r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7460
Expires: Mon, 05 Dec 2022 13:42:07 GMT
Date: Mon, 05 Dec 2022 11:37:47 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2750
Cache-Control: max-age=171562
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:37:47 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:17:09 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7029
Expires: Mon, 05 Dec 2022 13:34:56 GMT
Date: Mon, 05 Dec 2022 11:37:47 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 11:18:29 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1158
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Pz3N3SqG9mmih6/8YlAdKdjUxFwmGnn1veUAEzCWTIYSzdYikzDzsJUDrqqXqLqWyNLlQCNM0Xo=
x-amz-request-id: A9EYPA2R7X9E92E1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 10:47:23 GMT
age: 3024
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 11:37:47 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
87.236.16.242200 OK 39 kB URL HTTP/1.1 kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
IP 87.236.16.242:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (27125)
Hash a1bca084eaf13df93d18bf9ddcb54362
ad9031885994a98e84f3d62d6e0d07847fd4ae75
e188a610ee9c453c3ad639358375595c3d4de849b20441d9a3118aeb879d51c0
GET /vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:47 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 38793
Connection: keep-alive
Keep-Alive: timeout=30
X-Powered-By: PHP/7.4.33
Set-Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; expires=Tue, 06-Dec-2022 11:37:47 GMT; Max-Age=86400; path=/
qdQguVIBUGW=7Vux9UjXKZW; expires=Tue, 06-Dec-2022 11:37:47 GMT; Max-Age=86400; path=/
kOCBXbw=EyP3SOM%5Bmt6; expires=Tue, 06-Dec-2022 11:37:47 GMT; Max-Age=86400; path=/
Vary: Accept-Encoding,Cookie
X-Pingback: http://kurs-ufa.ru/xmlrpc.php
Link: <https://kurs-ufa.ru/wp-json/>; rel="https://api.w.org/", <https://kurs-ufa.ru/wp-json/wp/v2/posts/899>; rel="alternate"; type="application/json", <https://kurs-ufa.ru/?p=899>; rel=shortlink
Content-Encoding: gzip
kurs-ufa.ru/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
87.236.16.242200 OK 10 kB URL HTTP/1.1 kurs-ufa.ru/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6
IP 87.236.16.242:0
File type Unicode text, UTF-8 text, with very long lines (33376)
Hash 6451fb83b7956148ab72128682dcd692
16baf47c52c622ca880c58aa19e8ef87c00ec76e
21ddd09ee634c8bea9ab5b947cef21a36e064de3dbc5cd1b68f3a4710b267346
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.6 HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:47 GMT
Content-Type: text/css
Last-Modified: Fri, 19 Nov 2021 16:31:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"6197d15f-13abe"
Expires: Mon, 12 Dec 2022 11:37:47 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js?ver=5.8.6
142.250.74.170200 OK 33 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js?ver=5.8.6
IP 142.250.74.170:0
File type ASCII text, with very long lines (32086)
Hash 430e927c980ad4079de727fa59dd93f2
891aaada9a55a91292999f6d50fd300439905982
e8728df8617340bd8c10bc8d27d3a725a48871a269c850e8598689938ec6e2ed
GET /ajax/libs/jquery/1/jquery.min.js?ver=5.8.6 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33434
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 06:54:17 GMT
Expires: Sat, 02 Dec 2023 06:54:17 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 276210
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
kurs-ufa.ru/wp-content/plugins/aftparser/css/toc.css?ver=5.8.6
87.236.16.242200 OK 436 B URL HTTP/1.1 kurs-ufa.ru/wp-content/plugins/aftparser/css/toc.css?ver=5.8.6
IP 87.236.16.242:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 075c7d515a811a90b471c177a57d1785
e2ba9b63f208f74e9457207991d74072bd2d1ced
6a6c04d3175c96ab4a812d259e91e252525859b691b29590fc5f2a5dc2e6e5f4
GET /wp-content/plugins/aftparser/css/toc.css?ver=5.8.6 HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:47 GMT
Content-Type: text/css
Last-Modified: Tue, 08 Dec 2020 11:25:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"5fcf62af-34b"
Expires: Mon, 12 Dec 2022 11:37:47 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
kurs-ufa.ru/wp-content/plugins/wp-postratings/css/postratings-css.css?ver=1.89
87.236.16.242200 OK 410 B URL HTTP/1.1 kurs-ufa.ru/wp-content/plugins/wp-postratings/css/postratings-css.css?ver=1.89
IP 87.236.16.242:0
Hash 6fbe34358aaf3ffe8e5ceb8add141952
f133a78ec7418af1b15544cc33a2bac9bef7c222
982b13d2a10244ad98ded7e9e1e02b315d7f829c2ea90005a6151ca6f1b9993e
GET /wp-content/plugins/wp-postratings/css/postratings-css.css?ver=1.89 HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:47 GMT
Content-Type: text/css
Last-Modified: Tue, 08 Dec 2020 11:25:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"5fcf62af-549"
Expires: Mon, 12 Dec 2022 11:37:47 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
kurs-ufa.ru/wp-content/plugins/wpdiscuz/assets/third-party/font-awesome-5.13.0/css/fa.min.css?ver=7.3.7
87.236.16.242200 OK 2.5 kB URL HTTP/1.1 kurs-ufa.ru/wp-content/plugins/wpdiscuz/assets/third-party/font-awesome-5.13.0/css/fa.min.css?ver=7.3.7
IP 87.236.16.242:0
File type ASCII text, with very long lines (7867), with CRLF line terminators
Hash e3aa53a273192adaa509d2e76001a040
4fd7a9c033273c7c0654d47921d784696a5c8639
b38493b53aabf44dee915384e20b107b6f69121b278d208442e3b6aeb455d0b4
GET /wp-content/plugins/wpdiscuz/assets/third-party/font-awesome-5.13.0/css/fa.min.css?ver=7.3.7 HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:47 GMT
Content-Type: text/css
Last-Modified: Fri, 19 Nov 2021 16:16:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"6197cdc1-2d07"
Expires: Mon, 12 Dec 2022 11:37:47 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
kurs-ufa.ru/wp-content/themes/marafon/style.css?ver=5.8.6
87.236.16.242200 OK 19 kB URL HTTP/1.1 kurs-ufa.ru/wp-content/themes/marafon/style.css?ver=5.8.6
IP 87.236.16.242:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (2393)
Hash 54e2b9e5a991e3f2ab5cdc0adb7be485
e1a6ea26f26c32ebf509a58d696347eee31acffe
b91def55105cd64d263386a1ba49589655563a769879c448ded9835d23413ccf
GET /wp-content/themes/marafon/style.css?ver=5.8.6 HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:48 GMT
Content-Type: text/css
Last-Modified: Sat, 05 Jun 2021 14:08:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"60bb855b-124fb"
Expires: Mon, 12 Dec 2022 11:37:48 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
kurs-ufa.ru/wp-content/plugins/wpdiscuz/assets/css/wpdiscuz-combo.min.css?ver=5.8.6
87.236.16.242200 OK 6.4 kB URL HTTP/1.1 kurs-ufa.ru/wp-content/plugins/wpdiscuz/assets/css/wpdiscuz-combo.min.css?ver=5.8.6
IP 87.236.16.242:0
File type ASCII text, with very long lines (22067), with CRLF line terminators
Hash 1dfd4820e22e4fdcec4f547c04efbb2c
dc99b1335e8709ba89bddeb1c4678f44202b8157
f9f5229c35fd7645b4a5735e0e5b6f35ac0cfb8038fa61a5710b3cfb6fe513ee
GET /wp-content/plugins/wpdiscuz/assets/css/wpdiscuz-combo.min.css?ver=5.8.6 HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:47 GMT
Content-Type: text/css
Last-Modified: Fri, 19 Nov 2021 16:16:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"6197cdc1-9023"
Expires: Mon, 12 Dec 2022 11:37:47 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kurs-ufa.ru/wp-content/themes/marafon/inc/likely/likely.css
87.236.16.242200 OK 1.6 kB URL HTTP/1.1 kurs-ufa.ru/wp-content/themes/marafon/inc/likely/likely.css
IP 87.236.16.242:0
File type ASCII text, with very long lines (9636), with no line terminators
Hash 1f3c1c8a5b705651dd65bd66d9db131d
4106219ff913f98e7bfec7b8df1342ad186afedf
b921c8bc47fc2fed57f01bbe8cba2d70310e0ee755b4c050584b0ac71b8053ab
GET /wp-content/themes/marafon/inc/likely/likely.css HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:48 GMT
Content-Type: text/css
Last-Modified: Tue, 08 Dec 2020 11:25:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"5fcf62af-25a4"
Expires: Mon, 12 Dec 2022 11:37:48 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1d7ae9cb4d3ada56f3c875f55b37a3e1
296e23579403d85854df89b45e91dde802a91617
b86bdf54353e0459f9acb777656d5928b8d04aece9f060a8ecf4961548f7c490
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2275
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:37:48 GMT
Last-Modified: Mon, 05 Dec 2022 10:59:53 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
kurs-ufa.ru/wp-content/plugins/easy-fancybox/css/jquery.fancybox.min.css?ver=1.3.24
87.236.16.242200 OK 1.1 kB URL HTTP/1.1 kurs-ufa.ru/wp-content/plugins/easy-fancybox/css/jquery.fancybox.min.css?ver=1.3.24
IP 87.236.16.242:0
File type ASCII text, with very long lines (4058), with no line terminators
Hash 3dd0d9a8ab2cc64a34239c2fa656367c
771a021dbf973389f369499637888a67fe9324a1
a6428078db1ce5b2557e3fdf79523a7a6f305d03bfe85f7d38de6ddd6d99ed1a
GET /wp-content/plugins/easy-fancybox/css/jquery.fancybox.min.css?ver=1.3.24 HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:47 GMT
Content-Type: text/css
Last-Modified: Tue, 08 Dec 2020 11:25:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"5fcf62af-fda"
Expires: Mon, 12 Dec 2022 11:37:47 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
kurs-ufa.ru/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2
87.236.16.242200 OK 728 B URL HTTP/1.1 kurs-ufa.ru/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2
IP 87.236.16.242:0
Hash f4da479ab671b05f46391c2ec8ece4b5
7ad97c1132cbc11ae8f10a215312d8d388f92821
e9b1498ba4c70601439f135a3745e9451dc5f0f82e7327f278966632df613cb0
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.2.2 HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:48 GMT
Content-Type: text/css
Last-Modified: Tue, 08 Dec 2020 11:25:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"5fcf62af-780"
Expires: Mon, 12 Dec 2022 11:37:48 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
kurs-ufa.ru/wp-content/plugins/vote2x/vote2x-style.css?1_2_2&ver=5.8.6
87.236.16.242200 OK 849 B URL HTTP/1.1 kurs-ufa.ru/wp-content/plugins/vote2x/vote2x-style.css?1_2_2&ver=5.8.6
IP 87.236.16.242:0
Hash 77d77eec84184ec604a4030d26e7b0fa
f3021c9a519bc44a87382bf6ec4aad803e5f606a
1022d83e9795dbd0e952e3dace942a93304cf26fc3fc7ce76b5e51323b1fc5ec
GET /wp-content/plugins/vote2x/vote2x-style.css?1_2_2&ver=5.8.6 HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:48 GMT
Content-Type: text/css
Last-Modified: Tue, 08 Dec 2020 11:25:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"5fcf62af-c61"
Expires: Mon, 12 Dec 2022 11:37:48 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
kurs-ufa.ru/wp-content/plugins/wpdiscuz/themes/default/style.css?ver=7.3.7
87.236.16.242200 OK 19 kB URL HTTP/1.1 kurs-ufa.ru/wp-content/plugins/wpdiscuz/themes/default/style.css?ver=7.3.7
IP 87.236.16.242:0
File type ASCII text, with very long lines (1959), with CRLF line terminators
Hash 156b3dac4a7ee8d677c056cf381c442d
4c65fd32dfe6dc5ba72733eadc060dab0ac93f02
875772d4101924aaeb278968cd9d665a5cec6aa9bd20bc8ec7babc7f69caa318
GET /wp-content/plugins/wpdiscuz/themes/default/style.css?ver=7.3.7 HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:47 GMT
Content-Type: text/css
Last-Modified: Fri, 19 Nov 2021 16:16:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"6197cdc1-1c799"
Expires: Mon, 12 Dec 2022 11:37:47 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
kurs-ufa.ru/wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=2.9.2
87.236.16.242200 OK 4.1 kB URL HTTP/1.1 kurs-ufa.ru/wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=2.9.2
IP 87.236.16.242:0
File type ASCII text, with very long lines (7862)
Hash ea443a71626e6c5188a175df31482994
b06e76958bc2dd62bcc3c094bdd7c1a79d33f7ea
0bed4a9a59b7963e63a6fe6ce67a83846294323bc168c71878efb829509f00dd
