naceka-online.ru/
135.181.181.70301 Moved Permanently 169 B IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 9527755784f5014d2c94dcabdf6ae892
941126eba6b0b049b4a09fb846ebd943e894e068
5b111ef9f2dbaf8e8870567dc8e2302efe2b0feb9d4ba62ce74c1039ab663523
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.2
Date: Thu, 01 Dec 2022 11:05:29 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://naceka-online.ru:443/
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18613
Expires: Thu, 01 Dec 2022 16:15:42 GMT
Date: Thu, 01 Dec 2022 11:05:29 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5437
Expires: Thu, 01 Dec 2022 12:36:06 GMT
Date: Thu, 01 Dec 2022 11:05:29 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5008
Cache-Control: max-age=89358
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:05:29 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:54:47 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: MXHphdZr1wZesIouifnn8sLCublQDuHaJU0vt79qro9J+mXN8G/pGN5sGeXrLt6XihRr0SSDV3M=
x-amz-request-id: XTXRBPFZ4F8BYQ13
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 10:46:14 GMT
age: 1155
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 10:18:08 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2841
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:05:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 0a6840b1cab7af041834ece78e6d3837
cc0ccdb130acad182f141efd94018f998b64450b
911ab862b319e7a597891c13807350629ddaa2a6193a881761252a1fbebc1b11
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "911AB862B319E7A597891C13807350629DDAA2A6193A881761252A1FBEBC1B11"
Last-Modified: Tue, 29 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 01 Dec 2022 17:05:29 GMT
Date: Thu, 01 Dec 2022 11:05:29 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 10:11:15 GMT
cache-control: public,max-age=3600
age: 3254
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5006
Cache-Control: max-age=170685
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:05:30 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:30:15 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.214.236.46101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.236.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uEkdOtNcvlY7Cn8H582EAg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: w3DpuNge3SWvCfLh+YLNaWGelu4=
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8779
Expires: Thu, 01 Dec 2022 13:31:50 GMT
Date: Thu, 01 Dec 2022 11:05:31 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8779
Expires: Thu, 01 Dec 2022 13:31:50 GMT
Date: Thu, 01 Dec 2022 11:05:31 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8779
Expires: Thu, 01 Dec 2022 13:31:50 GMT
Date: Thu, 01 Dec 2022 11:05:31 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8779
Expires: Thu, 01 Dec 2022 13:31:50 GMT
Date: Thu, 01 Dec 2022 11:05:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash acffcb88ce68b2d70c9c046a7b5a4aa8
cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1
692d782ac1d812de6dadbcfe46034b6b5d8bbd586e56beedd96dc4d65445dd4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12035
x-amzn-requestid: 2711a135-b390-43ef-9e95-92438058bc27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz81FIpIAMFs9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-742f7f293df074340ab6a217;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ygs-Qd7UU_k4t4_breZTyqkHqGjJzlH1UMa9ncww5_IGpJ1n781jfg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:51:55 GMT
age: 47616
etag: "cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jM-fTqLsmU3c_gc9Wle-lvCwXelA9Sid9axtzJQDsfOHv23yUbKsBw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 22:43:35 GMT
age: 44516
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kZfRQsF_Fo2UtTqK0ByOPeQK-IzTQO9JtTmxIMlapmsd93SJk_4VYw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:47:30 GMT
age: 47881
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5508d05a290b663fd89ead9b58f2efd8
53650399f9a986ba54addd668b4557109d12003b
65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ym_L3s5E6MLy6BxqNkVxok6L6hA4c-ilSsEqt42j2IbiXYPb4c6-VQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:57 GMT
age: 47554
etag: "53650399f9a986ba54addd668b4557109d12003b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz80EHboAMFtmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
age: 47611
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: c6c3e3dc-c9a2-4fda-a83b-cdd6ae81166b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uyE9CoAMF6Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc4-2c8940405044071a082ee678;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qykE_oaoqqPTgqGnfUo74mH29IOS97b5sZb_3VmB9yW7KUiJ1a7dnA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 18:58:06 GMT
age: 58045
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/images/mlogo_ds.png
135.181.181.70200 OK 4.0 kB URL HTTP/2 naceka-online.ru/templates/ultimate/images/mlogo_ds.png
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 140 x 34, 16-bit/color RGBA, non-interlaced\012- data
Hash a6d54446c57d7bb5057610e9b546a170
e3195027e64c111107c4198f90ac09c5b4b2a043
f72a62c60a3b10e763979b99888df6f9db927267031602f274b6ebfb50584890
GET /templates/ultimate/images/mlogo_ds.png HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/png
content-length: 3978
last-modified: Wed, 18 Dec 2019 03:31:36 GMT
etag: "5df99d98-f8a"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/photos/small/article2294.jpg
135.181.181.70200 OK 154 kB URL HTTP/2 naceka-online.ru/images/photos/small/article2294.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 500x375, components 3\012- data
Size 154 kB (154536 bytes)
Hash 74444e1cb1bf629ca586e5e6598f0bd7
725d64971e9a7ca4185c8bc60b335b6e8a614855
bf149fda92d19771601041f5ed30ce8de832a8cb7a9a5df2922f0b03258ebba8
GET /images/photos/small/article2294.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 154536
last-modified: Thu, 10 Nov 2022 07:42:00 GMT
etag: "636cab48-25ba8"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/photos/small/article2290.jpg
135.181.181.70200 OK 147 kB URL HTTP/2 naceka-online.ru/images/photos/small/article2290.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 500x333, components 3\012- data
Size 147 kB (146684 bytes)
Hash d504474838ea093ac3d8dfc48d47bc97
524b2b23974f9952e4dc80b0d8bad9a0619e703c
a8bf2b02adefee3a00fdf89576d981aa0393f05b08d50f88a2fb08919e383b2d
GET /images/photos/small/article2290.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 146684
last-modified: Wed, 31 Aug 2022 06:21:55 GMT
etag: "630efe03-23cfc"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/photos/small/article2289.jpg
135.181.181.70200 OK 166 kB URL HTTP/2 naceka-online.ru/images/photos/small/article2289.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 500x375, components 3\012- data
Size 166 kB (166316 bytes)
Hash 753e37f75aa99e06cea6eb8143bb7603
5e38a6a1c646f3c1acc78f24e011d1f4811e7bcd
ae95fb3f39fc4d5ab7e2fc39af2efbef06a70b9191ce9fc48222a2f82bc72563
GET /images/photos/small/article2289.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 166316
last-modified: Sun, 24 Jul 2022 08:11:29 GMT
etag: "62dcfeb1-289ac"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/photos/small/article2288.jpg
135.181.181.70200 OK 145 kB URL HTTP/2 naceka-online.ru/images/photos/small/article2288.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 500x332, components 3\012- data
Size 145 kB (144654 bytes)
Hash 1d0d15d836e810426e88006b003ce009
1924f31661967465c13a1ff2b71e890085352b92
3ee1d0a3a56219db687132a76802752310f522818b4303b86ae1eee67133b7ba
GET /images/photos/small/article2288.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 144654
last-modified: Wed, 20 Jul 2022 10:06:32 GMT
etag: "62d7d3a8-2350e"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/photos/small/article2287.jpg
135.181.181.70200 OK 147 kB URL HTTP/2 naceka-online.ru/images/photos/small/article2287.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 500x398, components 3\012- data
Size 147 kB (147169 bytes)
Hash 804114c7072985b154c5bb859d537d3c
6f2cc4af71e1db0448da54b9a1f7ba2c780bcb59
fca9cdec0bc5304ce1faf74bf9d8875601cd27e94b80459dcb66c3632cab1593
GET /images/photos/small/article2287.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 147169
last-modified: Tue, 19 Jul 2022 02:11:43 GMT
etag: "62d612df-23ee1"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/users/avatars/small/7a69216220ecf44ac221218718df4b80.jpg
135.181.181.70200 OK 14 kB URL HTTP/2 naceka-online.ru/images/users/avatars/small/7a69216220ecf44ac221218718df4b80.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 95", progressive, precision 8, 150x150, components 3\012- data
Hash 70b89d90143ea10b64226c0dab0d2591
9c9c550c7788ca786afb7216cccef5bd4ea163ea
26e2e537c78758142cc92e1caf57f0bb2663d4663a8573081d8d67fe813f08bc
GET /images/users/avatars/small/7a69216220ecf44ac221218718df4b80.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 13955
last-modified: Mon, 16 Dec 2019 21:35:47 GMT
etag: "5df7f8b3-3683"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/upload/blogs/mini/cb5176410d929c69ec78d4efbb660d07.png
135.181.181.70200 OK 40 kB URL HTTP/2 naceka-online.ru/upload/blogs/mini/cb5176410d929c69ec78d4efbb660d07.png
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash dd10613693158588e314499d90b2e325
89121190258999748601005b8ee282b8b5b7f45c
1d6dce9e0e74bc9afc655e144b5d1040510e91452a7a90441384b4d491120ee4
GET /upload/blogs/mini/cb5176410d929c69ec78d4efbb660d07.png HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/png
content-length: 40221
last-modified: Mon, 28 Nov 2022 05:42:04 GMT
etag: "63844a2c-9d1d"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/upload/video/Xex_F53RkXY.jpg
135.181.181.70200 OK 9.6 kB URL HTTP/2 naceka-online.ru/upload/video/Xex_F53RkXY.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash d59e0df06d64da9960d2a313c5739246
4812cae2fcf8ac336b21481e05fcc28ba7f330cd
4ce419378155c9f1b9e07e561a368ff7d96e4c42537067c9e2c0d4ffbc1783e9
GET /upload/video/Xex_F53RkXY.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 9592
last-modified: Fri, 04 Nov 2022 12:09:12 GMT
etag: "636500e8-2578"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/video/play_index.png
135.181.181.70200 OK 3.2 kB URL HTTP/2 naceka-online.ru/images/video/play_index.png
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 39382db1d0cbe68a55932c9aa4abec3f
1f4de671937d303334f48c16a97766bbf930b668
5e09d1b026bfb954946ddf19603ebf8ac03435fb28aeff110c6ce2e1d4ac04d0
GET /images/video/play_index.png HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/png
content-length: 3209
last-modified: Tue, 17 Dec 2019 02:11:36 GMT
etag: "5df83958-c89"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/upload/video/Tfaam-qpLwM.jpg
135.181.181.70200 OK 21 kB URL HTTP/2 naceka-online.ru/upload/video/Tfaam-qpLwM.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 2ee3ca6220d7840aa6f0aa2f4a995a4f
e05103c27be5edb87ad96588b441d9c7139a3fd4
cff1c72e6670d5ac752c1341d88a7a44711d20a1b0e6606f572353d2fbfd4f0a
GET /upload/video/Tfaam-qpLwM.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 20740
last-modified: Tue, 13 Sep 2022 14:53:23 GMT
etag: "63209963-5104"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/upload/video/3-8CulnbC1c.jpg
135.181.181.70200 OK 15 kB URL HTTP/2 naceka-online.ru/upload/video/3-8CulnbC1c.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 25666fa70978cb43e18b4e6c52eca31a
f6ba4d7d2aabe63f044e34683d5018e2cadf01cb
dc8fb82dd682d05a985346015b5687f80adca7832e8eccd0e526a906318d2f5b
GET /upload/video/3-8CulnbC1c.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 15229
last-modified: Sun, 19 Jun 2022 14:46:38 GMT
etag: "62af36ce-3b7d"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/upload/video/FPxSWHAU1t0.jpg
135.181.181.70200 OK 17 kB URL HTTP/2 naceka-online.ru/upload/video/FPxSWHAU1t0.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 87b20382705862499ff92ab093be5707
88aa6aa3f179baf6f24752b461c2afff012eaba7
2d17fb414ef9fb1f68f5c7f879b3568d92f5eac86627896ffb0eb9cf0af4cda7
GET /upload/video/FPxSWHAU1t0.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 17449
last-modified: Sun, 19 Jun 2022 14:44:54 GMT
etag: "62af3666-4429"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/upload/video/-GS5jPK6JNU.jpg
135.181.181.70200 OK 26 kB URL HTTP/2 naceka-online.ru/upload/video/-GS5jPK6JNU.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 6eb6318d45ba22f063921d0fa8abdb3a
d7533ecf1193b410e031a528d4470a278a4bdcce
7dbfa4f1c9787106922e3928f863f08693412c516e9552bf9af25ceb911e8916
GET /upload/video/-GS5jPK6JNU.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 26495
last-modified: Mon, 13 Jun 2022 10:28:42 GMT
etag: "62a7115a-677f"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/video/ishe.jpg
135.181.181.70200 OK 20 kB URL HTTP/2 naceka-online.ru/images/video/ishe.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2014:04:26 16:17:58], progressive, precision 8, 200x150, components 3\012- data
Hash 45e555814e92df29d18b9b822a992a59
da92bf9d057ecd1fb84d8d141fe4306e33de11cf
e69ad9072ad8a226ed93c78750183f1e4f7e97424a4087d7f6c83fafc9a5577b
GET /images/video/ishe.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 19705
last-modified: Tue, 17 Dec 2019 02:11:35 GMT
etag: "5df83957-4cf9"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/users/avatars/small/nopic.jpg
135.181.181.70200 OK 8.4 kB URL HTTP/2 naceka-online.ru/images/users/avatars/small/nopic.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 89x89, segment length 16, baseline, precision 8, 200x200, components 3\012- data
Hash 8c3fc21b39b8df9e6f018b443e758e9e
08e971fa6a752e5a51998742cc3f3718d45a3c8d
35651d317e267282ef137e56bc8ba8c5d98ebd0a329680265f310bb5e0a7f843
GET /images/users/avatars/small/nopic.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 8396
last-modified: Mon, 16 Dec 2019 21:49:50 GMT
etag: "5df7fbfe-20cc"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/clubs/small/98688c0b4397c6f34431434d5a0ffcd9.jpg
135.181.181.70200 OK 14 kB URL HTTP/2 naceka-online.ru/images/clubs/small/98688c0b4397c6f34431434d5a0ffcd9.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 200x200, components 3\012- data
Hash 5436e95a1438cc3400c6ca048e2844f5
82b0de84bd961621bb511910977cfa106d1e5657
004a1b33ee2a4961b8bfae03266b53315c6af7e8e22fea54376d4397d22b03a8
GET /images/clubs/small/98688c0b4397c6f34431434d5a0ffcd9.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 13712
last-modified: Mon, 16 Dec 2019 19:27:56 GMT
etag: "5df7dabc-3590"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/clubs/small/2e0584e6ca25493c063cf2a4b2862c7f.jpg
135.181.181.70200 OK 53 kB URL HTTP/2 naceka-online.ru/images/clubs/small/2e0584e6ca25493c063cf2a4b2862c7f.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 200x200, components 3\012- data
Hash d14d3e8637b9fc9309d7150a73777a48
8a807d6a016f7b7b70f374b00e1dd08f7967388a
41645d12db6d3af2cfa422efd71b8348351938d9b7e3d2adae9e0ab321171d8a
GET /images/clubs/small/2e0584e6ca25493c063cf2a4b2862c7f.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 53137
last-modified: Mon, 16 Dec 2019 19:27:52 GMT
etag: "5df7dab8-cf91"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/clubs/small/017030b4b8886ac499e53d302cf0df2f.jpg
135.181.181.70200 OK 7.9 kB URL HTTP/2 naceka-online.ru/images/clubs/small/017030b4b8886ac499e53d302cf0df2f.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", progressive, precision 8, 200x200, components 3\012- data
Hash 466c676057e4bba059b14fe804c077d7
1f36b28667ce41b7021c20f2de217fef9cbdcd65
87b5960121386542c2581f053e7921c9681fd8ff4d9a3f1cf786d7734c15cc01
GET /images/clubs/small/017030b4b8886ac499e53d302cf0df2f.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 7929
last-modified: Mon, 16 Dec 2019 19:27:51 GMT
etag: "5df7dab7-1ef9"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/board/small/nopic.jpg
135.181.181.70200 OK 8.8 kB URL HTTP/2 naceka-online.ru/images/board/small/nopic.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 300x300, components 3\012- data
Hash 328836dcc310e8e65f10251276f96430
97a6cb9050be4b77db29b6f995ed087159d99a84
ba4c81951ef14d10545eb879115cf70e976833df0803278b9b86c91219656b5e
GET /images/board/small/nopic.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 8820
last-modified: Mon, 16 Dec 2019 19:23:47 GMT
etag: "5df7d9c3-2274"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/users/photos/small/c87aec4a60a029e5a29bcc8e39341052.jpg
135.181.181.70200 OK 6.2 kB URL HTTP/2 naceka-online.ru/images/users/photos/small/c87aec4a60a029e5a29bcc8e39341052.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left, software=Google], baseline, precision 8, 50x50, components 3\012- data
Hash 101b59a74598d0263cc022f612ac96de
