195.216.243.23200 OK 12 kB URL User Request GET HTTP/1.1 IP 195.216.243.23:443
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (824)
Hash 55fa4f7ac8b96d5667a49718ef317993
ecccbbc61725bf871826078f41eddc83622b98c8
77c8b77ee820b2322ea6b8f97859652663f1eb718633d1728fa363cab9da8e2e
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:16 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Set-Cookie: 6vsebesplatnouCoz=; path=/; expires=Sat, 22-May-2021 17:40:16 GMT; Secure; HttpOnly; domain=.vsebesplatno.clan.su
6vsebesplatnopushi=1; path=/; expires=Tue, 23-May-2023 16:40:16 GMT; Secure
Pragma: no-cache
Vary: host
Last-Modified: Sat, 18 Dec 2010 05:42:50 GMT
Cache-Control: no-cache,no-store, private
Content-Encoding: gzip
vsebesplatno.clan.su/?Jtju9JZnVcVcAv%212aXwcxEKqCTpm6mw0jgPiP5BEXeiK0585Itp3NNbCXMOatyRMUgKIKpy%3BjxJSSjMZq09ZLwUE80AwsFRVxipOD0f1Tng2YCK33g50S82xk6rTsftcL2wF0A05CuEaSkfkIZvj3l%216Ch6q%21yhk6Xpr0zOn%5EsWYDYQI9CPzJbEtmUibZ6dSJLTzgYzAE9PF9XUMCEdBIlwm4jP%21dpx1Dwoo
195.216.243.23200 OK 1.2 kB URL GET HTTP/1.1 vsebesplatno.clan.su/?Jtju9JZnVcVcAv%212aXwcxEKqCTpm6mw0jgPiP5BEXeiK0585Itp3NNbCXMOatyRMUgKIKpy%3BjxJSSjMZq09ZLwUE80AwsFRVxipOD0f1Tng2YCK33g50S82xk6rTsftcL2wF0A05CuEaSkfkIZvj3l%216Ch6q%21yhk6Xpr0zOn%5EsWYDYQI9CPzJbEtmUibZ6dSJLTzgYzAE9PF9XUMCEdBIlwm4jP%21dpx1Dwoo
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
Hash 901a5ae5913cc0846a08032ebefd64f8
99f0b87d790450f8af6df5a87a0549162de6b665
2c7936c6a976802b3da5efddb982b0e113928109eef4614b5c3b9cd33e9f2b64
Analyzer Verdict Alert fortinet Phishing
GET /?Jtju9JZnVcVcAv%212aXwcxEKqCTpm6mw0jgPiP5BEXeiK0585Itp3NNbCXMOatyRMUgKIKpy%3BjxJSSjMZq09ZLwUE80AwsFRVxipOD0f1Tng2YCK33g50S82xk6rTsftcL2wF0A05CuEaSkfkIZvj3l%216Ch6q%21yhk6Xpr0zOn%5EsWYDYQI9CPzJbEtmUibZ6dSJLTzgYzAE9PF9XUMCEdBIlwm4jP%21dpx1Dwoo HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:16 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Cache-Control: no-cache, no-store, private
Pragma: no-cache
vsebesplatno.clan.su/.s/src/layer7.min.css
195.216.243.23200 OK 7.1 kB URL GET HTTP/1.1 vsebesplatno.clan.su/.s/src/layer7.min.css
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type ASCII text, with very long lines (25643), with no line terminators
Hash 1b8192322bc6abc4477ded3a2597f3de
12c0c4cff7f405974ddac5efa5d9286e42232a74
10a7bfa61deeb28792aa4b8635021f563eed768537d2f713cc38a654abb534ec
GET /.s/src/layer7.min.css HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: text/css
Last-Modified: Fri, 28 Apr 2023 09:06:50 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"644b8caa-642b"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
vsebesplatno.clan.su/.s/src/ulightbox/ulightbox.min.css
195.216.243.23200 OK 1.4 kB URL GET HTTP/1.1 vsebesplatno.clan.su/.s/src/ulightbox/ulightbox.min.css
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type ASCII text, with very long lines (4552), with no line terminators
Hash a05316c4712b56d4de87d83d57fc9a74
22db34df3400db68355d8b3e06c01c4f964ad484
5ddb669cd05d5c481a798631d2bd02b041950600ebaa4d419833fe0f01a04955
GET /.s/src/ulightbox/ulightbox.min.css HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: text/css
Last-Modified: Tue, 24 May 2022 12:36:45 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"628cd15d-11c8"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