GET /wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=2.9.2 HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:48 GMT
Content-Type: application/x-javascript
Last-Modified: Fri, 19 Nov 2021 16:14:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"6197cd6b-2655"
Expires: Mon, 12 Dec 2022 11:37:48 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
kurs-ufa.ru/wp-content/plugins/wp_testme/testme_style.css?ver=1.0.1
87.236.16.242200 OK 1.1 kB URL HTTP/1.1 kurs-ufa.ru/wp-content/plugins/wp_testme/testme_style.css?ver=1.0.1
IP 87.236.16.242:0
Hash 27151e110989dc4aac8cf4bfb7f5cf09
32c457811ab75a640e9c2a6a7f002cb787b27b38
01aaa89c4779ffa39b0d7e45a90c0840e35ccc9d0f84845a312b66a9e0c93b9f
GET /wp-content/plugins/wp_testme/testme_style.css?ver=1.0.1 HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:48 GMT
Content-Type: text/css
Last-Modified: Tue, 08 Dec 2020 11:25:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"5fcf62af-aba"
Expires: Mon, 12 Dec 2022 11:37:48 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.fontawesome.com/417c5df15b.js
172.64.133.15200 OK 3.8 kB URL HTTP/2 use.fontawesome.com/417c5df15b.js
IP 172.64.133.15:0
File type Unicode text, UTF-8 text, with very long lines (9239)
Hash b060aaa05480021603c3a79fb0e56423
c8e263cb00669a1817d40170fac777fe83abf647
e7182b49306809a2a138e96dab1f660d30429d0b8d09e2c7ece5d54eef25de3c
GET /417c5df15b.js HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 11:37:48 GMT
content-type: text/javascript
x-amz-id-2: IlSkGP5W6Q51LwxnVA3Bfvxmpo3CiANIkIT2W+GCfa20uPwzbd2A6froHNen7UBWOgVTQCBfSpE=
x-amz-request-id: KHNTSMDZMHBT5SVK
last-modified: Wed, 30 Jun 2021 18:39:24 GMT
etag: W/"52e67327df42efc2acc3117b28c299f7"
cache-control: max-age=1800
cf-cache-status: HIT
age: 2885
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2QcswmFOywwwciFAQ2tFFF%2BXzENstUEM980xF39%2BKXBBdNbF4zRRB%2BXJVh57bk8803jDs2dl1zWg7Bpd6qjJFsetgoC0mDY58uDiCsxVR2Z7WaNd6IMF%2FRanfSXqKkpB9BmcLPun"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 774c7debbe37756a-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fuyviz.com/rmkl71912vilm0p30yh8q687/qvu867kpy495r67.php
62.76.25.28200 OK 23 kB URL HTTP/1.1 fuyviz.com/rmkl71912vilm0p30yh8q687/qvu867kpy495r67.php
IP 62.76.25.28:0
File type Unicode text, UTF-8 text, with very long lines (50460)
Hash 5b7c47cd78225169d593a3d9cdb521b7
34f3c5cacf1eb11171f2a9947e8999b40a545128
fcb523c11b1b55436d5a8f61eeffc8cc855fe1089398b35d779ecea5d14af9d9
Analyzer Verdict Alert fortinet Malware
GET /rmkl71912vilm0p30yh8q687/qvu867kpy495r67.php HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Mon, 05 Dec 2022 11:37:48 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 23444
Last-Modified: Thu, 01 Dec 2022 08:04:42 GMT
Connection: keep-alive
ETag: "6388601a-5b94"
Content-Encoding: gzip
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
kurs-ufa.ru/wp-content/cache/autoptimize/js/autoptimize_8c58ad5cad4c1eb5d90ac0bb931bd631.js
87.236.16.242200 OK 100 kB URL HTTP/1.1 kurs-ufa.ru/wp-content/cache/autoptimize/js/autoptimize_8c58ad5cad4c1eb5d90ac0bb931bd631.js
IP 87.236.16.242:0
File type Unicode text, UTF-8 text, with very long lines (20862)
Hash fdcb5368f8b1ee8a5232fabf0254011f
c25e68c0804d647a330f9ffca879491b6213ec9f
334bc4e27f1f836cfe1839e1aea88e5cbb9f0290a229bde0adf99d4a809846ac
GET /wp-content/cache/autoptimize/js/autoptimize_8c58ad5cad4c1eb5d90ac0bb931bd631.js HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:48 GMT
Content-Type: application/x-javascript
Last-Modified: Fri, 19 Nov 2021 16:35:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"6197d238-63280"
Expires: Mon, 12 Dec 2022 11:37:48 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
kurs-ufa.ru/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
87.236.16.242200 OK 4.9 kB URL HTTP/1.1 kurs-ufa.ru/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6
IP 87.236.16.242:0
File type ASCII text, with very long lines (15224)
Hash a23ac340b83175b8454a1a6d72e7fef6
3118062971c927b18f3c5e06a38241f8053a2ae6
02374ff2e74c28e66fda96b9de314b032839b727c97d729358f4fc4af73a0ab8
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.6 HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:48 GMT
Content-Type: application/x-javascript
Last-Modified: Fri, 19 Nov 2021 16:31:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=30
Vary: Accept-Encoding
ETag: W/"6197d15f-4705"
Expires: Mon, 12 Dec 2022 11:37:48 GMT
Cache-Control: max-age=604800
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 403434
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
216.58.207.227200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data
Hash d9ac47c7e500fb7083b8d595eaf6fe12
112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933
495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 08:09:46 GMT
expires: Fri, 01 Dec 2023 08:09:46 GMT
cache-control: public, max-age=31536000
age: 358082
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:37:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:56 GMT
expires: Thu, 30 Nov 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 403432
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 403413
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2
216.58.207.227200 OK 9.8 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9840, version 1.0\012- data
Hash 7b08b9e11fc6b8a8a1398b357e874144
4b5fb5790fae1c96655aaa7a426b697f5ab986d0
3728fbdd191d75bad5b83a838dfe2fc15f84c2aaa36ffa573321275847db31a9
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:41:49 GMT
expires: Thu, 30 Nov 2023 19:41:49 GMT
cache-control: public, max-age=31536000
age: 402959
last-modified: Wed, 11 May 2022 19:24:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2
216.58.207.227200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9644, version 1.0\012- data
Hash 6f112ec2b932ee12379442c42853244e
b2e73c8c70d6261e1d187f41693c43ac4fe0809d
6a84eeee6a25e7c9a8a03191007a6720566b5a2aa2384d36168fb07f49e97e9e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9644
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 08:09:46 GMT
expires: Fri, 01 Dec 2023 08:09:46 GMT
cache-control: public, max-age=31536000
age: 358082
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kurs-ufa.ru/wp-content/themes/marafon/images/cit.png
87.236.16.242200 OK 4.6 kB URL HTTP/1.1 kurs-ufa.ru/wp-content/themes/marafon/images/cit.png
IP 87.236.16.242:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash d56b952fba4f5d3001b0572a368a9998
a2496f09173244191664c962c2fa856b01f83f39
8e2ebdefa40183fb5d718038dd5e493063ef7116fd4f10e66d218ffd043f9a17
GET /wp-content/themes/marafon/images/cit.png HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/wp-content/themes/marafon/style.css?ver=5.8.6
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6; surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15; la_page_depth=%7B%22last%22%3A%22http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html%22%2C%22depth%22%3A1%7D; page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:48 GMT
Content-Type: image/png
Content-Length: 4607
Last-Modified: Tue, 08 Dec 2020 11:25:35 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "5fcf62af-11ff"
Expires: Wed, 04 Jan 2023 11:37:48 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
kurs-ufa.ru/wp-content/plugins/wpdiscuz/assets/third-party/font-awesome-5.13.0/webfonts/fa-regular-400.woff2
87.236.16.242200 OK 14 kB URL HTTP/1.1 kurs-ufa.ru/wp-content/plugins/wpdiscuz/assets/third-party/font-awesome-5.13.0/webfonts/fa-regular-400.woff2
IP 87.236.16.242:0
File type Web Open Font Format (Version 2), TrueType, length 13584, version 331.524\012- data
Hash c20b5b7362d8d7bb7eddf94344ace33e
260bb01acd44d88dcb7f501a238ab968f86bef9e
6a8c8e9e1e7f692c21af1956de163f3d026778e6449fe93a09a671847ca1ae65
GET /wp-content/plugins/wpdiscuz/assets/third-party/font-awesome-5.13.0/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://kurs-ufa.ru/wp-content/plugins/wpdiscuz/assets/third-party/font-awesome-5.13.0/css/fa.min.css?ver=7.3.7
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6; surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15; la_page_depth=%7B%22last%22%3A%22http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html%22%2C%22depth%22%3A1%7D; page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:48 GMT
Content-Type: application/font-woff2
Content-Length: 13584
Last-Modified: Fri, 19 Nov 2021 16:16:01 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "6197cdc1-3510"
Expires: Wed, 04 Jan 2023 11:37:48 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
kurs-ufa.ru/wp-content/plugins/wp-postratings/images/stars_crystal/rating_over.gif
87.236.16.242200 OK 1.0 kB URL HTTP/1.1 kurs-ufa.ru/wp-content/plugins/wp-postratings/images/stars_crystal/rating_over.gif
IP 87.236.16.242:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash 358948a0ec900509e53396438fadea91
c47bd41c2dfd3879ca398829ac3438fce227dd96
d4cc3dfa1061aedf2533cf134f9d584568bc41a25090fb7ce77c5cdbec6c37e6
GET /wp-content/plugins/wp-postratings/images/stars_crystal/rating_over.gif HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6; surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15; la_page_depth=%7B%22last%22%3A%22http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html%22%2C%22depth%22%3A1%7D; page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb; flat_r_mb=%2F%2F%2F%3Adirect
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:48 GMT
Content-Type: image/gif
Content-Length: 1009
Last-Modified: Tue, 08 Dec 2020 11:25:35 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "5fcf62af-3f1"
Expires: Wed, 04 Jan 2023 11:37:48 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
rbthre.work/pjs/AEjj17xEQ.js
46.4.104.244200 OK 88 kB URL HTTP/2 rbthre.work/pjs/AEjj17xEQ.js
IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (28363)
Hash 1fa81b24daa524ddec3297be40cf1e08
c390641dc4e64280a7f7e17cb08ddee2b75852a8
145032d257a007090f56ae94962586ed6ef1ebe683e22a7fdd4b36447f6593da
Analyzer Verdict Alert fortinet Malware
GET /pjs/AEjj17xEQ.js HTTP/1.1
Host: rbthre.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 11:37:48 GMT
content-type: application/javascript
last-modified: Mon, 31 Oct 2022 10:04:40 GMT
etag: W/"635f9db8-849f"
expires: Mon, 05 Dec 2022 11:47:48 GMT
cache-control: max-age=600, public, must_revalidate
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 7.1 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
Hash c2423c80e00e2706c593064f2ebb6ba4
edf8aefc33de660e7758718bc7e740cf50aee161
d3d8891d3b15b6c95e89cb9eb2aa00a3349f97cf728072a9737248f6f4c8b57a
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 11:08:58 GMT
cache-control: public,max-age=3600
age: 1730
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2736
Cache-Control: max-age=166480
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 11:37:48 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 09:52:28 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
news.2xclick.ru/loader.js
93.95.100.117200 OK 29 kB URL HTTP/1.1 news.2xclick.ru/loader.js
IP 93.95.100.117:0
ASN #48347 JSC Mediasoft ekspert
File type Unicode text, UTF-8 text, with very long lines (649)
Hash 4adfd93c2d5d6feeff58083b271b358f
05c59bfd0b0901fae58c49eb4db82f36b6c3a69a
c740528a641f4d8f69e8d5a19f2ebccdeb6f7ee09d5a750139485cffcb42cdd1
GET /loader.js HTTP/1.1
Host: news.2xclick.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Mon, 05 Dec 2022 11:37:48 GMT
Content-Type: application/javascript
Content-Length: 29151
Last-Modified: Fri, 02 Dec 2022 09:56:51 GMT
Connection: keep-alive
ETag: "6389cbe3-71df"
Content-Encoding: gzip
Expires: Tue, 06 Dec 2022 11:37:48 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Origin: *
