bti.ua/
91.239.233.26301 Moved Permanently 223 B IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 147e4d155a6eb7c456202bc30a9c70e1
80743b32f75e4fe37ff4312b87e153a5594d71bb
a549137063b7ae63d7b805bb73e024a10df4da0dc7c62906a9f4fdd7603d610a
GET / HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 15 Jan 2023 18:01:45 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 223
Connection: keep-alive
Location: https://bti.ua/
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 2258cd6b877a3aca8f4c84074e65ac4b
4e46c70941f8e497e8afc8d078644e7f81761a1c
faac4e0d123f2112b58953c104ea746cd53047fc1ada0ef5d669feecf78ddfff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FAAC4E0D123F2112B58953C104EA746CD53047FC1ADA0EF5D669FEECF78DDFFF"
Last-Modified: Sat, 14 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8691
Expires: Sun, 15 Jan 2023 20:26:37 GMT
Date: Sun, 15 Jan 2023 18:01:46 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 0643dc6b6fed33b3537160b6bb77bcbf
aa43bd1fbb30d2219f3285c1ee4991ffb33562c5
f137438e30e0d69cba77ca2eb736687873e4a9c06cf88d23c6d55ea930fde09f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F137438E30E0D69CBA77CA2EB736687873E4A9C06CF88D23C6D55EA930FDE09F"
Last-Modified: Sat, 14 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12457
Expires: Sun, 15 Jan 2023 21:29:23 GMT
Date: Sun, 15 Jan 2023 18:01:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 15 Jan 2023 17:49:05 GMT
content-type: application/json
age: 761
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d6e2abd68203014e8e24d4a9e20e980a
5edbbb1a36083d5077b90b82e7aa10049e90c5d6
88cf8dae194a5e92a8c36a4c54ae71a609eaaed6e99d3986b3834c40d2fceeaa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "88CF8DAE194A5E92A8C36A4C54AE71A609EAAED6E99D3986B3834C40D2FCEEAA"
Last-Modified: Sun, 15 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4729
Expires: Sun, 15 Jan 2023 19:20:35 GMT
Date: Sun, 15 Jan 2023 18:01:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Oga/l00YlepHX6ZqFa3bZP7/uVyTNtf/RMEAeG9yxA7kI9Eo5CU06bkOhJPthY7dftmtYRPsQG4=
x-amz-request-id: NNFJG2RJ46RYM7X3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 15 Jan 2023 17:55:27 GMT
age: 379
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
bti.ua/
91.239.233.26200 OK 11 kB IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2205), with CRLF, LF line terminators
Hash 8000e3e4d61046e43c0e81e73c215806
c094812852794a4910352c1e10ad6e0c4ae44611
34442d00ebbaac2573ca736fc5a7df63dca7a8ad380feb008c3f109ddb3a049d
GET / HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: text/html; charset=UTF-8
content-length: 10729
vary: Accept-Encoding,Cookie
cache-control: max-age=3, must-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
bti.ua/wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=6.2.1
91.239.233.26200 OK 368 B URL HTTP/2 bti.ua/wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=6.2.1
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
Hash a5c8c7584d4352f0944498e6b2741b75
083bd68e887b54538839bb66ee1cae3ff90e13f1
b6912255ea638fba08fa7c606e4929ac223118e12c62d24d2e700ab80e7e238c
GET /wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=6.2.1 HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: text/css
content-length: 368
last-modified: Fri, 05 Oct 2018 07:52:16 GMT
etag: "5bb71830-170"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f3ee298482e8025b16b90899b84c98d1
ce5050ce27200b3408a8e5113adcc7a8d14b4796
4c3dd7d296e502765b2de450a4ecb5f8c872ed477b464b9913d2633125680ff0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 15 Jan 2023 18:01:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 5ac0e204e812ce8905ac046581ff4e95
c0322d4ecff9356cca1a8e55d62e8d2f9540eca7
de65a926e0a1ce8b9724754564cef8e4bbe7709cef911e5dbd30db03211e6673
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 15 Jan 2023 18:01:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 83579ff88cab4d4d05d4741599104d9c
fe74c219f8655a4ca36fe397884e55ab63d1288a
a492a770e88739fac8094f7b73f87474cee4ad2ccbf9f1963b935474544ef3f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 15 Jan 2023 18:01:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.google.com/maps/api/js?key=AIzaSyAOIHffdARn8Eel20-kFF12NPlWX91WPvI&libraries=geometry%2Cplaces%2Cweather%2Cpanoramio%2Cdrawing&language=ru&ver=4.9.22
142.250.74.46200 OK 60 kB URL HTTP/2 maps.google.com/maps/api/js?key=AIzaSyAOIHffdARn8Eel20-kFF12NPlWX91WPvI&libraries=geometry%2Cplaces%2Cweather%2Cpanoramio%2Cdrawing&language=ru&ver=4.9.22
IP 142.250.74.46:0
File type ASCII text, with very long lines (2408)
Hash 7da12532080bfb31b04a37cbad162e4d
3d818b4a3693f2eece5bd5bd5d5104748f2cc5de
9be9298bb0eac170458213ab64f11ebb8dc8c690ca300f9ddb2861127da547ee
GET /maps/api/js?key=AIzaSyAOIHffdARn8Eel20-kFF12NPlWX91WPvI&libraries=geometry%2Cplaces%2Cweather%2Cpanoramio%2Cdrawing&language=ru&ver=4.9.22 HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sun, 15 Jan 2023 18:01:46 GMT
expires: Sun, 15 Jan 2023 18:31:46 GMT
cache-control: public, max-age=1800
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 59847
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=31
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e804586be26c88b95d554afe0ef24d5c
6f99b1fe2330c4661608f17819a4490a92ca296c
38894b7977e8f8e790a71eedf8144799a77ccceb49771e7458392ad7916293db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 15 Jan 2023 18:01:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Droid+Sans%3A400%2C700&ver=4.9.22