vsebesplatno.clan.su/.s/src/css/888.css
195.216.243.23200 OK 3.6 kB URL GET HTTP/1.1 vsebesplatno.clan.su/.s/src/css/888.css
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
Hash 07e84ca625bc82a4119b9ce472684567
e43dbb96d0c6899e3220d13dcc00f2c6d734b523
9b7850b4b7283395fceb9942fc3cd760e345013d185f10002c18a92b5b7296d6
GET /.s/src/css/888.css HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: text/css
Last-Modified: Wed, 26 May 2021 12:20:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"60ae3d09-416a"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
vsebesplatno.clan.su/.s/src/social.css
195.216.243.23200 OK 610 B URL GET HTTP/1.1 vsebesplatno.clan.su/.s/src/social.css
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type ASCII text, with very long lines (442)
Hash 917872d4bcfea5e238f1f02cef7a9596
84c5e7eb25c8d7b11639ea428a9fac50bab26f84
12c919cc8994233c2f67bdcf1185997781ccfe1ce3405308e31bfd33d260bd74
GET /.s/src/social.css HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: text/css
Last-Modified: Wed, 01 Dec 2021 11:13:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"61a758f3-9b8"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
vsebesplatno.clan.su/?gLXnapcc4UL8HLvuJIPxFwFTN%21F%3B7Bn%5E3%3BAHlz5M5jQA9z42K4MLErkjnYTtx5PxZMvPvGFvuyFuFVSuUDr7Z%5Evig5zmqRRjZ4zWvc%5E%3BelqPUNb%3BSOuaKv0sZMv24EQwHTeaBhz%21CLnif8kJWDrX8S%3BqgmMal8KUiCUnT%5EL%216xy5CqwjUAbnt0yNvqZEShcUC7iGzj3ZUyjGL513qGUkB1xtuhEOHCIZ
195.216.243.23200 OK 834 B URL GET HTTP/1.1 vsebesplatno.clan.su/?gLXnapcc4UL8HLvuJIPxFwFTN%21F%3B7Bn%5E3%3BAHlz5M5jQA9z42K4MLErkjnYTtx5PxZMvPvGFvuyFuFVSuUDr7Z%5Evig5zmqRRjZ4zWvc%5E%3BelqPUNb%3BSOuaKv0sZMv24EQwHTeaBhz%21CLnif8kJWDrX8S%3BqgmMal8KUiCUnT%5EL%216xy5CqwjUAbnt0yNvqZEShcUC7iGzj3ZUyjGL513qGUkB1xtuhEOHCIZ
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
Hash 51e142a0b55c4d1f5056ff08fc046c09
24fab84fa4215afdb8ee7555ec3d3b52e323f998
b36d8b4a6ae0a89de7676de2f7870c67cec1f19e98962b29344aa9291b9131cb
Analyzer Verdict Alert fortinet Phishing
GET /?gLXnapcc4UL8HLvuJIPxFwFTN%21F%3B7Bn%5E3%3BAHlz5M5jQA9z42K4MLErkjnYTtx5PxZMvPvGFvuyFuFVSuUDr7Z%5Evig5zmqRRjZ4zWvc%5E%3BelqPUNb%3BSOuaKv0sZMv24EQwHTeaBhz%21CLnif8kJWDrX8S%3BqgmMal8KUiCUnT%5EL%216xy5CqwjUAbnt0yNvqZEShcUC7iGzj3ZUyjGL513qGUkB1xtuhEOHCIZ HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Cache-Control: no-cache, no-store, private
Pragma: no-cache
vsebesplatno.clan.su/.s/src/ulightbox/ulightbox.min.js
195.216.243.23200 OK 7.7 kB URL GET HTTP/1.1 vsebesplatno.clan.su/.s/src/ulightbox/ulightbox.min.js
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type ASCII text, with very long lines (22313), with no line terminators
Hash 862f093f507f858ee329c39576f1c041
f3da76f6d4071020bf9c82ddbcbb1ad95d74108f
a0c876daa26fa9e875abc22a4e88e310a20ea1fdb45451e4af22b907dbf22da8
Analyzer Verdict Alert fortinet Phishing
GET /.s/src/ulightbox/ulightbox.min.js HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: text/javascript
Last-Modified: Wed, 05 Apr 2023 11:25:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"642d5aa9-5729"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
vsebesplatno.clan.su/.s/src/base.min.css
195.216.243.23200 OK 6.2 kB URL GET HTTP/1.1 vsebesplatno.clan.su/.s/src/base.min.css