Set-Cookie: uid=XV9kdWON2Axv9AZ4X8aFAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; secure; SameSite=none
P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
push.services.mozilla.com/
54.188.211.138101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.188.211.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1v5Rlh2n+Em9Csz6Uyngaw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8nutcNA4V4BbQ+jhnSBJPlS9uB8=
kurs-ufa.ru/wp-content/plugins/wp-postratings/images/stars_crystal/rating_off.gif
87.236.16.242200 OK 608 B URL HTTP/1.1 kurs-ufa.ru/wp-content/plugins/wp-postratings/images/stars_crystal/rating_off.gif
IP 87.236.16.242:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash b25a265876454612d42aaea3b7556afe
860dc1663507b68d152dc9b25fa43c05390afe77
6bf7f288ac5290f7089ea2b900a2a4d418882a3d9da24e83d26cc7081ac69d25
GET /wp-content/plugins/wp-postratings/images/stars_crystal/rating_off.gif HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6; surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15; la_page_depth=%7B%22last%22%3A%22http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html%22%2C%22depth%22%3A1%7D; page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb; flat_r_mb=%2F%2F%2F%3Adirect
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:48 GMT
Content-Type: image/gif
Content-Length: 608
Last-Modified: Tue, 08 Dec 2020 11:25:35 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "5fcf62af-260"
Expires: Wed, 04 Jan 2023 11:37:48 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
fuyviz.com/v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=a63911d8-3a0a-4543-93a2-766abc574b37&block_uuid=a63911d8-3a0a-4543-93a2-766abc574b37&refresh_depth=1&safari_multiple_request=264
62.76.25.28200 OK 5.4 kB URL HTTP/1.1 fuyviz.com/v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=a63911d8-3a0a-4543-93a2-766abc574b37&block_uuid=a63911d8-3a0a-4543-93a2-766abc574b37&refresh_depth=1&safari_multiple_request=264
IP 62.76.25.28:0
File type Unicode text, UTF-8 text, with very long lines (9201)
Hash 05280758ebb9a7f087cbbf4ea7cfe0ee
4915de29d0800512ce7dbaede11d54478f82a6cf
fe62b23bb4f6a56a83078c702c4ae872b7547e034476717e6fb1b527fe033997
GET /v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=a63911d8-3a0a-4543-93a2-766abc574b37&block_uuid=a63911d8-3a0a-4543-93a2-766abc574b37&refresh_depth=1&safari_multiple_request=264 HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: application/x-www-form-urlencoded
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Mon, 05 Dec 2022 11:37:48 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Content-Encoding: gzip
fuyviz.com/v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=4b91d352-1c26-40a0-aea8-1b8d25d8200f&block_uuid=4b91d352-1c26-40a0-aea8-1b8d25d8200f&refresh_depth=1&safari_multiple_request=127
62.76.25.28200 OK 5.9 kB URL HTTP/1.1 fuyviz.com/v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=4b91d352-1c26-40a0-aea8-1b8d25d8200f&block_uuid=4b91d352-1c26-40a0-aea8-1b8d25d8200f&refresh_depth=1&safari_multiple_request=127
IP 62.76.25.28:0
File type Unicode text, UTF-8 text, with very long lines (8416)
Hash fab6ee722cf7e9c09230a95a8d13553f
40749dda807abf693e653dd015285244708ea843
3425d2732df80f79223e85f0d7c014bcbd738bb137988391b5421b833747896f
GET /v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=4b91d352-1c26-40a0-aea8-1b8d25d8200f&block_uuid=4b91d352-1c26-40a0-aea8-1b8d25d8200f&refresh_depth=1&safari_multiple_request=127 HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: application/x-www-form-urlencoded
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Mon, 05 Dec 2022 11:37:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Content-Encoding: gzip
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash f391d1b7c880ff26ab00e63fd30d7053
31de9ad3aed8f57b300bb6ac1003ac3de640eb50
7f0393d9f5f824d79676ff900278c85958dd9ac863ff087a73ce6b73d93282e6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7F0393D9F5F824D79676FF900278C85958DD9AC863FF087A73CE6B73D93282E6"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 05 Dec 2022 17:37:49 GMT
Date: Mon, 05 Dec 2022 11:37:49 GMT
Connection: keep-alive
fuyviz.com/v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=ae117f10-d0bf-49d0-b3a5-61270694c340&block_uuid=ae117f10-d0bf-49d0-b3a5-61270694c340&refresh_depth=1&safari_multiple_request=140
62.76.25.28200 OK 130 B URL HTTP/1.1 fuyviz.com/v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=ae117f10-d0bf-49d0-b3a5-61270694c340&block_uuid=ae117f10-d0bf-49d0-b3a5-61270694c340&refresh_depth=1&safari_multiple_request=140
IP 62.76.25.28:0
File type ASCII text, with no line terminators
Hash 5ebb4d593237f45bf02010243316778b
b3a18538dd4962be57141084d071450c2823922d
7e9e808c2cee807bf5594f5d76d5666155d90b4c12393fc9638d18b8263537cc
GET /v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=ae117f10-d0bf-49d0-b3a5-61270694c340&block_uuid=ae117f10-d0bf-49d0-b3a5-61270694c340&refresh_depth=1&safari_multiple_request=140 HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: application/x-www-form-urlencoded
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Mon, 05 Dec 2022 11:37:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Content-Encoding: gzip
kurs-ufa.ru/wp-content/uploads/2021/01/logo-2.png
87.236.16.242200 OK 3.9 kB URL HTTP/2 kurs-ufa.ru/wp-content/uploads/2021/01/logo-2.png
IP 87.236.16.242:0
File type PNG image data, 150 x 51, 8-bit/color RGBA, non-interlaced\012- data
Hash ab22c82fd1a26514dbb0a1591af42c88
32d5d02b23578833764c3fd1f2d4793fb77e39c4
5ff8b17489d47d6bfa39a9cde824c5a39149ad1701151e218f990cebc694c892
GET /wp-content/uploads/2021/01/logo-2.png HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: image/png
content-length: 3899
last-modified: Sat, 16 Jan 2021 09:35:21 GMT
etag: "6002b359-f3b"
expires: Wed, 04 Jan 2023 11:37:49 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
fuyviz.com/v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=db7b8214-d365-4010-8b48-45662f7737a0&block_uuid=db7b8214-d365-4010-8b48-45662f7737a0&refresh_depth=1&safari_multiple_request=748
62.76.25.28200 OK 3.5 kB URL HTTP/1.1 fuyviz.com/v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=db7b8214-d365-4010-8b48-45662f7737a0&block_uuid=db7b8214-d365-4010-8b48-45662f7737a0&refresh_depth=1&safari_multiple_request=748
IP 62.76.25.28:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (7954)
Hash b1a2387e6e7dcc09bcac930b3a682b87
a7a56543ccd986d94bf1ed2494873e33e0349cb6
78cefd68e56db8293c79b54d6cd3f8088a4516eca8991dbd9daec03b1970ea8f
GET /v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=db7b8214-d365-4010-8b48-45662f7737a0&block_uuid=db7b8214-d365-4010-8b48-45662f7737a0&refresh_depth=1&safari_multiple_request=748 HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: application/x-www-form-urlencoded
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Mon, 05 Dec 2022 11:37:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Content-Encoding: gzip
kurs-ufa.ru/wp-content/cache/thumb/ca/0b68ed95e47c6ca_300x180.jpg
87.236.16.242200 OK 6.6 kB URL HTTP/1.1 kurs-ufa.ru/wp-content/cache/thumb/ca/0b68ed95e47c6ca_300x180.jpg
IP 87.236.16.242:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x180, components 3\012- data
Hash ed8828865440842fba32ac3edef74264
302825fda04a98db40f798ea4a35a3ddc6701cb8
de317a668d9ce80681f134ae79f1ebff277008abdeeba00699c0d62b0b88e5aa
GET /wp-content/cache/thumb/ca/0b68ed95e47c6ca_300x180.jpg HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6; surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15; la_page_depth=%7B%22last%22%3A%22http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html%22%2C%22depth%22%3A1%7D; page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb; flat_r_mb=%2F%2F%2F%3Adirect
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:49 GMT
Content-Type: image/jpeg
Content-Length: 6578
Last-Modified: Fri, 19 Nov 2021 16:38:36 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "6197d30c-19b2"
Expires: Wed, 04 Jan 2023 11:37:49 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
fuyviz.com/v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=87382344-23f3-473e-8e22-d081e42fe6bf&block_uuid=87382344-23f3-473e-8e22-d081e42fe6bf&refresh_depth=1&safari_multiple_request=890
62.76.25.28200 OK 3.7 kB URL HTTP/1.1 fuyviz.com/v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=87382344-23f3-473e-8e22-d081e42fe6bf&block_uuid=87382344-23f3-473e-8e22-d081e42fe6bf&refresh_depth=1&safari_multiple_request=890
IP 62.76.25.28:0
File type Unicode text, UTF-8 text, with very long lines (8416)
Hash 3fae8983c418d91f5103a54cb4085f11
8eb6f01776f5888e6920100fcc02eef092af4e93
b1cd024d862b7f79c20daba968a6fb157ac9b08af5ab2e14aef4803f3185a6c2
GET /v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=87382344-23f3-473e-8e22-d081e42fe6bf&block_uuid=87382344-23f3-473e-8e22-d081e42fe6bf&refresh_depth=1&safari_multiple_request=890 HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: application/x-www-form-urlencoded
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Mon, 05 Dec 2022 11:37:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Content-Encoding: gzip
kurs-ufa.ru/wp-content/cache/thumb/0c/a7338f8864c6f0c_300x180.png
87.236.16.242200 OK 63 kB URL HTTP/1.1 kurs-ufa.ru/wp-content/cache/thumb/0c/a7338f8864c6f0c_300x180.png
IP 87.236.16.242:0
File type PNG image data, 300 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash e25214b16a2c15511d04b428a82d84a7
53876627cd2f370254e5260273eff3006f6de3d1
527ecfea6f1a4eb5ab77ad451559cdda5dfa9d4157de23b2d38066b397f01751
GET /wp-content/cache/thumb/0c/a7338f8864c6f0c_300x180.png HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6; surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15; la_page_depth=%7B%22last%22%3A%22http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html%22%2C%22depth%22%3A1%7D; page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb; flat_r_mb=%2F%2F%2F%3Adirect
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:49 GMT
Content-Type: image/png
Content-Length: 62641
Last-Modified: Fri, 19 Nov 2021 16:38:36 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "6197d30c-f4b1"
Expires: Wed, 04 Jan 2023 11:37:49 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a4eeed9547f62d866fa87f52dae8952c
2039ba80e2615712a6398b255df8720ea307a9a8
a0e4294dc9a9a2dbdfad50519bd424dd1b9e9e72b128217e8f384d52f5c1e43d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0E4294DC9A9A2DBDFAD50519BD424DD1B9E9E72B128217E8F384D52F5C1E43D"
Last-Modified: Sat, 03 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7941
Expires: Mon, 05 Dec 2022 13:50:10 GMT
Date: Mon, 05 Dec 2022 11:37:49 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash bb2678ab32ceacb31f82c5ff33bf6d9a
e56593041a3ff239f1da44fb84bc6defc26b681e
1ac59c5c23db6365738a47a11ca85aa144db77db16b8f63b06a922a0adb77f63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1AC59C5C23DB6365738A47A11CA85AA144DB77DB16B8F63B06A922A0ADB77F63"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8433
Expires: Mon, 05 Dec 2022 13:58:22 GMT
Date: Mon, 05 Dec 2022 11:37:49 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash bb2678ab32ceacb31f82c5ff33bf6d9a
e56593041a3ff239f1da44fb84bc6defc26b681e
1ac59c5c23db6365738a47a11ca85aa144db77db16b8f63b06a922a0adb77f63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1AC59C5C23DB6365738A47A11CA85AA144DB77DB16B8F63B06A922A0ADB77F63"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11059
Expires: Mon, 05 Dec 2022 14:42:08 GMT
Date: Mon, 05 Dec 2022 11:37:49 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash bb2678ab32ceacb31f82c5ff33bf6d9a
e56593041a3ff239f1da44fb84bc6defc26b681e
