firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 01 Sep 2022 21:41:25 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Imwo_WpqgnKTNJ5HEAcu9BkOx4yWeigtgRgd3BnhmcdtFe1gFNoOlw==
Age: 2716
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6123
Expires: Fri, 02 Sep 2022 00:08:44 GMT
Date: Thu, 01 Sep 2022 22:26:41 GMT
Connection: keep-alive
kushaem.com/recipe.asp?id=633&lang=ru&name=????????????%20????????????????????????%253
199.233.255.67200 OK 3.3 kB URL HTTP/1.1 kushaem.com/recipe.asp?id=633&lang=ru&name=????????????%20????????????????????????%253
IP 199.233.255.67:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with very long lines (508), with CRLF, LF line terminators
Hash 53f9e554e14a2150c0d653ea4899f425
6792fa62ace023d0dcec4f54e3f0eceb192414b3
e353e6fe06eebccf7b4121a8cbfa097e834d7832aa8c19245d29b8d5c1e51df1
GET /recipe.asp?id=633&lang=ru&name=????????????%20????????????????????????%253 HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Length: 3272
Content-Type: text/html
Content-Encoding: gzip
Vary: Accept-Encoding
Server:
Set-Cookie: lang=ru; path=/
ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; path=/
ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e;Path=/;Domain=kushaem.com
WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; Path=/; HttpOnly
BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==; path=/
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:40 GMT
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
date: Thu, 01 Sep 2022 01:15:17 GMT
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rouJg19kKzc653-MnIgIOtKx-jwbT5UMKIwLwtcGzu7L0KZPw6i6Jw==
age: 76285
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Sep 2022 22:26:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/show_ads.js
142.250.74.130200 OK 40 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (2302)
Hash dbca5616325df2f489c56b6bc63b543e
42ec3c3f4f61da29bb70289295d3c8e7da6d5630
508a2870b9d34ef2c25f72aa5f5a45326e381f2d1e6b59e8e2387261e30879d5
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Thu, 01 Sep 2022 22:26:41 GMT
Expires: Thu, 01 Sep 2022 22:26:41 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 8303844152092135391
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 40148
X-XSS-Protection: 0
kushaem.com/css/structure.css
199.233.255.67200 OK 1.9 kB URL HTTP/1.1 kushaem.com/css/structure.css
IP 199.233.255.67:0
File type ASCII text, with CRLF line terminators
Hash e6e1230ffd05adf2897b808636c98189
ea45e5daae7ed3f7acfe1ea3c346eb99f616a0ff
4ac533dc94aea725e2e6413f456a69b9339bb1c07f2fc018e75719277956a8a4
GET /css/structure.css HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/recipe.asp?id=633&lang=ru&name=????????????%20????????????????????????%253
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 1935
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sun, 28 Aug 2016 15:35:47 GMT
Accept-Ranges: bytes
ETag: "808bdcd8411d21:0"
Vary: Accept-Encoding
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
kushaem.com/css/main.css
199.233.255.67200 OK 739 B IP 199.233.255.67:0
File type ASCII text, with CRLF line terminators
Hash bb6519f4075d1b1d5706c5e4e1a284a4
f6b7bd97e18e2ba55250e6e6f6b181e1086be7b5
90ef32ef3f74a9ca784a825b821fc5f429e3615986e215d2ade8d92bfa3a6424
GET /css/main.css HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/recipe.asp?id=633&lang=ru&name=????????????%20????????????????????????%253
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 739
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sun, 28 Aug 2016 15:35:46 GMT
Accept-Ranges: bytes
ETag: "58fed9d8411d21:0"
Vary: Accept-Encoding
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
kushaem.com/js/common.js
199.233.255.67200 OK 1.4 kB IP 199.233.255.67:0
File type ASCII text, with CRLF line terminators
Hash 1a32d8c1953481844e5d2495295c9891
00ea33bad7e1aa2614a6936b8705b7b0923a850b
0841ba4c87f5cc131a5b28ef3c12e03d6caf132872288f06cf5660c3d32ceecf
Analyzer Verdict Alert fortinet Malware
GET /js/common.js HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/recipe.asp?id=633&lang=ru&name=????????????%20????????????????????????%253
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 1416
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Sun, 28 Aug 2016 15:36:16 GMT
Accept-Ranges: bytes
ETag: "245d31ea411d21:0"
Vary: Accept-Encoding
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
kushaem.com/css/basestyle.css
199.233.255.67200 OK 430 B URL HTTP/1.1 kushaem.com/css/basestyle.css
IP 199.233.255.67:0
File type ASCII text, with CRLF line terminators
Hash ce0602780231a1ab074f33d5c20f6323
5364714dfd9b5572dba40cbb7b9e36a955ace259
feb86fa8e6cde0595e96555baeed3ad506298f38f75353d13ae9dbca5b103bc8
GET /css/basestyle.css HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/structure.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 430
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sun, 28 Aug 2016 15:35:46 GMT
Accept-Ranges: bytes
ETag: "c99e99d8411d21:0"
Vary: Accept-Encoding
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
www.russiantable.com/store/affiliate/showban2.asp?id=4500&img=167x250/russiantable_167x250_07.gif&emp_cat=Banners%20%20167?250
104.21.67.63403 Forbidden 2.5 kB URL HTTP/1.1 www.russiantable.com/store/affiliate/showban2.asp?id=4500&img=167x250/russiantable_167x250_07.gif&emp_cat=Banners%20%20167?250