6f12e1762ba74645cbad38b2cc8de1e6e49c263c
844a3db365ffed53cea8a1b68235ede8d96a4814f06eff0ec19a6bbbd605e020
GET /images/users/photos/small/c87aec4a60a029e5a29bcc8e39341052.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 6239
last-modified: Thu, 01 Dec 2022 07:16:11 GMT
etag: "638854bb-185f"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/users/photos/small/1eac44444a4ba70a928d4b4699f61d52.jpg
135.181.181.70200 OK 10 kB URL HTTP/2 naceka-online.ru/images/users/photos/small/1eac44444a4ba70a928d4b4699f61d52.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 96x96, components 3\012- data
Hash 1febb7a0993d724221a8c3d23e856d5c
7751c9887aa55f3dd407fe8689dd87cfd6cfa045
98e3b729dbd26a10c5fb85c70e722ded1a4f606d0c09c7193772f0b41a6628b0
GET /images/users/photos/small/1eac44444a4ba70a928d4b4699f61d52.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 10228
last-modified: Thu, 01 Dec 2022 06:24:51 GMT
etag: "638848b3-27f4"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/users/photos/small/abf1b9111db48207ec589fe1668858b7.jpg
135.181.181.70200 OK 7.9 kB URL HTTP/2 naceka-online.ru/images/users/photos/small/abf1b9111db48207ec589fe1668858b7.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 96x96, components 3\012- data
Hash bd40e6decd82ec9f63319ec7a53c5942
2fffcd87aa471a80c8a24c949c7a9c9404f3f053
b7c6976e72ffccfd1cde190b8fa800c7ae35abd137f93e164dcbb68304c3237f
GET /images/users/photos/small/abf1b9111db48207ec589fe1668858b7.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 7858
last-modified: Thu, 01 Dec 2022 06:24:16 GMT
etag: "63884890-1eb2"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/users/avatars/small/be991eda490b743471b8a69c45173e09.png
135.181.181.70200 OK 90 kB URL HTTP/2 naceka-online.ru/images/users/avatars/small/be991eda490b743471b8a69c45173e09.png
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 17a073dcceddcbc61267ec7630b2e3db
8cd7d8a19516d9a282d76e33183c3678bc8c598a
95e0e6f2465e40f8b462cbbc2a5862f7bb684cc6bf9c2d9c656401cc02570bf7
GET /images/users/avatars/small/be991eda490b743471b8a69c45173e09.png HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/png
content-length: 90360
last-modified: Tue, 17 Dec 2019 18:11:31 GMT
etag: "5df91a53-160f8"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/users/photos/small/39e46ad15101141a3e11cfc1f2adba27.jpg
135.181.181.70200 OK 11 kB URL HTTP/2 naceka-online.ru/images/users/photos/small/39e46ad15101141a3e11cfc1f2adba27.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 96x96, components 3\012- data
Hash df24f349f66319c46fdcbd463de2e226
19d0c9b858c73ff65589a4b1ecc7c07ce2fea414
c51a217c8aa1c52e0ba1975e750d74187f29406b1644650aef6da6b8b9a90e11
GET /images/users/photos/small/39e46ad15101141a3e11cfc1f2adba27.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 11019
last-modified: Thu, 01 Dec 2022 06:24:00 GMT
etag: "63884880-2b0b"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/users/photos/small/ec7795caa0c67eea90948b00e18d3c85.jpg
135.181.181.70200 OK 10 kB URL HTTP/2 naceka-online.ru/images/users/photos/small/ec7795caa0c67eea90948b00e18d3c85.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 96x96, components 3\012- data
Hash 2b658fb6b42932423dfc67f9da1af3a9
59a5b67463e93e7d4120b7119977d17c1e3f75d1
8010efd3e36ddfd9ef6900bf52728b345f7b9411fefc2f2507623b0b1948c87d
GET /images/users/photos/small/ec7795caa0c67eea90948b00e18d3c85.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 10058
last-modified: Thu, 01 Dec 2022 06:23:33 GMT
etag: "63884865-274a"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/users/photos/small/eae2e4d7c22edfc6168fe7679dde0aae.jpg
135.181.181.70200 OK 11 kB URL HTTP/2 naceka-online.ru/images/users/photos/small/eae2e4d7c22edfc6168fe7679dde0aae.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 96x96, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 257-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 0.000000, slope 51825020928.000000\012- data
Hash 639662ba0bce05898230a72d0e610e2b
b965561a943e682a1a9b5c158fcbf7056b14d7ee
e6f6eaba1e0ce66a83c0f46f54ea6e92aaef02bdf9f3ea0fd6989f80acc581d5
GET /images/users/photos/small/eae2e4d7c22edfc6168fe7679dde0aae.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 10910
last-modified: Thu, 01 Dec 2022 06:23:22 GMT
etag: "6388485a-2a9e"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/users/photos/small/eb605dcd19c8ba7ce05a192219131818.jpg
135.181.181.70200 OK 9.6 kB URL HTTP/2 naceka-online.ru/images/users/photos/small/eb605dcd19c8ba7ce05a192219131818.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 96x96, components 3\012- data
Hash baec73717c91ed140faf4d2fdd0c5914
073d43a7e960786d2e42bdc03e458698ccd52185
fb7dabd6e9d643d8c94ed5ff7e8ef583009a934176c2f156e714eb734dda6db3
GET /images/users/photos/small/eb605dcd19c8ba7ce05a192219131818.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 9578
last-modified: Thu, 01 Dec 2022 06:22:53 GMT
etag: "6388483d-256a"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/users/photos/small/bf71ee2895c2e19c9223d7e32b6f71eb.jpg
135.181.181.70200 OK 11 kB URL HTTP/2 naceka-online.ru/images/users/photos/small/bf71ee2895c2e19c9223d7e32b6f71eb.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 96x96, components 3\012- data
Hash 6808e3f18a48d6143ac010dd7032de95
addd3b2133d4c06aa31c7e0ed53e90c14e5ca680
543b609a865f3b03c15d9e3e9d273937be95374233c6f03acc142225ace3933c
GET /images/users/photos/small/bf71ee2895c2e19c9223d7e32b6f71eb.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 11343
last-modified: Thu, 01 Dec 2022 06:22:36 GMT
etag: "6388482c-2c4f"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/beecall/yan.png
135.181.181.70200 OK 28 kB URL HTTP/2 naceka-online.ru/images/beecall/yan.png
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 220 x 76, 8-bit/color RGB, non-interlaced\012- data
Hash fca74289333d7fbc2ef1034b837c3961
d866d61d34f5c70be9ba988881a98e36e2cb704f
0cbcb0bad39ab22d36a3ab5faed30f0d8c3522fe4fa149517d5926fda51a9210
GET /images/beecall/yan.png HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/png
content-length: 28435
last-modified: Tue, 11 Feb 2020 14:53:39 GMT
etag: "5e42bff3-6f13"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/beecall/aprel.png
135.181.181.70200 OK 37 kB URL HTTP/2 naceka-online.ru/images/beecall/aprel.png
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 220 x 76, 8-bit/color RGB, non-interlaced\012- data
Hash 11f278fba757de1b023be0cbaf0ae9b3
dae6e801a2ab5632fc3cf3e5a3e40e5dd6fa7fd9
21a4b40e3e5b3660ecc94a61146615721425c6dc340c267e1dc57ece276fdf74
GET /images/beecall/aprel.png HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/png
content-length: 36989
last-modified: Tue, 11 Feb 2020 14:53:29 GMT
etag: "5e42bfe9-907d"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/beecall/may.png
135.181.181.70200 OK 39 kB URL HTTP/2 naceka-online.ru/images/beecall/may.png
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 220 x 76, 8-bit/color RGB, non-interlaced\012- data
Hash f8ea540a5c3e0f2253430ae04306e136
82167ac26f5d0ea99585fdc7246beccac08754c0
6bd967b1b1cb49f1b87c5f948a9ca4573a4dcaaab51a0c0de438c8520c801203
GET /images/beecall/may.png HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/png
content-length: 38764
last-modified: Tue, 11 Feb 2020 14:53:35 GMT
etag: "5e42bfef-976c"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/images/web_pchelocom_200_200.gif
135.181.181.70200 OK 27 kB URL HTTP/2 naceka-online.ru/templates/ultimate/images/web_pchelocom_200_200.gif
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 200 x 200\012- data
Hash f47763645689b6773049656a31754c21
830f913ba724a78860e9e670baeba30bc48ef4b2
c299a3aa2b0eb1d858c9b4818092d350fe69e22ffda00314dd9232f995691ddc
GET /templates/ultimate/images/web_pchelocom_200_200.gif HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/gif
content-length: 27217
last-modified: Tue, 17 Dec 2019 02:51:19 GMT
etag: "5df842a7-6a51"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/images/logo.png
135.181.181.70200 OK 15 kB URL HTTP/2 naceka-online.ru/templates/ultimate/images/logo.png
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 230 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash 2dd24c793a8e7b453a9f470d58d3039c
da03b6b54044d634e3cc632d073adda22de52663
6068df2d2a459e3748437698b3caeb2ad6fac71b1787b4b6492a94eb72fa7984
GET /templates/ultimate/images/logo.png HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/png
content-length: 14624
last-modified: Wed, 18 Dec 2019 03:31:33 GMT
etag: "5df99d95-3920"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/board/small/b19dd8669e7de5e8eff927dfdb639849.jpg
135.181.181.70200 OK 103 kB URL HTTP/2 naceka-online.ru/images/board/small/b19dd8669e7de5e8eff927dfdb639849.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 400x400, components 3\012- data
Size 103 kB (102749 bytes)
Hash f0fdc689417bfd6995fd54f2907a3ff0
91f4e4899e0e0586af81fdc194ba04a9ed4a1aa1
abdafed8e8ad6c05c4bdcc57e899b33ec0c8e36194a2ec85a1e9ee78048cdc28
GET /images/board/small/b19dd8669e7de5e8eff927dfdb639849.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 102749
last-modified: Thu, 01 Dec 2022 07:37:53 GMT
etag: "638859d1-1915d"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/board/small/3bc1b549e58f9d02e2dd346ccd4ee6c3.jpg
135.181.181.70200 OK 95 kB URL HTTP/2 naceka-online.ru/images/board/small/3bc1b549e58f9d02e2dd346ccd4ee6c3.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 400x400, components 3\012- data
Hash 15e298ef5823431df08fdc50712af3c6
3ad635d34ab72239edac0bb9b7450ab73ed8911c
fb483c68c1cf7a7b13de0da6d8f40f78c89095ec6759eca15242bf1226ebfe3c
GET /images/board/small/3bc1b549e58f9d02e2dd346ccd4ee6c3.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 95134
last-modified: Tue, 22 Nov 2022 05:40:54 GMT
etag: "637c60e6-1739e"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/board/small/50cd3a893578914f132c89ef88dfc6aa.jpg
135.181.181.70200 OK 105 kB URL HTTP/2 naceka-online.ru/images/board/small/50cd3a893578914f132c89ef88dfc6aa.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 400x400, components 3\012- data
Size 105 kB (105342 bytes)
Hash ab748f1ae7638b5c566b607ac6426615
6fad1d109500dbdb7d7f2a803c1405fea352fdbe
a5d44e54051c63f71a2de80a52aea028313004e1e23fc9714e8b931e37efb1c0
GET /images/board/small/50cd3a893578914f132c89ef88dfc6aa.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 105342
last-modified: Sun, 13 Nov 2022 19:41:57 GMT
etag: "63714885-19b7e"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/photos/small/article2295.jpg
135.181.181.70200 OK 165 kB URL HTTP/2 naceka-online.ru/images/photos/small/article2295.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x260, components 3\012- data
Size 165 kB (164960 bytes)
Hash f8d2fbec8d8b0151b1801631d4487c2d
f1ca53131f7ef505a4129fce2862781ceaaed220
32cfc67e5a55fa6265846b66c39600e1eae4be04800ed3c15a9a14cc89f78c20
GET /images/photos/small/article2295.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 164960
last-modified: Fri, 25 Nov 2022 11:32:49 GMT
etag: "6380a7e1-28460"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/photos/small/article2293.jpg
135.181.181.70200 OK 178 kB URL HTTP/2 naceka-online.ru/images/photos/small/article2293.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 500x375, components 3\012- data
Size 178 kB (177531 bytes)
Hash 2d0f87b9a9c9bd48d861e1714237bdf4
f4d5d8744c831d81fcc4f8a7a37f7fadeea45ebd
96d9ce21cc6d4607cdf4416f8936886bd90e8bfac8c919bca1a6e85926fe3c2a
GET /images/photos/small/article2293.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 177531
last-modified: Mon, 24 Oct 2022 08:55:01 GMT
etag: "635652e5-2b57b"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/images/photos/small/article2292.jpg
135.181.181.70200 OK 174 kB URL HTTP/2 naceka-online.ru/images/photos/small/article2292.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x260, components 3\012- data
Size 174 kB (174096 bytes)
Hash 2adc8e5f7b1105861ed935a970f9a886
65a30ead5f8a13d062c4e0d76b0296d35b112d3c
3278c6dcd51e52d5604c571bb520e3e0d7dd7013e05cb7858502f53b2c060fb5
GET /images/photos/small/article2292.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: image/jpeg
content-length: 174096
last-modified: Fri, 14 Oct 2022 02:35:21 GMT
etag: "6348cae9-2a810"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/images/s5_bg.jpg
135.181.181.70200 OK 99 kB URL HTTP/2 naceka-online.ru/templates/ultimate/images/s5_bg.jpg
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 203x203, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Hash 3b7ec64f2d9ce3c55e42e4b2a3368fb4
5f932f67659b5cba4098515cee545c85247c3591
b7c68d7a851cc63a5e9b8805f46888950bedf0ee35827126ef885c39cc462d7b
GET /templates/ultimate/images/s5_bg.jpg HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/templates/ultimate/css/color_5.css
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:32 GMT
content-type: image/jpeg
content-length: 99045
last-modified: Wed, 18 Dec 2019 03:31:50 GMT
etag: "5df99da6-182e5"
expires: Thu, 01 Dec 2022 11:10:32 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/images/fill.png
135.181.181.70200 OK 3.3 kB URL HTTP/2 naceka-online.ru/templates/ultimate/images/fill.png
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash bf1232a4f2d55f3ead82c3401e19b48b
aa208d0e0d3b42104aca06ea5fac58c7b739171d
7283386695853dd6f88b1689c4661d73abd3d8486270f3c1eb52b206eaa38d58
GET /templates/ultimate/images/fill.png HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/templates/ultimate/css/mycss.css
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:32 GMT
content-type: image/png
content-length: 3324
last-modified: Wed, 18 Dec 2019 03:31:30 GMT
etag: "5df99d92-cfc"
expires: Thu, 01 Dec 2022 11:10:32 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/images/logo_big.png
135.181.181.70200 OK 33 kB URL HTTP/2 naceka-online.ru/templates/ultimate/images/logo_big.png
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 438 x 71, 8-bit/color RGBA, non-interlaced\012- data
Hash cb11c556e4fecfc9140f925a5624ea0e
725cc48683dc6493101c3294aeddf791450fb505
465b53c3b82029e250738e13889eaa439db0c73528a5fccbb665d473c08f3cdc
GET /templates/ultimate/images/logo_big.png HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/templates/ultimate/css/mycss.css
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:32 GMT
content-type: image/png
content-length: 32926
last-modified: Sun, 26 Jan 2020 12:03:57 GMT
etag: "5e2d802d-809e"
expires: Thu, 01 Dec 2022 11:10:32 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/framework/font/fontello.woff2?32471323
135.181.181.70200 OK 32 kB URL HTTP/2 naceka-online.ru/templates/ultimate/framework/font/fontello.woff2?32471323
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 31636, version 1.0\012- data
Hash 5c2530e0e32360c91b1d83145d22361a
11cac0acee47c7505e9978cd9e62cdbf7110249e
834374526f99f9b6a4d1ae81353d3a5689a0e663b3c3663f03e9f7ea3f2e5a3a
GET /templates/ultimate/framework/font/fontello.woff2?32471323 HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://naceka-online.ru/templates/ultimate/css/template.css
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:32 GMT
content-type: font/woff2
content-length: 31636
last-modified: Wed, 18 Dec 2019 03:31:26 GMT
etag: "5df99d8e-7b94"
expires: Thu, 01 Dec 2022 11:10:32 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7df6ad70785dc27bf7baf2fc39114b05
08d7b55b07bbe809b791b6e7da41f0c82cac64cc
1e7c324fb163eb77af0bfc4c7063dae75ac651c5786cbe194cff958baad44974
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1E7C324FB163EB77AF0BFC4C7063DAE75AC651C5786CBE194CFF958BAAD44974"
Last-Modified: Thu, 01 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8385
Expires: Thu, 01 Dec 2022 13:25:17 GMT
Date: Thu, 01 Dec 2022 11:05:32 GMT
Connection: keep-alive
www.pchelomatka.ru/cnt-129
82.146.46.75200 OK 3.4 kB URL HTTP/1.1 www.pchelomatka.ru/cnt-129
IP 82.146.46.75:0
File type PNG image data, 88 x 31, 8-bit colormap, non-interlaced\012- data
Hash ccffcee978b29ec6ccf852c3e460ef62
9a6019aa1131a985763a059f566498f8d220d09b
cf5db3494f83a57ff62b520660e62cec60eaeb4bfb9f91314f43a8235f626df9
GET /cnt-129 HTTP/1.1
Host: www.pchelomatka.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:32 GMT
Server: Apache/2.4.6 (CentOS) mpm-itk/2.4.7-04 OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/5.6.40
Strict-Transport-Security: max-age=31536000; preload
X-Powered-By: PHP/5.6.40
Set-Cookie: PHPSESSID=b45dv7fdggno0c8dlmbtfrdpp1; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 3437
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/gif
Content-Language: ru
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ed999db91146cdfd9ac1d178ffd7b6ab
f4be7104633c84b1e170f20426671e0c9d649bbb