1ac59c5c23db6365738a47a11ca85aa144db77db16b8f63b06a922a0adb77f63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1AC59C5C23DB6365738A47A11CA85AA144DB77DB16B8F63B06A922A0ADB77F63"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 05 Dec 2022 17:37:49 GMT
Date: Mon, 05 Dec 2022 11:37:49 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a4eeed9547f62d866fa87f52dae8952c
2039ba80e2615712a6398b255df8720ea307a9a8
a0e4294dc9a9a2dbdfad50519bd424dd1b9e9e72b128217e8f384d52f5c1e43d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0E4294DC9A9A2DBDFAD50519BD424DD1B9E9E72B128217E8F384D52F5C1E43D"
Last-Modified: Sat, 03 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21597
Expires: Mon, 05 Dec 2022 17:37:46 GMT
Date: Mon, 05 Dec 2022 11:37:49 GMT
Connection: keep-alive
fuyviz.com/.cdn/3a8241/d3d944/fa3d8b22772c47a2b9e3610a719a723e/d036356af408ba55.jpeg
62.76.25.28200 OK 27 kB URL HTTP/2 fuyviz.com/.cdn/3a8241/d3d944/fa3d8b22772c47a2b9e3610a719a723e/d036356af408ba55.jpeg
IP 62.76.25.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3\012- data
Hash cb992c35aad4b9e6b9fe6e1e94156156
7254486d94bd4956693ba53f8a434986c9f66feb
8aa7dd948289274d6529eb2887558bf053a5d6df4b4486cf464a00a1db76d69c
Analyzer Verdict Alert fortinet Malware
GET /.cdn/3a8241/d3d944/fa3d8b22772c47a2b9e3610a719a723e/d036356af408ba55.jpeg HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: image/jpeg
content-length: 26745
last-modified: Mon, 24 Oct 2022 15:29:04 GMT
etag: "6356af40-6879"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e575b09b816d326948a8d9fb40430214
1231b2f6186b2458c8afcbea7f016d1b5671838a
32db21bebfb87ddfd2f027020b532259a2156dd910af5edd244ec5eb38a07c7b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "32DB21BEBFB87DDFD2F027020B532259A2156DD910AF5EDD244EC5EB38A07C7B"
Last-Modified: Sat, 03 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21559
Expires: Mon, 05 Dec 2022 17:37:08 GMT
Date: Mon, 05 Dec 2022 11:37:49 GMT
Connection: keep-alive
fuyviz.com/.cdn/3a8241/6512bd/c5d302d2d9754ad3a05ce547fb27c270/d0b6376b9abc7ed2.jpeg
62.76.25.28200 OK 25 kB URL HTTP/2 fuyviz.com/.cdn/3a8241/6512bd/c5d302d2d9754ad3a05ce547fb27c270/d0b6376b9abc7ed2.jpeg
IP 62.76.25.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3\012- data
Hash 877a897aa6c987b7b39562feeaccb224
2a22dd22475894dd6486b0ba391633c10505c2a9
167eb2c3914d0d364c7eb551dc79f7e99f3c55df2687f06b70df88c61ae1e864
Analyzer Verdict Alert fortinet Malware
GET /.cdn/3a8241/6512bd/c5d302d2d9754ad3a05ce547fb27c270/d0b6376b9abc7ed2.jpeg HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: image/jpeg
content-length: 25045
last-modified: Thu, 17 Nov 2022 22:46:03 GMT
etag: "6376b9ab-61d5"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
fuyviz.com/.cdn/3a8241/fad6f4/f7d05b927c1b4eba838585ea3a49c465/d0362f3d0dcc5515.jpeg
62.76.25.28200 OK 27 kB URL HTTP/2 fuyviz.com/.cdn/3a8241/fad6f4/f7d05b927c1b4eba838585ea3a49c465/d0362f3d0dcc5515.jpeg
IP 62.76.25.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3\012- data
Hash 505a7486548785dc1728d4814a10c838
79412224cff0c86012efc3b0226393349d282d81
99318ecffdbde4f85ff336e9aef96a2fb995c07da712687065c193846389da2b
Analyzer Verdict Alert fortinet Malware
GET /.cdn/3a8241/fad6f4/f7d05b927c1b4eba838585ea3a49c465/d0362f3d0dcc5515.jpeg HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: image/jpeg
content-length: 26654
last-modified: Wed, 10 Aug 2022 15:38:04 GMT
etag: "62f3d0dc-681e"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
fuyviz.com/.cdn/3a8241/d72d18/460043ec5d084ea4a94a989c8a179c76/d0362e4092c1c67b.jpeg
62.76.25.28200 OK 34 kB URL HTTP/2 fuyviz.com/.cdn/3a8241/d72d18/460043ec5d084ea4a94a989c8a179c76/d0362e4092c1c67b.jpeg
IP 62.76.25.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3\012- data
Hash dde5f5b029447d6d19904d848fde579e
436efa587b1aa017c93f66e5956a7156287fa48d
66becc948c8f378ed65a635244b00a453144b48c9d2f5fde0e181be26839c6a8
Analyzer Verdict Alert fortinet Malware
GET /.cdn/3a8241/d72d18/460043ec5d084ea4a94a989c8a179c76/d0362e4092c1c67b.jpeg HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: image/jpeg
content-length: 34532
last-modified: Fri, 29 Jul 2022 16:22:04 GMT
etag: "62e4092c-86e4"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
fuyviz.com/.cdn/3a8241/6512bd/1c4cf0e72e78462d8b0ec097fd83bc10/d0b63864beb94214.jpeg
62.76.25.28200 OK 33 kB URL HTTP/2 fuyviz.com/.cdn/3a8241/6512bd/1c4cf0e72e78462d8b0ec097fd83bc10/d0b63864beb94214.jpeg
IP 62.76.25.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3\012- data
Hash 6bea74ecd6c1833322fc015246237495
81a71756612d91e97bac76d1e1628c8d3e42ff66
eeeb8df67eaf3f398d04e0ce7694d27a8104aa6ef9f93445636efd1bbfe3887d
Analyzer Verdict Alert fortinet Malware
GET /.cdn/3a8241/6512bd/1c4cf0e72e78462d8b0ec097fd83bc10/d0b63864beb94214.jpeg HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: image/jpeg
content-length: 33010
last-modified: Tue, 29 Nov 2022 18:14:03 GMT
etag: "63864beb-80f2"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
elektrik-sam.ru/uploads/posts/2020-03/medium/15843757491kvartire-480x270.png
87.236.16.58200 OK 131 kB URL HTTP/2 elektrik-sam.ru/uploads/posts/2020-03/medium/15843757491kvartire-480x270.png
IP 87.236.16.58:0
File type PNG image data, 450 x 253, 8-bit/color RGBA, non-interlaced\012- data
Size 131 kB (130922 bytes)
Hash a885fb9b6f24e0babb3bd679f228a17b
f868651bbb054b350f75d647001446f882c9bb36
9ae545a4ced9e63471613426f3896bd72152a95939ec058e503cd79125ba7816
GET /uploads/posts/2020-03/medium/15843757491kvartire-480x270.png HTTP/1.1
Host: elektrik-sam.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: image/png
content-length: 130922
last-modified: Fri, 15 Jul 2022 09:14:33 GMT
etag: "62d12ff9-1ff6a"
expires: Wed, 04 Jan 2023 11:37:49 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
fuyviz.com/.cdn/3a8241/6512bd/6506036ddfbf41da9032d32fc702c6ba/d0b6387544b66776.jpeg
62.76.25.28200 OK 28 kB URL HTTP/2 fuyviz.com/.cdn/3a8241/6512bd/6506036ddfbf41da9032d32fc702c6ba/d0b6387544b66776.jpeg
IP 62.76.25.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3\012- data
Hash 617571498f8a421f5c07dc06c2860dac
fe1528a65dbca1b4e6c97d0c41328983db0701ea
a9ae2584aba7bc637a85689a5a5b14d9d6764fc441a780da1e3b777231719a00
Analyzer Verdict Alert fortinet Malware
GET /.cdn/3a8241/6512bd/6506036ddfbf41da9032d32fc702c6ba/d0b6387544b66776.jpeg HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: image/jpeg
content-length: 28527
last-modified: Wed, 30 Nov 2022 13:02:03 GMT
etag: "6387544b-6f6f"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
fuyviz.com/.cdn/3a8241/d72d18/460043ec5d084ea4a94a989c8a179c76/d0b62e4092af3bf1.jpeg
62.76.25.28200 OK 34 kB URL HTTP/2 fuyviz.com/.cdn/3a8241/d72d18/460043ec5d084ea4a94a989c8a179c76/d0b62e4092af3bf1.jpeg
IP 62.76.25.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3\012- data
Hash d9e5261217c2e82afe17970dbe86e48d
b1a56640f2dc257b3dba9bfc1971a632bda63cef
08fe6172e70fb0bf4e96d907f45c324aa0ca33fe93f1ccce971265db3c93a22f
Analyzer Verdict Alert fortinet Malware
GET /.cdn/3a8241/d72d18/460043ec5d084ea4a94a989c8a179c76/d0b62e4092af3bf1.jpeg HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: image/jpeg
content-length: 33546
last-modified: Fri, 29 Jul 2022 16:22:02 GMT
etag: "62e4092a-830a"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
fuyviz.com/.cdn/3a8241/fad6f4/f7d05b927c1b4eba838585ea3a49c465/d0b62f3d0db9c031.jpeg
62.76.25.28200 OK 27 kB URL HTTP/2 fuyviz.com/.cdn/3a8241/fad6f4/f7d05b927c1b4eba838585ea3a49c465/d0b62f3d0db9c031.jpeg
IP 62.76.25.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3\012- data
Hash dd5890f68addd5babeb43e10de5da540
c9bc192ad683e51a0243d2020f0b3030afb707d2
7aa7ef266375730c8153ab05a6835557e1340c6d9eff05ae46b8586907275be0
Analyzer Verdict Alert fortinet Malware
GET /.cdn/3a8241/fad6f4/f7d05b927c1b4eba838585ea3a49c465/d0b62f3d0db9c031.jpeg HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: image/jpeg
content-length: 27277
last-modified: Wed, 10 Aug 2022 15:38:03 GMT
etag: "62f3d0db-6a8d"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
fuyviz.com/.cdn/3a8241/d3d944/c5aa205c388043e0b3306621ae1f19ab/d036357f8c91dada.jpeg
62.76.25.28200 OK 26 kB URL HTTP/2 fuyviz.com/.cdn/3a8241/d3d944/c5aa205c388043e0b3306621ae1f19ab/d036357f8c91dada.jpeg
IP 62.76.25.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3\012- data
Hash 2a025c15e36be67ebb84a73f6bd0ceec
68158714b6903b707057721336f4e4728c2c755e
4664d40332a1897e2889fcf450378e42048467ea8b0b9d34e039395526d3688d
Analyzer Verdict Alert fortinet Malware
GET /.cdn/3a8241/d3d944/c5aa205c388043e0b3306621ae1f19ab/d036357f8c91dada.jpeg HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: image/jpeg
content-length: 25950
last-modified: Tue, 25 Oct 2022 14:55:05 GMT
etag: "6357f8c9-655e"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
fuyviz.com/.cdn/3a8241/d3d944/1157a81131b74ca280326b86bb66faa5/d0b635a7991a09cf.jpeg
62.76.25.28200 OK 20 kB URL HTTP/2 fuyviz.com/.cdn/3a8241/d3d944/1157a81131b74ca280326b86bb66faa5/d0b635a7991a09cf.jpeg
IP 62.76.25.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3\012- data
Hash 6145b0a5b6f8486b6eaa80af46e86017
113a3046ffb0f221facbf13500cb13465d36a5d7
785f69d32909b2517a0a7e4a293e13c0137f984361650b2d150b560044470ebc
Analyzer Verdict Alert fortinet Malware
GET /.cdn/3a8241/d3d944/1157a81131b74ca280326b86bb66faa5/d0b635a7991a09cf.jpeg HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: image/jpeg
content-length: 19802
last-modified: Thu, 27 Oct 2022 12:29:05 GMT
etag: "635a7991-4d5a"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
fuyviz.com/.cdn/3a8241/0a8005/3a26b051048c42bdbc440b669e59bd1f/d03631632d13f098.jpeg
62.76.25.28200 OK 35 kB URL HTTP/2 fuyviz.com/.cdn/3a8241/0a8005/3a26b051048c42bdbc440b669e59bd1f/d03631632d13f098.jpeg
IP 62.76.25.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3\012- data
Hash b8da30425163ca81192f50aa714bd461
bb5a36d45a95e5ed75c01023b7660e57a3421b26
01975f1a7cf891f4d23653b907ae2b9c1c187462b3579014bc04dcdcbb7fe01e
Analyzer Verdict Alert fortinet Malware
GET /.cdn/3a8241/0a8005/3a26b051048c42bdbc440b669e59bd1f/d03631632d13f098.jpeg HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: image/jpeg
content-length: 35351
last-modified: Mon, 05 Sep 2022 17:33:05 GMT
etag: "631632d1-8a17"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
fuyviz.com/.cdn/3a8241/d3d944/c5aa205c388043e0b3306621ae1f19ab/d0b6357f8c7cc1ea.jpeg
62.76.25.28200 OK 28 kB URL HTTP/2 fuyviz.com/.cdn/3a8241/d3d944/c5aa205c388043e0b3306621ae1f19ab/d0b6357f8c7cc1ea.jpeg
IP 62.76.25.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 250x250, components 3\012- data
Hash 8f994969269d8ba0a23d868ed2ca3a2a
52d15d6d9472cbffdfb14b0796a2c72f7c142627
6285dd67ec44746fa7d64aaf0b666be5bca490cf5aff6545e32ffdb47458576a
Analyzer Verdict Alert fortinet Malware
GET /.cdn/3a8241/d3d944/c5aa205c388043e0b3306621ae1f19ab/d0b6357f8c7cc1ea.jpeg HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: image/jpeg
content-length: 27841
last-modified: Tue, 25 Oct 2022 14:55:03 GMT
etag: "6357f8c7-6cc1"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
kurs-ufa.ru/wp-content/uploads/2021/01/Bez-nazvaniya.png
87.236.16.242200 OK 8.9 kB URL HTTP/2 kurs-ufa.ru/wp-content/uploads/2021/01/Bez-nazvaniya.png
IP 87.236.16.242:0
File type PNG image data, 169 x 155, 8-bit/color RGB, non-interlaced\012- data
Hash 30d82c8283744140bb637c0febf8c55d
8a44b10557180af14e3a88eb8f55031894a24ce2
47d04cf822ed7e5f45561e28ed6a3209c8b897c7ffc4dcd0c805f531ca165a07
GET /wp-content/uploads/2021/01/Bez-nazvaniya.png HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: image/png
content-length: 8893
last-modified: Sat, 16 Jan 2021 09:36:24 GMT
etag: "6002b398-22bd"