142.250.74.106200 OK 776 B URL HTTP/2 fonts.googleapis.com/css?family=Droid+Sans%3A400%2C700&ver=4.9.22
IP 142.250.74.106:0
Hash a4a7fd5c25e1f71f5b8c60c4959688cd
22c8a1a7e22ece98c4020b284f3949b3a7bbfdc0
5da6424072e7ba0dbf73857228880a3e788e366c57a456b100d31e3af69a333e
GET /css?family=Droid+Sans%3A400%2C700&ver=4.9.22 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 15 Jan 2023 18:01:46 GMT
date: Sun, 15 Jan 2023 18:01:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bti.ua/wp-content/plugins/wp-banner/js/banner.js?ver=4.9.22
91.239.233.26200 OK 348 B URL HTTP/2 bti.ua/wp-content/plugins/wp-banner/js/banner.js?ver=4.9.22
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
Hash a14b37c362ad7ff51d98721a52ad39f0
98014c946436461bddbfb52bf6a23a19bc04196b
fcf2e0635d3e5f6736bf582a0e2c7ae0275b55be0a7f1bbcc9718303caeb38c5
GET /wp-content/plugins/wp-banner/js/banner.js?ver=4.9.22 HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: application/javascript
content-length: 348
last-modified: Wed, 13 May 2015 11:40:44 GMT
etag: "5553383c-15c"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2020/02/fb2.png
91.239.233.26200 OK 2.1 kB URL HTTP/2 bti.ua/wp-content/uploads/2020/02/fb2.png
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type PNG image data, 50 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash f082f020fd6a7f0a04be834356c8a9bd
b77cf5f091f6ad0ead5c4749847f5de8057959c7
7b06a640ef9b2e83994f6bb9523492085d14e2a2da1715fb8b702dff658092d1
GET /wp-content/uploads/2020/02/fb2.png HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: image/png
content-length: 2112
last-modified: Thu, 27 Feb 2020 15:26:41 GMT
etag: "5e57dfb1-840"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2020/02/Insta.png
91.239.233.26200 OK 3.0 kB URL HTTP/2 bti.ua/wp-content/uploads/2020/02/Insta.png
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type PNG image data, 50 x 30, 8-bit/color RGBA, non-interlaced\012- data
Hash fc6ee5a1f80b16f4b530e3e225b4c126
bef378a895281f76bd1576a0e735d53387470c14
d0ddf2161763e803b5101e03f823254450d2e0b2a393661a55df3272e3c23ce5
GET /wp-content/uploads/2020/02/Insta.png HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: image/png
content-length: 2982
last-modified: Thu, 27 Feb 2020 15:54:45 GMT
etag: "5e57e645-ba6"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2016/11/logo2211.png
91.239.233.26200 OK 16 kB URL HTTP/2 bti.ua/wp-content/uploads/2016/11/logo2211.png
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type PNG image data, 244 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash a8b9a868abfb1939e8f9cbf50972cfa3
aac4a6cf892e2df3a5366063105ad4745991ee18
542ddd5a3d5ddffe4ae98267a16487850e2e3e51ba50b48e15d9ad8fdd0161ab
GET /wp-content/uploads/2016/11/logo2211.png HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: image/png
content-length: 15589
last-modified: Thu, 17 Nov 2016 17:14:27 GMT
etag: "582de573-3ce5"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2022/08/bodyimahe1.jpg
91.239.233.26200 OK 41 kB URL HTTP/2 bti.ua/wp-content/uploads/2022/08/bodyimahe1.jpg
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=90, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=728], baseline, precision 8, 728x90, components 3\012- data
Hash 57f2055921d4e96e218f91db3655a246
f50790d185baf8da0db8b941ed446632dab8e2bc
de4f87d5d1cfe8e5f07231e4d2a4a0ce52fd85ac50ee086b08f130e38c9e345f
GET /wp-content/uploads/2022/08/bodyimahe1.jpg HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: image/jpeg
content-length: 40809
last-modified: Fri, 19 Aug 2022 18:13:23 GMT
etag: "62ffd2c3-9f69"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-P5PXSXC
142.250.74.168200 OK 47 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-P5PXSXC
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash f45e1380491e2c80db21fc77769d8292
eefb9320d6b6ab46d3e907f341b4944ca08edc83
d3b14977d1e8f3863eb92bac340ca477a095dec6d676cfe94b37182ec0623c66
GET /gtm.js?id=GTM-P5PXSXC HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 15 Jan 2023 18:01:46 GMT
expires: Sun, 15 Jan 2023 18:01:46 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46695
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2017/09/jv1.png
91.239.233.26200 OK 25 kB URL HTTP/2 bti.ua/wp-content/uploads/2017/09/jv1.png
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type PNG image data, 190 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 31cd34ec78236104ac6f5f0a6a93cced
3f525f4bf09540dc7114aea31dc9e3d752a13068
bce797f6be41e705d4869212a0a62853ed0c0851908dc138a8e3b51abacde0bd
GET /wp-content/uploads/2017/09/jv1.png HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: image/png
content-length: 24610
last-modified: Wed, 13 Sep 2017 13:59:32 GMT
etag: "59b939c4-6022"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 63931ff97eb1381a053be3c3e3e15109
936c6ff2f38aa0533a06f3e86a83fda70fb55082
190074a5719a32e42ef57a8a5a2f68c70f0f67204e0fc18bf77afad64a7d418f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 15 Jan 2023 18:01:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bti.ua/wp-content/uploads/2018/12/vas.jpg
91.239.233.26200 OK 10 kB URL HTTP/2 bti.ua/wp-content/uploads/2018/12/vas.jpg
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 125x125, components 3\012- data
Hash 7559533f9e9ec92e194bc5fb3ec9d369