3ce4d863b27cdec31929e8fe8935c1f8fd15f6b1e8cb1a26d14d87360c0fe9e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3CE4D863B27CDEC31929E8FE8935C1F8FD15F6B1E8CB1A26D14D87360C0FE9E5"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14026
Expires: Thu, 01 Dec 2022 14:59:18 GMT
Date: Thu, 01 Dec 2022 11:05:32 GMT
Connection: keep-alive
naceka-online.ru/templates/ultimate/images/icons/male.png
135.181.181.70200 OK 466 B URL HTTP/2 naceka-online.ru/templates/ultimate/images/icons/male.png
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash d2b5d45e27d55d57b4e322cd3d99ac2c
b8c82e144400e0baf4974f023e9d9eca0f0d1795
b9f83833a78d8df86120986b1b10cd0397eb69f42a9a1ca51c67d527ea7c520b
GET /templates/ultimate/images/icons/male.png HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/templates/ultimate/css/color_5.css
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:32 GMT
content-type: image/png
content-length: 466
last-modified: Wed, 18 Dec 2019 03:32:54 GMT
etag: "5df99de6-1d2"
expires: Thu, 01 Dec 2022 11:10:32 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
naceka-online.ru/includes/jquery/colorbox/colorbox.css
135.181.181.70200 OK 9.0 kB URL HTTP/2 naceka-online.ru/includes/jquery/colorbox/colorbox.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1408)
Hash 8e946d6268663846ade6df5e843f61d0
22184c0b03074e4de11e5398afcc56a2a12c8b94
5a5b859b8247fc2ef6f78442539b5d67b5e37f45e8bdbe449d3521d5b442ffb9
GET /includes/jquery/colorbox/colorbox.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Tue, 17 Dec 2019 02:13:01 GMT
vary: Accept-Encoding
etag: W/"5df839ad-1113"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/favicon.ico
135.181.181.70200 OK 9.3 kB URL HTTP/2 naceka-online.ru/favicon.ico
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
File type MS Windows icon resource - 1 icon, 47x47, 32 bits/pixel\012- data
Hash 16403c3cb49b3a29aa7c6069ac14fb8b
9f8353f74a7b240343d389cb65f81d9aeaaa5f4f
0d17c17c3420a37e2f76efee9d53bd1cf4f52942bbfa63be57e16652ff701f31
GET /favicon.ico HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:32 GMT
content-type: image/x-icon
content-length: 9274
last-modified: Sun, 26 Jan 2020 08:35:07 GMT
etag: "5e2d4f3b-243a"
expires: Thu, 01 Dec 2022 11:10:32 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash d31850a03e43ed3e4b983e71cc255382
15993eb7506a564080ae48a1cfb078d263c6a46a
3fc52da08c90ef2306eedfe35985eda602cb2a71c22ce5051ba99de7aef1b71b
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:32 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Mon, 05 Dec 2022 09:15:07 GMT
ETag: "15993eb7506a564080ae48a1cfb078d263c6a46a"
Last-Modified: Thu, 01 Dec 2022 09:15:08 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3216
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772b5929de1ab529-OSL
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash a368f259aaf691d500db779124d46ba2
5d8aecd6636d9254b5f0f698b2292d2d51cb570e
3fe12f3ad66a6916d2b5ecb0583eee79d76ed5ce90523b3e3010220e228a7c6d
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Mon, 05 Dec 2022 08:06:28 GMT
ETag: "5d8aecd6636d9254b5f0f698b2292d2d51cb570e"
Last-Modified: Thu, 01 Dec 2022 08:06:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2337
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772b5929df970b59-OSL
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash a368f259aaf691d500db779124d46ba2
5d8aecd6636d9254b5f0f698b2292d2d51cb570e
3fe12f3ad66a6916d2b5ecb0583eee79d76ed5ce90523b3e3010220e228a7c6d
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Mon, 05 Dec 2022 08:06:28 GMT
ETag: "5d8aecd6636d9254b5f0f698b2292d2d51cb570e"
Last-Modified: Thu, 01 Dec 2022 08:06:29 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2337
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772b5929dd8bb527-OSL
counter.yadro.ru/logo?44.12
88.212.202.52200 OK 132 B URL HTTP/1.1 counter.yadro.ru/logo?44.12
IP 88.212.202.52:0
ASN #39134 United Network LLC
File type GIF image data, version 87a, 31 x 31\012- data
Hash b8eac0210127750bbe91458ee95816c3
5cc94540bcfe2b5d3d692c49b1fb82be72466bd3
7394e3e0f1bb92f2058eec88077934fc543e8e011f7e146113478375e4d7581b
GET /logo?44.12 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 01 Dec 2022 11:05:32 GMT
Content-Type: image/gif
Content-Length: 132
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
Expires: Thu, 30 Nov 2023 21:00:00 GMT
Strict-Transport-Security: max-age=86400
counter.yadro.ru/hit?r;s1280*1024*24;uhttps%3A//naceka-online.ru/;h%u041F%u0430%u0441%u0435%u043A%u0430-%u043E%u043D%u043B%u0430%u0439%u043D.%20%u0421%u0430%u0439%u0442%20%u043B%u044E%u0431%u0438%u0442%u0435%u043B%u0435%u0439%20%u043F%u0447%u0435%u043B%u043E%u0432%u043E%u0434%u0441%u0442%u0432%u0430;0.8779811930308943
88.212.202.52200 OK 43 B URL HTTP/1.1 counter.yadro.ru/hit?r;s1280*1024*24;uhttps%3A//naceka-online.ru/;h%u041F%u0430%u0441%u0435%u043A%u0430-%u043E%u043D%u043B%u0430%u0439%u043D.%20%u0421%u0430%u0439%u0442%20%u043B%u044E%u0431%u0438%u0442%u0435%u043B%u0435%u0439%20%u043F%u0447%u0435%u043B%u043E%u0432%u043E%u0434%u0441%u0442%u0432%u0430;0.8779811930308943
IP 88.212.202.52:0
ASN #39134 United Network LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit?r;s1280*1024*24;uhttps%3A//naceka-online.ru/;h%u041F%u0430%u0441%u0435%u043A%u0430-%u043E%u043D%u043B%u0430%u0439%u043D.%20%u0421%u0430%u0439%u0442%20%u043B%u044E%u0431%u0438%u0442%u0435%u043B%u0435%u0439%20%u043F%u0447%u0435%u043B%u043E%u0432%u043E%u0434%u0441%u0442%u0432%u0430;0.8779811930308943 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 01 Dec 2022 11:05:32 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Tue, 30 Nov 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
informer.yandex.ru/informer/3835738/3_1_8BAE43FF_6B8E23FF_1_pageviews
87.250.250.119200 OK 1.6 kB URL HTTP/2 informer.yandex.ru/informer/3835738/3_1_8BAE43FF_6B8E23FF_1_pageviews
IP 87.250.250.119:0
File type PNG image data, 88 x 31, 8-bit/color RGBA, non-interlaced\012- data
Hash 7a64154ed7c7aaf37c527027d6d3a711
9cabedd0ec0b9bba595fb3c7899c0bfc0dcaf2b3
5587c9845d261a8f26420ae2dd9429e80a63bce5840df55981dfb53fe0f4b210
GET /informer/3835738/3_1_8BAE43FF_6B8E23FF_1_pageviews HTTP/1.1
Host: informer.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 1596
last-modified: Thu, 01-Dec-2022 11:05:32 GMT
content-type: image/png
pragma: no-cache
strict-transport-security: max-age=31536000
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
x-xss-protection: 1; mode=block
expires: Thu, 01-Dec-2022 11:05:32 GMT
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 281 B IP 104.18.32.68:0
Hash edab2c2365c3a6276fca8fcd44a7d505
24c147248cbb34efeac51e1fe6764954c54fb0a7
8c248d1d937e7e8e854cec588e30f184644ec5ccd1f666c8aec267d4fa5b8649
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:32 GMT
Content-Type: application/ocsp-response
Content-Length: 281
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 09:53:48 GMT
Expires: Tue, 06 Dec 2022 09:53:47 GMT
Etag: "24c147248cbb34efeac51e1fe6764954c54fb0a7"
Cache-Control: max-age=427094,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 772b5928ffb8b4e8-OSL
www.acint.net/hit/?v=0.4.0&uid=34c5515e-6854-47dd-9680-7dad38697e8d&dp=10&tz=%2B00%3A00&nc=15071853&u=https%3A%2F%2Fnaceka-online.ru%2F&r=&rs=1280x1024&t=%D0%9F%D0%B0%D1%81%D0%B5%D0%BA%D0%B0-%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD.%20%D0%A1%D0%B0%D0%B9%D1%82%20%D0%BB%D1%8E%D0%B1%D0%B8%D1%82%D0%B5%D0%BB%D0%B5%D0%B9%20%D0%BF%D1%87%D0%B5%D0%BB%D0%BE%D0%B2%D0%BE%D0%B4%D1%81%D1%82%D0%B2%D0%B0&oE=1&oP=1&dT=2022-12-01T11%3A05%3A31.026&fu=14571ca0-0967-4f5d-aa6b-55f495cd3921
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/hit/?v=0.4.0&uid=34c5515e-6854-47dd-9680-7dad38697e8d&dp=10&tz=%2B00%3A00&nc=15071853&u=https%3A%2F%2Fnaceka-online.ru%2F&r=&rs=1280x1024&t=%D0%9F%D0%B0%D1%81%D0%B5%D0%BA%D0%B0-%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD.%20%D0%A1%D0%B0%D0%B9%D1%82%20%D0%BB%D1%8E%D0%B1%D0%B8%D1%82%D0%B5%D0%BB%D0%B5%D0%B9%20%D0%BF%D1%87%D0%B5%D0%BB%D0%BE%D0%B2%D0%BE%D0%B4%D1%81%D1%82%D0%B2%D0%B0&oE=1&oP=1&dT=2022-12-01T11%3A05%3A31.026&fu=14571ca0-0967-4f5d-aa6b-55f495cd3921
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /hit/?v=0.4.0&uid=34c5515e-6854-47dd-9680-7dad38697e8d&dp=10&tz=%2B00%3A00&nc=15071853&u=https%3A%2F%2Fnaceka-online.ru%2F&r=&rs=1280x1024&t=%D0%9F%D0%B0%D1%81%D0%B5%D0%BA%D0%B0-%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD.%20%D0%A1%D0%B0%D0%B9%D1%82%20%D0%BB%D1%8E%D0%B1%D0%B8%D1%82%D0%B5%D0%BB%D0%B5%D0%B9%20%D0%BF%D1%87%D0%B5%D0%BB%D0%BE%D0%B2%D0%BE%D0%B4%D1%81%D1%82%D0%B2%D0%B0&oE=1&oP=1&dT=2022-12-01T11%3A05%3A31.026&fu=14571ca0-0967-4f5d-aa6b-55f495cd3921 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 01 Dec 2022 11:05:32 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
set-cookie: aid=CkIDE2OIinwkZwMYdykhAmKNJ8p13cf3K9OHijWEC8YPhE0a; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
www.acint.net/mc/?dp=10
193.3.184.228302 Found 154 B IP 193.3.184.228:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /mc/?dp=10 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 01 Dec 2022 11:05:32 GMT
content-type: text/html
content-length: 154
location: /mc/?dp=10&tc=1
set-cookie: test_cookie=CheckForPermission; path=/; Secure; SameSite=None; domain=.acint.net; expires=Thu, 01-Dec-22 11:15:32 GMT
aid=CkIDFWOIinymeQNk28prAip9Essjas2yVkdkaMirWIXX1gT+; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.acint.net; path=/; Secure; SameSite=None
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/watch.js
87.250.251.119200 OK 58 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP 87.250.251.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (586)
Hash 89185e037b366ee6c6b5d55bd893c11d
6a0e2cd6189b890da76b827beaeeca41097e8cf1
2b46f64d745301de1b0f94206157e0373db1e5db20e7725794fb34adaab08423
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 57741
date: Thu, 01 Dec 2022 11:05:32 GMT
access-control-allow-origin: *
etag: "63875d46-e18d"
expires: Thu, 01 Dec 2022 12:05:32 GMT
last-modified: Wed, 30 Nov 2022 16:40:22 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
a.utraff.com/sync?ssp=sape
104.21.59.66204 No Content 0 B URL HTTP/2 a.utraff.com/sync?ssp=sape
IP 104.21.59.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=sape HTTP/1.1
Host: a.utraff.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 01 Dec 2022 11:05:32 GMT
content-type: text/plain
set-cookie: preutid=1; Expires=Sat, 31 Dec 2022 14:05:32 GMT; Domain=.itraff.net; SameSite=None; Secure; Path=/
preutid=1; Expires=Sat, 31 Dec 2022 14:05:32 GMT; Domain=.utraff.com; SameSite=None; Secure; Path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization
access-control-expose-headers: Content-Length,Content-Range
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1SlhRcTMzkaHOlS7jktYl8ZqRDkCJKb5SMtaMA5MagDl6uc5JgotDDR2YLWTef6ci0AzxkM%2BJGmdbTM7AxMLeEK3QsEVcRh%2F%2F5aEHAveN%2FgtT8cO8xAG7NrpTiELSws%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 772b592b29390b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1503420A7C8A8863640379A6026BCADB
95.216.101.186302 Found 0 B URL HTTP/2 sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1503420A7C8A8863640379A6026BCADB
IP 95.216.101.186:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 01 Dec 2022 11:05:32 GMT
content-length: 0
expires: 0
cache-control: private, no-cache, no-store, no-cache=Set-Cookie, proxy-revalidate
set-cookie: uid=12fd6fd0-7168-11ed-8ff0-f832e4719dd9; Version=1; Path=/; Domain=.1dmp.io; Expires=Fri, 01 Dec 2023 11:05:32 GMT; SameSite=None; Secure
uid-legacy=12fd6fd0-7168-11ed-8ff0-f832e4719dd9; Version=1; Path=/; Domain=.1dmp.io; Expires=Fri, 01 Dec 2023 11:05:32 GMT
location: /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1503420A7C8A8863640379A6026BCADB&cs=1
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 5c517dcfeb99f9d6c7822aa13b3995ba
c20202761443403b6e7876e74fd3cbbc17c7040f
88935477202eca2e97aab2f879e5c3ac497499075a4982941502ca906540da1f
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Mon, 05 Dec 2022 07:25:13 GMT
ETag: "c20202761443403b6e7876e74fd3cbbc17c7040f"
Last-Modified: Thu, 01 Dec 2022 07:25:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3052
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772b592bd9e90b59-OSL
dm-eu.hybrid.ai/match?id=106&vid=1503420A7C8A8863640379A6026BCADB
37.18.103.21204 No Content 0 B URL HTTP/2 dm-eu.hybrid.ai/match?id=106&vid=1503420A7C8A8863640379A6026BCADB
IP 37.18.103.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=106&vid=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 01 Dec 2022 11:05:32 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=0d17edb2447267b95747; Expires=Fri, 01 Dec 2023 11:05:32 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 523
x-xss-protection: 1; mode=block
access-control-allow-origin: *
server: Hybrid Web Server
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2a7b2dbd296e7ec389971e8e975a0fb6
a38083a925384e862f6e107899fffaaa852164de
465d5b596f237bf9e3ec87551496e6a43630acdf756fdf4b2e04969ecc82cafa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5815
Cache-Control: max-age=135853
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:05:32 GMT
Etag: "6387e372-117"
Expires: Sat, 03 Dec 2022 00:49:45 GMT
Last-Modified: Wed, 30 Nov 2022 23:12:50 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b70adf021425d7e992c7cd64481c8e31
cb773403e99992c587353a18b06b4fdf3437d316
5e368e20981d070814b693ec0fdf1ed743a4b7219d53c4059e35411bf0392c0d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E368E20981D070814B693EC0FDF1ED743A4B7219D53C4059E35411BF0392C0D"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2181
Expires: Thu, 01 Dec 2022 11:41:53 GMT
Date: Thu, 01 Dec 2022 11:05:32 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 468654858753a387ff97877538c8832b
a496be23862abc192135286825f3e423640d78a4
e173ebe4b67eb722e56e9b10fffa579988acfea195937a3de2bb9169c86d393e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E173EBE4B67EB722E56E9B10FFFA579988ACFEA195937A3DE2BB9169C86D393E"
Last-Modified: Wed, 30 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16866
Expires: Thu, 01 Dec 2022 15:46:38 GMT
Date: Thu, 01 Dec 2022 11:05:32 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a378e3cc6029dde181c06e0e0568cfa5
0eedaf829e2aa8ed4515963f324fda6ce6c1a024
00c029ae05bbc62c592d0aa39980d2143aa880833cbda0cf89301c2d7b790897
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00C029AE05BBC62C592D0AA39980D2143AA880833CBDA0CF89301C2D7B790897"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3193
Expires: Thu, 01 Dec 2022 11:58:45 GMT
Date: Thu, 01 Dec 2022 11:05:32 GMT
Connection: keep-alive
sync.dmp.otm-r.com/match/sape?id=1503420A7C8A8863640379A6026BCADB
194.55.244.179204 No Content 0 B URL HTTP/2 sync.dmp.otm-r.com/match/sape?id=1503420A7C8A8863640379A6026BCADB
IP 194.55.244.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.23.2
date: Thu, 01 Dec 2022 11:05:32 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 6b9efc56a5c83007514905bc0fbb010e
9133a19f469b8cc3d2fb36399c0955554b0fe1da
d0c5cd5deea1f0b5e77402c785309b5088f732f05ddb5a2ef90f66541c4f0aa5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 15:41:02 GMT
Expires: Tue, 06 Dec 2022 15:41:01 GMT
Etag: "9133a19f469b8cc3d2fb36399c0955554b0fe1da"
Cache-Control: max-age=447928,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 772b592c2c13b4e8-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash be716dad2ada48944da6df3841eafeb8
3b95a6e57f7dab8ea8ffc76745d01acc38c151ce
c1d22e713d8a7a1228de17f230af48e6a1441f7a067783e6f4b9a03bb375f33e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C1D22E713D8A7A1228DE17F230AF48E6A1441F7A067783E6F4B9A03BB375F33E"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13147
Expires: Thu, 01 Dec 2022 14:44:39 GMT
Date: Thu, 01 Dec 2022 11:05:32 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ba2c74384048845e67ea414a305f1b3d
f199f6d359b0a0f894e63ede45b8f1a0f81e2f05
0033f5a92be8b7b3f561af35a3efffc60f2469da3985ba66f02809895f98bc64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0033F5A92BE8B7B3F561AF35A3EFFFC60F2469DA3985BA66F02809895F98BC64"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16727
Expires: Thu, 01 Dec 2022 15:44:19 GMT
Date: Thu, 01 Dec 2022 11:05:32 GMT
Connection: keep-alive
www.acint.net/mc/?dp=10&tc=1
193.3.184.228200 OK 1.6 kB URL HTTP/2 www.acint.net/mc/?dp=10&tc=1
IP 193.3.184.228:0
Hash 047836a651dc00fe95865a7d1ebf86a8
3c232cd9794774036b9e4a77f11def1e40a5f5d3
1f32355669356228d98d3e1713911e6488c62825516b56bbe59538597c6e47b3
GET /mc/?dp=10&tc=1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://naceka-online.ru/
Connection: keep-alive
Cookie: aid=CkIDFWOIinymeQNk28prAip9Essjas2yVkdkaMirWIXX1gT+; test_cookie=CheckForPermission
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 01 Dec 2022 11:05:32 GMT