expires: Wed, 04 Jan 2023 11:37:49 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.20.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.20.226:0
Hash 1fdcbb1b5dc00345ed30cd3b7bd83ccc
74265a581ece421a0f1513d37ceb3668f94a5a35
fe104d80f89f6c9f39b4be8687e7fd0a0cba86cb7627b8ee5ba311c5f1dfa60d
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 11:37:49 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Fri, 09 Dec 2022 09:32:08 GMT
ETag: "74265a581ece421a0f1513d37ceb3668f94a5a35"
Last-Modified: Mon, 05 Dec 2022 09:32:09 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 835
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 774c7df6894fb51b-OSL
kurs-ufa.ru/favicon.ico
87.236.16.242200 OK 1.6 kB IP 87.236.16.242:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 07bc3fee63ac4ffd532f9ab3e1ec9cf0
c66836cc5662fa3f9ddf1cb4fdf5fd6717f77ce7
5c58e7ee4e865a94302b6213bf601a91017f2ebe5508bc2f53dfd94fa81b196b
GET /favicon.ico HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6; surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15; la_page_depth=%7B%22last%22%3A%22http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html%22%2C%22depth%22%3A1%7D; page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb; flat_r_mb=%2F%2F%2F%3Adirect
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:49 GMT
Content-Type: image/x-icon
Content-Length: 1627
Connection: keep-alive
Keep-Alive: timeout=30
X-Powered-By: PHP/7.4.33
Etag: "07bc3fee63ac4ffd532f9ab3e1ec9cf0"
Cache-Control: public, max-age=2592000
tt.ttarget.ru/s/tt3.js?v=2
80.78.249.254200 OK 32 kB URL HTTP/1.1 tt.ttarget.ru/s/tt3.js?v=2
IP 80.78.249.254:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type Unicode text, UTF-8 text, with very long lines (1000)
Hash dc27e56b5f87c3bdb0f21e829ba28e9c
a663b4de86431ad06c4b2ec576ab208610621f06
3ba96a4b98214e55a3cbab96d89f7f2e3fcbc63a5b7a550fe52a4e1110314045
GET /s/tt3.js?v=2 HTTP/1.1
Host: tt.ttarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Dec 2022 11:35:42 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Tue, 15 Nov 2022 08:22:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63734c54-2528d"
Expires: Mon, 05 Dec 2022 14:35:42 GMT
Cache-Control: max-age=10800
Content-Encoding: gzip
news.gnezdo.ru/fingerprintjs/dist/fp.min.js
93.95.100.117200 OK 14 kB URL HTTP/1.1 news.gnezdo.ru/fingerprintjs/dist/fp.min.js
IP 93.95.100.117:0
ASN #48347 JSC Mediasoft ekspert
File type Unicode text, UTF-8 text, with very long lines (35130)
Hash 6c509314839b2d4fd9119459556eb833
a7c7b7e6836a1ba988508ccc2a87ee8cfae37e16
61035ee2a8f82bb87a58b73e9b32b6e3897ddfce0da10655b8af5b73afaa7f88
GET /fingerprintjs/dist/fp.min.js HTTP/1.1
Host: news.gnezdo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Mon, 05 Dec 2022 11:37:49 GMT
Content-Type: application/javascript
Content-Length: 14018
Connection: keep-alive
Last-Modified: Tue, 17 May 2022 10:26:58 GMT
ETag: "8a8a-5df32949faa6a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Set-Cookie: uid=XV9kdWON2A13EwaIaOrkAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; secure; SameSite=none
P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
mc.yandex.ru/metrika/tag.js
87.250.251.119200 OK 73 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 87.250.251.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (586)
Hash a4567a1e52f99c2b3870f58375ec8cac
dbfc795e71fc19f7e45e8637abc4ac770f639a48
2b13b5716855040bd9a08972b0e61369e50c6daa402ed937e18f6795f82429c8
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73266
date: Mon, 05 Dec 2022 11:37:49 GMT
access-control-allow-origin: *
etag: "6388ac0c-11e32"
expires: Mon, 05 Dec 2022 12:37:49 GMT
last-modified: Thu, 01 Dec 2022 16:28:44 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
kurs-ufa.ru/wp-admin/admin-ajax.php
87.236.16.242200 OK 41 B URL HTTP/1.1 kurs-ufa.ru/wp-admin/admin-ajax.php
IP 87.236.16.242:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 688a2b26b0900dc5c30372d9f440d69b
c262f74303ba0a69b10da080642ec98a23b35c3f
0a88e611418b0ee617b9b118e1e544c4df16229dc1d95ca81b31858c0429ac82
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 111
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6; surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15; la_page_depth=%7B%22last%22%3A%22http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html%22%2C%22depth%22%3A1%7D; page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb; flat_r_mb=%2F%2F%2F%3Adirect
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:50 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 41
Connection: keep-alive
Keep-Alive: timeout=30
X-Powered-By: PHP/7.4.33
Set-Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; expires=Tue, 06-Dec-2022 11:37:49 GMT; Max-Age=86400; path=/
qdQguVIBUGW=7Vux9UjXKZW; expires=Tue, 06-Dec-2022 11:37:49 GMT; Max-Age=86400; path=/
kOCBXbw=EyP3SOM%5Bmt6; expires=Tue, 06-Dec-2022 11:37:49 GMT; Max-Age=86400; path=/
Access-Control-Allow-Origin: http://kurs-ufa.ru
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
tt.ttarget.ru/s/css/5669.css
80.78.249.254200 OK 16 kB URL HTTP/1.1 tt.ttarget.ru/s/css/5669.css
IP 80.78.249.254:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type ASCII text, with CRLF line terminators
Hash 1d0323c3ce854c11a055d81cf0ba1455
356353c43a5bac438604dea30d0d28da5221e785
3e217e0fb2c781e6d884e9bd58dc623b52b05dda3e617fd348dd732870e804f5
GET /s/css/5669.css HTTP/1.1
Host: tt.ttarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Dec 2022 11:35:43 GMT
Content-Type: text/css
Content-Length: 15592
Last-Modified: Wed, 08 Sep 2021 14:26:01 GMT
Connection: keep-alive
ETag: "6138c7f9-3ce8"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
tt.ttarget.ru/s/css/5670.css
80.78.249.254200 OK 16 kB URL HTTP/1.1 tt.ttarget.ru/s/css/5670.css
IP 80.78.249.254:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type ASCII text, with CRLF line terminators
Hash 1d0323c3ce854c11a055d81cf0ba1455
356353c43a5bac438604dea30d0d28da5221e785
3e217e0fb2c781e6d884e9bd58dc623b52b05dda3e617fd348dd732870e804f5
GET /s/css/5670.css HTTP/1.1
Host: tt.ttarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Dec 2022 11:35:43 GMT
Content-Type: text/css
Content-Length: 15592
Last-Modified: Fri, 09 Oct 2020 09:25:08 GMT
Connection: keep-alive
ETag: "5f802c74-3ce8"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
kurs-ufa.ru/wp-admin/admin-ajax.php?postviews_id=899&action=postviews&_=1670240265600
87.236.16.242200 OK 2 B URL HTTP/2 kurs-ufa.ru/wp-admin/admin-ajax.php?postviews_id=899&action=postviews&_=1670240265600
IP 87.236.16.242:0
File type ASCII text, with no line terminators
Hash 28dd2c7955ce926456240b2ff0100bde
d321d6f7ccf98b51540ec9d933f20898af3bd71e
a88a7902cb4ef697ba0b6759c50e8c10297ff58f942243de19b984841bfe1f73
GET /wp-admin/admin-ajax.php?postviews_id=899&action=postviews&_=1670240265600 HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Mon, 05 Dec 2022 11:37:50 GMT
content-type: text/html; charset=UTF-8
content-length: 2
x-powered-by: PHP/7.4.33
set-cookie: eaJfmz=0qr_.tS%5BGmAaghJ; expires=Tue, 06-Dec-2022 11:37:49 GMT; Max-Age=86400; path=/; secure
qdQguVIBUGW=7Vux9UjXKZW; expires=Tue, 06-Dec-2022 11:37:49 GMT; Max-Age=86400; path=/; secure
kOCBXbw=EyP3SOM%5Bmt6; expires=Tue, 06-Dec-2022 11:37:49 GMT; Max-Age=86400; path=/; secure
access-control-allow-origin: http://kurs-ufa.ru
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
X-Firefox-Spdy: h2
tt.ttarget.ru/get.js?w=240&h=0&id=uddb138a4cd983&bid=5669&visible=true&mobile=false&url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rf=
80.78.249.254200 OK 517 B URL HTTP/1.1 tt.ttarget.ru/get.js?w=240&h=0&id=uddb138a4cd983&bid=5669&visible=true&mobile=false&url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rf=
IP 80.78.249.254:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type ASCII text, with very long lines (516)
Hash d9a9a7f53f6fbb41d2de5fa125fef941
ff18fa6b9369a5044fb6cd0d61fb43c73139e4d8
0e72eebf8cfcc06a4cbb0939d1a144bc89de91014e3113848d655e093dd5b146
GET /get.js?w=240&h=0&id=uddb138a4cd983&bid=5669&visible=true&mobile=false&url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rf= HTTP/1.1
Host: tt.ttarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Dec 2022 11:35:43 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __tt1=lsw4yjo-f718Xzfvh11; Max-Age=94608000; Path=/; SameSite=none; Secure
__tts=AA; Max-Age=94608000; Path=/
tt.ttarget.ru/get.js?w=240&h=0&id=u6ec493f9d4b4c&bid=5670&visible=false&mobile=false&url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rf=
80.78.249.254200 OK 517 B URL HTTP/1.1 tt.ttarget.ru/get.js?w=240&h=0&id=u6ec493f9d4b4c&bid=5670&visible=false&mobile=false&url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rf=
IP 80.78.249.254:0
ASN #197695 Domain names registrar REG.RU, Ltd
File type ASCII text, with very long lines (516)
Hash 6d7d71cc98bbe76337f75116a198c2a8
f76b456f002c14922583466304ef7396d408dd29
d05b659574c3a776517ebfe21c0094a08ed7043adeb5ad0d8facbeeec468195d
GET /get.js?w=240&h=0&id=u6ec493f9d4b4c&bid=5670&visible=false&mobile=false&url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rf= HTTP/1.1
Host: tt.ttarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Dec 2022 11:35:43 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __tt1=lsw4yjo-f7283Afvh11; Max-Age=94608000; Path=/; SameSite=none; Secure
__tts=AA; Max-Age=94608000; Path=/
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9134
Expires: Mon, 05 Dec 2022 14:10:04 GMT
Date: Mon, 05 Dec 2022 11:37:50 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9134
Expires: Mon, 05 Dec 2022 14:10:04 GMT
Date: Mon, 05 Dec 2022 11:37:50 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Roboto:400,400i,500,700,700i&subset=cyrillic
142.250.74.74200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:400,400i,500,700,700i&subset=cyrillic
IP 142.250.74.74:0
Hash 3850d1fdec2dbff6ff945b7e80f9a069
61569a88e65b9b12275cc5071687540fa98f3240
a2eed8ebae4b4f8b217c95c6bc1105664d856dbae06f3d96327021847c41efea
GET /css?family=Roboto:400,400i,500,700,700i&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Dec 2022 11:37:48 GMT
date: Mon, 05 Dec 2022 11:37:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9134
Expires: Mon, 05 Dec 2022 14:10:04 GMT
Date: Mon, 05 Dec 2022 11:37:50 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9134
Expires: Mon, 05 Dec 2022 14:10:04 GMT
Date: Mon, 05 Dec 2022 11:37:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba66ee21-e2f8-434c-a2b3-004950fdfd58.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba66ee21-e2f8-434c-a2b3-004950fdfd58.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 557fea28a0a540d2ffdadd828e03de0b
c314368e2e73dabf2c5d856e2c3e1fae610a3005
0fdd195911cdfff46a6dd8ba7b760953e5317fd7ee88abf1e19458518979fdee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba66ee21-e2f8-434c-a2b3-004950fdfd58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11253
x-amzn-requestid: e0561a00-8657-4af0-b24c-08b328282f79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_wKE9coAMFjmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1334-2844266d51d5c5672f34ff61;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: iT3IPDIK-qKf-y1_x7hZNSW-4GqKLNuX6U__8bY8eZP178PPnD0IeA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:57:03 GMT
age: 49247
etag: "c314368e2e73dabf2c5d856e2c3e1fae610a3005"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6079166a1ed5bac7373183f03f33b84e
b0c9391b87a4560598e43d5084dda41e267974a9
3e2faccbc3e14a10da4a433d789068cdc3fb2d3e2a04a7e2b7ea5f6f6313dcd4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc619d7d-5f58-4402-a30a-fe05dd9e2922.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13647