e99b66f2a0c257b49f1ec5f454a596860a0a0739
e86a97f9a75f4cffc2a786f6c062d722c84e35fead63519b0acc8ce9b2f56137
GET /wp-content/uploads/2018/12/vas.jpg HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: image/jpeg
content-length: 10538
last-modified: Mon, 17 Dec 2018 13:07:54 GMT
etag: "5c179faa-292a"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2018/12/vysh.jpg
91.239.233.26200 OK 11 kB URL HTTP/2 bti.ua/wp-content/uploads/2018/12/vysh.jpg
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 125x125, components 3\012- data
Hash d8e6dd0e626d58f7f7af9d5f374c1b1a
eea5cc24bcbbd714936c248f2dc24af86ba7abe7
7019a77f99d76c1f2dcc4a8002895dde4c003d4d4b7e2c8ff0958d63e5f40b6f
GET /wp-content/uploads/2018/12/vysh.jpg HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: image/jpeg
content-length: 11021
last-modified: Mon, 17 Dec 2018 13:07:56 GMT
etag: "5c179fac-2b0d"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2022/08/newsbti.jpg
91.239.233.26200 OK 55 kB URL HTTP/2 bti.ua/wp-content/uploads/2022/08/newsbti.jpg
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2015:05:27 20:08:14], baseline, precision 8, 300x250, components 3\012- data
Hash df9841e8f61c55860b9a6915c9594296
9841ca4837d8f09902637d41a5d6b16efa629431
cc97a8f0eed9a37a21ea435df98361daa03c15b42233cf3ed42a9ce9d374f389
GET /wp-content/uploads/2022/08/newsbti.jpg HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: image/jpeg
content-length: 54792
last-modified: Sat, 20 Aug 2022 13:25:54 GMT
etag: "6300e0e2-d608"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2016/11/logosmall.png
91.239.233.26200 OK 9.6 kB URL HTTP/2 bti.ua/wp-content/uploads/2016/11/logosmall.png
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type PNG image data, 152 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash aaef0815aaf3ff12b6ef8a29d52a29de
c2af318881dd0ffbdea56c3c9924b78749beb112
4bbebb530fd11c6485510935acc5dfc18600e9b34167dadcf87f9db2d46f87b1
GET /wp-content/uploads/2016/11/logosmall.png HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: image/png
content-length: 9578
last-modified: Thu, 17 Nov 2016 17:15:54 GMT
etag: "582de5ca-256a"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2020/02/fb21.png
91.239.233.26200 OK 3.5 kB URL HTTP/2 bti.ua/wp-content/uploads/2020/02/fb21.png
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type PNG image data, 70 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 6199bf3a6d3a02053e4fdabead5ba07f
4d04328d3b0f7d0c6577ae9282588d143294f66a
858efa2d233f93acad4a64b2981e87a850a089d3e13ef99f2753cd2c42640ed8
GET /wp-content/uploads/2020/02/fb21.png HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: image/png
content-length: 3457
last-modified: Thu, 27 Feb 2020 16:25:37 GMT
etag: "5e57ed81-d81"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2020/02/Insta2.png
91.239.233.26200 OK 7.9 kB URL HTTP/2 bti.ua/wp-content/uploads/2020/02/Insta2.png
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type PNG image data, 80 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash c1f67440149a51b34ef3a54e7b2e8fd0
04faee65403ceeb1c235e82a70136d688d63de52
a9961778fde1e50d4e5e578ee061ef5857595dfcc2ed6d9003b9e0afef1bc8d6
GET /wp-content/uploads/2020/02/Insta2.png HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: image/png
content-length: 7945
last-modified: Thu, 27 Feb 2020 16:25:38 GMT
etag: "5e57ed82-1f09"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-includes/js/wp-embed.min.js?ver=4.9.22
91.239.233.26200 OK 1.2 kB URL HTTP/2 bti.ua/wp-includes/js/wp-embed.min.js?ver=4.9.22
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
Hash 5d03c51cfb4b903680901fba83585c01
c18b8b28b64c598cead009a64cf9d18675676425
99bc4bb543c9e4b7723551826371636fc5ad44c24aedacbf4d566a9d39c81fe5
GET /wp-includes/js/wp-embed.min.js?ver=4.9.22 HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 07:53:57 GMT
etag: W/"6077f115-56f"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 15 Jan 2023 17:33:45 GMT
age: 1681
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
bti.ua/wp-content/themes/point/images/sprite.png
91.239.233.26200 OK 880 B URL HTTP/2 bti.ua/wp-content/themes/point/images/sprite.png
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type PNG image data, 28 x 94, 8-bit gray+alpha, non-interlaced\012- data
Hash 5c62f35ad355f50d105ea8a5f99aaea8
3e7f6e3d581cb1d924d19ec17da219b160be9b5b
fc6425e8a5f918caa07ef67f023df8610be6304291b17a834821ca75bacdaea3
GET /wp-content/themes/point/images/sprite.png HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/wp-content/themes/point/style.css?ver=4.9.22
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: image/png
content-length: 880
last-modified: Wed, 04 Apr 2018 09:33:39 GMT
etag: "5ac49bf3-370"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-includes/js/jquery/jquery.js?ver=1.12.4
91.239.233.26200 OK 67 kB URL HTTP/2 bti.ua/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type ASCII text, with very long lines (31997)
Hash 2f8a633bf8c091bda908ba1646f7f045
30161cad78bbab137ddaa52a26398226d6d61a8c
9324f971a54bd22037f59937381a687adcb24fd3a4fa6ae60b377a0c5004ef31
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: application/javascript
last-modified: Thu, 05 Sep 2019 07:56:46 GMT
etag: W/"5d70bfbe-17a6a"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 6fc52c452b4176dabdd1a319c5e3fa51
e00b78bd1c6b5d71f2987fd9cdc8975804b668ae