content-type: text/html
set-cookie: cSyncDp7v2=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp14v3=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp17=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp32=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp45v3=1669892732; expires=Fri, 02-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp53=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp54v2=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp62=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp67v2=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp68=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp71=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp77=1669892732; expires=Thu, 15-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp84=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp85=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp95v3=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp101=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp104v2=1669892732; expires=Thu, 15-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp107=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp110=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp111v2=1669892732; expires=Thu, 15-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp112v2=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp125v2=1669892732; expires=Fri, 16-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp126=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp127=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp129=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp136v2=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp138=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp146=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp148=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp149v2=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp151=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp178=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp179=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp186=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
cSyncDp221=1669892732; expires=Sat, 31-Dec-22 11:05:32 GMT; path=/; Secure; SameSite=None; domain=.acint.net
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
content-encoding: gzip
X-Firefox-Spdy: h2
sync.republer.com/match?dsp=sape
23.88.82.46204 No Content 0 B URL HTTP/2 sync.republer.com/match?dsp=sape
IP 23.88.82.46:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?dsp=sape HTTP/1.1
Host: sync.republer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 01 Dec 2022 11:05:32 GMT
strict-transport-security: max-age=0
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 690c53b951993a620aea0971ef0ff5b3
d4f990127daa5397988e7014d64c29140c0c9a20
4e7d3136a60293c6e7e0e451c7f20ee21ae017abe6d48c60d9fad2461dafb9dd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4E7D3136A60293C6E7E0E451C7F20EE21AE017ABE6D48C60D9FAD2461DAFB9DD"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15140
Expires: Thu, 01 Dec 2022 15:17:52 GMT
Date: Thu, 01 Dec 2022 11:05:32 GMT
Connection: keep-alive
ut.rktch.com/matchspm?pi=1000005&pui=1503420A7C8A8863640379A6026BCADB
89.108.97.2302 Found 0 B URL HTTP/1.1 ut.rktch.com/matchspm?pi=1000005&pui=1503420A7C8A8863640379A6026BCADB
IP 89.108.97.2:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /matchspm?pi=1000005&pui=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: ut.rktch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.22.0
Date: Thu, 01 Dec 2022 11:05:32 GMT
Content-Length: 0
Connection: keep-alive
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
Set-Cookie: b_uid=44710ba1c985b452dbf691aad53aaac5e7c4; Max-Age=2592000; Expires=Sat, 31 Dec 2022 11:05:32 GMT; Domain=rktch.com; Secure; SameSite=None
Access-Control-Allow-Methods: GET, POST, PATCH, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Content-Type, Accept, Authorization
Access-Control-Allow-Credentials: true
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 8cc68520c16b7ac9843f2a8609f2db91
fe37daeff8348c3b292eaf4b600af4f7e7f22670
9f63e75bea26aa998e67bb416e9a280150642546ab0ceddcbaeae3216b3e3e62
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:32 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Mon, 05 Dec 2022 08:39:46 GMT
ETag: "fe37daeff8348c3b292eaf4b600af4f7e7f22670"
Last-Modified: Thu, 01 Dec 2022 08:39:47 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1074
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772b592cbb3fb529-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 8ef4e8eb1e0f07b1edd0ae55f6bd5a2a
55dc5b42b7e8f110fd0d59234275ce0043d0adca
a4d6e816fee030f8012ce8b5804fd80fb451f6b91aa42e7e96c6c441048e1df7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4D6E816FEE030F8012CE8B5804FD80FB451F6B91AA42E7E96C6C441048E1DF7"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9159
Expires: Thu, 01 Dec 2022 13:38:11 GMT
Date: Thu, 01 Dec 2022 11:05:32 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 13a1065295c3cf50b7cbef43763cc1c4
5f45040a339522fef0428c29e418815434468a1b
ddd406868dbe4e78adadf55b2d2edf8617481d32d335f008331caaaa94e1012d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DDD406868DBE4E78ADADF55B2D2EDF8617481D32D335F008331CAAAA94E1012D"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18819
Expires: Thu, 01 Dec 2022 16:19:11 GMT
Date: Thu, 01 Dec 2022 11:05:32 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 8ef4e8eb1e0f07b1edd0ae55f6bd5a2a
55dc5b42b7e8f110fd0d59234275ce0043d0adca
a4d6e816fee030f8012ce8b5804fd80fb451f6b91aa42e7e96c6c441048e1df7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A4D6E816FEE030F8012CE8B5804FD80FB451F6B91AA42E7E96C6C441048E1DF7"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9159
Expires: Thu, 01 Dec 2022 13:38:11 GMT
Date: Thu, 01 Dec 2022 11:05:32 GMT
Connection: keep-alive
naceka-online.ru/modules/mod_video_new/style_new_video.css
135.181.181.70200 OK 374 B URL HTTP/2 naceka-online.ru/modules/mod_video_new/style_new_video.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Hash 77243c61176d7454c09d7e8d3777d515
c04e2cdbdd4f7e96c77f95ae04bfe86d8297c5ea
52ae5befc108825006566ead838d63d62ddf36a5526230419e165b280f5c1407
GET /modules/mod_video_new/style_new_video.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Fri, 17 Apr 2020 18:13:55 GMT
vary: Accept-Encoding
etag: W/"5e99f1e3-19a"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1503420A7C8A8863640379A6026BCADB&cs=1
95.216.101.186200 OK 35 B URL HTTP/2 sync.1dmp.io/pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1503420A7C8A8863640379A6026BCADB&cs=1
IP 95.216.101.186:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /pixel.gif?cid=4c144084-0ce0-4f71-a147-2abe600b8908&brid=ba2b253b-6888-4e47-a573-9ffc06d95cd1&pid=w&uid=1503420A7C8A8863640379A6026BCADB&cs=1 HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: uid=12fd6fd0-7168-11ed-8ff0-f832e4719dd9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:05:32 GMT
content-type: image/gif
content-length: 35
expires: 0
cache-control: private, no-cache, no-store, no-cache=Set-Cookie, proxy-revalidate
set-cookie: uid=12fd6fd0-7168-11ed-8ff0-f832e4719dd9; Version=1; Path=/; Domain=.1dmp.io; Expires=Fri, 01 Dec 2023 11:05:32 GMT; SameSite=None; Secure
uid-legacy=12fd6fd0-7168-11ed-8ff0-f832e4719dd9; Version=1; Path=/; Domain=.1dmp.io; Expires=Fri, 01 Dec 2023 11:05:32 GMT
X-Firefox-Spdy: h2
stat.adlabs.ru/merge_gpsid/?sid=50&id=1503420A7C8A8863640379A6026BCADB
109.248.237.36302 Found 0 B URL HTTP/2 stat.adlabs.ru/merge_gpsid/?sid=50&id=1503420A7C8A8863640379A6026BCADB
IP 109.248.237.36:0
ASN #201009 Centre of server systems Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /merge_gpsid/?sid=50&id=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: stat.adlabs.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 01 Dec 2022 10:51:35 GMT
content-length: 0
location: //adlmerge.com/merge_gpsid/?sid=50&id=1503420A7C8A8863640379A6026BCADB
X-Firefox-Spdy: h2
ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
185.147.80.35302 Found 0 B URL HTTP/1.1 ssp.bestssp.com/sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D
IP 185.147.80.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sspmatch?url=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D95%26euid%3D HTTP/1.1
Host: ssp.bestssp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.16.1
Date: Thu, 01 Dec 2022 11:05:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.acint.net/match?dp=95&euid=AINBHCCJ
Set-Cookie: uid=AINBHCCJ; Expires=Thu, 01 Dec 2032 00:00:00 GMT; mf2=1; Expires=Sat, 31 Dec 2022 00:00:00 GMT;
s.uuidksinc.net/match/396/?remote_uid=1503420A7C8A8863640379A6026BCADB
185.196.197.130302 Found 0 B URL HTTP/2 s.uuidksinc.net/match/396/?remote_uid=1503420A7C8A8863640379A6026BCADB
IP 185.196.197.130:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/396/?remote_uid=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.19.0
date: Thu, 01 Dec 2022 11:05:32 GMT
content-length: 0
location: https://www.acint.net/match?dp=127&euid=DJb2u3014gDa6Yt1iH07
set-cookie: jcsuuid=DJb2u3014gDa6Yt1iH07; expires=Fri, 01 Dec 2023 11:05:32 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash f42124f2ea5983e6f12ef55ec5663bae
400804fa4f63a3400afb61f14687414a2c795ce1
ff2f35f7c00e329aa04725c12e30c10c36fb9e1f48386f91a8c15e2cd1a34643
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF2F35F7C00E329AA04725C12E30C10C36FB9E1F48386F91A8C15E2CD1A34643"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11190
Expires: Thu, 01 Dec 2022 14:12:02 GMT
Date: Thu, 01 Dec 2022 11:05:32 GMT
Connection: keep-alive
sync.bumlam.com/?src=sap1&uid=1503420A7C8A8863640379A6026BCADB
31.172.81.158302 Moved Temporarily 0 B URL HTTP/1.1 sync.bumlam.com/?src=sap1&uid=1503420A7C8A8863640379A6026BCADB
IP 31.172.81.158:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&uid=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Thu, 01 Dec 2022 11:05:32 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQxMzIxYWZkYS03MTY4LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Wed, 26 Nov 2042 11:05:32 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=sap1&s_data=CAIQARj8lKKcBmIgMTUwMzQyMEE3QzhBODg2MzY0MDM3OUE2MDI2QkNBREKiARATIa_acWgR7YbgACWQwGR8
ETag: 1321afda-7168-11ed-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
pix.bumlam.com/sync/sape/check?sspuid=1503420A7C8A8863640379A6026BCADB
31.172.81.158302 Found 0 B URL HTTP/1.1 pix.bumlam.com/sync/sape/check?sspuid=1503420A7C8A8863640379A6026BCADB
IP 31.172.81.158:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/check?sspuid=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://sync.bumlam.com/?src=sape
mediatoday.ru/core/match.gif?s=32&id=1503420A7C8A8863640379A6026BCADB
139.45.228.100200 OK 43 B URL HTTP/2 mediatoday.ru/core/match.gif?s=32&id=1503420A7C8A8863640379A6026BCADB
IP 139.45.228.100:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /core/match.gif?s=32&id=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: mediatoday.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:33 GMT
content-type: image/gif
content-length: 43
p3p: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
cache-control: no-cache, max-age=0, must-revalidate, no-store
pragma: no-cache
expires: Thursday, 01-Jan-1970 00:00:00 GMT
set-cookie: idntfy=VUPcA1WikhyKYwS; expires=Sun, 28-Nov-2032 11:05:33 GMT; domain=mediatoday.ru; path=/core; SameSite=None; Secure
X-Firefox-Spdy: h2
1503420a7c8a8863640379a6026bcadb-sp.ops.beeline.ru/p?ssp=sp&id=1503420A7C8A8863640379A6026BCADB
37.9.245.57301 Moved Permanently 0 B URL HTTP/2 1503420a7c8a8863640379a6026bcadb-sp.ops.beeline.ru/p?ssp=sp&id=1503420A7C8A8863640379A6026BCADB
IP 37.9.245.57:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&id=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: 1503420a7c8a8863640379a6026bcadb-sp.ops.beeline.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Thu, 01 Dec 2022 11:05:33 GMT
content-length: 0
location: https://www.acint.net/match?dp=111&euid=895193e5-9883-4419-8417-79f42d3981d2
access-control-allow-origin: *
cache-control: no-store, no-cache, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: BeeAID=895193e5-9883-4419-8417-79f42d3981d2; expires=Wed, 22 Nov 2023 11:05:33 GMT; domain=ops.beeline.ru; path=/; secure; SameSite=None
access-control-allow-credentials: true, true
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS, GET, HEAD, POST, OPTIONS, PUT, DELETE
access-control-allow-headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
x-route: http://upstream_cookiesync
x-host: 192.168.152.36
X-Firefox-Spdy: h2
www.acint.net/match?dp=129&euid=zqujigm4cx
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=129&euid=zqujigm4cx
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=129&euid=zqujigm4cx HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWOIinymeQNk28prAip9Essjas2yVkdkaMirWIXX1gT+; test_cookie=CheckForPermission; cSyncDp7v2=1669892732; cSyncDp14v3=1669892732; cSyncDp17=1669892732; cSyncDp32=1669892732; cSyncDp45v3=1669892732; cSyncDp53=1669892732; cSyncDp54v2=1669892732; cSyncDp62=1669892732; cSyncDp67v2=1669892732; cSyncDp68=1669892732; cSyncDp71=1669892732; cSyncDp77=1669892732; cSyncDp84=1669892732; cSyncDp85=1669892732; cSyncDp95v3=1669892732; cSyncDp101=1669892732; cSyncDp104v2=1669892732; cSyncDp107=1669892732; cSyncDp110=1669892732; cSyncDp111v2=1669892732; cSyncDp112v2=1669892732; cSyncDp125v2=1669892732; cSyncDp126=1669892732; cSyncDp127=1669892732; cSyncDp129=1669892732; cSyncDp136v2=1669892732; cSyncDp138=1669892732; cSyncDp146=1669892732; cSyncDp148=1669892732; cSyncDp149v2=1669892732; cSyncDp151=1669892732; cSyncDp178=1669892732; cSyncDp179=1669892732; cSyncDp186=1669892732; cSyncDp221=1669892732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 01 Dec 2022 11:05:33 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash ffea812856bc24a6463d3d67e2a07ef8
ca11e04261441a6a1baf10061acaf2ec8bd947ea
8d18599c6db1f4613bdf981433065d8847e89bf4ab2a6dac5b9d583189ff518c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 23:26:48 GMT
Expires: Wed, 07 Dec 2022 23:26:47 GMT
Etag: "ca11e04261441a6a1baf10061acaf2ec8bd947ea"
Cache-Control: max-age=562273,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 772b592d4d71b4e8-OSL
nr.bidderstack.com/sape/cm?user_id=1503420A7C8A8863640379A6026BCADB
23.88.12.14200 OK 44 B URL HTTP/1.1 nr.bidderstack.com/sape/cm?user_id=1503420A7C8A8863640379A6026BCADB
IP 23.88.12.14:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash f9d60352c70a2ba15616d1c9421f3844
e9abc8bea7721a4b6a50295850d13c515006a95c
82cb517a8f80c91dfcec543c6d140deb3baaf463ea9e77655475096eba7bc7d9
GET /sape/cm?user_id=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: nr.bidderstack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: image/gif
Content-Length: 44
Connection: keep-alive
Set-Cookie: uid=6b550429-91ce-444e-b2f7-aa5ec95229aa; domain=.bidderstack.com; path=/; expires=Fri, 01-Dec-2023 11:05:33 GMT;
Access-Control-Allow-Credentials: true
acint.net/match?dp=110&euid=becf6c8e0436414994c12c0d826dd822
193.3.184.228200 OK 43 B URL HTTP/2 acint.net/match?dp=110&euid=becf6c8e0436414994c12c0d826dd822
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=110&euid=becf6c8e0436414994c12c0d826dd822 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWOIinymeQNk28prAip9Essjas2yVkdkaMirWIXX1gT+; test_cookie=CheckForPermission; cSyncDp7v2=1669892732; cSyncDp14v3=1669892732; cSyncDp17=1669892732; cSyncDp32=1669892732; cSyncDp45v3=1669892732; cSyncDp53=1669892732; cSyncDp54v2=1669892732; cSyncDp62=1669892732; cSyncDp67v2=1669892732; cSyncDp68=1669892732; cSyncDp71=1669892732; cSyncDp77=1669892732; cSyncDp84=1669892732; cSyncDp85=1669892732; cSyncDp95v3=1669892732; cSyncDp101=1669892732; cSyncDp104v2=1669892732; cSyncDp107=1669892732; cSyncDp110=1669892732; cSyncDp111v2=1669892732; cSyncDp112v2=1669892732; cSyncDp125v2=1669892732; cSyncDp126=1669892732; cSyncDp127=1669892732; cSyncDp129=1669892732; cSyncDp136v2=1669892732; cSyncDp138=1669892732; cSyncDp146=1669892732; cSyncDp148=1669892732; cSyncDp149v2=1669892732; cSyncDp151=1669892732; cSyncDp178=1669892732; cSyncDp179=1669892732; cSyncDp186=1669892732; cSyncDp221=1669892732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 01 Dec 2022 11:05:33 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
acint.net/match?dp=14&euid=1D03420A7C8A8863B7006C2C025A80F9
193.3.184.228200 OK 43 B URL HTTP/2 acint.net/match?dp=14&euid=1D03420A7C8A8863B7006C2C025A80F9
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=14&euid=1D03420A7C8A8863B7006C2C025A80F9 HTTP/1.1