IP 104.21.67.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1508)
Hash 648e58031c05d5be6fffc27117327cde
a3ba63beab9240f3311e1fc2213fb8afdaafb637
e9be6e100985fd392ac1edfb71ba8f007d5b337c2fcd9ef2e521e1f630fb9d7e
GET /store/affiliate/showban2.asp?id=4500&img=167x250/russiantable_167x250_07.gif&emp_cat=Banners%20%20167?250 HTTP/1.1
Host: www.russiantable.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/
HTTP/1.1 403 Forbidden
Date: Thu, 01 Sep 2022 22:26:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pYLWc3oMcoUZedLwiQX2%2FMgwf8bh%2Bp4fcum%2FlQhs48eABKFje2URrjsNLZlu96IWR1w2%2BBRhZ4VncXx0YH%2BOWMEnPnixBR8h6IFxQVsM44BXgifsDeSwonctLDB0mGVnqWkZnoCdCg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74416dd23ce90b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.russiantable.com/store/affiliate/showban.asp?id=4500&img=
104.21.67.63403 Forbidden 2.4 kB URL HTTP/1.1 www.russiantable.com/store/affiliate/showban.asp?id=4500&img=
IP 104.21.67.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1490)
Hash acf6564c04309e2fcc9514b6d4eb7768
34580077ea1c687449517faacf2481825e0b9fd3
48db5dfb3ed7f2d1c1088a23bf4d9f02b80b5c925c7ca93afe2c6db01b35a7e2
GET /store/affiliate/showban.asp?id=4500&img= HTTP/1.1
Host: www.russiantable.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/
HTTP/1.1 403 Forbidden
Date: Thu, 01 Sep 2022 22:26:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=81NtUrQtGqdwZmo17rHqMQRam08dAqKKHX1feKTrZTnGgf041a87JNbLlyiO%2BQqhXo%2FnEvnxQnvbBnMOlxvyFh3e7i%2B%2FENnxt121Fo%2F5Dfn%2BAJuwJYAQTC6HzjQX1vs1zgAWdMU7hQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74416dd23a9cb505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 01 Sep 2022 21:57:05 GMT
Cache-Control: max-age=3600
Expires: Thu, 01 Sep 2022 22:02:48 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CD9jyOUQCsthV8ccnFNtZP4Q-I0K7Kh7ne-vzeR4_bF_m8kT1OhFzQ==
Age: 1776
kushaem.com/js/comments.js
199.233.255.67404 Not Found 4.8 kB URL HTTP/1.1 kushaem.com/js/comments.js
IP 199.233.255.67:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (365)
Hash 8959473c329c5ec7f8db7098c0dd1290
32a1e06adc6e439e95578ad35f3e9697955d1b82
4667b6ab20a14aec9e91f99a33ea4be5aa3611ca1f852d3849757f368226b8de
Analyzer Verdict Alert fortinet Malware
GET /js/comments.js HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/recipe.asp?id=633&lang=ru&name=????????????%20????????????????????????%253
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 404 Not Found
Cache-Control: private
Content-Length: 4848
Content-Type: text/html; charset=utf-8
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
www.russiantable.com/store/affiliate/showban2.asp?id=4500&img=167x250/russiantable_167x250_07.gif&emp_cat=Banners%20%20167?250
104.21.67.63403 Forbidden 2.5 kB URL HTTP/1.1 www.russiantable.com/store/affiliate/showban2.asp?id=4500&img=167x250/russiantable_167x250_07.gif&emp_cat=Banners%20%20167?250
IP 104.21.67.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1578)
Hash 61cd4f8da2e9214d3f67a7a41b4dfde4
553ae83053bca52793a4f98c3af4a1a4debd91b0
cf54e41250824525c2068150776dd995043382d850cf59810cfb75617f84c25c
GET /store/affiliate/showban2.asp?id=4500&img=167x250/russiantable_167x250_07.gif&emp_cat=Banners%20%20167?250 HTTP/1.1
Host: www.russiantable.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/
HTTP/1.1 403 Forbidden
Date: Thu, 01 Sep 2022 22:26:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hoxfiZC6Ckl6Fw7SKA4aWQ%2F4RHiOMR%2F9UvDNuTeDVPBkQtJg6ZCRf5XhmW5Y6I7tSImpU04dmTcA8eFKZBvP4YlwxrX0sNo13ThiXO37HrS6QjweEXwE1woYVaKC08RpNDay4AIBDw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74416dd31b6fb505-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.russiantable.com/store/affiliate/showban.asp?id=4500&img=
104.21.67.63403 Forbidden 2.4 kB URL HTTP/1.1 www.russiantable.com/store/affiliate/showban.asp?id=4500&img=
IP 104.21.67.63:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1490)
Hash d9d178a2a5d39496d4f8907d5b67403c
5fd93d79a5c78370ef29c8948b9346f0964f149f
7d26ad9d7c45a347643c71fb21a7db323a70786554cb126db32cce406b1770c5
GET /store/affiliate/showban.asp?id=4500&img= HTTP/1.1
Host: www.russiantable.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/
HTTP/1.1 403 Forbidden
Date: Thu, 01 Sep 2022 22:26:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Referrer-Policy: same-origin
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TVWQd55MBmUR67pnWg7HJ5vraXY%2FgOtABMal4dU9aLgRO06d4kDsE2KFvoPfIIMm2ucd9gz317jtJfSqhsVQan0iZFzGEvdwtY5MRs%2BXKw4XpIlXUn%2BA5Y7ra8i9TQDeRr03eqnVtA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74416dd31d7a0b61-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
kushaem.com/img/icon_search.png
199.233.255.67200 OK 2.3 kB URL HTTP/1.1 kushaem.com/img/icon_search.png
IP 199.233.255.67:0
File type PNG image data, 36 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d34ec9b8d1d1bad096147adafca879b
ff763e2d62df50c944dea257dac1f8cc6f3f679b
bad31292efd85d491a53c3597ef86f4c68edb0a92166b0cf262f6981133254b4
GET /img/icon_search.png HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/recipe.asp?id=633&lang=ru&name=????????????%20????????????????????????%253
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 2284
Content-Type: image/png
Last-Modified: Sun, 28 Aug 2016 15:36:07 GMT
Accept-Ranges: bytes
