bt47mqr-2zP82e1bqyRKmgtWHILlOxsl1p4u7phc6Mp_Egfh9qbpo4SozDOVVIuMvEVyglvRfsfP8hHQkka3OTECFWbhN_tWfi1vXF77xRemON1SY8sntFXg7vJCATwBJ9yYaKFIZQ-_c_d6PM1ZUZLIrp8IzFOlD1l0tzPVXTO6VbwYGHPWi_y2lsRkeON9YTmjRI-9zD3q0TuchSxlW1RqeraYTeLe2fbvJ4BDUvJKBbfXMXwGLhsqswl049PzOjwO1ao0liXMzcB_tqj2QJ_MAELZQZU51GV55_Dt1DYJmwY6NjxQAAfzQY5QHBpyY9yU-pkChgkxf1SFITwfSELjFFhczL4pYMGozDjNzH--oOtvcOzShpDUrkbXdREWS8UedvgbLa9RGg58881HG7hHdbQLptX3xIeTzE0n8tGVCV4USk4X2yHRwgjKWBVwcpV62XS9DUavrJP9HCj1vaBC9FAzGxNkJ2lRlXHP5wR_HLh8PoY3n-NlkidgKtS3prTdCMTuWAcx6IOuWfR4PQWp6LdMDtiOpQdNxd74x5EywCrW85oB2FEBmcfEVguRBlzf-ad2Vmkmdne8oYiXyKT8_-mEKTGq2X3Wy5H4EQYJYPZJA7T8OU-DmLTuWvGlYQL6Co1FmqrM-thzis0eEDzJtppPwDUkKIdCMBQyty-Lxlx0_1a3HhPuKLgUPloxhqMLGIaX5wwHXSeTvz6TaKRY9qjHi591kCswF6OTe4tMkT94Uqo0OF9r2EVxPkpIs-DJ9gy0CcsSMjCrZS3QnWFYjLkzfddixtWfRC8m18OP-lwTikiTfgfQJU1fJt2T7At-BIWp-IwbPPR-jq8JMpQF1dxDXcIfy4CHaTDq7Xjo3LxEsODtDdPsjwDcHT-HS3xxSM54yA99KqRPrdptmH_gJ-Zq4W-dT1o_ENHOR8xsNlQaKg0x1k-4X8jx2V9j5NIqNp602c5r2KBrSB2Nk38c5joA2oexmmpeZXecIt47yd5AvMowIulcCDKcL8DQtkOft75VmUzB0E6MkMpKwajz8rFAF1mu6zGy4dDbZIfI-eM6_AIBuM7LHMKjgx-qQ2UGliwOkHnLhC3b64Sxr1OOD5h1Le55PC_xDuutXlKe7r7fnUnXSA3diCfkEqwEN0bMP4t0EXJvAniVxmFguK61f6Ztto5ARBybZzQ HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 03 Sep 2022 18:33:29 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/40922379?wv-check=59834&wv-type=0&wmode=0&wv-part=1&wv-hit=857507934&page-url=https%3A%2F%2Fguitarist1.ru%2Fyeat-drum-kit-reddit-stranitsa-skachivaniya.html&rn=719901600&browser-info=gdpr%3A14%3Aet%3A1662230013%3Aw%3A1268x939%3Av%3A882%3Az%3A0%3Ai%3A20220903183332%3Au%3A1662230006135931833%3Avf%3A2ocpriggyfyr946elviuuw%3Ast%3A1662230013&t=gdpr(14)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/40922379?wv-check=59834&wv-type=0&wmode=0&wv-part=1&wv-hit=857507934&page-url=https%3A%2F%2Fguitarist1.ru%2Fyeat-drum-kit-reddit-stranitsa-skachivaniya.html&rn=719901600&browser-info=gdpr%3A14%3Aet%3A1662230013%3Aw%3A1268x939%3Av%3A882%3Az%3A0%3Ai%3A20220903183332%3Au%3A1662230006135931833%3Avf%3A2ocpriggyfyr946elviuuw%3Ast%3A1662230013&t=gdpr(14)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/40922379?wv-check=59834&wv-type=0&wmode=0&wv-part=1&wv-hit=857507934&page-url=https%3A%2F%2Fguitarist1.ru%2Fyeat-drum-kit-reddit-stranitsa-skachivaniya.html&rn=719901600&browser-info=gdpr%3A14%3Aet%3A1662230013%3Aw%3A1268x939%3Av%3A882%3Az%3A0%3Ai%3A20220903183332%3Au%3A1662230006135931833%3Avf%3A2ocpriggyfyr946elviuuw%3Ast%3A1662230013&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 03 Sep 2022 18:33:35 GMT
access-control-allow-origin: https://guitarist1.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 03-Sep-2022 18:33:35 GMT
last-modified: Sat, 03-Sep-2022 18:33:35 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/40922379?wv-check=3341&wv-type=0&wmode=0&wv-part=2&wv-hit=857507934&page-url=https%3A%2F%2Fguitarist1.ru%2Fyeat-drum-kit-reddit-stranitsa-skachivaniya.html&rn=75485510&browser-info=gdpr%3A14%3Aet%3A1662230013%3Aw%3A1268x939%3Av%3A882%3Az%3A0%3Ai%3A20220903183332%3Au%3A1662230006135931833%3Avf%3A2ocpriggyfyr946elviuuw%3Ast%3A1662230013&t=gdpr(14)ti(2)
200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/40922379?wv-check=3341&wv-type=0&wmode=0&wv-part=2&wv-hit=857507934&page-url=https%3A%2F%2Fguitarist1.ru%2Fyeat-drum-kit-reddit-stranitsa-skachivaniya.html&rn=75485510&browser-info=gdpr%3A14%3Aet%3A1662230013%3Aw%3A1268x939%3Av%3A882%3Az%3A0%3Ai%3A20220903183332%3Au%3A1662230006135931833%3Avf%3A2ocpriggyfyr946elviuuw%3Ast%3A1662230013&t=gdpr(14)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/40922379?wv-check=3341&wv-type=0&wmode=0&wv-part=2&wv-hit=857507934&page-url=https%3A%2F%2Fguitarist1.ru%2Fyeat-drum-kit-reddit-stranitsa-skachivaniya.html&rn=75485510&browser-info=gdpr%3A14%3Aet%3A1662230013%3Aw%3A1268x939%3Av%3A882%3Az%3A0%3Ai%3A20220903183332%3Au%3A1662230006135931833%3Avf%3A2ocpriggyfyr946elviuuw%3Ast%3A1662230013&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 12
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Sat, 03 Sep 2022 18:33:35 GMT
access-control-allow-origin: https://guitarist1.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Sat, 03-Sep-2022 18:33:35 GMT