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type ASCII text, with very long lines (24519), with no line terminators
Hash cfa5d689b5b2f45ea3e3cf33415da504
dd71774375b3808c4483688e68833113c6e2c236
55998c0419cad6f5f33925fa11a2a38fd7586d3a5c9315f279d2b42a310460d2
GET /.s/src/base.min.css HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: text/css
Last-Modified: Tue, 02 May 2023 08:55:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"6450cff1-5fc7"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
s23.ucoz.net/cgi/uutils.fcg?a=uSD&ca=2&ug=999&isp=0&r=0.799448766847036
195.216.243.23200 OK 0 B URL GET HTTP/1.1 s23.ucoz.net/cgi/uutils.fcg?a=uSD&ca=2&ug=999&isp=0&r=0.799448766847036
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGoGetSSL
Subject*.ucoz.net
Fingerprint9C:9F:0E:28:57:CD:A6:DE:BC:89:EA:60:7A:68:97:BB:58:9F:C1:4A
ValidityWed, 15 Mar 2023 00:00:00 GMT - Sun, 14 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi/uutils.fcg?a=uSD&ca=2&ug=999&isp=0&r=0.799448766847036 HTTP/1.1
Host: s23.ucoz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
vsebesplatno.clan.su/.s/src/jquery-3.6.0.min.js
195.216.243.23200 OK 31 kB URL GET HTTP/1.1 vsebesplatno.clan.su/.s/src/jquery-3.6.0.min.js
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
Analyzer Verdict Alert fortinet Phishing
GET /.s/src/jquery-3.6.0.min.js HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: text/javascript
Last-Modified: Wed, 05 Apr 2023 11:25:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"642d5a96-15d9d"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
vsebesplatno.clan.su/.s/src/uwnd.min.js
195.216.243.23200 OK 57 kB URL GET HTTP/1.1 vsebesplatno.clan.su/.s/src/uwnd.min.js
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0e2dd07983ad50fa9205b6a9d24bc79f
8eafe02a75c83f60d40d1cee73e2770805e54a9e
8993dbc5102beb8dc4ebfef06873c26198d0f2913627399034816b16715336ad
Analyzer Verdict Alert fortinet Phishing
GET /.s/src/uwnd.min.js HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: text/javascript
Last-Modified: Mon, 25 Apr 2022 10:32:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"626678ba-3334b"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Content-Encoding: gzip
news.2xclick.ru/loader.js
93.95.103.233200 OK 34 kB URL GET HTTP/2 news.2xclick.ru/loader.js
IP 93.95.103.233:443
ASN #48347 JSC Mediasoft ekspert
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectgnezdo.news
FingerprintA3:21:AA:ED:4A:24:33:43:6D:ED:DF:B7:52:B6:50:DD:C0:00:92:07
ValidityFri, 28 Apr 2023 04:59:31 GMT - Thu, 27 Jul 2023 04:59:30 GMT
File type Unicode text, UTF-8 text, with very long lines (1902)
Hash 27941683553a046d010d51f2616eb9fd
d0e30217868817d154ce375e7067b34120310e29
f5a71aa7af57e0ba5331adf2baadc838a99656d90e7025a8c6625642ea478f40
GET /loader.js HTTP/1.1
Host: news.2xclick.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 22 May 2023 17:40:12 GMT
content-type: application/javascript
content-length: 33555
last-modified: Fri, 19 May 2023 11:31:35 GMT
etag: "64675e17-8313"
content-encoding: gzip
expires: Tue, 23 May 2023 17:40:12 GMT
cache-control: max-age=86400
access-control-allow-origin: *
set-cookie: uid=XV9n6WRrqPwYT+79pa0iAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=gnezdo.ru; path=/; secure; SameSite=none