ETag: "d13257e5411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
kushaem.com/img/logo.png
199.233.255.67200 OK 2.0 kB IP 199.233.255.67:0
File type PNG image data, 260 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 5cd454598835fc0a28355a71cbf7be90
01f2c173d6a3f2fc95545f4aadbc84c2a59454ab
75f6c316c8dfd0cef45aaf6b4d55320849aa702ae2ac1c45a59253b9de33790e
GET /img/logo.png HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/recipe.asp?id=633&lang=ru&name=????????????%20????????????????????????%253
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 1968
Content-Type: image/png
Last-Modified: Sun, 28 Aug 2016 15:36:08 GMT
Accept-Ranges: bytes
ETag: "5c9297e5411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
www.google-analytics.com/ga.js
142.250.74.174200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Thu, 01 Sep 2022 21:04:40 GMT
Expires: Thu, 01 Sep 2022 23:04:40 GMT
Cache-Control: public, max-age=7200
Age: 4921
Last-Modified: Wed, 13 Apr 2022 21:02:38 GMT
Content-Type: text/javascript
kushaem.com/img/cnt_top.png
199.233.255.67200 OK 1.0 kB URL HTTP/1.1 kushaem.com/img/cnt_top.png
IP 199.233.255.67:0
File type PNG image data, 550 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash e9fc559ff8a88de8a13374779e3952bf
1d3f6db70276bfbe365215545c1ca8d44c82aac6
5cc3055ff8c1d639cbc601514cf0a333c0404eb501a1dd54e3fa3a7f63f21674
GET /img/cnt_top.png HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/structure.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 1026
Content-Type: image/png
Last-Modified: Sun, 28 Aug 2016 15:35:56 GMT
Accept-Ranges: bytes
ETag: "d6e3cde411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2eb022bbcb69557dc09477b624814e87
6030f2c630a01fbc027c887d31e696f84cc60c97
d7a508e276f0ca1b58b6af39720fb7ebb26fb38df50a159eb82d1d2542610b85
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3611
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 22:26:41 GMT
Last-Modified: Thu, 01 Sep 2022 21:26:30 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
kushaem.com/img/cnt_bg.png
199.233.255.67200 OK 219 B URL HTTP/1.1 kushaem.com/img/cnt_bg.png
IP 199.233.255.67:0
File type PNG image data, 550 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 561e1e7c88fda479da2d223d276ee94d
812dedaefb8d877edc0069cbc911c274b005184f
200f504b6a8a38b287302a3412e3fe32ff4271fd56775aa3c6520366713ab80c
GET /img/cnt_bg.png HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/structure.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 219
Content-Type: image/png
Last-Modified: Sun, 28 Aug 2016 15:35:55 GMT
Accept-Ranges: bytes
ETag: "a611fedd411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
kushaem.com/img/c_sm_top.gif
199.233.255.67200 OK 4.6 kB URL HTTP/1.1 kushaem.com/img/c_sm_top.gif
IP 199.233.255.67:0
File type GIF image data, version 89a, 218 x 1000\012- data
Hash b5db151a701edb0a62d18d871e0889ea
633eef17ee494ffb756e58d8312af4e576fcd0c4
0fe8041ec934ffd1edc2b645eeb0b70230bdc0806a923179fda0ecf336426922
GET /img/c_sm_top.gif HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/structure.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 4609
Content-Type: image/gif
Last-Modified: Sun, 28 Aug 2016 15:35:58 GMT
Accept-Ranges: bytes
ETag: "84aec0df411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
kushaem.com/img/arrow_blue.gif
199.233.255.67200 OK 54 B URL HTTP/1.1 kushaem.com/img/arrow_blue.gif
IP 199.233.255.67:0
File type GIF image data, version 89a, 7 x 9\012- data
Hash c69ed3d6e18b6077d7c34e7f6ebb8f26
0232d4415737b3ec6832ca7d5166e823f174443f
b335fe1c83ee3d7845a77fc901ba8aab12346b5a6995c290efe7f20c5803f724
GET /img/arrow_blue.gif HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/structure.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 54
Content-Type: image/gif
Last-Modified: Sun, 28 Aug 2016 15:35:50 GMT
Accept-Ranges: bytes
ETag: "abbc1fdb411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
kushaem.com/img/c_sm_bot.gif
199.233.255.67200 OK 4.6 kB URL HTTP/1.1 kushaem.com/img/c_sm_bot.gif
IP 199.233.255.67:0
File type GIF image data, version 89a, 218 x 1000\012- data
Hash 4ad6c10375430de3605f10872c3d14d2
933bf9bc73880ce5776f879ab98fd9ffbde4cdf3
d1aaad87b8f29d8b6549670b74510878f026f41509d12f1697a8d2d28073c2bb
GET /img/c_sm_bot.gif HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/structure.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 4619
Content-Type: image/gif
Last-Modified: Sun, 28 Aug 2016 15:35:58 GMT
Accept-Ranges: bytes
ETag: "316374df411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
kushaem.com/img/bg_contentfooter.gif
199.233.255.67200 OK 7.1 kB URL HTTP/1.1 kushaem.com/img/bg_contentfooter.gif
IP 199.233.255.67:0
File type GIF image data, version 89a, 550 x 213\012- data
Hash bf52d41233e119c0e82e7e31af9587b4
441c6c348f4464fec76f820259ec90994e3816a9
6a5f6d67270df0e5670090f73168a3cea32ddaa4b60a312fa9d0f7914a82e7d6
GET /img/bg_contentfooter.gif HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/structure.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 7056
Content-Type: image/gif
Last-Modified: Sun, 28 Aug 2016 15:35:53 GMT
Accept-Ranges: bytes
ETag: "f97179dc411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
kushaem.com/img/cnt_top_accent.png
199.233.255.67200 OK 23 kB URL HTTP/1.1 kushaem.com/img/cnt_top_accent.png
IP 199.233.255.67:0