Host: acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWOIinymeQNk28prAip9Essjas2yVkdkaMirWIXX1gT+; test_cookie=CheckForPermission; cSyncDp7v2=1669892732; cSyncDp14v3=1669892732; cSyncDp17=1669892732; cSyncDp32=1669892732; cSyncDp45v3=1669892732; cSyncDp53=1669892732; cSyncDp54v2=1669892732; cSyncDp62=1669892732; cSyncDp67v2=1669892732; cSyncDp68=1669892732; cSyncDp71=1669892732; cSyncDp77=1669892732; cSyncDp84=1669892732; cSyncDp85=1669892732; cSyncDp95v3=1669892732; cSyncDp101=1669892732; cSyncDp104v2=1669892732; cSyncDp107=1669892732; cSyncDp110=1669892732; cSyncDp111v2=1669892732; cSyncDp112v2=1669892732; cSyncDp125v2=1669892732; cSyncDp126=1669892732; cSyncDp127=1669892732; cSyncDp129=1669892732; cSyncDp136v2=1669892732; cSyncDp138=1669892732; cSyncDp146=1669892732; cSyncDp148=1669892732; cSyncDp149v2=1669892732; cSyncDp151=1669892732; cSyncDp178=1669892732; cSyncDp179=1669892732; cSyncDp186=1669892732; cSyncDp221=1669892732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 01 Dec 2022 11:05:33 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
match.new-programmatic.com/userbind?src=sape&id=1503420A7C8A8863640379A6026BCADB
217.65.2.150204 No Content 0 B URL HTTP/1.1 match.new-programmatic.com/userbind?src=sape&id=1503420A7C8A8863640379A6026BCADB
IP 217.65.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=sape&id=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.22.1
Date: Thu, 01 Dec 2022 11:04:47 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
mc.yandex.ru/metrika/advert.gif
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 01 Dec 2022 11:05:33 GMT
access-control-allow-origin: *
etag: "63875d46-2b"
expires: Thu, 01 Dec 2022 12:05:33 GMT
accept-ranges: bytes
last-modified: Wed, 30 Nov 2022 16:40:22 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
sync.upravel.com/sape/sync
148.251.237.106302 Found 0 B URL HTTP/2 sync.upravel.com/sape/sync
IP 148.251.237.106:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 01 Dec 2022 11:05:33 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
set-cookie: session_tptc=1669892733037;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1669892733037;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
cs.agency2.ru/p?ssp=sp&uid=1503420A7C8A8863640379A6026BCADB
23.111.107.44301 Moved Permanently 0 B URL HTTP/1.1 cs.agency2.ru/p?ssp=sp&uid=1503420A7C8A8863640379A6026BCADB
IP 23.111.107.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sp&uid=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: cs.agency2.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Length: 0
Connection: keep-alive
Server: fasthttp
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://www.acint.net/match?dp=186&euid=ae45614d-ef77-4941-87cc-0dd058e72aac
Set-Cookie: uuid=ae45614d-ef77-4941-87cc-0dd058e72aac; expires=Wed, 22 Nov 2023 11:05:33 GMT; domain=agency2.ru; path=/; secure; SameSite=None
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: authorization, Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
X-Host: 23.111.107.44
www.acint.net/match?dp=126&euid=77870ae8-233e-4f0f-4115-7f617978f72c
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=126&euid=77870ae8-233e-4f0f-4115-7f617978f72c
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=126&euid=77870ae8-233e-4f0f-4115-7f617978f72c HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWOIinymeQNk28prAip9Essjas2yVkdkaMirWIXX1gT+; test_cookie=CheckForPermission; cSyncDp7v2=1669892732; cSyncDp14v3=1669892732; cSyncDp17=1669892732; cSyncDp32=1669892732; cSyncDp45v3=1669892732; cSyncDp53=1669892732; cSyncDp54v2=1669892732; cSyncDp62=1669892732; cSyncDp67v2=1669892732; cSyncDp68=1669892732; cSyncDp71=1669892732; cSyncDp77=1669892732; cSyncDp84=1669892732; cSyncDp85=1669892732; cSyncDp95v3=1669892732; cSyncDp101=1669892732; cSyncDp104v2=1669892732; cSyncDp107=1669892732; cSyncDp110=1669892732; cSyncDp111v2=1669892732; cSyncDp112v2=1669892732; cSyncDp125v2=1669892732; cSyncDp126=1669892732; cSyncDp127=1669892732; cSyncDp129=1669892732; cSyncDp136v2=1669892732; cSyncDp138=1669892732; cSyncDp146=1669892732; cSyncDp148=1669892732; cSyncDp149v2=1669892732; cSyncDp151=1669892732; cSyncDp178=1669892732; cSyncDp179=1669892732; cSyncDp186=1669892732; cSyncDp221=1669892732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 01 Dec 2022 11:05:33 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sap1&s_data=CAIQARj8lKKcBmIgMTUwMzQyMEE3QzhBODg2MzY0MDM3OUE2MDI2QkNBREKiARATIa_acWgR7YbgACWQwGR8
31.172.81.158200 OK 0 B URL HTTP/1.1 sync.bumlam.com/?src=sap1&s_data=CAIQARj8lKKcBmIgMTUwMzQyMEE3QzhBODg2MzY0MDM3OUE2MDI2QkNBREKiARATIa_acWgR7YbgACWQwGR8
IP 31.172.81.158:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sap1&s_data=CAIQARj8lKKcBmIgMTUwMzQyMEE3QzhBODg2MzY0MDM3OUE2MDI2QkNBREKiARATIa_acWgR7YbgACWQwGR8 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQxMzIxYWZkYS03MTY4LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQxMzIxYWZkYS03MTY4LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Wed, 26 Nov 2042 11:05:33 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
www.acint.net/match?dp=95&euid=AINBHCCJ
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=95&euid=AINBHCCJ
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=95&euid=AINBHCCJ HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWOIinymeQNk28prAip9Essjas2yVkdkaMirWIXX1gT+; test_cookie=CheckForPermission; cSyncDp7v2=1669892732; cSyncDp14v3=1669892732; cSyncDp17=1669892732; cSyncDp32=1669892732; cSyncDp45v3=1669892732; cSyncDp53=1669892732; cSyncDp54v2=1669892732; cSyncDp62=1669892732; cSyncDp67v2=1669892732; cSyncDp68=1669892732; cSyncDp71=1669892732; cSyncDp77=1669892732; cSyncDp84=1669892732; cSyncDp85=1669892732; cSyncDp95v3=1669892732; cSyncDp101=1669892732; cSyncDp104v2=1669892732; cSyncDp107=1669892732; cSyncDp110=1669892732; cSyncDp111v2=1669892732; cSyncDp112v2=1669892732; cSyncDp125v2=1669892732; cSyncDp126=1669892732; cSyncDp127=1669892732; cSyncDp129=1669892732; cSyncDp136v2=1669892732; cSyncDp138=1669892732; cSyncDp146=1669892732; cSyncDp148=1669892732; cSyncDp149v2=1669892732; cSyncDp151=1669892732; cSyncDp178=1669892732; cSyncDp179=1669892732; cSyncDp186=1669892732; cSyncDp221=1669892732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 01 Dec 2022 11:05:33 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
mc.yandex.ru/watch/3835738?wmode=7&page-url=https%3A%2F%2Fnaceka-online.ru%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A2669%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A486568804091%3Ahid%3A564133616%3Az%3A0%3Ai%3A20221201110531%3Aet%3A1669892731%3Ac%3A1%3Arn%3A392301428%3Arqn%3A1%3Au%3A1669892731762072454%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A1%2C203%2C2070%2C1%2C299%2C0%2C%2C734%2C101%2C%2C%2C%2C3333%3Ans%3A1669892727585%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669892731%3At%3A%D0%9F%D0%B0%D1%81%D0%B5%D0%BA%D0%B0-%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD.%20%D0%A1%D0%B0%D0%B9%D1%82%20%D0%BB%D1%8E%D0%B1%D0%B8%D1%82%D0%B5%D0%BB%D0%B5%D0%B9%20%D0%BF%D1%87%D0%B5%D0%BB%D0%BE%D0%B2%D0%BE%D0%B4%D1%81%D1%82%D0%B2%D0%B0&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
87.250.251.119302 Found 43 B URL HTTP/2 mc.yandex.ru/watch/3835738?wmode=7&page-url=https%3A%2F%2Fnaceka-online.ru%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A2669%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A486568804091%3Ahid%3A564133616%3Az%3A0%3Ai%3A20221201110531%3Aet%3A1669892731%3Ac%3A1%3Arn%3A392301428%3Arqn%3A1%3Au%3A1669892731762072454%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A1%2C203%2C2070%2C1%2C299%2C0%2C%2C734%2C101%2C%2C%2C%2C3333%3Ans%3A1669892727585%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669892731%3At%3A%D0%9F%D0%B0%D1%81%D0%B5%D0%BA%D0%B0-%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD.%20%D0%A1%D0%B0%D0%B9%D1%82%20%D0%BB%D1%8E%D0%B1%D0%B8%D1%82%D0%B5%D0%BB%D0%B5%D0%B9%20%D0%BF%D1%87%D0%B5%D0%BB%D0%BE%D0%B2%D0%BE%D0%B4%D1%81%D1%82%D0%B2%D0%B0&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /watch/3835738?wmode=7&page-url=https%3A%2F%2Fnaceka-online.ru%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A2669%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A486568804091%3Ahid%3A564133616%3Az%3A0%3Ai%3A20221201110531%3Aet%3A1669892731%3Ac%3A1%3Arn%3A392301428%3Arqn%3A1%3Au%3A1669892731762072454%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A1%2C203%2C2070%2C1%2C299%2C0%2C%2C734%2C101%2C%2C%2C%2C3333%3Ans%3A1669892727585%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669892731%3At%3A%D0%9F%D0%B0%D1%81%D0%B5%D0%BA%D0%B0-%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD.%20%D0%A1%D0%B0%D0%B9%D1%82%20%D0%BB%D1%8E%D0%B1%D0%B8%D1%82%D0%B5%D0%BB%D0%B5%D0%B9%20%D0%BF%D1%87%D0%B5%D0%BB%D0%BE%D0%B2%D0%BE%D0%B4%D1%81%D1%82%D0%B2%D0%B0&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naceka-online.ru
Connection: keep-alive
Referer: https://naceka-online.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/3835738/1?wmode=7&page-url=https%3A%2F%2Fnaceka-online.ru%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A2669%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A486568804091%3Ahid%3A564133616%3Az%3A0%3Ai%3A20221201110531%3Aet%3A1669892731%3Ac%3A1%3Arn%3A392301428%3Arqn%3A1%3Au%3A1669892731762072454%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A1%2C203%2C2070%2C1%2C299%2C0%2C%2C734%2C101%2C%2C%2C%2C3333%3Ans%3A1669892727585%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669892731%3At%3A%D0%9F%D0%B0%D1%81%D0%B5%D0%BA%D0%B0-%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD.%20%D0%A1%D0%B0%D0%B9%D1%82%20%D0%BB%D1%8E%D0%B1%D0%B8%D1%82%D0%B5%D0%BB%D0%B5%D0%B9%20%D0%BF%D1%87%D0%B5%D0%BB%D0%BE%D0%B2%D0%BE%D0%B4%D1%81%D1%82%D0%B2%D0%B0&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Thu, 01 Dec 2022 11:05:32 GMT
access-control-allow-origin: https://naceka-online.ru
set-cookie: yabs-sid=376017601669892732; Path=/; SameSite=None; Secure
i=8rOoluXq+hC4rRNxZ5gMgyWWTL5VAoYziL5gs3PbqinExiz8yMY8QZkCl4N+ZN1g+9XeZ38IDh180cO4i9VfegmFvoo=; Expires=Sun, 28-Nov-2032 11:05:25 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=6457623391669892732; Expires=Fri, 01-Dec-2023 11:05:32 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=6457623391669892732; Expires=Fri, 01-Dec-2023 11:05:32 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1701428732.yc.1669892732#1701428732.yrts.1669892732#1701428732.yrtsi.1669892732; Expires=Fri, 01-Dec-2023 11:05:32 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 01-Dec-2022 11:05:32 GMT
last-modified: Thu, 01-Dec-2022 11:05:32 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
dmp.gotechnology.io/match/sape?id=1503420A7C8A8863640379A6026BCADB
167.235.32.7302 Found 0 B URL HTTP/2 dmp.gotechnology.io/match/sape?id=1503420A7C8A8863640379A6026BCADB
IP 167.235.32.7:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 01 Dec 2022 11:05:33 GMT
content-length: 0
location: https://dmp.gotechnology.io/match/sape?id=1503420A7C8A8863640379A6026BCADB&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
sync.bumlam.com/?src=sape
31.172.81.158302 Moved Temporarily 0 B URL HTTP/1.1 sync.bumlam.com/?src=sape
IP 31.172.81.158:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQxMzIxYWZkYS03MTY4LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiQxMzIxYWZkYS03MTY4LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*; Path=/; Expires=Wed, 26 Nov 2042 11:05:33 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: https://pix.bumlam.com/sync/sape/sync_ok?guid=1321afda-7168-11ed-86e0-002590c0647c
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
Access-Control-Allow-Origin: https://acint.net
Access-Control-Allow-Credentials: true
mc.yandex.ru/watch/3835738/1?wmode=7&page-url=https%3A%2F%2Fnaceka-online.ru%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A2669%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A486568804091%3Ahid%3A564133616%3Az%3A0%3Ai%3A20221201110531%3Aet%3A1669892731%3Ac%3A1%3Arn%3A392301428%3Arqn%3A1%3Au%3A1669892731762072454%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A1%2C203%2C2070%2C1%2C299%2C0%2C%2C734%2C101%2C%2C%2C%2C3333%3Ans%3A1669892727585%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669892731%3At%3A%D0%9F%D0%B0%D1%81%D0%B5%D0%BA%D0%B0-%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD.%20%D0%A1%D0%B0%D0%B9%D1%82%20%D0%BB%D1%8E%D0%B1%D0%B8%D1%82%D0%B5%D0%BB%D0%B5%D0%B9%20%D0%BF%D1%87%D0%B5%D0%BB%D0%BE%D0%B2%D0%BE%D0%B4%D1%81%D1%82%D0%B2%D0%B0&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
87.250.251.119200 OK 407 B URL HTTP/2 mc.yandex.ru/watch/3835738/1?wmode=7&page-url=https%3A%2F%2Fnaceka-online.ru%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A2669%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A486568804091%3Ahid%3A564133616%3Az%3A0%3Ai%3A20221201110531%3Aet%3A1669892731%3Ac%3A1%3Arn%3A392301428%3Arqn%3A1%3Au%3A1669892731762072454%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A1%2C203%2C2070%2C1%2C299%2C0%2C%2C734%2C101%2C%2C%2C%2C3333%3Ans%3A1669892727585%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669892731%3At%3A%D0%9F%D0%B0%D1%81%D0%B5%D0%BA%D0%B0-%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD.%20%D0%A1%D0%B0%D0%B9%D1%82%20%D0%BB%D1%8E%D0%B1%D0%B8%D1%82%D0%B5%D0%BB%D0%B5%D0%B9%20%D0%BF%D1%87%D0%B5%D0%BB%D0%BE%D0%B2%D0%BE%D0%B4%D1%81%D1%82%D0%B2%D0%B0&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
IP 87.250.251.119:0
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash fd528633049a192c4c9849112d67e665
44d21988f61468e603488cf9f00929938b11578f
15bf3f52238136e2a6cb8a4f2598ada06feb3d64a58e6e2c0b7c47dc6b8fd57a
GET /watch/3835738/1?wmode=7&page-url=https%3A%2F%2Fnaceka-online.ru%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A2669%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A486568804091%3Ahid%3A564133616%3Az%3A0%3Ai%3A20221201110531%3Aet%3A1669892731%3Ac%3A1%3Arn%3A392301428%3Arqn%3A1%3Au%3A1669892731762072454%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A1%2C203%2C2070%2C1%2C299%2C0%2C%2C734%2C101%2C%2C%2C%2C3333%3Ans%3A1669892727585%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669892731%3At%3A%D0%9F%D0%B0%D1%81%D0%B5%D0%BA%D0%B0-%D0%BE%D0%BD%D0%BB%D0%B0%D0%B9%D0%BD.%20%D0%A1%D0%B0%D0%B9%D1%82%20%D0%BB%D1%8E%D0%B1%D0%B8%D1%82%D0%B5%D0%BB%D0%B5%D0%B9%20%D0%BF%D1%87%D0%B5%D0%BB%D0%BE%D0%B2%D0%BE%D0%B4%D1%81%D1%82%D0%B2%D0%B0&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naceka-online.ru
Referer: https://naceka-online.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 407
date: Thu, 01 Dec 2022 11:05:33 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://naceka-online.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 01-Dec-2022 11:05:33 GMT
last-modified: Thu, 01-Dec-2022 11:05:33 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
www.acint.net/match?dp=111&euid=895193e5-9883-4419-8417-79f42d3981d2
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=111&euid=895193e5-9883-4419-8417-79f42d3981d2
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=111&euid=895193e5-9883-4419-8417-79f42d3981d2 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWOIinymeQNk28prAip9Essjas2yVkdkaMirWIXX1gT+; test_cookie=CheckForPermission; cSyncDp7v2=1669892732; cSyncDp14v3=1669892732; cSyncDp17=1669892732; cSyncDp32=1669892732; cSyncDp45v3=1669892732; cSyncDp53=1669892732; cSyncDp54v2=1669892732; cSyncDp62=1669892732; cSyncDp67v2=1669892732; cSyncDp68=1669892732; cSyncDp71=1669892732; cSyncDp77=1669892732; cSyncDp84=1669892732; cSyncDp85=1669892732; cSyncDp95v3=1669892732; cSyncDp101=1669892732; cSyncDp104v2=1669892732; cSyncDp107=1669892732; cSyncDp110=1669892732; cSyncDp111v2=1669892732; cSyncDp112v2=1669892732; cSyncDp125v2=1669892732; cSyncDp126=1669892732; cSyncDp127=1669892732; cSyncDp129=1669892732; cSyncDp136v2=1669892732; cSyncDp138=1669892732; cSyncDp146=1669892732; cSyncDp148=1669892732; cSyncDp149v2=1669892732; cSyncDp151=1669892732; cSyncDp178=1669892732; cSyncDp179=1669892732; cSyncDp186=1669892732; cSyncDp221=1669892732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 01 Dec 2022 11:05:33 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
www.acint.net/match?dp=186&euid=ae45614d-ef77-4941-87cc-0dd058e72aac
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=186&euid=ae45614d-ef77-4941-87cc-0dd058e72aac