x-amzn-requestid: 36276b12-9e02-4d00-a100-9aa5c794fc79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_ueEWUoAMFj7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1329-7abb45a85c6bc2235c25d61e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oXeR8DTpEoK8E-BiI7gT4JEIdVBfiimfydNYIC62_rNLlTdem9Buig==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:45:46 GMT
age: 49924
etag: "b0c9391b87a4560598e43d5084dda41e267974a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:52:41 GMT
age: 49509
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kmki-SBINSx1kbiIkaSGebdCLrnDeHVhYeotAWzE__CevkNDdfzRGg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:44:01 GMT
age: 50029
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24c69d7ef356b352956d6dcbc9f5df1d
2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9
94d068620c34652cb2d24ca8b3cf962febe9606e6d3a33d937fc9d99f176edef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10396
x-amzn-requestid: b879fd2e-b6cf-4373-b780-2d97481c45f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cioNbH5KoAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a8722-6add7f8e225878473b20c015;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 23:15:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ir97GJKaFoW6BNXCcmMqp0JSUd5JhCACyUvLh5G-0BWCDVJsqs7XhQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 22:03:01 GMT
age: 48889
etag: "2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a349d02cce160f72cc93f6fb6e45fa46
a6f82481ea0a820da0f199e8f9051a4aa4013c82
ab320118577a2dcb6ab7ad904d6350e187501a94b39b71fdd70b31cbc8853b24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47f316c5-1381-4b6e-9e8d-f1956258ef3e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6826
x-amzn-requestid: f0abdba6-14c8-4aae-ba3b-37ba0af2ff08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_t2FsLIAMFekA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d1325-3452be066acddb554f528cc3;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GS4yLzXiIZt-eL9T7gjbf2-vMu8i30WKPDmc2EQDxv0CELjdW1gMVA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:46:51 GMT
age: 49859
etag: "a6f82481ea0a820da0f199e8f9051a4aa4013c82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc.yandex.ru/watch/71051812?wmode=7&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A907%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A878166057789%3Ahid%3A1031329496%3Az%3A0%3Ai%3A20221205113747%3Aet%3A1670240268%3Ac%3A1%3Arn%3A740967641%3Arqn%3A1%3Au%3A1670240268580175171%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A49%2C35%2C433%2C0%2C-6%2C0%2C%2C745%2C89%2C%2C%2C%2C1326%3Aco%3A0%3Ans%3A1670240264702%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670240268%3At%3A%D0%9A%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D1%8C%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%BB%D0%BE%D0%B6%D0%B8%D1%82%D1%8C%20%D0%BF%D1%80%D0%BE%D0%B2%D0%BE%D0%B4%D0%BA%D1%83%20%D0%B2%20%D0%BA%D0%B2%D0%B0%D1%80%D1%82%D0%B8%D1%80%D0%B5%20-%20%D0%92%20%D0%BF%D0%BE%D0%BC%D0%BE%D1%89%D1%8C%20%D0%AD%D0%BB%D0%B5%D0%BA%D1%82%D1%80%D0%B8%D0%BA%D1%83&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
87.250.251.119302 Found 407 B URL HTTP/2 mc.yandex.ru/watch/71051812?wmode=7&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A907%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A878166057789%3Ahid%3A1031329496%3Az%3A0%3Ai%3A20221205113747%3Aet%3A1670240268%3Ac%3A1%3Arn%3A740967641%3Arqn%3A1%3Au%3A1670240268580175171%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A49%2C35%2C433%2C0%2C-6%2C0%2C%2C745%2C89%2C%2C%2C%2C1326%3Aco%3A0%3Ans%3A1670240264702%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670240268%3At%3A%D0%9A%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D1%8C%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%BB%D0%BE%D0%B6%D0%B8%D1%82%D1%8C%20%D0%BF%D1%80%D0%BE%D0%B2%D0%BE%D0%B4%D0%BA%D1%83%20%D0%B2%20%D0%BA%D0%B2%D0%B0%D1%80%D1%82%D0%B8%D1%80%D0%B5%20-%20%D0%92%20%D0%BF%D0%BE%D0%BC%D0%BE%D1%89%D1%8C%20%D0%AD%D0%BB%D0%B5%D0%BA%D1%82%D1%80%D0%B8%D0%BA%D1%83&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP 87.250.251.119:0
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash fac6e1558b14898015cc2101229c22e2
c114f5ff0cad3771c46e7cee15c7cdbd886e58b8
e96512d21874d5e3beea48a9f38969d02791a97a56be526d0434cf1c28b5ac80
GET /watch/71051812?wmode=7&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A907%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A878166057789%3Ahid%3A1031329496%3Az%3A0%3Ai%3A20221205113747%3Aet%3A1670240268%3Ac%3A1%3Arn%3A740967641%3Arqn%3A1%3Au%3A1670240268580175171%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A49%2C35%2C433%2C0%2C-6%2C0%2C%2C745%2C89%2C%2C%2C%2C1326%3Aco%3A0%3Ans%3A1670240264702%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670240268%3At%3A%D0%9A%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D1%8C%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%BB%D0%BE%D0%B6%D0%B8%D1%82%D1%8C%20%D0%BF%D1%80%D0%BE%D0%B2%D0%BE%D0%B4%D0%BA%D1%83%20%D0%B2%20%D0%BA%D0%B2%D0%B0%D1%80%D1%82%D0%B8%D1%80%D0%B5%20-%20%D0%92%20%D0%BF%D0%BE%D0%BC%D0%BE%D1%89%D1%8C%20%D0%AD%D0%BB%D0%B5%D0%BA%D1%82%D1%80%D0%B8%D0%BA%D1%83&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/71051812/1?wmode=7&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&charset=utf-8&browser-info=pv%3A1%3Avf%3Aynz2f7f3y7l8rj188tipo%3Afp%3A907%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A933%3Acn%3A1%3Adp%3A0%3Als%3A878166057789%3Ahid%3A1031329496%3Az%3A0%3Ai%3A20221205113747%3Aet%3A1670240268%3Ac%3A1%3Arn%3A740967641%3Arqn%3A1%3Au%3A1670240268580175171%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A49%2C35%2C433%2C0%2C-6%2C0%2C%2C745%2C89%2C%2C%2C%2C1326%3Aco%3A0%3Ans%3A1670240264702%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1670240268%3At%3A%D0%9A%D0%B0%D0%BA%20%D0%BF%D1%80%D0%B0%D0%B2%D0%B8%D0%BB%D1%8C%D0%BD%D0%BE%20%D0%BF%D1%80%D0%BE%D0%BB%D0%BE%D0%B6%D0%B8%D1%82%D1%8C%20%D0%BF%D1%80%D0%BE%D0%B2%D0%BE%D0%B4%D0%BA%D1%83%20%D0%B2%20%D0%BA%D0%B2%D0%B0%D1%80%D1%82%D0%B8%D1%80%D0%B5%20-%20%D0%92%20%D0%BF%D0%BE%D0%BC%D0%BE%D1%89%D1%8C%20%D0%AD%D0%BB%D0%B5%D0%BA%D1%82%D1%80%D0%B8%D0%BA%D1%83&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Mon, 05 Dec 2022 11:37:50 GMT
access-control-allow-origin: http://kurs-ufa.ru
set-cookie: yabs-sid=2176422781670240270; Path=/; SameSite=None; Secure
i=FuDBWP9cnPFpZCKIFn/0S94Vfk2Hwrqh0lOpImUEWxb5A7fKQkNfZ9O5yY4vPEgofivE5N5PRPA4Kc8rBqklOVi1DU4=; Expires=Thu, 02-Dec-2032 11:37:46 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=1682409141670240270; Expires=Tue, 05-Dec-2023 11:37:50 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=1682409141670240270; Expires=Tue, 05-Dec-2023 11:37:50 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1701776270.yc.1670240270#1701776270.yrts.1670240270#1701776270.yrtsi.1670240270; Expires=Tue, 05-Dec-2023 11:37:50 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 05-Dec-2022 11:37:50 GMT
last-modified: Mon, 05-Dec-2022 11:37:50 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Mon, 05 Dec 2022 11:37:50 GMT
access-control-allow-origin: *
etag: "6388ac0c-2b"
expires: Mon, 05 Dec 2022 12:37:50 GMT
accept-ranges: bytes
last-modified: Thu, 01 Dec 2022 16:28:44 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
fuyviz.com/v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=342e69e3-603f-4cc5-86d9-ecd1be4ba168&block_uuid=342e69e3-603f-4cc5-86d9-ecd1be4ba168&refresh_depth=1&safari_multiple_request=141
62.76.25.28200 OK 5.8 kB URL HTTP/1.1 fuyviz.com/v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=342e69e3-603f-4cc5-86d9-ecd1be4ba168&block_uuid=342e69e3-603f-4cc5-86d9-ecd1be4ba168&refresh_depth=1&safari_multiple_request=141
IP 62.76.25.28:0
File type Unicode text, UTF-8 text, with very long lines (12526)
Hash c22c58833d75b229a3da4885f491ddee
980be4846f7a9144bf76402dc4611e2e85460e19
22f85c25f89633e619d8e22c1b137852988620f8d25d7844bd4ac553a8a09aa4
GET /v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=342e69e3-603f-4cc5-86d9-ecd1be4ba168&block_uuid=342e69e3-603f-4cc5-86d9-ecd1be4ba168&refresh_depth=1&safari_multiple_request=141 HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: application/x-www-form-urlencoded
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Mon, 05 Dec 2022 11:37:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Content-Encoding: gzip
kurs-ufa.ru/wp-content/cache/thumb/73/36d03492b3bd573_300x180.jpg
87.236.16.242200 OK 7.1 kB URL HTTP/1.1 kurs-ufa.ru/wp-content/cache/thumb/73/36d03492b3bd573_300x180.jpg
IP 87.236.16.242:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x180, components 3\012- data
Hash 0b96f91decdb915a9cbf9d060a994a43
9b7bcd8bf9169d30dd65e02163108a532bd494bf
46dbe32431858c682f8558257d893fc08ccb0a4602839c93841644efb887d8c8
GET /wp-content/cache/thumb/73/36d03492b3bd573_300x180.jpg HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html
Cookie: eaJfmz=0qr_.tS%5BGmAaghJ; qdQguVIBUGW=7Vux9UjXKZW; kOCBXbw=EyP3SOM%5Bmt6; surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15; la_page_depth=%7B%22last%22%3A%22http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html%22%2C%22depth%22%3A1%7D; page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb; flat_r_mb=%2F%2F%2F%3Adirect; _ym_uid=1670240268580175171; _ym_d=1670240268; _ym_isad=2; _ym_visorc=w
HTTP/1.1 200 OK
Server: nginx-reuseport/1.21.1
Date: Mon, 05 Dec 2022 11:37:50 GMT
Content-Type: image/jpeg
Content-Length: 7116
Last-Modified: Sat, 01 Jan 2022 07:57:57 GMT
Connection: keep-alive
Keep-Alive: timeout=30
ETag: "61d00985-1bcc"
Expires: Wed, 04 Jan 2023 11:37:50 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
fuyviz.com/.cdn/3a8241/6512bd/c5d302d2d9754ad3a05ce547fb27c270/d036376b9acdc5ec.jpeg
62.76.25.28200 OK 24 kB URL HTTP/2 fuyviz.com/.cdn/3a8241/6512bd/c5d302d2d9754ad3a05ce547fb27c270/d036376b9acdc5ec.jpeg
IP 62.76.25.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3\012- data
Hash 76d5969b535a39604e380cd7fec6de88
da966b8638f1d7bf478ff99cc7c05374aa7ce41c
2016b11b1259a5c9bd5638dbd713c544279504a597f1c110842214e3dd5f8be8
Analyzer Verdict Alert fortinet Malware
GET /.cdn/3a8241/6512bd/c5d302d2d9754ad3a05ce547fb27c270/d036376b9acdc5ec.jpeg HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 05 Dec 2022 11:37:50 GMT
content-type: image/jpeg
content-length: 23522
last-modified: Thu, 17 Nov 2022 22:46:04 GMT
etag: "6376b9ac-5be2"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
kurs-ufa.ru/wp-content/uploads/2020/11/unnamed-300x242.jpg
87.236.16.242200 OK 15 kB URL HTTP/2 kurs-ufa.ru/wp-content/uploads/2020/11/unnamed-300x242.jpg
IP 87.236.16.242:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 300x242, components 3\012- data
Hash 19b1ccbdd73ca70b5bec10135e539bb9
27096b2fbfa2d43add33ddf27b20279b79af334e
52327d0b84ab76eb398fb4d5803ea38d9daaaeffbfad5213063e4653fc2815b1
GET /wp-content/uploads/2020/11/unnamed-300x242.jpg HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Mon, 05 Dec 2022 11:37:50 GMT
content-type: image/jpeg
content-length: 14784
last-modified: Tue, 08 Dec 2020 11:25:35 GMT
etag: "5fcf62af-39c0"
expires: Wed, 04 Jan 2023 11:37:50 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
fuyviz.com/v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=ca6c8c01-72cb-400c-b1c6-833e3d78609c&block_uuid=ca6c8c01-72cb-400c-b1c6-833e3d78609c&refresh_depth=1&safari_multiple_request=986
62.76.25.28200 OK 5.4 kB URL HTTP/1.1 fuyviz.com/v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=ca6c8c01-72cb-400c-b1c6-833e3d78609c&block_uuid=ca6c8c01-72cb-400c-b1c6-833e3d78609c&refresh_depth=1&safari_multiple_request=986
IP 62.76.25.28:0
File type Unicode text, UTF-8 text, with very long lines (9201)
Hash c692d66f8bc1881f7e942030f15bf642