224beac380dd44474b39343d4138c0e5d8a547523eb06a1c6d6c4a893d511e63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 15 Jan 2023 18:01:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9442f1d8864feb84a623305a281e4c56
45250ab44f89bf1a0f665da8b47da06dc1af2af0
2086a32de0797aa6146b8fe1d7422342dbc9f1da0d81093915f42b69a5dcbc65
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 15 Jan 2023 18:01:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2
142.250.74.35200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 21224, version 1.0\012- data
Hash 13bdfb843f942ccd9f485eb6c0bc1934
2bad44362ff7569f24f2a3df2521b27a97ec1297
7a291479495fbb281655d5e870c6d118dc6b7ed18e8c235aef5974c1e9de4e6c
GET /s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bti.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21224
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jan 2023 22:28:57 GMT
expires: Wed, 10 Jan 2024 22:28:57 GMT
cache-control: public, max-age=31536000
age: 415970
last-modified: Tue, 19 Apr 2022 18:04:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2
142.250.74.35200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 22376, version 1.0\012- data
Hash e6af16165f9bfda6aafd0088b8c01daa
c9c0ee8309619643e65ba1b22bfffcd1a7ca1e51
e803cd8c5031ac6b0d099a2d96ba1c3ee44782649a7f7c6f0d09b6410d93e216
GET /s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bti.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jan 2023 22:29:18 GMT
expires: Wed, 10 Jan 2024 22:29:18 GMT
cache-control: public, max-age=31536000
age: 415949
last-modified: Tue, 19 Apr 2022 18:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 6fc52c452b4176dabdd1a319c5e3fa51
e00b78bd1c6b5d71f2987fd9cdc8975804b668ae
224beac380dd44474b39343d4138c0e5d8a547523eb06a1c6d6c4a893d511e63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 15 Jan 2023 18:01:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bti.ua/wp-content/themes/point/css/responsive.css?ver=4.9.22
91.239.233.26200 OK 2.8 kB URL HTTP/2 bti.ua/wp-content/themes/point/css/responsive.css?ver=4.9.22
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
Hash 25fe81ccaad2451c0a3025fb4f19280a
30058d1161f1da8b7f5b31486bcd724cea926faf
048d102629b7b950238bacedb668f1d2c62bd22f300aa964bacc34741f1c10fa
GET /wp-content/themes/point/css/responsive.css?ver=4.9.22 HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: text/css
last-modified: Wed, 04 Apr 2018 09:33:37 GMT
etag: W/"5ac49bf1-241d"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 15 Jan 2023 16:41:07 GMT
expires: Sun, 15 Jan 2023 18:41:07 GMT
cache-control: public, max-age=7200
age: 4840
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.gstatic.com/mapfiles/openhand_8_8.cur
142.250.74.3200 OK 326 B URL HTTP/2 maps.gstatic.com/mapfiles/openhand_8_8.cur
IP 142.250.74.3:0
File type MS Windows cursor resource - 1 icon, 32x32, 2 colors, hotspot @8x8\012- data
Hash feff9159f56cb2069041d660b484eb07
0d0a08cf25a258511957f357b89d3908f3c5e6e3
7342f390b12f636d14e25f698fc5e38cf6240994dc0c07fefbbb4e78ec4d03c7
GET /mapfiles/openhand_8_8.cur HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/bmp
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 326
date: Sun, 15 Jan 2023 18:01:47 GMT
expires: Sun, 15 Jan 2023 18:01:47 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bti.ua/wp-content/plugins/wp-google-map-plugin/assets/images//default_marker.png
91.239.233.26200 OK 1.3 kB URL HTTP/2 bti.ua/wp-content/plugins/wp-google-map-plugin/assets/images//default_marker.png
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 94a9153db495781ee4c317420202a2be
4775b35b71725c224041cfe5a87d18e376f36a6c
01f7ff9106205f8d2051c326cbd6e039f30d7c3a2b657bbf6d5c24d12084c5bb
GET /wp-content/plugins/wp-google-map-plugin/assets/images//default_marker.png HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:47 GMT
content-type: image/png
content-length: 1337
last-modified: Fri, 20 Mar 2020 10:05:35 GMT
etag: "5e74956f-539"
expires: Tue, 14 Feb 2023 18:01:47 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-content/plugins/tablepress/css/default.min.css?ver=1.9.1
91.239.233.26200 OK 2.9 kB URL HTTP/2 bti.ua/wp-content/plugins/tablepress/css/default.min.css?ver=1.9.1
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type ASCII text, with very long lines (5871), with no line terminators
Hash 4fb68314bef1cddb2a36e9034e73a4ea
70a52f632bac0974917ac6871e732358cb714fd2
5f7104d13a4e210aed19152b7647d526a9365be4b3819466e2fae09c40409a6a
GET /wp-content/plugins/tablepress/css/default.min.css?ver=1.9.1 HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: text/css
last-modified: Fri, 05 Oct 2018 07:28:57 GMT
etag: W/"5bb712b9-16ef"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2018/10/cropped-fav_png-1-192x192.png
91.239.233.26200 OK 29 kB URL HTTP/2 bti.ua/wp-content/uploads/2018/10/cropped-fav_png-1-192x192.png
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 44adcd5964667bcc07469ca2b134d21e
21812245ed99cfda5befff8efe15b7e79b75fa55
a474c7dac99db68e71d3869af8fdb53da8923ade79fd0f0b5cb176a5341bb3c7
GET /wp-content/uploads/2018/10/cropped-fav_png-1-192x192.png HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:47 GMT
content-type: image/png
content-length: 28975
last-modified: Sat, 06 Nov 2021 10:25:35 GMT
etag: "6186581f-712f"
expires: Tue, 14 Feb 2023 18:01:47 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