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=186&euid=ae45614d-ef77-4941-87cc-0dd058e72aac HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWOIinymeQNk28prAip9Essjas2yVkdkaMirWIXX1gT+; test_cookie=CheckForPermission; cSyncDp7v2=1669892732; cSyncDp14v3=1669892732; cSyncDp17=1669892732; cSyncDp32=1669892732; cSyncDp45v3=1669892732; cSyncDp53=1669892732; cSyncDp54v2=1669892732; cSyncDp62=1669892732; cSyncDp67v2=1669892732; cSyncDp68=1669892732; cSyncDp71=1669892732; cSyncDp77=1669892732; cSyncDp84=1669892732; cSyncDp85=1669892732; cSyncDp95v3=1669892732; cSyncDp101=1669892732; cSyncDp104v2=1669892732; cSyncDp107=1669892732; cSyncDp110=1669892732; cSyncDp111v2=1669892732; cSyncDp112v2=1669892732; cSyncDp125v2=1669892732; cSyncDp126=1669892732; cSyncDp127=1669892732; cSyncDp129=1669892732; cSyncDp136v2=1669892732; cSyncDp138=1669892732; cSyncDp146=1669892732; cSyncDp148=1669892732; cSyncDp149v2=1669892732; cSyncDp151=1669892732; cSyncDp178=1669892732; cSyncDp179=1669892732; cSyncDp186=1669892732; cSyncDp221=1669892732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 01 Dec 2022 11:05:33 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
148.251.237.106302 Found 0 B URL HTTP/2 sync.upravel.com/sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0
IP 148.251.237.106:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sape/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly93d3cuYWNpbnQubmV0LyJdfX0 HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: session_tptc=1669892733037
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 01 Dec 2022 11:05:33 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=e8d74b5c-fa5b-46b4-ba9a-0ab2816f2fb1;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=e8d74b5c-fa5b-46b4-ba9a-0ab2816f2fb1;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://www.acint.net/match?dp=71&euid=e8d74b5c-fa5b-46b4-ba9a-0ab2816f2fb1
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5c886ffb217c4b9d2ff9b44ce2988a13
d4c1f420e2bbfb2d0ad07f5cf1ff2b3b967aad3b
fb7db5cc863e701be831a8515e6bd6091e91714b6ca95e838699338c0324133f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FB7DB5CC863E701BE831A8515E6BD6091E91714B6CA95E838699338C0324133F"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10435
Expires: Thu, 01 Dec 2022 13:59:28 GMT
Date: Thu, 01 Dec 2022 11:05:33 GMT
Connection: keep-alive
pix.bumlam.com/sync/sape/sync_ok?guid=1321afda-7168-11ed-86e0-002590c0647c
31.172.81.158302 Found 0 B URL HTTP/1.1 pix.bumlam.com/sync/sape/sync_ok?guid=1321afda-7168-11ed-86e0-002590c0647c
IP 31.172.81.158:0
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/sape/sync_ok?guid=1321afda-7168-11ed-86e0-002590c0647c HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQxMzIxYWZkYS03MTY4LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
Location: https://1321afda-7168-11ed-86e0-002590c0647c.n6.sync.bumlam.com/?src=sape
www.acint.net/match?dp=71&euid=e8d74b5c-fa5b-46b4-ba9a-0ab2816f2fb1
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=71&euid=e8d74b5c-fa5b-46b4-ba9a-0ab2816f2fb1
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=71&euid=e8d74b5c-fa5b-46b4-ba9a-0ab2816f2fb1 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWOIinymeQNk28prAip9Essjas2yVkdkaMirWIXX1gT+; test_cookie=CheckForPermission; cSyncDp7v2=1669892732; cSyncDp14v3=1669892732; cSyncDp17=1669892732; cSyncDp32=1669892732; cSyncDp45v3=1669892732; cSyncDp53=1669892732; cSyncDp54v2=1669892732; cSyncDp62=1669892732; cSyncDp67v2=1669892732; cSyncDp68=1669892732; cSyncDp71=1669892732; cSyncDp77=1669892732; cSyncDp84=1669892732; cSyncDp85=1669892732; cSyncDp95v3=1669892732; cSyncDp101=1669892732; cSyncDp104v2=1669892732; cSyncDp107=1669892732; cSyncDp110=1669892732; cSyncDp111v2=1669892732; cSyncDp112v2=1669892732; cSyncDp125v2=1669892732; cSyncDp126=1669892732; cSyncDp127=1669892732; cSyncDp129=1669892732; cSyncDp136v2=1669892732; cSyncDp138=1669892732; cSyncDp146=1669892732; cSyncDp148=1669892732; cSyncDp149v2=1669892732; cSyncDp151=1669892732; cSyncDp178=1669892732; cSyncDp179=1669892732; cSyncDp186=1669892732; cSyncDp221=1669892732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 01 Dec 2022 11:05:33 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 37aa290a103eadb790e88028efe40afe
92a9a92a369eb54c60eb4c29c993fb1002240080
e5052a1d2ca1cbd606500c8816a421c2ccc14398ef6147c36b8c3ed33cb99354
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E5052A1D2CA1CBD606500C8816A421C2CCC14398EF6147C36B8C3ED33CB99354"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20558
Expires: Thu, 01 Dec 2022 16:48:11 GMT
Date: Thu, 01 Dec 2022 11:05:33 GMT
Connection: keep-alive
dmp.gotechnology.io/match/sape?id=1503420A7C8A8863640379A6026BCADB&chk=1
167.235.32.7302 Found 0 B URL HTTP/2 dmp.gotechnology.io/match/sape?id=1503420A7C8A8863640379A6026BCADB&chk=1
IP 167.235.32.7:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/sape?id=1503420A7C8A8863640379A6026BCADB&chk=1 HTTP/1.1
Host: dmp.gotechnology.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Thu, 01 Dec 2022 11:05:33 GMT
content-length: 0
location: https://an.yandex.ru/mapuid/gonetdspis/NzIwMzAwYTcyYmIyNGM3ZA
set-cookie: pid=NzIwMzAwYTcyYmIyNGM3ZA; expires=Fri, 01 Dec 2023 11:05:33 GMT; domain=.gotechnology.io; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
1321afda-7168-11ed-86e0-002590c0647c.n6.sync.bumlam.com/?src=sape
82.146.53.26302 Moved Temporarily 0 B URL HTTP/1.1 1321afda-7168-11ed-86e0-002590c0647c.n6.sync.bumlam.com/?src=sape
IP 82.146.53.26:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=sape HTTP/1.1
Host: 1321afda-7168-11ed-86e0-002590c0647c.n6.sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQxMzIxYWZkYS03MTY4LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.22.1
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Length: 0
Connection: close
Location: https://pix.bumlam.com/sync/sape/done
pix.bumlam.com/sync/sape/done
31.172.81.158200 OK 43 B URL HTTP/1.1 pix.bumlam.com/sync/sape/done
IP 31.172.81.158:0
ASN #44066 diva-e Datacenters GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /sync/sape/done HTTP/1.1
Host: pix.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: suuid3=IiQxMzIxYWZkYS03MTY4LTExZWQtODZlMC0wMDI1OTBjMDY0N2M*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Access-Control-Allow-Origin: https://www.acint.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Expires: 05-Jun-2005 22:00:00 GMT
X-Xss-Protection: 0
P3P: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 419d9c1b2ce3433f5a3017d043293dc5
cae4a0a9ca7cf04789c9a3d4854479fdb30f9bd9
258f1906d0dd610a44c08c08d07bfbdd638414bfefd8d7dde187931e98bc6f97
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Mon, 05 Dec 2022 10:09:13 GMT
ETag: "cae4a0a9ca7cf04789c9a3d4854479fdb30f9bd9"
Last-Modified: Thu, 01 Dec 2022 10:09:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2294
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772b593008afb529-OSL
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.21.226:0
Hash 419d9c1b2ce3433f5a3017d043293dc5
cae4a0a9ca7cf04789c9a3d4854479fdb30f9bd9
258f1906d0dd610a44c08c08d07bfbdd638414bfefd8d7dde187931e98bc6f97
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Mon, 05 Dec 2022 10:09:13 GMT
ETag: "cae4a0a9ca7cf04789c9a3d4854479fdb30f9bd9"
Last-Modified: Thu, 01 Dec 2022 10:09:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2294
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772b59303904b529-OSL
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
195.209.108.50302 Moved Temporarily 0 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691
IP 195.209.108.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-4731368866; expires=Sat, 30 Nov 2024 11:05:33 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4731368866
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1503420A7C8A8863640379A6026BCADB
81.222.128.215200 OK 42 B URL HTTP/1.1 ssp.adriver.ru/cgi-bin/sync.cgi?dsp_id=153&external_id=1503420A7C8A8863640379A6026BCADB
IP 81.222.128.215:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cgi-bin/sync.cgi?dsp_id=153&external_id=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 234a4a3c9c97d9e0e2cf3ad636b261a2
c86bd7e17dadc388154f74cb8cf8428afb2e5cd1
03c44be1aeb057ccc44b023524358f834522f123189eafdc01a9d5e06b16e225
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 04:09:16 GMT
Expires: Tue, 06 Dec 2022 04:09:15 GMT
Etag: "c86bd7e17dadc388154f74cb8cf8428afb2e5cd1"
Cache-Control: max-age=406421,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 772b5930499fb4e8-OSL
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 297a37937697cb8d80cf0989e578a412
56be3aeafd84e69e0b6e1d563110983108704d2f
6e50cbb027fce034bc4f8db661ee1a5c310e217da160aeba8eab66ec79d77332
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Mon, 05 Dec 2022 09:39:57 GMT
ETag: "56be3aeafd84e69e0b6e1d563110983108704d2f"
Last-Modified: Thu, 01 Dec 2022 09:39:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1702
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772b59308969b529-OSL
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:05:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash c0cd305ec6c4cfbf537db23bc4a7cb95
c811e783a96c2799166c57a2111937a33b7a09d5
f079546a6eb777219b1490bd070620943fb7435446aa2551835d9669bb5514ba
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Mon, 05 Dec 2022 08:59:02 GMT
ETag: "c811e783a96c2799166c57a2111937a33b7a09d5"
Last-Modified: Thu, 01 Dec 2022 08:59:03 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3098
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772b59309984b529-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 234a4a3c9c97d9e0e2cf3ad636b261a2
c86bd7e17dadc388154f74cb8cf8428afb2e5cd1
03c44be1aeb057ccc44b023524358f834522f123189eafdc01a9d5e06b16e225
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 04:09:16 GMT
Expires: Tue, 06 Dec 2022 04:09:15 GMT
Etag: "c86bd7e17dadc388154f74cb8cf8428afb2e5cd1"
Cache-Control: max-age=406421,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 772b59307fad1c16-OSL
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
188.42.34.64302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D
IP 188.42.34.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Fri, 01 Dec 2023 11:05:33 GMT; Path=/; Domain=.betweendigital.com
tuuid=bb26792a-6386-524f-ba11-9bd6d99911ab; Max-Age=31536000; Expires=Fri, 01 Dec 2023 11:05:33 GMT; Path=/; Domain=.betweendigital.com
ut=Y4iKfQAKClCuCHAuV6nTPfvzlhlj1YyuonNMug==; Max-Age=31536000; Expires=Fri, 01 Dec 2023 11:05:33 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
adlmerge.com/merge_gpsid/?sid=50&id=1503420A7C8A8863640379A6026BCADB
95.211.66.35200 OK 213 B URL HTTP/2 adlmerge.com/merge_gpsid/?sid=50&id=1503420A7C8A8863640379A6026BCADB
IP 95.211.66.35:0
ASN #60781 LeaseWeb Netherlands B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash a8c4f2cdf1d69c54516499c227e0493d
de0ff419d48fa29c6a5dd562d7e86838bd576cea
86478cdfea745fb2dd5b407bf1f1b23122a1b69f7b7e7114e0ea7e1de23162a8
GET /merge_gpsid/?sid=50&id=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: adlmerge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.16.0
date: Thu, 01 Dec 2022 11:05:33 GMT
content-type: image/gif
iseu: eu
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash be6badb6f4ade780bc9769957f7f7ccb
66ca89a6503a6b2c722ec1f0bb58c6763d7b95b7
f2d7bcfb4b70716ad305703abb9cacf4c5e2cde552c962e61cc6d75f15a9d84d
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Mon, 05 Dec 2022 06:48:49 GMT
ETag: "66ca89a6503a6b2c722ec1f0bb58c6763d7b95b7"
Last-Modified: Thu, 01 Dec 2022 06:48:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3508
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772b5930ce07b527-OSL
ad.mail.ru/cm.gif?p=48&id=1503420A7C8A8863640379A6026BCADB
95.163.41.56200 OK 43 B URL HTTP/2 ad.mail.ru/cm.gif?p=48&id=1503420A7C8A8863640379A6026BCADB
IP 95.163.41.56:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cm.gif?p=48&id=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:05:33 GMT
content-type: image/gif
content-length: 43
set-cookie: VID=3Z68uU0qswIE0024Ai1TSMYE:::0-0-0-8a2e33d:CAASEKli-6CHhpOK_5ZuB-0knpkaYE4V05LUujT5aUltjuTf-C91mFQsuCm_Fmb2o6yznivyWQNS-D4HlyDTSo-MhgBiEtaHZenfeXK-jL3inp0g2oWt0-Ga_qd0DXhejNz5nbMmUCvqV8asUCNMYubXALmASg; path=/; expires=Sat, 02-Dec-23 11:05:33 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
expires: Thu, 01 Dec 2022 17:05:33 GMT
cache-control: max-age=21600
last-modified: Thu, 01 Dec 2022 11:05:33 GMT
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin
cross-origin-embedder-policy: require-corp
X-Firefox-Spdy: h2
ads.betweendigital.com/match?bidder_id=73&external_user_id=1503420A7C8A8863640379A6026BCADB
188.42.34.64302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=73&external_user_id=1503420A7C8A8863640379A6026BCADB
IP 188.42.34.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=73&external_user_id=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=73&external_user_id=1503420A7C8A8863640379A6026BCADB&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Fri, 01 Dec 2023 11:05:33 GMT; Path=/; Domain=.betweendigital.com
tuuid=39b00080-0ab0-524f-8ca4-2607ef2cac7a; Max-Age=31536000; Expires=Fri, 01 Dec 2023 11:05:33 GMT; Path=/; Domain=.betweendigital.com
ut=Y4iKfQAIUOh3kXL8i2Z9ra-8b_9yO2RNsQRqCA==; Max-Age=31536000; Expires=Fri, 01 Dec 2023 11:05:33 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
77.245.57.72200 OK 0 B URL HTTP/1.1 sync.adkernel.com/user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D
IP 77.245.57.72:0
ASN #36057 WEBAIR-INTERNET-MTL
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /user-sync?zone=169736&t=image&r=https%3A%2F%2Fwww.acint.net%2Fmatch%3Fdp%3D221%26euid%3D%7BUID%7D HTTP/1.1
Host: sync.adkernel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Length: 0
Connection: close
ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
188.42.34.64200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1
IP 188.42.34.64:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=35313&callback_url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D107%26euid%3D%24%7BUSER_ID%7D&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Fri, 01 Dec 2023 11:05:33 GMT; Path=/; Domain=.betweendigital.com
tuuid=3ff05699-1ff7-524f-abd3-6d52c85be72f; Max-Age=31536000; Expires=Fri, 01 Dec 2023 11:05:33 GMT; Path=/; Domain=.betweendigital.com
ut=Y4iKfQAMtejQyGyUEUiEmbuvvZNACDYJpIqrRQ==; Max-Age=31536000; Expires=Fri, 01 Dec 2023 11:05:33 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
ocsp.usertrust.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash e29e1b6a4d7d8b622c0811f54ace7327
562bfa8688eba658bf77c7e51ef2e5a720b7b86d
15d20b692ecc0e6b10dd88945e5cdec4db6f4b98b4d06d55222e2df2d2ea0c40
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 04:18:21 GMT
Expires: Mon, 05 Dec 2022 04:18:20 GMT
Etag: "562bfa8688eba658bf77c7e51ef2e5a720b7b86d"
Cache-Control: max-age=601365,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1381
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772b59311ec00b06-OSL
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1b702d2e6f674c26bef3dd6806facd71
7ac09a72c217fad3bdf3121a8790ec609fda4aa9
e15b9d19e052b462e8ce497404cdfc5bb46ef4dfeb2efc5880056acbac0e3ce8
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1525
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:05:33 GMT
Etag: "6387d402-1d7"
Last-Modified: Thu, 01 Dec 2022 10:40:08 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 0f71b407d0a62ed7d45866fde570a8eb
077aa08eacafb82d1f6d4efdd0959451939a0234
244f6e9e5b08a961d7971172637a9013be3e95acd011ce5e89b48a3178470716
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 05 Dec 2022 07:57:34 GMT
ETag: "077aa08eacafb82d1f6d4efdd0959451939a0234"
Last-Modified: Thu, 01 Dec 2022 07:57:35 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1904
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772b59313a95b529-OSL
ads.betweendigital.com/match?bidder_id=73&external_user_id=1503420A7C8A8863640379A6026BCADB&crf=1
188.42.34.64200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=73&external_user_id=1503420A7C8A8863640379A6026BCADB&crf=1
IP 188.42.34.64:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=73&external_user_id=1503420A7C8A8863640379A6026BCADB&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Fri, 01 Dec 2023 11:05:33 GMT; Path=/; Domain=.betweendigital.com
tuuid=de7f733b-64dc-524f-b694-bb4ad51c3137; Max-Age=31536000; Expires=Fri, 01 Dec 2023 11:05:33 GMT; Path=/; Domain=.betweendigital.com
ut=Y4iKfQAJHAgo1oFt-prc4GhPLQ3Pp-_aN6u2fg==; Max-Age=31536000; Expires=Fri, 01 Dec 2023 11:05:33 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 11:05:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sape-sync.rutarget.ru/sync
45.9.24.193302 Moved Temporarily 0 B URL HTTP/1.1 sape-sync.rutarget.ru/sync
IP 45.9.24.193:0
ASN #208677 Cloud technology Limited (Ltd.)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync HTTP/1.1
Host: sape-sync.rutarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Length: 0
Connection: close
Location: https://www.acint.net/match?dp=104&euid=opGIEvaaPCfl
P3P: CP="This is not a P3P policy. Please visit http://rutarget.ru/p3p/ to get more information."