File type PNG image data, 526 x 97, 8-bit/color RGBA, non-interlaced\012- data
Hash d3efa0cfe98665752e921f8cfa8589c8
76b9e12bee90dbddb336216a1bd3d6b44e2002a6
8986b5a1ca9f874e029f0bb2fca0dc37687b26d1de05097a88563cae265b909a
GET /img/cnt_top_accent.png HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/recipe.asp?id=633&lang=ru&name=????????????%20????????????????????????%253
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 22639
Content-Type: image/png
Last-Modified: Sun, 28 Aug 2016 15:35:56 GMT
Accept-Ranges: bytes
ETag: "a2a99de411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
kushaem.com/img/icon_heart.gif
199.233.255.67200 OK 567 B URL HTTP/1.1 kushaem.com/img/icon_heart.gif
IP 199.233.255.67:0
File type GIF image data, version 89a, 14 x 12\012- data
Hash 8855d91b365c7f294b1a699b40332d6e
46a7b3cf0e0a6ca4d70cd37e27d8cd356e866a99
46af2d9881b90ff9e4fca902d31683f10738fea04cffb97107d37bf6e8ec8a86
GET /img/icon_heart.gif HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/structure.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 567
Content-Type: image/gif
Last-Modified: Sun, 28 Aug 2016 15:36:06 GMT
Accept-Ranges: bytes
ETag: "c9b193e4411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
kushaem.com/img/icon_print.gif
199.233.255.67200 OK 226 B URL HTTP/1.1 kushaem.com/img/icon_print.gif
IP 199.233.255.67:0
File type GIF image data, version 89a, 14 x 14\012- data
Hash dfccbb3b665895fe759c117701b8938e
2d5049ca739de519bf59f86c35b057a4024426e0
ccaea15d45cb60d2f9aa2a24eca8cebf3218339e0ce60a966901ca1239882385
GET /img/icon_print.gif HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/structure.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 226
Content-Type: image/gif
Last-Modified: Sun, 28 Aug 2016 15:36:07 GMT
Accept-Ranges: bytes
ETag: "6011d4e4411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
kushaem.com/img/logo_copyright.gif
199.233.255.67200 OK 2.1 kB URL HTTP/1.1 kushaem.com/img/logo_copyright.gif
IP 199.233.255.67:0
File type GIF image data, version 89a, 169 x 22\012- data
Hash dd0511b748acf9530785feaf318c5d7a
d87aefb68912135dd4cf363c10a5993dea9c6a09
cb3f47cad1494754954d041dec4d4639c8ed0ad92e5fcdf0f44feaef6bb45187
GET /img/logo_copyright.gif HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/structure.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 2052
Content-Type: image/gif
Last-Modified: Sun, 28 Aug 2016 15:36:08 GMT
Accept-Ranges: bytes
ETag: "e7f1d7e5411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
push.services.mozilla.com/
54.191.222.112101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.191.222.112:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gaZlrwlJ9dBrECpXJ7pOJQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jMaLW0Ab0bh688TkTIkVcOaq/wI=
kushaem.com/img/menu.png
199.233.255.67200 OK 6.8 kB IP 199.233.255.67:0
File type PNG image data, 242 x 347, 8-bit/color RGBA, non-interlaced\012- data
Hash f760054a18181f1334466597f57cf848
360adbf495d3634655520f5cb6541980fe484250
5ccdb758856cbf0a86085887e7a9d0d3021de0002b3c91b01ddbf93050f85b11
GET /img/menu.png HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/structure.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 6760
Content-Type: image/png
Last-Modified: Sun, 28 Aug 2016 15:36:09 GMT
Accept-Ranges: bytes
ETag: "9d9f26e6411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
kushaem.com/img/dots_hr.gif
199.233.255.67200 OK 43 B URL HTTP/1.1 kushaem.com/img/dots_hr.gif
IP 199.233.255.67:0
File type GIF image data, version 89a, 3 x 1\012- data
Hash a2f8a4da03bda186cab6d2fa85758acf
6b3b9aee6ef1639d7ec29485021743c43b10de24
ffe635957fa69d591ab3667c4dc1376af172100a564ba6e2c6e8e5ad4a014f0b
GET /img/dots_hr.gif HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/main.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 43
Content-Type: image/gif
Last-Modified: Sun, 28 Aug 2016 15:35:58 GMT
Accept-Ranges: bytes
ETag: "13e1e0411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:42 GMT
kushaem.com/ul/photos_recipes/633.jpg
199.233.255.67200 OK 119 kB URL HTTP/1.1 kushaem.com/ul/photos_recipes/633.jpg
IP 199.233.255.67:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=12, description=SONY DSC, manufacturer=SONY , model=DSLR-A300, orientation=upper-left, xresolution=183, yresolution=191, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2008:08:17 12:26:36], baseline, precision 8, 800x536, components 3\012- data
Size 119 kB (118898 bytes)
Hash 8604f0a3ece12de200c3a039e6fb414f
9bfb5ac0c0391a5c39845b7ef443ef4693878a9a
d980d9adb5bd6a9b7653d4881e8291ba062333018cc5f3288236dcb7b395dc96
GET /ul/photos_recipes/633.jpg HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/recipe.asp?id=633&lang=ru&name=????????????%20????????????????????????%253
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 118898
Content-Type: image/jpeg
Last-Modified: Wed, 17 Aug 2016 21:12:12 GMT
Accept-Ranges: bytes
ETag: "0de835ccf8d11:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:41 GMT
kushaem.com/img/arrow_menu_off.gif
199.233.255.67200 OK 54 B URL HTTP/1.1 kushaem.com/img/arrow_menu_off.gif
IP 199.233.255.67:0
File type GIF image data, version 89a, 7 x 9\012- data
Hash c2610dad9772a33ed2701e4cf2615f69
c9e1b3e16f5e3498af7a717d587417ac2cc22e60
908463c930cddff197ded22f0f3f9b8b8c5e7dfbb90d09b624b5e17be677fef9