142.250.74.74200 OK 23 B URL HTTP/2 maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP 142.250.74.74:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bti.ua
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 15 Jan 2023 18:01:47 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://bti.ua
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2018/10/cropped-fav_png-1-32x32.png
91.239.233.26200 OK 2.5 kB URL HTTP/2 bti.ua/wp-content/uploads/2018/10/cropped-fav_png-1-32x32.png
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash f8ed30a5233d72798706d210f44a9806
12e9037612c93c536e76fed015c7ecb2cb7c1b09
ff2a81fc46621742f085bb5e72a258d4ae64b5e2cc63956f31415e848b1fbdf4
GET /wp-content/uploads/2018/10/cropped-fav_png-1-32x32.png HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:47 GMT
content-type: image/png
content-length: 2463
last-modified: Sat, 06 Nov 2021 10:25:35 GMT
etag: "6186581f-99f"
expires: Tue, 14 Feb 2023 18:01:47 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash ea2a81f2234c4e1fbdeea321ff18d614
5fd65ebde71d993fff7d0d23118f472d86cc62f4
547355c3d7effea8e6283e0a3ecfe4f44b7eb2ee09d3ed90eef9bb44af2932ee
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 15 Jan 2023 18:01:47 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Thu, 19 Jan 2023 15:26:48 GMT
ETag: "5fd65ebde71d993fff7d0d23118f472d86cc62f4"
Last-Modified: Sun, 15 Jan 2023 15:26:49 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 608
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78a084c88a0b0b02-OSL
counter.yadro.ru/hit?r;s1280*1024*24;uhttps%3A//bti.ua/;h%u0411%u0422%u0418%20%u041A%u0438%u0435%u0432%2C%20%u0443%u0441%u043B%u0443%u0433%u0438%20%u0411%u044E%u0440%u043E%20%u0422%u0435%u0445%u043D%u0438%u0447%u0435%u0441%u043A%u043E%u0439%20%u0418%u043D%u0432%u0435%u043D%u0442%u0430%u0440%u0438%u0437%u0430%u0446%u0438%u0438%20%u0432%20%u041A%u0438%u0435%u0432%u0435%20%u0438%20%u0423%u043A%u0440%u0430%u0438%u043D%u0435;0.3059204226128438
88.212.201.204200 OK 43 B URL HTTP/1.1 counter.yadro.ru/hit?r;s1280*1024*24;uhttps%3A//bti.ua/;h%u0411%u0422%u0418%20%u041A%u0438%u0435%u0432%2C%20%u0443%u0441%u043B%u0443%u0433%u0438%20%u0411%u044E%u0440%u043E%20%u0422%u0435%u0445%u043D%u0438%u0447%u0435%u0441%u043A%u043E%u0439%20%u0418%u043D%u0432%u0435%u043D%u0442%u0430%u0440%u0438%u0437%u0430%u0446%u0438%u0438%20%u0432%20%u041A%u0438%u0435%u0432%u0435%20%u0438%20%u0423%u043A%u0440%u0430%u0438%u043D%u0435;0.3059204226128438
IP 88.212.201.204:0
ASN #39134 United Network LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit?r;s1280*1024*24;uhttps%3A//bti.ua/;h%u0411%u0422%u0418%20%u041A%u0438%u0435%u0432%2C%20%u0443%u0441%u043B%u0443%u0433%u0438%20%u0411%u044E%u0440%u043E%20%u0422%u0435%u0445%u043D%u0438%u0447%u0435%u0441%u043A%u043E%u0439%20%u0418%u043D%u0432%u0435%u043D%u0442%u0430%u0440%u0438%u0437%u0430%u0446%u0438%u0438%20%u0432%20%u041A%u0438%u0435%u0432%u0435%20%u0438%20%u0423%u043A%u0440%u0430%u0438%u043D%u0435;0.3059204226128438 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 15 Jan 2023 18:01:47 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Fri, 14 Jan 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
bti.ua/wp-content/uploads/2022/01/zemelnyj-uchastok-300x240.jpg
91.239.233.26200 OK 12 kB URL HTTP/2 bti.ua/wp-content/uploads/2022/01/zemelnyj-uchastok-300x240.jpg
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 300x240, components 3\012- data
Hash 51907feae3a2dd7ca432901384efbb0a
bddbc5b1291fa1bdb5df5c405167d2ce7ad63fd2
781e943159d367aefdbec533bae0e26b1018e4c9e09208440f5d4b5c5a439585
GET /wp-content/uploads/2022/01/zemelnyj-uchastok-300x240.jpg HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Cookie: _ga=GA1.2.1159725990.1673805708; _gid=GA1.2.1669443938.1673805708; _gat=1; _gat_UA-184880824-3=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:47 GMT
content-type: image/jpeg
content-length: 12510
last-modified: Sat, 22 Jan 2022 08:57:12 GMT
etag: "61ebc6e8-30de"
expires: Tue, 14 Feb 2023 18:01:47 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2022/01/13.01.png
91.239.233.26200 OK 93 kB URL HTTP/2 bti.ua/wp-content/uploads/2022/01/13.01.png
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type PNG image data, 220 x 168, 8-bit/color RGB, non-interlaced\012- data
Hash 219365db6db92d68d2ca62d1cdba996a
8f04815a30b5707451645f14ce4a2bcc115d7d69
71ce0b74d255c04ba9ba2d1f34dc76e1a86a7e19f483c6518f9cf4985746cbd7
GET /wp-content/uploads/2022/01/13.01.png HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Cookie: _ga=GA1.2.1159725990.1673805708; _gid=GA1.2.1669443938.1673805708; _gat=1; _gat_UA-184880824-3=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:47 GMT
content-type: image/png
content-length: 93337
last-modified: Wed, 12 Jan 2022 09:41:55 GMT
etag: "61dea263-16c99"
expires: Tue, 14 Feb 2023 18:01:47 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2021/12/2021-12-21_093134-320x240.jpg
91.239.233.26200 OK 22 kB URL HTTP/2 bti.ua/wp-content/uploads/2021/12/2021-12-21_093134-320x240.jpg
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x240, components 3\012- data
Hash 92da164483c5ccd09fed823b1681d1a3
150f2485d2275b4bfda35b51e5ceeb353f660427
c1b5c157523036493b85c735a72468e9be8dcf3309931f68b5c941dab5a1077b
GET /wp-content/uploads/2021/12/2021-12-21_093134-320x240.jpg HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Cookie: _ga=GA1.2.1159725990.1673805708; _gid=GA1.2.1669443938.1673805708; _gat=1; _gat_UA-184880824-3=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:47 GMT