Set-Cookie: userId=opGIEvaaPCfl; Path=/; Domain=.rutarget.ru; Expires=Tue, 30 May 2023 11:05:33 GMT; SameSite=None; Secure
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4731368866
195.209.108.50302 Moved Temporarily 40 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4731368866
IP 195.209.108.50:0
File type ASCII text, with CRLF line terminators
Hash 251630b588179b239e8fab1ac9ef6d3a
91b91a97bc481dd2bbd5e0f3fea6ba1c4e843882
c95661e0ef6975b1df5361695a439f71a021d72c345023c3e668e84f35b3c38b
GET /cgi-bin/rle.cgi?sid=1&ad=608223&bt=21&pid=2551979&bid=6438691&tuid=-4731368866 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="//adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Sat, 30 Nov 2024 11:05:33 GMT; path=/; domain=.adriver.ru;
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
Location: https://www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5f9ec7b9a4f6f9f6e80876bb96d202e3
6cb872a2c7967b7b485d210acc5cc2b837b5a9f8
43ea672dcbd5bfd7f32f70380732dc897b68c5e2d8ac57f3d37cb343c6e37ba5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "43EA672DCBD5BFD7F32F70380732DC897B68C5E2D8AC57F3D37CB343C6E37BA5"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13279
Expires: Thu, 01 Dec 2022 14:46:52 GMT
Date: Thu, 01 Dec 2022 11:05:33 GMT
Connection: keep-alive
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 2593cb02d9bd7fabc76b888dd911443f
8b247bdf31ef609655378c045f511b295fdf2379
136db57970f20122ce1fcd00705c25bee7cae338a280e7659febe20327f613d4
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 30 Nov 2022 21:53:27 GMT
Expires: Thu, 01 Dec 2022 21:53:27 GMT
ETag: "8b247bdf31ef609655378c045f511b295fdf2379"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
sm.rtb.mts.ru/p?ssp=sape&id=1503420A7C8A8863640379A6026BCADB
217.66.147.34301 Moved Permanently 0 B URL HTTP/1.1 sm.rtb.mts.ru/p?ssp=sape&id=1503420A7C8A8863640379A6026BCADB
IP 217.66.147.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=sape&id=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://sm.rtb.mts.ru/match/second?ssp=30&exu=1503420A7C8A8863640379A6026BCADB
Set-Cookie: dspid=5528e126-d0ad-4025-8133-95c74e525094; expires=Wed, 22 Nov 2023 11:05:33 GMT; domain=.mts.ru; path=/; secure; SameSite=None
www.acint.net/match?dp=104&euid=opGIEvaaPCfl
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/match?dp=104&euid=opGIEvaaPCfl
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /match?dp=104&euid=opGIEvaaPCfl HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWOIinymeQNk28prAip9Essjas2yVkdkaMirWIXX1gT+; test_cookie=CheckForPermission; cSyncDp7v2=1669892732; cSyncDp14v3=1669892732; cSyncDp17=1669892732; cSyncDp32=1669892732; cSyncDp45v3=1669892732; cSyncDp53=1669892732; cSyncDp54v2=1669892732; cSyncDp62=1669892732; cSyncDp67v2=1669892732; cSyncDp68=1669892732; cSyncDp71=1669892732; cSyncDp77=1669892732; cSyncDp84=1669892732; cSyncDp85=1669892732; cSyncDp95v3=1669892732; cSyncDp101=1669892732; cSyncDp104v2=1669892732; cSyncDp107=1669892732; cSyncDp110=1669892732; cSyncDp111v2=1669892732; cSyncDp112v2=1669892732; cSyncDp125v2=1669892732; cSyncDp126=1669892732; cSyncDp127=1669892732; cSyncDp129=1669892732; cSyncDp136v2=1669892732; cSyncDp138=1669892732; cSyncDp146=1669892732; cSyncDp148=1669892732; cSyncDp149v2=1669892732; cSyncDp151=1669892732; cSyncDp178=1669892732; cSyncDp179=1669892732; cSyncDp186=1669892732; cSyncDp221=1669892732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 01 Dec 2022 11:05:33 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
px.adhigh.net/p/cm/sape?u=1503420A7C8A8863640379A6026BCADB
193.232.150.150302 Found 0 B URL HTTP/2 px.adhigh.net/p/cm/sape?u=1503420A7C8A8863640379A6026BCADB
IP 193.232.150.150:0
ASN #48061 Limited Liability Company GPM Digital Technologies
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/cm/sape?u=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 01 Dec 2022 11:05:33 GMT
content-length: 0
x-backend-id: f17-ru
access-control-allow-origin: *
access-control-allow-credentials: true
set-cookie: gi_u=uMNzU9xCOh7x.AikABlGEzVz6_Q;Path=/;Domain=.adhigh.net;Expires=Fri, 01-Dec-2023 11:05:33 GMT;Secure;SameSite=None
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
location: https://px.adhigh.net/p/cm/sape?u=1503420A7C8A8863640379A6026BCADB&bounced=1
X-Firefox-Spdy: h2
tag.digitaltarget.ru/adcm.js
185.15.175.144200 OK 3.1 kB URL HTTP/1.1 tag.digitaltarget.ru/adcm.js
IP 185.15.175.144:0
File type ASCII text, with very long lines (3051), with no line terminators
Hash e7097284185069f52fc736bcd50cda13
1cdfdf2d869841202079ddf91e0a00a8610812e6
40f2a96f78f4c8484e9da6e172f5ddd3e4d7786ca29e04b96e1067a365190e80
GET /adcm.js HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: application/javascript
Content-Length: 3051
Last-Modified: Thu, 01 Dec 2022 10:34:18 GMT
Connection: keep-alive
ETag: "6388832a-beb"
Accept-Ranges: bytes
www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
193.3.184.228302 Found 154 B URL HTTP/2 www.acint.net/rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D
IP 193.3.184.228:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /rmatch?dp=45&euid=0&r=https%3A%2F%2Fssp.adriver.ru%2Fcgi-bin%2Fsync.cgi%3Fssp_id%3D43%26external_id%3D%24%7BUSER_ID%7D HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Cookie: aid=CkIDFWOIinymeQNk28prAip9Essjas2yVkdkaMirWIXX1gT+; test_cookie=CheckForPermission; cSyncDp7v2=1669892732; cSyncDp14v3=1669892732; cSyncDp17=1669892732; cSyncDp32=1669892732; cSyncDp45v3=1669892732; cSyncDp53=1669892732; cSyncDp54v2=1669892732; cSyncDp62=1669892732; cSyncDp67v2=1669892732; cSyncDp68=1669892732; cSyncDp71=1669892732; cSyncDp77=1669892732; cSyncDp84=1669892732; cSyncDp85=1669892732; cSyncDp95v3=1669892732; cSyncDp101=1669892732; cSyncDp104v2=1669892732; cSyncDp107=1669892732; cSyncDp110=1669892732; cSyncDp111v2=1669892732; cSyncDp112v2=1669892732; cSyncDp125v2=1669892732; cSyncDp126=1669892732; cSyncDp127=1669892732; cSyncDp129=1669892732; cSyncDp136v2=1669892732; cSyncDp138=1669892732; cSyncDp146=1669892732; cSyncDp148=1669892732; cSyncDp149v2=1669892732; cSyncDp151=1669892732; cSyncDp178=1669892732; cSyncDp179=1669892732; cSyncDp186=1669892732; cSyncDp221=1669892732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: openresty
date: Thu, 01 Dec 2022 11:05:33 GMT
content-type: text/html
content-length: 154
location: https://ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1503420A7C8A8863640379A6026BCADB
p3p: CP="ALL ADM DEV PSAi COM OUR OTRo STP IND ONL"
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
35.190.24.218302 Found 0 B URL HTTP/2 redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect
IP 35.190.24.218:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D{WEBO_CID}%26noredirect HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: Weborama Collect Frontend
date: Thu, 01 Dec 2022 11:05:33 GMT
content-length: 0
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fut.rktch.com%2Fmatchspm%3Fpi%3D1000006%26pui%3D%7BWEBO_CID%7D%26noredirect&bounce=1&random=3217310554
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Thu, 01 Dec 2022 11:05:33 GMT
set-cookie: AFFICHE_W=OMSrrJdq4LA461; expires=Fri, 29 Dec 2023 11:05:33 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sm.rtb.mts.ru/match/second?ssp=30&exu=1503420A7C8A8863640379A6026BCADB
217.66.147.34200 OK 0 B URL HTTP/1.1 sm.rtb.mts.ru/match/second?ssp=30&exu=1503420A7C8A8863640379A6026BCADB
IP 217.66.147.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/second?ssp=30&exu=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1503420A7C8A8863640379A6026BCADB
81.222.128.215200 OK 42 B URL HTTP/1.1 ssp.adriver.ru/cgi-bin/sync.cgi?ssp_id=43&external_id=1503420A7C8A8863640379A6026BCADB
IP 81.222.128.215:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cgi-bin/sync.cgi?ssp_id=43&external_id=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: ssp.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
an.yandex.ru/mapuid/sapeis/1503420A7C8A8863640379A6026BCADB?redir-setuniq=1
213.180.193.90200 OK 50 B URL HTTP/2 an.yandex.ru/mapuid/sapeis/1503420A7C8A8863640379A6026BCADB?redir-setuniq=1
IP 213.180.193.90:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash bef53a5c76b7ad469692178eeaeb08d8
aaae1c11fa0b5a086770957c8857d3937ed653e9
be24bb564cc16e1fe9113f63db905a1b7a3a653c6642f0c27d5e823729a99ee3
GET /mapuid/sapeis/1503420A7C8A8863640379A6026BCADB?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Thu, 01 Dec 2022 11:05:33 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 01 Dec 2022 11:05:33 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Thu, 01 Dec 2022 11:05:33 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 94761464ba8a8f704548cecc2ce63423
38d09e0ce1f8bcf76c31c1f27bc823e8453c6d85
51c92436ab7e9890dba871ca7f0d0eb6e4b3fc1ae9217e30ba9960eaa7e5c735
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 14:18:43 GMT
Expires: Tue, 06 Dec 2022 14:18:42 GMT
Etag: "38d09e0ce1f8bcf76c31c1f27bc823e8453c6d85"
Cache-Control: max-age=442988,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 772b59310ab7b4e8-OSL
an.yandex.ru/mapuid/gonetdspis/NzIwMzAwYTcyYmIyNGM3ZA?redir-setuniq=1
213.180.193.90200 OK 99 B URL HTTP/2 an.yandex.ru/mapuid/gonetdspis/NzIwMzAwYTcyYmIyNGM3ZA?redir-setuniq=1
IP 213.180.193.90:0
Hash 49cc9632cb1e20a7a3f59f78f62a839d
e9d1370de0f73ce760ec5c27d83fec0c7d88a2c6
89abd57e1dbad31c87eda68cd8d0d25fb6f39974cfbc84e7466937b507f2b61a
GET /mapuid/gonetdspis/NzIwMzAwYTcyYmIyNGM3ZA?redir-setuniq=1 HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
timing-allow-origin: *
date: Thu, 01 Dec 2022 11:05:33 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 01 Dec 2022 11:05:33 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Thu, 01 Dec 2022 11:05:33 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 2593cb02d9bd7fabc76b888dd911443f
8b247bdf31ef609655378c045f511b295fdf2379
136db57970f20122ce1fcd00705c25bee7cae338a280e7659febe20327f613d4
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 30 Nov 2022 21:53:27 GMT
Expires: Thu, 01 Dec 2022 21:53:27 GMT
ETag: "8b247bdf31ef609655378c045f511b295fdf2379"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
tag.digitaltarget.ru/processor.js?i=57333109599125
185.15.175.144200 OK 16 kB URL HTTP/1.1 tag.digitaltarget.ru/processor.js?i=57333109599125
IP 185.15.175.144:0
File type ASCII text, with very long lines (15897), with no line terminators
Hash c9571a7ce0a22f154c74bdc8e35523e0
101feba577e71fc076ea5bf3f4af08b5d3fe988d
51cf59da6b7e03337540ee3ab9f8e135ff2ead958475c1bacc8683df57823fb0
GET /processor.js?i=57333109599125 HTTP/1.1
Host: tag.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 11:05:33 GMT
Content-Type: application/javascript
Content-Length: 15897
Last-Modified: Thu, 01 Dec 2022 10:34:19 GMT
Connection: keep-alive
ETag: "6388832b-3e19"
Accept-Ranges: bytes
x01.aidata.io/0.gif?pid=9401454&id=1503420A7C8A8863640379A6026BCADB
89.108.120.76302 Found 0 B URL HTTP/2 x01.aidata.io/0.gif?pid=9401454&id=1503420A7C8A8863640379A6026BCADB
IP 89.108.120.76:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=9401454&id=1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Thu, 01 Dec 2022 11:05:33 GMT
content-length: 0
location: https://x01.aidata.io/0.gif?pid=9401454&id=1503420A7C8A8863640379A6026BCADB&bounce=1
expires: Thu, 01 Dec 2022 11:05:32 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Thu, 01 Dec 2022 11:05:32 GMT
set-cookie: __upin=TbDFh7NMjmfNc+q4RGYQIQ;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1669892733;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
x01.aidata.io/0.gif?pid=9401454&id=1503420A7C8A8863640379A6026BCADB&bounce=1
89.108.120.76204 No Content 0 B URL HTTP/2 x01.aidata.io/0.gif?pid=9401454&id=1503420A7C8A8863640379A6026BCADB&bounce=1
IP 89.108.120.76:0
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0.gif?pid=9401454&id=1503420A7C8A8863640379A6026BCADB&bounce=1 HTTP/1.1
Host: x01.aidata.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Thu, 01 Dec 2022 11:05:33 GMT
expires: Thu, 01 Dec 2022 11:05:32 GMT
access-control-allow-methods: GET, POST
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate, post-check=0, pre-check=0
last-modified: Thu, 01 Dec 2022 11:05:32 GMT
set-cookie: __upin=cyGz14JH3sn+EIGOoralrw;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
__upints=1669892733;domain=.aidata.io;path=/;max-age=63072000;SameSite=None;Secure
p3p: CP='NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA'
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b791e396b363c462c259e47f24d08e02
13f187bcacde8ed75da820ced57d0ebe5e8f3351
daac86ec5af86c6307b74075b1b158bf881957605a7234ce1c2306e8071e8547
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DAAC86EC5AF86C6307B74075B1B158BF881957605A7234CE1C2306E8071E8547"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10051
Expires: Thu, 01 Dec 2022 13:53:05 GMT
Date: Thu, 01 Dec 2022 11:05:34 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 472dbdeb87c458957c47df7db98cbf02
033798513259154da9f63d7961d77323852b055c
4373771ea27b886567636cce8610e61e2b83485b30b16ec3b3383dda78b23bf5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4373771EA27B886567636CCE8610E61E2B83485B30B16EC3B3383DDA78B23BF5"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8596
Expires: Thu, 01 Dec 2022 13:28:50 GMT
Date: Thu, 01 Dec 2022 11:05:34 GMT
Connection: keep-alive
dmg.digitaltarget.ru/1/1093/i/i?i=500680585986886.891280178277247&a=77&e=1503420A7C8A8863640379A6026BCADB&pref=https%3A%2F%2Fnaceka-online.ru%2F&c=ss:77.up:1503420A7C8A8863640379A6026BCADB.sync:up.xdua:dugQGdLKusLW4Z1i6pXJQNTp.xps:xpsY0h19Ncv7zCS0QFVyys93g.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
185.15.175.159307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/1093/i/i?i=500680585986886.891280178277247&a=77&e=1503420A7C8A8863640379A6026BCADB&pref=https%3A%2F%2Fnaceka-online.ru%2F&c=ss:77.up:1503420A7C8A8863640379A6026BCADB.sync:up.xdua:dugQGdLKusLW4Z1i6pXJQNTp.xps:xpsY0h19Ncv7zCS0QFVyys93g.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP 185.15.175.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/1093/i/i?i=500680585986886.891280178277247&a=77&e=1503420A7C8A8863640379A6026BCADB&pref=https%3A%2F%2Fnaceka-online.ru%2F&c=ss:77.up:1503420A7C8A8863640379A6026BCADB.sync:up.xdua:dugQGdLKusLW4Z1i6pXJQNTp.xps:xpsY0h19Ncv7zCS0QFVyys93g.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Thu, 01 Dec 2022 11:05:34 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1669892734098&i=500680585986886.891280178277247&a=77&e=1503420A7C8A8863640379A6026BCADB&pref=https%3A%2F%2Fnaceka-online.ru%2F&c=ss:77.up:1503420A7C8A8863640379A6026BCADB.sync:up.xdua:dugQGdLKusLW4Z1i6pXJQNTp.xps:xpsY0h19Ncv7zCS0QFVyys93g.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
Set-Cookie: viuserid=PSpD6TjcbNeD9OR7KNfk; Max-Age=93312000; Expires=Sat, 15 Nov 2025 11:05:34 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 1
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/1/1093/i/i?i=500680585986886.472021180355276&a=77&e=1503420A7C8A8863640379A6026BCADB&pref=https%3A%2F%2Fnaceka-online.ru%2F&c=ss:77.up:1503420A7C8A8863640379A6026BCADB.sync:up.xdua:dugQGdLKusLW4Z1i6pXJQNTp.xps:xpsY0h19Ncv7zCS0QFVyys93g.dn:acint__net.adcm:hit.tg:adcmjs_noorient
185.15.175.159307 Temporary Redirect 0 B URL HTTP/1.1 dmg.digitaltarget.ru/1/1093/i/i?i=500680585986886.472021180355276&a=77&e=1503420A7C8A8863640379A6026BCADB&pref=https%3A%2F%2Fnaceka-online.ru%2F&c=ss:77.up:1503420A7C8A8863640379A6026BCADB.sync:up.xdua:dugQGdLKusLW4Z1i6pXJQNTp.xps:xpsY0h19Ncv7zCS0QFVyys93g.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP 185.15.175.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/1093/i/i?i=500680585986886.472021180355276&a=77&e=1503420A7C8A8863640379A6026BCADB&pref=https%3A%2F%2Fnaceka-online.ru%2F&c=ss:77.up:1503420A7C8A8863640379A6026BCADB.sync:up.xdua:dugQGdLKusLW4Z1i6pXJQNTp.xps:xpsY0h19Ncv7zCS0QFVyys93g.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Thu, 01 Dec 2022 11:05:34 GMT
Content-Length: 0
Connection: keep-alive
Location: https://dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1669892734108&i=500680585986886.472021180355276&a=77&e=1503420A7C8A8863640379A6026BCADB&pref=https%3A%2F%2Fnaceka-online.ru%2F&c=ss:77.up:1503420A7C8A8863640379A6026BCADB.sync:up.xdua:dugQGdLKusLW4Z1i6pXJQNTp.xps:xpsY0h19Ncv7zCS0QFVyys93g.dn:acint__net.adcm:hit.tg:adcmjs_noorient
Set-Cookie: viuserid=Qehk5C2c8ZIQYuB7iDFa; Max-Age=93312000; Expires=Sat, 15 Nov 2025 11:05:34 GMT; SameSite=None; Path=/; Domain=dmg.digitaltarget.ru; Secure; HTTPOnly
Request-Time: 0
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1669892734108&i=500680585986886.472021180355276&a=77&e=1503420A7C8A8863640379A6026BCADB&pref=https%3A%2F%2Fnaceka-online.ru%2F&c=ss:77.up:1503420A7C8A8863640379A6026BCADB.sync:up.xdua:dugQGdLKusLW4Z1i6pXJQNTp.xps:xpsY0h19Ncv7zCS0QFVyys93g.dn:acint__net.adcm:hit.tg:adcmjs_noorient
185.15.175.159200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1669892734108&i=500680585986886.472021180355276&a=77&e=1503420A7C8A8863640379A6026BCADB&pref=https%3A%2F%2Fnaceka-online.ru%2F&c=ss:77.up:1503420A7C8A8863640379A6026BCADB.sync:up.xdua:dugQGdLKusLW4Z1i6pXJQNTp.xps:xpsY0h19Ncv7zCS0QFVyys93g.dn:acint__net.adcm:hit.tg:adcmjs_noorient
IP 185.15.175.159:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/1093/i/i?call_source=awg&ts=1669892734108&i=500680585986886.472021180355276&a=77&e=1503420A7C8A8863640379A6026BCADB&pref=https%3A%2F%2Fnaceka-online.ru%2F&c=ss:77.up:1503420A7C8A8863640379A6026BCADB.sync:up.xdua:dugQGdLKusLW4Z1i6pXJQNTp.xps:xpsY0h19Ncv7zCS0QFVyys93g.dn:acint__net.adcm:hit.tg:adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 11:05:34 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 2
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1669892734098&i=500680585986886.891280178277247&a=77&e=1503420A7C8A8863640379A6026BCADB&pref=https%3A%2F%2Fnaceka-online.ru%2F&c=ss:77.up:1503420A7C8A8863640379A6026BCADB.sync:up.xdua:dugQGdLKusLW4Z1i6pXJQNTp.xps:xpsY0h19Ncv7zCS0QFVyys93g.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
185.15.175.159200 OK 64 B URL HTTP/1.1 dmg.digitaltarget.ru/awg/custom/1093/i/i?call_source=awg&ts=1669892734098&i=500680585986886.891280178277247&a=77&e=1503420A7C8A8863640379A6026BCADB&pref=https%3A%2F%2Fnaceka-online.ru%2F&c=ss:77.up:1503420A7C8A8863640379A6026BCADB.sync:up.xdua:dugQGdLKusLW4Z1i6pXJQNTp.xps:xpsY0h19Ncv7zCS0QFVyys93g.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient
IP 185.15.175.159:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ffd585dfb1ac6320633a0be46d579437
5a6033d23bc9cd5d1de9ee61de69a44428086dcb
df18d81deb0cc1c48ae87e6481bb4ee375b40cce0fec3d226e002704d49f6cc8
GET /awg/custom/1093/i/i?call_source=awg&ts=1669892734098&i=500680585986886.891280178277247&a=77&e=1503420A7C8A8863640379A6026BCADB&pref=https%3A%2F%2Fnaceka-online.ru%2F&c=ss:77.up:1503420A7C8A8863640379A6026BCADB.sync:up.xdua:dugQGdLKusLW4Z1i6pXJQNTp.xps:xpsY0h19Ncv7zCS0QFVyys93g.dn:acint__net.adcm:hit.tg:adcmjs_init%20adcmjs_noorient HTTP/1.1
Host: dmg.digitaltarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 11:05:34 GMT
Content-Type: image/gif
Content-Length: 64
Connection: keep-alive
Vary: Accept-Encoding
Request-Time: 12
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
X-Frame-Options: DENY
Content-Encoding: gzip
X-XSS-Protection: 1; mode=block
Access-Control-Max-Age: 86400
X-Content-Type-Options: nosniff
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Credentials: true
X-Permitted-Cross-Domain-Policies: master-only
www.acint.net/ping/?v=0.4.0&uid=34c5515e-6854-47dd-9680-7dad38697e8d&dp=10&tz=%2B00%3A00&nc=20042885&dT=2022-12-01T11%3A05%3A34.032
193.3.184.228200 OK 43 B URL HTTP/2 www.acint.net/ping/?v=0.4.0&uid=34c5515e-6854-47dd-9680-7dad38697e8d&dp=10&tz=%2B00%3A00&nc=20042885&dT=2022-12-01T11%3A05%3A34.032
IP 193.3.184.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /ping/?v=0.4.0&uid=34c5515e-6854-47dd-9680-7dad38697e8d&dp=10&tz=%2B00%3A00&nc=20042885&dT=2022-12-01T11%3A05%3A34.032 HTTP/1.1