last-modified: Sat, 03-Sep-2022 18:33:35 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css?ver=4.3.0
200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css?ver=4.3.0
IP
GET /font-awesome/4.3.0/css/font-awesome.min.css?ver=4.3.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 18:33:26 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 632, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 2021-06-08 21:08:57
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: f4e260a1f051a51bf706bf42d8bf3299
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 7679178
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 745092e5cea10b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.digitalcaramel.com/js/guitarist1.ru.js
200 OK 0 B URL HTTP/2 ads.digitalcaramel.com/js/guitarist1.ru.js
IP
ASN #24940 Hetzner Online GmbH
GET /js/guitarist1.ru.js HTTP/1.1
Host: ads.digitalcaramel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 18:33:26 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 13 Jul 2022 12:02:49 GMT
vary: Accept-Encoding
etag: W/"62ceb469-ec4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=15724800; includeSubdomains; preload
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
sjsmartcontent.org/wns/top2
200 OK 0 B URL HTTP/2 sjsmartcontent.org/wns/top2
IP
Analyzer Verdict Alert fortinet Malware
POST /wns/top2 HTTP/1.1
Host: sjsmartcontent.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 585
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Sat, 03 Sep 2022 18:33:27 GMT
content-type: text/json; charset=utf-8
set-cookie: wnid=96bd69e9a3d55666e98435cc084d8918; Domain=sjsmartcontent.org; Path=/wns/top2; Max-Age=2678400; SameSite=None; Secure
wnid=96bd69e9a3d55666e98435cc084d8918; Domain=sjsmartcontent.org; Path=/xpx; Max-Age=2678400; SameSite=None; Secure
wnid=96bd69e9a3d55666e98435cc084d8918; Domain=sjsmartcontent.org; Path=/wns/tpx; Max-Age=2678400; SameSite=None; Secure
wnid=96bd69e9a3d55666e98435cc084d8918; Domain=.sjsmartcontent.org; Path=/; Max-Age=2678400; SameSite=None; Secure
access-control-allow-origin: https://guitarist1.ru
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?origin=publishertag&topUrl=guitarist1.ru
200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?origin=publishertag&topUrl=guitarist1.ru
IP
GET /syncframe?origin=publishertag&topUrl=guitarist1.ru HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=87473e96-6032-48cb-9956-cdec058f497a; expires=Thu, 28 Sep 2023 18:33:27 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 644421
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A400%2C300%2C700&ver=4.7.3
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400%2C300%2C700&ver=4.7.3
IP
GET /css?family=Open+Sans%3A400%2C300%2C700&ver=4.7.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Sep 2022 18:33:26 GMT
date: Sat, 03 Sep 2022 18:33:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sjsmartcontent.org/static/plugin-site/js/sjplugin.js
200 OK 0 B URL HTTP/2 sjsmartcontent.org/static/plugin-site/js/sjplugin.js
IP
Analyzer Verdict Alert fortinet Malware
GET /static/plugin-site/js/sjplugin.js HTTP/1.1
Host: sjsmartcontent.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.20.2
date: Sat, 03 Sep 2022 18:33:26 GMT
content-type: application/x-javascript
last-modified: Fri, 02 Sep 2022 17:04:24 GMT
etag: W/"63123798-22a1d"
expires: Sun, 03 Sep 2023 18:33:26 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 110127
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ad.mail.ru/hbid_yandex/
200 OK 0 B IP
POST /hbid_yandex/ HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 313
Origin: https://guitarist1.ru
Connection: keep-alive
Referer: https://guitarist1.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 18:33:28 GMT
content-type: application/json
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://guitarist1.ru
access-control-allow-credentials: true
X-Firefox-Spdy: h2
185.81.129.105
172.64.155.188
88.99.234.26
23.36.77.32
104.18.20.226
185.184.8.90
93.158.134.118
93.184.220.29
188.42.191.196
178.250.6.124