content-type: image/jpeg
content-length: 21891
last-modified: Tue, 21 Dec 2021 07:33:02 GMT
etag: "61c1832e-5583"
expires: Tue, 14 Feb 2023 18:01:47 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2019/08/23072019.jpg
91.239.233.26200 OK 14 kB URL HTTP/2 bti.ua/wp-content/uploads/2019/08/23072019.jpg
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 220x162, components 3\012- data
Hash 973450469bb1bc7d141c45458b1c96db
d62befe41f3ec56e67e4b93b75747eb5157cd5fc
dfef4ed9c1df9a4e2e7182126ee5261998b049c248981e5f0cf5ff0df1bc2a0c
GET /wp-content/uploads/2019/08/23072019.jpg HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Cookie: _ga=GA1.2.1159725990.1673805708; _gid=GA1.2.1669443938.1673805708; _gat=1; _gat_UA-184880824-3=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:47 GMT
content-type: image/jpeg
content-length: 13730
last-modified: Fri, 09 Aug 2019 07:52:17 GMT
etag: "5d4d2631-35a2"
expires: Tue, 14 Feb 2023 18:01:47 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
bti.ua/wp-content/uploads/2016/11/3122016.png
91.239.233.26200 OK 97 kB URL HTTP/2 bti.ua/wp-content/uploads/2016/11/3122016.png
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
File type PNG image data, 220 x 162, 8-bit/color RGB, non-interlaced\012- data
Hash a12135e3629e96285b0774370c3fc81b
86da153632131051c355f628c9577de35019caec
8a075e7597489ab203e563fc607d930cd84aad516a80f4e174ba7be28ba4e5b9
GET /wp-content/uploads/2016/11/3122016.png HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Cookie: _ga=GA1.2.1159725990.1673805708; _gid=GA1.2.1669443938.1673805708; _gat=1; _gat_UA-184880824-3=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:47 GMT
content-type: image/png
content-length: 97161
last-modified: Mon, 21 Nov 2016 08:48:38 GMT
etag: "5832b4e6-17b89"
expires: Tue, 14 Feb 2023 18:01:47 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type gzip compressed data, max compression\012- data
Hash 2c5e576c986fa3babe2c32f4a7ca3f3c
2f9f0aaf63ec000b07fc073c26fddfb6ab4e4466
f560931ec3844307c32fb2b1503925261fc99f30ecd22d27664b104e13e5567c
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bti.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jan 2023 19:33:54 GMT
expires: Thu, 11 Jan 2024 19:33:54 GMT
cache-control: public, max-age=31536000
age: 340074
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
142.250.74.35200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data
Hash d9ac47c7e500fb7083b8d595eaf6fe12
112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933
495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bti.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 08:09:46 GMT
expires: Fri, 12 Jan 2024 08:09:46 GMT
cache-control: public, max-age=31536000
age: 294722
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type gzip compressed data, max compression\012- data
Hash 22e27fab98a5e664c0495b6bb4fabc91
d1b94d9e9c6eb4b3909693657259552ba6ae4291
61b065cd0a958708917ca97f7ae4ef3ff65e4a8466f96d99eaf5e2f047a40a9b
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bti.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jan 2023 07:51:59 GMT
expires: Thu, 11 Jan 2024 07:51:59 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 382189
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2
142.250.74.35200 OK 9.8 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 9840, version 1.0\012- data
Hash 7b08b9e11fc6b8a8a1398b357e874144
4b5fb5790fae1c96655aaa7a426b697f5ab986d0
3728fbdd191d75bad5b83a838dfe2fc15f84c2aaa36ffa573321275847db31a9
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fABc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bti.ua
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jan 2023 19:41:49 GMT
expires: Thu, 11 Jan 2024 19:41:49 GMT
cache-control: public, max-age=31536000
age: 339599
last-modified: Wed, 11 May 2022 19:24:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15851
Expires: Sun, 15 Jan 2023 22:25:59 GMT
Date: Sun, 15 Jan 2023 18:01:48 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15851
Expires: Sun, 15 Jan 2023 22:25:59 GMT
Date: Sun, 15 Jan 2023 18:01:48 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15851
Expires: Sun, 15 Jan 2023 22:25:59 GMT
Date: Sun, 15 Jan 2023 18:01:48 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15851
Expires: Sun, 15 Jan 2023 22:25:59 GMT
Date: Sun, 15 Jan 2023 18:01:48 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6b6a65d2536cc8f99e68793ae265b595
f65e75f8419bd83e26f49def7fa2604db5f77b4d
94b31f7663e4917e8e97079202ef9fa340766f1ebfc2601360618d947f7dabc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94B31F7663E4917E8E97079202EF9FA340766F1EBFC2601360618D947F7DABC9"
Last-Modified: Sun, 15 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15851
Expires: Sun, 15 Jan 2023 22:25:59 GMT
Date: Sun, 15 Jan 2023 18:01:48 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3456fd70-5207-41e6-abed-adbc381fd7a4.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3456fd70-5207-41e6-abed-adbc381fd7a4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 74ac30be02dee9dcfeee79a7dc54edff
1368d81de22ea2e4054a3e1a8f01ef337c63e35b
8abc2f276906dfb9ce75c2526d2c2cfa6aea6dbe13f4046de1040cd611cbbc1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3456fd70-5207-41e6-abed-adbc381fd7a4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9801