GET /img/arrow_menu_off.gif HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/main.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 54
Content-Type: image/gif
Last-Modified: Sun, 28 Aug 2016 15:35:51 GMT
Accept-Ranges: bytes
ETag: "dfb95ddb411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:42 GMT
kushaem.com/img/btn_search.png
199.233.255.67200 OK 911 B URL HTTP/1.1 kushaem.com/img/btn_search.png
IP 199.233.255.67:0
File type PNG image data, 46 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 4368c17426bf76dfeb697ba3aff22827
96f12a5dce59dfb92aeacd5b66ea5794987062a9
62237791dc5cbde52b74713313810a889fc1a939b0e178ed9d91129d213b80be
GET /img/btn_search.png HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/structure.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 911
Content-Type: image/png
Last-Modified: Sun, 28 Aug 2016 15:35:54 GMT
Accept-Ranges: bytes
ETag: "88527ddd411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:42 GMT
kushaem.com/img/arrow_white_reverse.gif
199.233.255.67200 OK 54 B URL HTTP/1.1 kushaem.com/img/arrow_white_reverse.gif
IP 199.233.255.67:0
File type GIF image data, version 89a, 7 x 9\012- data
Hash d3d4d4d126bc37720fc4ada1b2a8cba0
864f234adaedce47a76606ba41ce6b5095888fdc
d9cb1530915137f17b1211dc2132cbced86b66528a6ff732e1b03324ae3595f6
GET /img/arrow_white_reverse.gif HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/structure.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 54
Content-Type: image/gif
Last-Modified: Sun, 28 Aug 2016 15:35:52 GMT
Accept-Ranges: bytes
ETag: "4bc42adc411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:42 GMT
kushaem.com/img/bg_header.gif
199.233.255.67200 OK 763 B URL HTTP/1.1 kushaem.com/img/bg_header.gif
IP 199.233.255.67:0
File type GIF image data, version 89a, 4 x 132\012- data
Hash 3e0180b8c41e6c1367aea2c6ed3ee615
51a0f59e53b5ec2e552ef4dbbf76f5707bb795aa
8f362f4f1bba29414e1b889f5e6217e117ed880d189e4058d6973256767f1675
GET /img/bg_header.gif HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/css/structure.css
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==
HTTP/1.1 200 OK
Content-Length: 763
Content-Type: image/gif
Last-Modified: Sun, 28 Aug 2016 15:35:54 GMT
Accept-Ranges: bytes
ETag: "a2903add411d21:0"
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:42 GMT
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1612516180&utmhn=kushaem.com&utmcs=windows-1251&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%D0%A9%D1%83%D0%BA%D0%B0%20%D0%BE%D1%82%D0%B2%D0%B0%D1%80%D0%BD%D0%B0%D1%8F%20%D1%81%D0%BE%20%D1%81%D0%BF%D0%B5%D1%86%D0%B8%D1%8F%D0%BC%D0%B8%20%3A%20kushaem.com&utmhid=1655447089&utmr=-&utmp=%2Frecipe.asp%3Fid%3D633%26lang%3Dru%26name%3D%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%252520%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%2525253&utmht=1662071201242&utmac=UA-469859-5&utmcc=__utma%3D58297008.954804149.1662071201.1662071201.1662071201.1%3B%2B__utmz%3D58297008.1662071201.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=743910587&utmredir=1&utmu=HAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.174200 OK 35 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1612516180&utmhn=kushaem.com&utmcs=windows-1251&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%D0%A9%D1%83%D0%BA%D0%B0%20%D0%BE%D1%82%D0%B2%D0%B0%D1%80%D0%BD%D0%B0%D1%8F%20%D1%81%D0%BE%20%D1%81%D0%BF%D0%B5%D1%86%D0%B8%D1%8F%D0%BC%D0%B8%20%3A%20kushaem.com&utmhid=1655447089&utmr=-&utmp=%2Frecipe.asp%3Fid%3D633%26lang%3Dru%26name%3D%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%252520%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%2525253&utmht=1662071201242&utmac=UA-469859-5&utmcc=__utma%3D58297008.954804149.1662071201.1662071201.1662071201.1%3B%2B__utmz%3D58297008.1662071201.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=743910587&utmredir=1&utmu=HAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1612516180&utmhn=kushaem.com&utmcs=windows-1251&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=%D0%A9%D1%83%D0%BA%D0%B0%20%D0%BE%D1%82%D0%B2%D0%B0%D1%80%D0%BD%D0%B0%D1%8F%20%D1%81%D0%BE%20%D1%81%D0%BF%D0%B5%D1%86%D0%B8%D1%8F%D0%BC%D0%B8%20%3A%20kushaem.com&utmhid=1655447089&utmr=-&utmp=%2Frecipe.asp%3Fid%3D633%26lang%3Dru%26name%3D%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%252520%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%2525253&utmht=1662071201242&utmac=UA-469859-5&utmcc=__utma%3D58297008.954804149.1662071201.1662071201.1662071201.1%3B%2B__utmz%3D58297008.1662071201.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=743910587&utmredir=1&utmu=HAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Thu, 01 Sep 2022 22:26:42 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 003e8a2cb35bb65683fccbf8bf7a9797
b26fbc7607825162686c7e164d51956addeb1a6c
a71ec1144878270f76c09c51967a1d24b7d82dd700e83216be1e814a74796403
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 22:26:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202208290101/show_ads_impl_with_ama_fy2021.js?client=pub-1749770216186949&plah=kushaem.com
142.250.74.130200 OK 124 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202208290101/show_ads_impl_with_ama_fy2021.js?client=pub-1749770216186949&plah=kushaem.com
IP 142.250.74.130:0
File type ASCII text, with very long lines (4516)
Size 124 kB (123683 bytes)
Hash 810608c20c4753a5b01568375b0c193a
5d76e64ec301cfc2dc0bc1cc1f8c711e42a7c8de