Host: www.acint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: aid=CkIDFWOIinymeQNk28prAip9Essjas2yVkdkaMirWIXX1gT+; test_cookie=CheckForPermission; cSyncDp7v2=1669892732; cSyncDp14v3=1669892732; cSyncDp17=1669892732; cSyncDp32=1669892732; cSyncDp45v3=1669892732; cSyncDp53=1669892732; cSyncDp54v2=1669892732; cSyncDp62=1669892732; cSyncDp67v2=1669892732; cSyncDp68=1669892732; cSyncDp71=1669892732; cSyncDp77=1669892732; cSyncDp84=1669892732; cSyncDp85=1669892732; cSyncDp95v3=1669892732; cSyncDp101=1669892732; cSyncDp104v2=1669892732; cSyncDp107=1669892732; cSyncDp110=1669892732; cSyncDp111v2=1669892732; cSyncDp112v2=1669892732; cSyncDp125v2=1669892732; cSyncDp126=1669892732; cSyncDp127=1669892732; cSyncDp129=1669892732; cSyncDp136v2=1669892732; cSyncDp138=1669892732; cSyncDp146=1669892732; cSyncDp148=1669892732; cSyncDp149v2=1669892732; cSyncDp151=1669892732; cSyncDp178=1669892732; cSyncDp179=1669892732; cSyncDp186=1669892732; cSyncDp221=1669892732
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 01 Dec 2022 11:05:35 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Wed, 19 Apr 2000 11:43:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
X-Firefox-Spdy: h2
naceka-online.ru/includes/traffic_pages/siteaccess.php
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/includes/traffic_pages/siteaccess.php
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
POST /includes/traffic_pages/siteaccess.php HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 256
Origin: https://naceka-online.ru
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729; fid=14571ca0-0967-4f5d-aa6b-55f495cd3921; _ym_uid=1669892731762072454; _ym_d=1669892731; _ym_isad=2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:37 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/5.6.40
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: usr_ip=91.90.42.154; expires=Thu, 01-Dec-2022 17:00:00 GMT; Max-Age=21264
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2
mc.yandex.ru/clmap/3835738?page-url=https%3A%2F%2Fnaceka-online.ru%2F&pointer-click=rn%3A1056077659%3Ax%3A-1267010%3Ay%3A-606199%3At%3A45%3Ap%3AWAAAAAAAAAA1A%3AX%3A0%3AY%3A0&browser-info=gdpr%3A14%3Au%3A1669892731762072454%3Av%3A923%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Arqnl%3A1%3Ast%3A1669892736&t=gdpr(14)rqnl(1)ti(0)&force-urlencoded=1
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/clmap/3835738?page-url=https%3A%2F%2Fnaceka-online.ru%2F&pointer-click=rn%3A1056077659%3Ax%3A-1267010%3Ay%3A-606199%3At%3A45%3Ap%3AWAAAAAAAAAA1A%3AX%3A0%3AY%3A0&browser-info=gdpr%3A14%3Au%3A1669892731762072454%3Av%3A923%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Arqnl%3A1%3Ast%3A1669892736&t=gdpr(14)rqnl(1)ti(0)&force-urlencoded=1
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /clmap/3835738?page-url=https%3A%2F%2Fnaceka-online.ru%2F&pointer-click=rn%3A1056077659%3Ax%3A-1267010%3Ay%3A-606199%3At%3A45%3Ap%3AWAAAAAAAAAA1A%3AX%3A0%3AY%3A0&browser-info=gdpr%3A14%3Au%3A1669892731762072454%3Av%3A923%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Arqnl%3A1%3Ast%3A1669892736&t=gdpr(14)rqnl(1)ti(0)&force-urlencoded=1 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://naceka-online.ru
Connection: keep-alive
Referer: https://naceka-online.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 01 Dec 2022 11:05:38 GMT
access-control-allow-origin: https://naceka-online.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 01-Dec-2022 11:05:38 GMT
last-modified: Thu, 01-Dec-2022 11:05:38 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7837c610-4f38-4ecd-b984-5752ff89a1f8.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7837c610-4f38-4ecd-b984-5752ff89a1f8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 37004182402c955f288eb1fa8df7aef4
01a07f9a5725f608fafeced7b3d1ebdbcb776c29
c90c80dd5cadbde3fef20a9c4561b1efa47401e5f6bdf64c91246553c50204f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7837c610-4f38-4ecd-b984-5752ff89a1f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7957
x-amzn-requestid: 54f43d6b-cf41-4067-b459-6b8d98869354
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91PGgNIAMF2Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-069ac54c22797a511c69a220;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5et72pBhP9fdm4fNy6V5AJjs7B5N3HUGgaToNJV3LbA59D-0QDAMvw==
via: 1.1 6c90b631453c435bd0022caa657b67e8.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 04:39:51 GMT
age: 23147
etag: "01a07f9a5725f608fafeced7b3d1ebdbcb776c29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
naceka-online.ru/includes/jquery/jquery.js
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/includes/jquery/jquery.js
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET /includes/jquery/jquery.js HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Dec 2019 02:12:50 GMT
vary: Accept-Encoding
etag: W/"5df839a2-176bb"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/css/mycss.css
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/templates/ultimate/css/mycss.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
GET /templates/ultimate/css/mycss.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Sat, 23 Apr 2022 10:27:14 GMT
vary: Accept-Encoding
etag: W/"6263d482-24e9"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/treeview/jquery.treeview.js
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/templates/ultimate/treeview/jquery.treeview.js
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET /templates/ultimate/treeview/jquery.treeview.js HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: application/javascript
last-modified: Tue, 11 Feb 2020 13:49:02 GMT
vary: Accept-Encoding
etag: W/"5e42b0ce-1f75"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/treeview/treeview_init.js
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/templates/ultimate/treeview/treeview_init.js
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET /templates/ultimate/treeview/treeview_init.js HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: application/javascript
last-modified: Tue, 11 Feb 2020 13:49:03 GMT
vary: Accept-Encoding
etag: W/"5e42b0cf-ae"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/includes/rating_stars/ratingfiles/ratings.js
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/includes/rating_stars/ratingfiles/ratings.js
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET /includes/rating_stars/ratingfiles/ratings.js HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: application/javascript
last-modified: Mon, 24 Feb 2020 05:46:46 GMT
vary: Accept-Encoding
etag: W/"5e536346-1f35"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/sapeis/1503420A7C8A8863640379A6026BCADB
213.180.193.90302 Found 0 B URL HTTP/2 an.yandex.ru/mapuid/sapeis/1503420A7C8A8863640379A6026BCADB
IP 213.180.193.90:0
GET /mapuid/sapeis/1503420A7C8A8863640379A6026BCADB HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/sapeis/1503420A7C8A8863640379A6026BCADB?redir-setuniq=1
date: Thu, 01 Dec 2022 11:05:33 GMT
set-cookie: yandexuid=6088672321669892733; domain=.yandex.ru; path=/; expires=Sun, 28-Nov-2032 11:05:33 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 01 Dec 2022 11:05:33 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Thu, 01 Dec 2022 11:05:33 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
naceka-online.ru/includes/jquery/jquery-cookie.js
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/includes/jquery/jquery-cookie.js
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET /includes/jquery/jquery-cookie.js HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: application/javascript
last-modified: Wed, 18 Dec 2019 16:07:58 GMT
vary: Accept-Encoding
etag: W/"5dfa4ede-1113"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/includes/jquery/colorbox/jquery.colorbox.js
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/includes/jquery/colorbox/jquery.colorbox.js
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET /includes/jquery/colorbox/jquery.colorbox.js HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Dec 2019 02:13:03 GMT
vary: Accept-Encoding
etag: W/"5df839af-2de3"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/includes/voting_mp/voting.css
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/includes/voting_mp/voting.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
GET /includes/voting_mp/voting.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Mon, 27 Jan 2020 12:57:59 GMT
vary: Accept-Encoding
etag: W/"5e2ede57-7a4"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
5.200.43.131302 Found 0 B URL HTTP/2 ads.adlook.me/csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D
IP 5.200.43.131:0
ASN #48096 Enterprise Cloud Ltd.
GET /csync?url=https%3A%2F%2Facint.net%2Fmatch%3Fdp%3D110%26euid%3D%7BuserId%7D HTTP/1.1
Host: ads.adlook.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://acint.net/match?dp=110&euid=becf6c8e0436414994c12c0d826dd822
server: Microsoft-IIS/10.0
set-cookie: adlm_userId=becf6c8e0436414994c12c0d826dd822; expires=Thu, 30 Nov 2023 21:00:00 GMT; path=/; SameSite=None; secure; samesite=lax
date: Thu, 01 Dec 2022 11:05:32 GMT
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/css/styles.css
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/templates/ultimate/css/styles.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
GET /templates/ultimate/css/styles.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Thu, 02 Jun 2022 07:33:08 GMT
vary: Accept-Encoding
etag: W/"629867b4-19ed1"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/core/js/common.js
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/core/js/common.js
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET /core/js/common.js HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: application/javascript
last-modified: Sun, 21 Jun 2020 13:45:15 GMT
vary: Accept-Encoding
etag: W/"5eef646b-2f1d"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/includes/voting_mp/voting.js
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/includes/voting_mp/voting.js
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET /includes/voting_mp/voting.js HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: application/javascript
last-modified: Mon, 27 Jan 2020 15:00:10 GMT
vary: Accept-Encoding
etag: W/"5e2efafa-1443"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
ssp.bidvol.com/usersync?dspcsid=8&redirect=1
65.109.65.187302 Found 0 B URL HTTP/2 ssp.bidvol.com/usersync?dspcsid=8&redirect=1
IP 65.109.65.187:0
ASN #24940 Hetzner Online GmbH
GET /usersync?dspcsid=8&redirect=1 HTTP/1.1
Host: ssp.bidvol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.acint.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.22.0
date: Thu, 01 Dec 2022 11:05:32 GMT
x-request-id: b9845aa7-f2a9-43d3-9804-46b7bf804c48
set-cookie: bvuid=zqujigm4cx; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT; Secure; SameSite=None
bvuid2=zqujigm4cx; Max-Age=2147483647; Path=/; Expires=Tue, 19 Jan 2038 03:14:07 GMT
vary: Origin
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
pragma: no-cache
expires: 0
surrogate-control: no-store
location: https://www.acint.net/match?dp=129&euid=zqujigm4cx
X-Firefox-Spdy: h2
an.yandex.ru/mapuid/gonetdspis/NzIwMzAwYTcyYmIyNGM3ZA
213.180.193.90302 Found 0 B URL HTTP/2 an.yandex.ru/mapuid/gonetdspis/NzIwMzAwYTcyYmIyNGM3ZA
IP 213.180.193.90:0
GET /mapuid/gonetdspis/NzIwMzAwYTcyYmIyNGM3ZA HTTP/1.1
Host: an.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.acint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
location: https://an.yandex.ru/mapuid/gonetdspis/NzIwMzAwYTcyYmIyNGM3ZA?redir-setuniq=1
date: Thu, 01 Dec 2022 11:05:33 GMT
set-cookie: yandexuid=5661017171669892733; domain=.yandex.ru; path=/; expires=Sun, 28-Nov-2032 11:05:33 GMT
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 01 Dec 2022 11:05:33 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
last-modified: Thu, 01 Dec 2022 11:05:33 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-encoding: gzip
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/js/jquery.easing.1.3.min.js
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/templates/ultimate/js/jquery.easing.1.3.min.js
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET /templates/ultimate/js/jquery.easing.1.3.min.js HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: application/javascript
last-modified: Wed, 18 Dec 2019 03:34:54 GMT
vary: Accept-Encoding
etag: W/"5df99e5e-1b10"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/includes/rating_stars/ratingfiles/ratings.css
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/includes/rating_stars/ratingfiles/ratings.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
GET /includes/rating_stars/ratingfiles/ratings.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Mon, 24 Feb 2020 05:46:45 GMT
vary: Accept-Encoding
etag: W/"5e536345-432"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/
135.181.181.70200 OK 0 B IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
x-powered-by: InstantCMS
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; expires=Thu, 01-Dec-2022 17:05:29 GMT; Max-Age=21600; path=/
beb6da23fe3b12c88128266e849aed53[logdate]=1669892729; expires=Sat, 31-Dec-2022 11:05:29 GMT; Max-Age=2592000; path=/; httponly
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/css/text.css
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/templates/ultimate/css/text.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
GET /templates/ultimate/css/text.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Wed, 18 Dec 2019 03:31:05 GMT
vary: Accept-Encoding
etag: W/"5df99d79-13f"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/css/template.css
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/templates/ultimate/css/template.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
GET /templates/ultimate/css/template.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Sat, 25 Dec 2021 08:07:07 GMT
vary: Accept-Encoding
etag: W/"61c6d12b-3fac"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/treeview/jquery.treeview.css
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/templates/ultimate/treeview/jquery.treeview.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
GET /templates/ultimate/treeview/jquery.treeview.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Tue, 11 Feb 2020 13:49:02 GMT
vary: Accept-Encoding
etag: W/"5e42b0ce-a68"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/includes/jquery/jquery.form.js
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/includes/jquery/jquery.form.js
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET /includes/jquery/jquery.form.js HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Dec 2019 02:12:47 GMT
vary: Accept-Encoding
etag: W/"5df8399f-3973"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/css/reset.css
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/templates/ultimate/css/reset.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
GET /templates/ultimate/css/reset.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Wed, 18 Dec 2019 03:31:02 GMT
vary: Accept-Encoding
etag: W/"5df99d76-24d"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/includes/traffic_pages/siteaccess/siteaccess.js
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/includes/traffic_pages/siteaccess/siteaccess.js
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET /includes/traffic_pages/siteaccess/siteaccess.js HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: application/javascript
last-modified: Thu, 09 Jul 2020 10:40:01 GMT
vary: Accept-Encoding
etag: W/"5f06f401-3f4"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/css/media.css
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/templates/ultimate/css/media.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
GET /templates/ultimate/css/media.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Wed, 03 Nov 2021 16:18:11 GMT
vary: Accept-Encoding
etag: W/"6182b643-22b3"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/modules/mod_dt_newsslider/css/style17/newsslider.css
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/modules/mod_dt_newsslider/css/style17/newsslider.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
GET /modules/mod_dt_newsslider/css/style17/newsslider.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Tue, 17 Dec 2019 02:35:00 GMT
vary: Accept-Encoding
etag: W/"5df83ed4-c45"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/modules/mod_live_air/css/styles.css
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/modules/mod_live_air/css/styles.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
GET /modules/mod_live_air/css/styles.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Fri, 21 Feb 2020 07:36:54 GMT
vary: Accept-Encoding
etag: W/"5e4f8896-26b"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/css/color_5.css
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/templates/ultimate/css/color_5.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
GET /templates/ultimate/css/color_5.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Sun, 01 May 2022 13:43:33 GMT
vary: Accept-Encoding
etag: W/"626e8e85-bebb"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/js/share42/share42.js
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/templates/ultimate/js/share42/share42.js
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET /templates/ultimate/js/share42/share42.js HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: application/javascript
last-modified: Sun, 26 Sep 2021 15:01:28 GMT
vary: Accept-Encoding
etag: W/"61508b48-f2b"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/includes/traffic_pages/siteaccess/siteaccess_h.css
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/includes/traffic_pages/siteaccess/siteaccess_h.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
GET /includes/traffic_pages/siteaccess/siteaccess_h.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Tue, 28 Jan 2020 05:19:16 GMT
vary: Accept-Encoding
etag: W/"5e2fc454-e1c"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/modules/mod_live_air/js/live_air.js
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/modules/mod_live_air/js/live_air.js
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET /modules/mod_live_air/js/live_air.js HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: application/javascript
last-modified: Thu, 20 Feb 2020 12:20:45 GMT
vary: Accept-Encoding
etag: W/"5e4e799d-ee"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/templates/ultimate/js/secondary.js
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/templates/ultimate/js/secondary.js
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Malware
GET /templates/ultimate/js/secondary.js HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: application/javascript
last-modified: Wed, 18 Dec 2019 03:34:55 GMT
vary: Accept-Encoding
etag: W/"5df99e5f-18b0"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
naceka-online.ru/modules/mod_dt_newsscroll/css/style16/newsscroll.css
135.181.181.70200 OK 0 B URL HTTP/2 naceka-online.ru/modules/mod_dt_newsscroll/css/style16/newsscroll.css
IP 135.181.181.70:0
ASN #24940 Hetzner Online GmbH
GET /modules/mod_dt_newsscroll/css/style16/newsscroll.css HTTP/1.1
Host: naceka-online.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Cookie: PHPSESSID=smqh2cnkuko7qem1tvebuahqt6; beb6da23fe3b12c88128266e849aed53[logdate]=1669892729
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.20.2
date: Thu, 01 Dec 2022 11:05:31 GMT
content-type: text/css
last-modified: Tue, 17 Dec 2019 02:33:57 GMT
vary: Accept-Encoding
etag: W/"5df83e95-d5e"
expires: Thu, 01 Dec 2022 11:10:31 GMT
cache-control: max-age=300
strict-transport-security: max-age=31536000;
content-encoding: gzip
X-Firefox-Spdy: h2
acceptable.a-ads.com/1615494
148.251.13.139200 OK 0 B URL HTTP/2 acceptable.a-ads.com/1615494
IP 148.251.13.139:0
ASN #24940 Hetzner Online GmbH
GET /1615494 HTTP/1.1
Host: acceptable.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://naceka-online.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 11:05:32 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://naceka-online.ru/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2