x-amzn-requestid: 39d84a20-55f7-4b7c-abc4-9ac1ff100da9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eqSkoGCZoAMF1zA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c0caea-4f7a1cf676335cc83018dc51;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 03:07:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUFicgD94yxyZhMtQm-aYS-QpZXn07rLRBhnBLMTIQh6qHKOX_LRFg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 05:32:33 GMT
age: 44955
etag: "1368d81de22ea2e4054a3e1a8f01ef337c63e35b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bd45fb-ae78-4593-88df-aa9d625197e7.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bd45fb-ae78-4593-88df-aa9d625197e7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6f82c507da28e1b4557ea7f2bdf0f7fc
4be269ad35497a42bf7fce03d711ddf9496abbb4
f51879b87cb99b4883f320fe4abe44032968c42e32b88dc5f788b40ddc6494db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bd45fb-ae78-4593-88df-aa9d625197e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10558
x-amzn-requestid: 3744e167-2dc5-4f3f-a5c1-6911ce4677e7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ewYtTEfBIAMF72g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c33b21-310877892cbb54267a12e19c;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 23:30:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2SflopNrTx28LdOAGsDxw_FSjt3phZl3ivdfJ6AnrlK2u-nz0DVPqw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 14:55:42 GMT
age: 11166
etag: "4be269ad35497a42bf7fce03d711ddf9496abbb4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77d2ca2b-548c-4f63-b8a5-e55b6e92d5e9.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77d2ca2b-548c-4f63-b8a5-e55b6e92d5e9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c609c89120eef87bbdd0d8ee5ee18f9
be8e369be0ccc707b904546798aacc9afe413cfa
feaa9f41b45aaa71d87008fe3112bc09e41cf6c2c500b4bc1adc125c7c82eee1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77d2ca2b-548c-4f63-b8a5-e55b6e92d5e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4981
x-amzn-requestid: b6c3a2c1-b88e-4eb9-9c22-788748559fea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ewISXEQ9oAMFbkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c320db-0a9f9ac1084e4f02006598cf;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: a8kL20Yet_IuO2ZztlKmenTGOFa4BCYHi2B-4B1W1eq5-tCqGK3isg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 21:38:35 GMT
etag: "be8e369be0ccc707b904546798aacc9afe413cfa"
content-type: image/jpeg
age: 73393
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c678ae9-1df5-47c4-bbe3-ec12e97322d9.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c678ae9-1df5-47c4-bbe3-ec12e97322d9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 90fc5463f271bab652af099cb526f189
805c27d8f82a5eb6583814313c36f5e7699408e5
749dca33aa337b494fb113896bf035bc9dcb17068ecffdf30fc5ac85a4ac5185
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c678ae9-1df5-47c4-bbe3-ec12e97322d9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5495
x-amzn-requestid: d76b8f1d-37a2-47ac-9acf-1b0a44a4a5fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eqsroF62IAMF-mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c0f4b0-67700bfd11f1ad5d0aaab92d;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 06:05:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: i1qN9bIaz5ekgkM81KehmDDQpzBULDfPkp-fjEOHiZxFVogDBOIGzg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 23:08:05 GMT
age: 68023
etag: "805c27d8f82a5eb6583814313c36f5e7699408e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a23d61d610c7b55d943fcb2636a01b65
82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065
28bf3039cc8c1213e64893c71bc150eda573223feb2cc15ad0814a44960d434a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9539
x-amzn-requestid: 33735807-3403-41ee-a488-a3f25f9b12d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ewX9XFvoIAMFzMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c339ee-65def8747314ecb63b000a4c;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 23:25:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: D6FaDcaWbJehldBR7ASM60ey56hQS1H4ZpLlGqI-ptDupfJT-iugfw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 05:58:31 GMT
age: 43397
etag: "82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F362ec1c0-4616-4ccf-bbc5-8dc0f979c801.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F362ec1c0-4616-4ccf-bbc5-8dc0f979c801.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3c8e4b9f12af5bbc6b743aeae4dfc55a
97f874ba034be152dfecd90e4996c928aa268950
bfc0ef4f4d13b729a3a38efbb04d2c58e6b05bbc2bd3492611c0fc26457d1dec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F362ec1c0-4616-4ccf-bbc5-8dc0f979c801.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6658
x-amzn-requestid: 4a356eaa-4717-410c-af86-5d3770f0cf7e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eniyVExqoAMFWkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bfb1a8-05a4e869449e4d730a5dd438;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 07:07:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: IzYUcms6JyXRedHLwcIrfR3Jq158b76rK85QdIpxF9poWgzPjZwknA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 15 Jan 2023 09:16:27 GMT
age: 31521
etag: "97f874ba034be152dfecd90e4996c928aa268950"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bti.ua/wp-content/plugins/wp-google-map-plugin/assets/css/frontend.css?ver=4.9.22