5f35756352cdf20f70a5ddaef8509feeaf6511410a1a75048538fbc998f3a4c0
GET /pagead/managed/js/adsense/m202208290101/show_ads_impl_with_ama_fy2021.js?client=pub-1749770216186949&plah=kushaem.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kushaem.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 01 Sep 2022 22:26:42 GMT
expires: Thu, 01 Sep 2022 22:26:42 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 5994160067445348476
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 123683
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 003e8a2cb35bb65683fccbf8bf7a9797
b26fbc7607825162686c7e164d51956addeb1a6c
a71ec1144878270f76c09c51967a1d24b7d82dd700e83216be1e814a74796403
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 22:26:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kushaem.com/favicon.ico
199.233.255.67404 Not Found 4.8 kB IP 199.233.255.67:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (365)
Hash 49013a2e7d9f7895bd1754f42120d012
a89b83cc2120ca3b24aebda7184c0cd27d85a87d
dd9cdb1a10c4fa1d12896ea4da8ba369a431f701c325da851683fefe86b490d8
GET /favicon.ico HTTP/1.1
Host: kushaem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kushaem.com/recipe.asp?id=633&lang=ru&name=????????????%20????????????????????????%253
Cookie: lang=ru; ASPSESSIONIDSSRBSBTT=AOFHGJOCAADOKKFGKNDCJENG; ARRAffinity=6fe1b7ab3dc258e502a30911e9b1ddeb1cc792271fad1b1309672dd71d55508e; WAWebSiteSID=24c0fd214a14423c99645e1b733cd77d; BIGipServerEL_Customer_HTTP2=!g2kvbamWZUU9g+heEe65VNrtxl1X+y84hExInBMR7wL58WD0YdHwHt5S/JYMy8hm54uGOTw1nczBLw==; __utma=58297008.954804149.1662071201.1662071201.1662071201.1; __utmb=58297008.1.10.1662071201; __utmc=58297008; __utmz=58297008.1662071201.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 404 Not Found
Cache-Control: private
Content-Length: 4842
Content-Type: text/html; charset=utf-8
Server:
X-Powered-By: ASP.NET
Date: Thu, 01 Sep 2022 22:26:42 GMT
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cd29f3e57d67f656728998b80ff92da4
64465558fd0c41181e67f678599fb79e09577a9b
aa118aa7d1184c79bc34d7fb6303fd7c18e567899d3697bd7d8b810d083db310
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 22:26:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0aae712e1c80eda97fb62f31ed527c78
b0e7042d0c0fc9f34b6bde01292a9d30d9118ee7
4cbcf3c4805ef24821ee501bd5610a51ad3e2ad870e4e2d138c41b164a03ec7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 22:26:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dc076b754adaddcb000f3f987b6c5df2
01e9b40591692b8b2a6a94729e9481c7e600d248
9dbf2e71e1cbad91a71154b729e8ef496eda7544828a8bfd4f64e6dd70c4f64d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 22:26:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=kushaem.com
216.58.211.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=kushaem.com
IP 216.58.211.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=kushaem.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kushaem.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 01 Sep 2022 22:26:42 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=kushaem.com&callback=_gfp_s_&client=ca-pub-1749770216186949
142.250.74.98200 OK 200 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=kushaem.com&callback=_gfp_s_&client=ca-pub-1749770216186949
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 05a3d6eb49ec3ce4b55372813cb5c668
2a63da1fe6bc659f3e6cada1b7a3bdc26aa81b6b
af4733e93e6af2b0be8b613f39de3c01047096fd64f3dfe02d7b460e118b9bd6
GET /gampad/cookie.js?domain=kushaem.com&callback=_gfp_s_&client=ca-pub-1749770216186949 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kushaem.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 01 Sep 2022 22:26:42 GMT
server: cafe
cache-control: private
content-length: 200
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=kushaem.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=kushaem.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=kushaem.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kushaem.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 01 Sep 2022 22:26:42 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cd29f3e57d67f656728998b80ff92da4
64465558fd0c41181e67f678599fb79e09577a9b
aa118aa7d1184c79bc34d7fb6303fd7c18e567899d3697bd7d8b810d083db310
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 22:26:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0aae712e1c80eda97fb62f31ed527c78
b0e7042d0c0fc9f34b6bde01292a9d30d9118ee7
4cbcf3c4805ef24821ee501bd5610a51ad3e2ad870e4e2d138c41b164a03ec7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 22:26:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dc076b754adaddcb000f3f987b6c5df2
01e9b40591692b8b2a6a94729e9481c7e600d248
9dbf2e71e1cbad91a71154b729e8ef496eda7544828a8bfd4f64e6dd70c4f64d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 22:26:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 6f0d13621a550aa591f087c2945aa2c5
18b520f7f9a71966c115f664def155bcacc60096