df2f99f36b791693b54d8a8f5ce20a20c20c0826
efafd2127c3551b55b6a27a8fde452c16268975589f65c1b5247a41538bc8709
GET /v4/render?surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15&referrer=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&page_load_uuid=0a90367d-1e61-4693-a4f1-a55bab1ac0eb&page_depth=1&vim69p1oveh=ca6c8c01-72cb-400c-b1c6-833e3d78609c&block_uuid=ca6c8c01-72cb-400c-b1c6-833e3d78609c&refresh_depth=1&safari_multiple_request=986 HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: application/x-www-form-urlencoded
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Mon, 05 Dec 2022 11:37:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: *
Content-Encoding: gzip
fuyviz.com/.cdn/3a8241/6512bd/1c4cf0e72e78462d8b0ec097fd83bc10/d0363864becd8bb3.jpeg
62.76.25.28200 OK 34 kB URL HTTP/2 fuyviz.com/.cdn/3a8241/6512bd/1c4cf0e72e78462d8b0ec097fd83bc10/d0363864becd8bb3.jpeg
IP 62.76.25.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3\012- data
Hash 0074107f0c9add9acd907b396fe7a618
d9ca3d207f031c517bfb18c36bee91f33ef970a1
ba412a92e27937f3795ca6d9f89e58e4a485b29c78b673b91a07e65a4db5f98b
Analyzer Verdict Alert fortinet Malware
GET /.cdn/3a8241/6512bd/1c4cf0e72e78462d8b0ec097fd83bc10/d0363864becd8bb3.jpeg HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 05 Dec 2022 11:37:50 GMT
content-type: image/jpeg
content-length: 33729
last-modified: Tue, 29 Nov 2022 18:14:04 GMT
etag: "63864bec-83c1"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
fuyviz.com/.cdn/3a8241/6512bd/6506036ddfbf41da9032d32fc702c6ba/d036387544c9fce9.jpeg
62.76.25.28200 OK 30 kB URL HTTP/2 fuyviz.com/.cdn/3a8241/6512bd/6506036ddfbf41da9032d32fc702c6ba/d036387544c9fce9.jpeg
IP 62.76.25.28:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 320x180, components 3\012- data
Hash aab6cd21503f66930485247398ed4b29
ca7017ccd676006ba31e8611b20661bafb59776f
3889402e0507cbf0a487125f302dd3c714f4dc97a8a25b64adf250d4cb8cbffa
Analyzer Verdict Alert fortinet Malware
GET /.cdn/3a8241/6512bd/6506036ddfbf41da9032d32fc702c6ba/d036387544c9fce9.jpeg HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.14.2
date: Mon, 05 Dec 2022 11:37:50 GMT
content-type: image/jpeg
content-length: 29502
last-modified: Wed, 30 Nov 2022 13:02:04 GMT
etag: "6387544c-733e"
access-control-allow-headers: *
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
fuyviz.com/v4/confirm/block?uuid=3fb03888-4685-5317-8d65-54b8541a6267
62.76.25.28200 OK 26 B URL HTTP/1.1 fuyviz.com/v4/confirm/block?uuid=3fb03888-4685-5317-8d65-54b8541a6267
IP 62.76.25.28:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1504bb1fa7f0d3488a7858108875057a
9cfc808fef5f280cc9dfe5ca503c57718ff7d9dc
79d733937528a966339f37ccfc9f76b0c22cc03cdb5011925e6fa7db07f93e9a
Analyzer Verdict Alert fortinet Malware
POST /v4/confirm/block?uuid=3fb03888-4685-5317-8d65-54b8541a6267 HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: application/x-www-form-urlencoded
Content-Length: 15
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Mon, 05 Dec 2022 11:37:50 GMT
Content-Type: application/json
Content-Length: 26
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Allow-Headers: *
fuyviz.com/v4/confirm/ad?uuid[]=f5e3e248-7594-7ccf-45a9-7a639c388c38&uuid[]=8c6ec8ee-c0ef-eaa8-d496-074d9be4f8a3&ad_ids[]=550891&ad_ids[]=557614&surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15
62.76.25.28200 OK 23 B URL HTTP/1.1 fuyviz.com/v4/confirm/ad?uuid[]=f5e3e248-7594-7ccf-45a9-7a639c388c38&uuid[]=8c6ec8ee-c0ef-eaa8-d496-074d9be4f8a3&ad_ids[]=550891&ad_ids[]=557614&surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15
IP 62.76.25.28:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 93ef37687a0f06406588c5399c688161
bcf412994198be7ca07a82b598b3be72c1b48b29
c31a4e889db15a6c9c2a34e9757349c67e460639920c028018a508b056ee3e01
POST /v4/confirm/ad?uuid[]=f5e3e248-7594-7ccf-45a9-7a639c388c38&uuid[]=8c6ec8ee-c0ef-eaa8-d496-074d9be4f8a3&ad_ids[]=550891&ad_ids[]=557614&surfer_uuid=a434ecc1-0614-4b21-9f3d-ed59f7ec7b15 HTTP/1.1
Host: fuyviz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: application/x-www-form-urlencoded
Content-Length: 15
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Mon, 05 Dec 2022 11:37:50 GMT
Content-Type: application/json
Content-Length: 23
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: *
Access-Control-Allow-Headers: *
zn2.2xclick.ru/img/300x300/748/1477748_a9b989455f.jpg
93.95.99.151200 OK 19 kB URL HTTP/1.1 zn2.2xclick.ru/img/300x300/748/1477748_a9b989455f.jpg
IP 93.95.99.151:0
ASN #48347 JSC Mediasoft ekspert
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Hash dee762c85852abdf66c1b0f5d9501de5
6a7559a457ce1cc7c7904c704c1592bcd59d42ba
47320eb6b781d8be57ea6b83061567ef46ebd5d4c196f9b59bc68dd6ce46a3a5
GET /img/300x300/748/1477748_a9b989455f.jpg HTTP/1.1
Host: zn2.2xclick.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Mon, 05 Dec 2022 11:37:51 GMT
Content-Type: image/jpeg
Content-Length: 18723
Last-Modified: Mon, 05 Dec 2022 09:15:37 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "638db6b9-4923"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Set-Cookie: uid=XV9jl2ON2A+Rd+icNSF4Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
Accept-Ranges: bytes
zn2.2xclick.ru/img/300x300/110/1477110_73395b4313.jpg
93.95.99.151200 OK 12 kB URL HTTP/1.1 zn2.2xclick.ru/img/300x300/110/1477110_73395b4313.jpg
IP 93.95.99.151:0
ASN #48347 JSC Mediasoft ekspert
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Hash e16df619abd062e6a7084492f488a00b
4fdedd3009f16f4c6040d0720b851c19cc5eb730
6c0051199dcc06ecf0b148616bed39a8350cefc45f40cabab77025e6bca096a0
GET /img/300x300/110/1477110_73395b4313.jpg HTTP/1.1
Host: zn2.2xclick.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Mon, 05 Dec 2022 11:37:51 GMT
Content-Type: image/jpeg
Content-Length: 11633
Last-Modified: Fri, 02 Dec 2022 17:00:20 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "638a2f24-2d71"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Set-Cookie: uid=XV9jl2ON2A+Rd+icNSF6Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
Accept-Ranges: bytes
zn2.2xclick.ru/img/300x300/507/1476507_3d38ae0cfa.jpg
93.95.99.151200 OK 14 kB URL HTTP/1.1 zn2.2xclick.ru/img/300x300/507/1476507_3d38ae0cfa.jpg
IP 93.95.99.151:0
ASN #48347 JSC Mediasoft ekspert
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Hash eec9bcfc9b0a9ae4485844a1de3efe86
68aecd0f812f5a541d703a03e135556e6f4c2fcc
de50ca8e2cfafb0f08e306854378f9de32ba1828ecedf6799e909bdb597ad14f
GET /img/300x300/507/1476507_3d38ae0cfa.jpg HTTP/1.1
Host: zn2.2xclick.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Mon, 05 Dec 2022 11:37:51 GMT
Content-Type: image/jpeg
Content-Length: 14101
Last-Modified: Thu, 01 Dec 2022 15:00:44 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "6388c19c-3715"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Set-Cookie: uid=XV9jl2ON2A+Rd+icNSF8Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
Accept-Ranges: bytes
fcgi5.gnezdo.ru/cgi-bin/tzr.fcgi?id=160125&f=2&ref=http%3A//kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html&gw=680&gh=0&gsnr=0&rt=direct&gaid=0>vm=&ids=&fp=44eaa2d4c50c52b5ce84c40fa9171827
185.148.37.79200 OK 17 kB URL HTTP/2 fcgi5.gnezdo.ru/cgi-bin/tzr.fcgi?id=160125&f=2&ref=http%3A//kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html&gw=680&gh=0&gsnr=0&rt=direct&gaid=0>vm=&ids=&fp=44eaa2d4c50c52b5ce84c40fa9171827
IP 185.148.37.79:0
ASN #48347 JSC Mediasoft ekspert
Hash 8eed227d4e26fe646f45d32da45c349e
45e655bb8ca8604413d9fe0ad740d662d1869978
b6d2dbd18d657b04b7cb3dbe5dbcfd418b9fc1f92a634d01eaaa094eb486ff10
GET /cgi-bin/tzr.fcgi?id=160125&f=2&ref=http%3A//kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html&gw=680&gh=0&gsnr=0&rt=direct&gaid=0>vm=&ids=&fp=44eaa2d4c50c52b5ce84c40fa9171827 HTTP/1.1
Host: fcgi5.gnezdo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 11:37:50 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: http://kurs-ufa.ru
access-control-allow-methods: GET, POST, HEAD
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: weborama_cm=1; Domain=.gnezdo.ru; Max-Age=31536000; Path=/; Secure; SameSite=None
uid=uZQlT2ON2A413XetGwafAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; secure; SameSite=none
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
X-Firefox-Spdy: h2
fcgi5.gnezdo.ru/v
185.148.37.79200 OK 3.0 kB IP 185.148.37.79:0
ASN #48347 JSC Mediasoft ekspert
Hash fb536baaa120b44264e8d922978f4915
944df20e71acf1cee0b539cffa9a0ef959ff0e49
9ed89b1480769f91bdd9f029966ac55d58af1d22198cc38b0570344f850756ae
POST /v HTTP/1.1
Host: fcgi5.gnezdo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 733
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 11:37:51 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: http://kurs-ufa.ru
access-control-allow-methods: GET, POST, HEAD
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With
access-control-allow-credentials: true
set-cookie: uid=uZQlT2ON2A813XetGweCAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; secure; SameSite=none
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
X-Firefox-Spdy: h2
zn2.2xclick.ru/img/400x400/347/1476347_34d1345ef8.jpg
93.95.99.151200 OK 30 kB URL HTTP/1.1 zn2.2xclick.ru/img/400x400/347/1476347_34d1345ef8.jpg
IP 93.95.99.151:0
ASN #48347 JSC Mediasoft ekspert
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3\012- data
Hash f59d93e08aae4f46d77fc82cefb3546b
19a7db78414d9b5ce3b257f826a9ebd195c33dc7
c71d4f88922209ec6e5909ac50ed9c80c851df429dba3788d127ef4a37ee287b
GET /img/400x400/347/1476347_34d1345ef8.jpg HTTP/1.1
Host: zn2.2xclick.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Mon, 05 Dec 2022 11:37:51 GMT
Content-Type: image/jpeg
Content-Length: 30426
Last-Modified: Thu, 01 Dec 2022 11:00:27 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "6388894b-76da"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Set-Cookie: uid=XV9jl2ON2A+Rd+icNSG8Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
Accept-Ranges: bytes
zn2.2xclick.ru/img/400x400/252/1472252_3273b6d415.jpg
93.95.99.151200 OK 30 kB URL HTTP/1.1 zn2.2xclick.ru/img/400x400/252/1472252_3273b6d415.jpg
IP 93.95.99.151:0
ASN #48347 JSC Mediasoft ekspert
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3\012- data
Hash 2fab5dfeae0de4fe9401c497c2f6861f
5bb6bcc26d5f674d1c049b0c3c0745dda90d412d
a8aa9e06617657ce345a4fe5dc092791a0fb28ab90f68e52ed0cac7cb8bf3bb9
GET /img/400x400/252/1472252_3273b6d415.jpg HTTP/1.1
Host: zn2.2xclick.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Mon, 05 Dec 2022 11:37:51 GMT
Content-Type: image/jpeg
Content-Length: 29720
Last-Modified: Tue, 22 Nov 2022 16:15:56 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "637cf5bc-7418"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Set-Cookie: uid=XV9jl2ON2A+Rd+icNSG9Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
Accept-Ranges: bytes
zn2.2xclick.ru/img/400x400/306/1477306_f520d69452.jpg
93.95.99.151200 OK 22 kB URL HTTP/1.1 zn2.2xclick.ru/img/400x400/306/1477306_f520d69452.jpg
IP 93.95.99.151:0
ASN #48347 JSC Mediasoft ekspert
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 400x400, components 3\012- data
Hash de36113b6c00a4c121b0353d17baaf45
7cd237a8fc062777c766fffcfac1fcd61f45bc85
bf48f4f795a30f531b005fbc445c1ad5062e750e2799dce057776365add20247
GET /img/400x400/306/1477306_f520d69452.jpg HTTP/1.1
Host: zn2.2xclick.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Mon, 05 Dec 2022 11:37:51 GMT
Content-Type: image/jpeg
Content-Length: 22358
Last-Modified: Sat, 03 Dec 2022 12:00:19 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "638b3a53-5756"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Set-Cookie: uid=XV9jl2ON2A+Rd+icNSG+Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