91.239.233.26200 OK 0 B URL HTTP/2 bti.ua/wp-content/plugins/wp-google-map-plugin/assets/css/frontend.css?ver=4.9.22
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
GET /wp-content/plugins/wp-google-map-plugin/assets/css/frontend.css?ver=4.9.22 HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: text/css
last-modified: Fri, 20 Mar 2020 10:05:35 GMT
etag: W/"5e74956f-fe3"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
bti.ua/wp-content/plugins/wp-tab-widget/css/wp-tab-widget.css?ver=4.9.22
91.239.233.26200 OK 0 B URL HTTP/2 bti.ua/wp-content/plugins/wp-tab-widget/css/wp-tab-widget.css?ver=4.9.22
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
GET /wp-content/plugins/wp-tab-widget/css/wp-tab-widget.css?ver=4.9.22 HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: text/css
last-modified: Fri, 05 Oct 2018 07:29:33 GMT
etag: W/"5bb712dd-14e5"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
bti.ua/wp-content/plugins/wp-tab-widget/js/wp-tab-widget.js?ver=4.9.22
91.239.233.26200 OK 0 B URL HTTP/2 bti.ua/wp-content/plugins/wp-tab-widget/js/wp-tab-widget.js?ver=4.9.22
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
GET /wp-content/plugins/wp-tab-widget/js/wp-tab-widget.js?ver=4.9.22 HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: application/javascript
last-modified: Fri, 05 Oct 2018 07:29:33 GMT
etag: W/"5bb712dd-976"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
bti.ua/wp-includes/js/wp-emoji-release.min.js?ver=4.9.22
91.239.233.26200 OK 0 B URL HTTP/2 bti.ua/wp-includes/js/wp-emoji-release.min.js?ver=4.9.22
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
GET /wp-includes/js/wp-emoji-release.min.js?ver=4.9.22 HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: application/javascript
last-modified: Thu, 15 Apr 2021 07:53:57 GMT
etag: W/"6077f115-2ea7"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
bti.ua/wp-content/themes/point/style.css?ver=4.9.22
91.239.233.26200 OK 0 B URL HTTP/2 bti.ua/wp-content/themes/point/style.css?ver=4.9.22
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
GET /wp-content/themes/point/style.css?ver=4.9.22 HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: text/css
last-modified: Thu, 27 Feb 2020 16:14:01 GMT
etag: W/"5e57eac9-9937"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A400%2C700&ver=4.9.22
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400%2C700&ver=4.9.22
IP 142.250.74.106:0
GET /css?family=Open+Sans%3A400%2C700&ver=4.9.22 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 15 Jan 2023 18:01:46 GMT
date: Sun, 15 Jan 2023 18:01:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bti.ua/wp-content/themes/point/js/customscript.js?ver=null
91.239.233.26200 OK 0 B URL HTTP/2 bti.ua/wp-content/themes/point/js/customscript.js?ver=null
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
GET /wp-content/themes/point/js/customscript.js?ver=null HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: application/javascript
last-modified: Wed, 04 Apr 2018 09:33:39 GMT
etag: W/"5ac49bf3-52f"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
bti.ua/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.7
91.239.233.26200 OK 0 B URL HTTP/2 bti.ua/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.7
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.7 HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: text/css
last-modified: Fri, 20 Mar 2020 09:45:06 GMT
etag: W/"5e7490a2-6d2"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
bti.ua/wp-content/plugins/wp-google-map-plugin/assets/js/maps.js?ver=2.3.4
91.239.233.26200 OK 0 B URL HTTP/2 bti.ua/wp-content/plugins/wp-google-map-plugin/assets/js/maps.js?ver=2.3.4
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
GET /wp-content/plugins/wp-google-map-plugin/assets/js/maps.js?ver=2.3.4 HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: application/javascript
last-modified: Fri, 20 Mar 2020 10:05:35 GMT
etag: W/"5e74956f-dab8"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
bti.ua/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.7
91.239.233.26200 OK 0 B URL HTTP/2 bti.ua/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.7
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.7 HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: application/javascript
last-modified: Fri, 20 Mar 2020 09:45:06 GMT
etag: W/"5e7490a2-3868"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
bti.ua/wp-admin/admin-ajax.php
91.239.233.26200 OK 0 B URL HTTP/2 bti.ua/wp-admin/admin-ajax.php
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 339
Origin: https://bti.ua
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:47 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://bti.ua
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
X-Firefox-Spdy: h2
bti.ua/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
91.239.233.26200 OK 0 B URL HTTP/2 bti.ua/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 91.239.233.26:0
ASN #196645 Ltd Hostpro Lab
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: bti.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bti.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 15 Jan 2023 18:01:46 GMT
content-type: application/javascript
last-modified: Wed, 04 Apr 2018 09:15:31 GMT
etag: W/"5ac497b3-2748"
expires: Tue, 14 Feb 2023 18:01:46 GMT
pragma: public
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2