cf7e40d37010a5aa8ab4cb3091bd665b7401fa42fac3b1de62ca7a48c6b89b4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 22:26:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1749770216186949&output=html&h=200&twa=1&slotname=4295943223&adk=3873307073&adf=1385593141&pi=t.ma~as.4295943223&w=159&fwrn=4&fwrnh=100&lmt=1662071202&format=159x200&url=http%3A%2F%2Fkushaem.com%2Frecipe.asp%3Fid%3D633%26lang%3Dru%26name%3D%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%2520%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%25253&fwr=0&rh=200&rw=159&wgl=1&dt=1662071201149&bpp=41&bdt=606&idt=864&shv=r20220831&mjsv=m202208290101&ptt=5&saldr=sa&abxe=1&cookie=ID%3De4c547ba9b009231-22086c310cce0009%3AT%3D1662071202%3ART%3D1662071202%3AS%3DALNI_MY7cDmgHOJWjzhvZy6EatfYknvBsA&correlator=7115359072065&frm=20&pv=2&ga_vid=954804149.1662071201&ga_sid=1662071201&ga_hid=1655447089&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=950&ady=360&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842&oid=2&pvsid=1843427758150692&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CaeE%7C&abl=CA&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=idlzwnCdv8&p=http%3A//kushaem.com&dtd=980
142.250.74.34400 Bad Request 46 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-1749770216186949&output=html&h=200&twa=1&slotname=4295943223&adk=3873307073&adf=1385593141&pi=t.ma~as.4295943223&w=159&fwrn=4&fwrnh=100&lmt=1662071202&format=159x200&url=http%3A%2F%2Fkushaem.com%2Frecipe.asp%3Fid%3D633%26lang%3Dru%26name%3D%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%2520%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%25253&fwr=0&rh=200&rw=159&wgl=1&dt=1662071201149&bpp=41&bdt=606&idt=864&shv=r20220831&mjsv=m202208290101&ptt=5&saldr=sa&abxe=1&cookie=ID%3De4c547ba9b009231-22086c310cce0009%3AT%3D1662071202%3ART%3D1662071202%3AS%3DALNI_MY7cDmgHOJWjzhvZy6EatfYknvBsA&correlator=7115359072065&frm=20&pv=2&ga_vid=954804149.1662071201&ga_sid=1662071201&ga_hid=1655447089&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=950&ady=360&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842&oid=2&pvsid=1843427758150692&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CaeE%7C&abl=CA&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=idlzwnCdv8&p=http%3A//kushaem.com&dtd=980
IP 142.250.74.34:0
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 0c80c3a2604d656b7e461160bf5eba0f
d4f5c720a2b94f5f13b2e569035a7b14a513630d
470b81d27902c371ec202ef835ecf76bf54c8e222dab8b77eb8d2fd45652c955
GET /pagead/ads?client=ca-pub-1749770216186949&output=html&h=200&twa=1&slotname=4295943223&adk=3873307073&adf=1385593141&pi=t.ma~as.4295943223&w=159&fwrn=4&fwrnh=100&lmt=1662071202&format=159x200&url=http%3A%2F%2Fkushaem.com%2Frecipe.asp%3Fid%3D633%26lang%3Dru%26name%3D%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%2520%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%3F%25253&fwr=0&rh=200&rw=159&wgl=1&dt=1662071201149&bpp=41&bdt=606&idt=864&shv=r20220831&mjsv=m202208290101&ptt=5&saldr=sa&abxe=1&cookie=ID%3De4c547ba9b009231-22086c310cce0009%3AT%3D1662071202%3ART%3D1662071202%3AS%3DALNI_MY7cDmgHOJWjzhvZy6EatfYknvBsA&correlator=7115359072065&frm=20&pv=2&ga_vid=954804149.1662071201&ga_sid=1662071201&ga_hid=1655447089&ga_fc=1&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=950&ady=360&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759842&oid=2&pvsid=1843427758150692&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CaeE%7C&abl=CA&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=idlzwnCdv8&p=http%3A//kushaem.com&dtd=980 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kushaem.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Thu, 01 Sep 2022 22:26:42 GMT
server: cafe
content-length: 46
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 01-Sep-2022 22:41:42 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 6f0d13621a550aa591f087c2945aa2c5
18b520f7f9a71966c115f664def155bcacc60096
cf7e40d37010a5aa8ab4cb3091bd665b7401fa42fac3b1de62ca7a48c6b89b4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 22:26:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 68a4217b3e77473315052f97d6f3f0f1
4fddb559bc0f85063021438f8666b14c530ef0d8
5b156ac741db0ad05e3de259a53590be41bbb2bda2e84290abfb4f71fa650735
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 22:26:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kushaem.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Thu, 01 Sep 2022 22:26:42 GMT
expires: Thu, 01 Sep 2022 22:26:42 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=kushaem.com
216.58.211.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=kushaem.com
IP 216.58.211.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=kushaem.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kushaem.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 01 Sep 2022 22:26:42 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kushaem.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 07:47:45 GMT
expires: Fri, 01 Sep 2023 07:47:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 52738
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 67921e2bd7c620bdd4db5ed1e73d3146
1deaa030ab490c63f94bde4c7ada5e2f849fb506
7fcee2496cdc63c9779941621d9e61acd006910947ccb6c7e98f383b0bf4574c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Sep 2022 22:26:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 515 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 5bd7120f1f04b08455e39dcdda573c1b
6e453ab1706ad06b2d2c1d616f54eee478968183
580f076fc3cdf8e2885a82d2a6cd2e27894438b3a671e36f81152e14914dbb78
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kushaem.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Thu, 01 Sep 2022 22:26:43 GMT