Accept-Ranges: bytes
mc.yandex.ru/webvisor/71051812?wmode=0&wv-part=1&wv-hit=1031329496&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rn=942109997&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670240271%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221205113751%3Au%3A1670240268580175171%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1670240271&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/71051812?wmode=0&wv-part=1&wv-hit=1031329496&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rn=942109997&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670240271%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221205113751%3Au%3A1670240268580175171%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1670240271&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/71051812?wmode=0&wv-part=1&wv-hit=1031329496&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rn=942109997&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670240271%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221205113751%3Au%3A1670240268580175171%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1670240271&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 336634
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Mon, 05 Dec 2022 11:37:53 GMT
access-control-allow-origin: http://kurs-ufa.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 05-Dec-2022 11:37:53 GMT
last-modified: Mon, 05-Dec-2022 11:37:53 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/71051812?wmode=0&wv-part=1&wv-hit=1031329496&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rn=497544510&wv-type=3&browser-info=we%3A1%3Aet%3A1670240271%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221205113751%3Au%3A1670240268580175171%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1670240271&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/71051812?wmode=0&wv-part=1&wv-hit=1031329496&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rn=497544510&wv-type=3&browser-info=we%3A1%3Aet%3A1670240271%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221205113751%3Au%3A1670240268580175171%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1670240271&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/71051812?wmode=0&wv-part=1&wv-hit=1031329496&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rn=497544510&wv-type=3&browser-info=we%3A1%3Aet%3A1670240271%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221205113751%3Au%3A1670240268580175171%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1670240271&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 55
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Mon, 05 Dec 2022 11:37:54 GMT
access-control-allow-origin: http://kurs-ufa.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 05-Dec-2022 11:37:54 GMT
last-modified: Mon, 05-Dec-2022 11:37:54 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/71051812?wv-check=12422&wv-type=0&wmode=0&wv-part=1&wv-hit=1031329496&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rn=237564963&browser-info=we%3A1%3Aet%3A1670240274%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221205113753%3Au%3A1670240268580175171%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1670240274&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/71051812?wv-check=12422&wv-type=0&wmode=0&wv-part=1&wv-hit=1031329496&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rn=237564963&browser-info=we%3A1%3Aet%3A1670240274%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221205113753%3Au%3A1670240268580175171%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1670240274&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/71051812?wv-check=12422&wv-type=0&wmode=0&wv-part=1&wv-hit=1031329496&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rn=237564963&browser-info=we%3A1%3Aet%3A1670240274%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221205113753%3Au%3A1670240268580175171%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1670240274&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Mon, 05 Dec 2022 11:37:56 GMT
access-control-allow-origin: http://kurs-ufa.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 05-Dec-2022 11:37:56 GMT
last-modified: Mon, 05-Dec-2022 11:37:56 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/71051812?wmode=0&wv-part=2&wv-hit=1031329496&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rn=849984367&wv-type=3&browser-info=we%3A1%3Aet%3A1670240274%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221205113753%3Au%3A1670240268580175171%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1670240274&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/71051812?wmode=0&wv-part=2&wv-hit=1031329496&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rn=849984367&wv-type=3&browser-info=we%3A1%3Aet%3A1670240274%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221205113753%3Au%3A1670240268580175171%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1670240274&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/71051812?wmode=0&wv-part=2&wv-hit=1031329496&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rn=849984367&wv-type=3&browser-info=we%3A1%3Aet%3A1670240274%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221205113753%3Au%3A1670240268580175171%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1670240274&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Mon, 05 Dec 2022 11:37:56 GMT
access-control-allow-origin: http://kurs-ufa.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 05-Dec-2022 11:37:56 GMT
last-modified: Mon, 05-Dec-2022 11:37:56 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/71051812?wmode=0&wv-part=2&wv-hit=1031329496&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rn=127525826&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670240274%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221205113753%3Au%3A1670240268580175171%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1670240274&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/71051812?wmode=0&wv-part=2&wv-hit=1031329496&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rn=127525826&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670240274%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221205113753%3Au%3A1670240268580175171%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1670240274&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/71051812?wmode=0&wv-part=2&wv-hit=1031329496&page-url=http%3A%2F%2Fkurs-ufa.ru%2Fvopros-otvet%2Fkak-pravilno-prolozhit-provodku-v-kvartire.html&rn=127525826&wv-type=3&browser-info=bt%3A1%3Awe%3A1%3Aet%3A1670240274%3Aw%3A1268x939%3Av%3A933%3Az%3A0%3Ai%3A20221205113753%3Au%3A1670240268580175171%3Avf%3Aynz2f7f3y7l8rj188tipo%3Ast%3A1670240274&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2168
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Mon, 05 Dec 2022 11:37:56 GMT
access-control-allow-origin: http://kurs-ufa.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Mon, 05-Dec-2022 11:37:56 GMT
last-modified: Mon, 05-Dec-2022 11:37:56 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
fcgi5.gnezdo.ru/cgi-bin/tzr.fcgi?id=160126&f=2&ref=http%3A//kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html&gw=680&gh=0&gsnr=0&rt=direct&gaid=0>vm=&ids=&fp=44eaa2d4c50c52b5ce84c40fa9171827
185.148.37.79200 OK 0 B URL HTTP/2 fcgi5.gnezdo.ru/cgi-bin/tzr.fcgi?id=160126&f=2&ref=http%3A//kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html&gw=680&gh=0&gsnr=0&rt=direct&gaid=0>vm=&ids=&fp=44eaa2d4c50c52b5ce84c40fa9171827
IP 185.148.37.79:0
ASN #48347 JSC Mediasoft ekspert
GET /cgi-bin/tzr.fcgi?id=160126&f=2&ref=http%3A//kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html&gw=680&gh=0&gsnr=0&rt=direct&gaid=0>vm=&ids=&fp=44eaa2d4c50c52b5ce84c40fa9171827 HTTP/1.1
Host: fcgi5.gnezdo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 11:37:51 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: http://kurs-ufa.ru
access-control-allow-methods: GET, POST, HEAD
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: weborama_cm=1; Domain=.gnezdo.ru; Max-Age=31536000; Path=/; Secure; SameSite=None
uid=uZQlT2ON2A813XetGwdHAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; secure; SameSite=none
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
X-Firefox-Spdy: h2
fcgi5.gnezdo.ru/e/?dr=&du=http%3A//kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html&tizer_id=160125&r=0.824970435096398
185.148.37.79200 OK 0 B URL HTTP/2 fcgi5.gnezdo.ru/e/?dr=&du=http%3A//kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html&tizer_id=160125&r=0.824970435096398
IP 185.148.37.79:0
ASN #48347 JSC Mediasoft ekspert
GET /e/?dr=&du=http%3A//kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html&tizer_id=160125&r=0.824970435096398 HTTP/1.1
Host: fcgi5.gnezdo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 11:37:51 GMT
content-type: image/gif; charset=windows-1251
set-cookie: uid=uZQlT2ON2A813XetGwd6Ag==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; secure; SameSite=none
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
X-Firefox-Spdy: h2
fcgi5.gnezdo.ru/e/?dr=&du=http%3A//kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html&tizer_id=160126&r=0.9042555991879481
185.148.37.79200 OK 0 B URL HTTP/2 fcgi5.gnezdo.ru/e/?dr=&du=http%3A//kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html&tizer_id=160126&r=0.9042555991879481
IP 185.148.37.79:0
ASN #48347 JSC Mediasoft ekspert
GET /e/?dr=&du=http%3A//kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html&tizer_id=160126&r=0.9042555991879481 HTTP/1.1
Host: fcgi5.gnezdo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 11:37:51 GMT
content-type: image/gif; charset=windows-1251
set-cookie: uid=uZQlT2ON2A813XetGwfBAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; secure; SameSite=none
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
X-Firefox-Spdy: h2
kurs-ufa.ru/wp-admin/admin-ajax.php
87.236.16.242403 Forbidden 0 B URL HTTP/2 kurs-ufa.ru/wp-admin/admin-ajax.php
IP 87.236.16.242:0
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: kurs-ufa.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------260266192412604238981338063624
Content-Length: 818
Origin: http://kurs-ufa.ru
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
server: nginx-reuseport/1.21.1
date: Mon, 05 Dec 2022 11:37:49 GMT
content-type: text/html
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
set-cookie: eaJfmz=0qr_.tS%5BGmAaghJ; expires=Tue, 06-Dec-2022 11:37:49 GMT; Max-Age=86400; path=/; secure
qdQguVIBUGW=7Vux9UjXKZW; expires=Tue, 06-Dec-2022 11:37:49 GMT; Max-Age=86400; path=/; secure
kOCBXbw=EyP3SOM%5Bmt6; expires=Tue, 06-Dec-2022 11:37:49 GMT; Max-Age=86400; path=/; secure
content-encoding: gzip
X-Firefox-Spdy: h2
fcgi5.gnezdo.ru/e/?dr=&du=http%3A//kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html&e=beforeunload&t=5448&r=0.9428990008924325
185.148.37.79200 OK 0 B URL HTTP/2 fcgi5.gnezdo.ru/e/?dr=&du=http%3A//kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html&e=beforeunload&t=5448&r=0.9428990008924325
IP 185.148.37.79:0
ASN #48347 JSC Mediasoft ekspert
GET /e/?dr=&du=http%3A//kurs-ufa.ru/vopros-otvet/kak-pravilno-prolozhit-provodku-v-kvartire.html&e=beforeunload&t=5448&r=0.9428990008924325 HTTP/1.1
Host: fcgi5.gnezdo.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kurs-ufa.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 11:37:56 GMT
content-type: image/gif; charset=windows-1251
set-cookie: uid=uZQlT2ON2BQ13XetGxDLAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; secure; SameSite=none
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
X-Firefox-Spdy: h2