date: Thu, 01 Sep 2022 22:26:43 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-3iVRQXz_HpYU6tr6x6EWzQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 515
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11032
Expires: Fri, 02 Sep 2022 01:30:35 GMT
Date: Thu, 01 Sep 2022 22:26:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11032
Expires: Fri, 02 Sep 2022 01:30:35 GMT
Date: Thu, 01 Sep 2022 22:26:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11032
Expires: Fri, 02 Sep 2022 01:30:35 GMT
Date: Thu, 01 Sep 2022 22:26:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11032
Expires: Fri, 02 Sep 2022 01:30:35 GMT
Date: Thu, 01 Sep 2022 22:26:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0c1e7f6c9e17585905fdbe9ae4da50b
67192f5be476ac4dada66dc9fbe26469d62e2d78
21ca880b36bbb7791f8df2bf9830f11a960692123dd6dde5be42bda004dc428b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9642
x-amzn-requestid: 52c698d7-6419-4614-9c53-68a265266337
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjbEvgoAMFkKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-547a72850cce71da013383f5;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: I3pDTq3EeJJtzJFsAFaym7cV5nCrwFailDRzgA3QkAFOYj3xV43v2w==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
etag: "67192f5be476ac4dada66dc9fbe26469d62e2d78"
content-type: image/jpeg
age: 2957
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e05660322f0368dd2bf8067d7e4554d
ec65cb47d86488f734c945a210d5f636a40fea2c
98875230ec45766102191bdc4180742fa3b8f3ad5ad1a128d12437105f86247e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6196
x-amzn-requestid: a7d6ce70-06d7-498c-8024-80185a3fc3e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyLFmVIAMFkcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112674-3fad622927177e9236d7c50a;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qAMCgNpYR80vXSDyHFOFcbT8VukBemR2AGoGNaCfYaszKshu-gv6zg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:54:15 GMT
age: 1948
etag: "ec65cb47d86488f734c945a210d5f636a40fea2c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9de9889-f1f6-417e-954b-af2056b62982.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9de9889-f1f6-417e-954b-af2056b62982.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e10519422b7ff91c72bcf2234cea36cf
63cff2232383d9d7f2371d1f60cf7923b629fc82
71a4bfc0031e0f6152c441f4bf413c6e953f38a587a95900f3a6c63beecafb4b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9de9889-f1f6-417e-954b-af2056b62982.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12204
x-amzn-requestid: 5293c66e-68d3-472a-a6d2-69f161262f26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzMLDGK6oAMFTzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112713-66d01d9c2d12d55c465c5108;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:41:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: cH0sSIFu5fSPywh8xnc0AHgD053jRBz3QLBSCk0IkcQwez-1M9hCJQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:54:18 GMT
age: 1945
etag: "63cff2232383d9d7f2371d1f60cf7923b629fc82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff072eb8c-1ad5-404f-85b3-2242f38757f6.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff072eb8c-1ad5-404f-85b3-2242f38757f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae78f10cef02197bf19d5ff1d2703fdf
3f7dbd409d7d110b135ee32b8ebcdb9ac3591e66
b5c74c5cea04e6da2d3e886dd26adc83af98bb881aa134b7fa0693dbf8b90a52
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff072eb8c-1ad5-404f-85b3-2242f38757f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4924
x-amzn-requestid: 89f18b72-50e3-4e1a-9a4a-e1e61d078fba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XW1o-GO2IAMFyxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6305cfd2-0987c8217bfd77c91f107265;Sampled=0
x-amzn-remapped-date: Wed, 24 Aug 2022 07:14:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: F4gQvi_hdsdDXSys6Sv0-5XWXE-nMH6H-qb5jRvuln8o_r7SKdqU7g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 09:13:42 GMT
age: 47581
etag: "3f7dbd409d7d110b135ee32b8ebcdb9ac3591e66"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 955f2a35bd6b3802670e7fa8a7cda833
4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6DJbsUGTdXT42cNLTDq6Uz28H2SDhwq6drdKP4axAHsBz471X7r_g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
content-type: image/jpeg
age: 2957
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43d94e54-2c67-403b-b94b-ef5e36cb5e26.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43d94e54-2c67-403b-b94b-ef5e36cb5e26.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14e82032ab44011167c9d2d9695a3198
d3fda6718ab89268e82bde16b06a96354fa3d57b
2f073e250e9956e82038d29df1de50df864e2c22e4604bbd78d1e62188ae9197
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43d94e54-2c67-403b-b94b-ef5e36cb5e26.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7156
x-amzn-requestid: e2b38429-0492-4319-9c72-5a1619c78420
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzMO2EKcoAMFrrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311272b-69d66f695cf1a07f0fae433c;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: kpPP3oOPJ0CPFcrn_69SQa_tDp3VGWYBSX2_LVD-wT0tUuQCUkQoAQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:54:17 GMT
age: 1946
etag: "d3fda6718ab89268e82bde16b06a96354fa3d57b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2