p3p: policyref="/w3c/p3p.xml", CP="CUR ADM OUR NOR STA NID"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 4b606a89062b860c8b452c4c3877397c
39ba4e3efb89e39deffa0c93cb01b63cb1975e67
85c1f8e7679b507431d39f010a515ddcc840dbcbedfe06edf1ea94a8e7dd2a15
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 17:40:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vsebesplatno.clan.su/3/vovka.v.tridev.tsarstve.0-07-09.jpg
195.216.243.23200 OK 215 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/vovka.v.tridev.tsarstve.0-07-09.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:31 15:29:26], baseline, precision 8, 640x480, components 3\012- data
Size 215 kB (215286 bytes)
Hash 7cd02ac987df4e786d454d08eca54605
5078a85f109431fa61cb370dc9fdf2310758623b
e2311770ddc7c6b8fba3b76e63f485da077dc9405d9d2cf13250a76b4096bdfa
GET /3/vovka.v.tridev.tsarstve.0-07-09.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/jpeg
Content-Length: 215286
Last-Modified: Sun, 09 Jan 2011 17:42:02 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f36a-348f6"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/karusel.3.0-00-07.829.jpg
195.216.243.23200 OK 87 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/karusel.3.0-00-07.829.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3\012- data
Hash 4f3831eb7d8bb28ee6600674d4d6c9c0
436c8565f40372ab93c542ad6731f5c98a9008ed
5221254c123e2b02d812dd9fe7894a16ab23d7bb152d3910dcf6822f7bf9008d
GET /3/karusel.3.0-00-07.829.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/jpeg
Content-Length: 87181
Last-Modified: Sun, 09 Jan 2011 17:39:18 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f2c6-1548d"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
www.google.com/recaptcha/api.js?onload=reCallback&render=explicit&hl=ru
142.250.74.132200 OK 579 B URL GET HTTP/2 www.google.com/recaptcha/api.js?onload=reCallback&render=explicit&hl=ru
IP 142.250.74.132:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint85:AD:43:66:C0:73:07:1B:B5:5D:4A:83:4B:76:3F:DA:4B:2B:E1:F8
ValidityMon, 24 Apr 2023 12:01:16 GMT - Mon, 17 Jul 2023 12:01:15 GMT
File type ASCII text, with very long lines (905), with no line terminators
Hash f3651a48f92f2ce6ffd95d0ae3268a9f
1cb70789a541931c3127a5f0c12e001da6a543ce
c81584853fdd4a67b3676d9b9970f46a25c307600d97cf6d2e666a84bede5581
GET /recaptcha/api.js?onload=reCallback&render=explicit&hl=ru HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Mon, 22 May 2023 17:40:12 GMT
date: Mon, 22 May 2023 17:40:12 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 579
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
am15.net/sb.php?s=3204
95.216.224.48200 OK 690 B IP 95.216.224.48:443
ASN #24940 Hetzner Online GmbH
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
Hash 0b1e38f77d340fd4edd560261ce8aa85
7245be572eec27d3bbb98ab4b1867b3b7e0dcf93
7cd505686193cecd3b96906a86abfc78c7ae6620f6195751629b84ddce6ee3e3
GET /sb.php?s=3204 HTTP/1.1
Host: am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:12 GMT
Content-Type: text/javascript; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.1.27-1+ubuntu16.04.1+deb.sury.org+1
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Tue, 01 Jan 2000 00:00:00 GMT
Last-Modified: Mon, 22 May 2023 17:40:12 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: wsb=10300; expires=Tue, 23-May-2023 03:40:12 GMT; Max-Age=36000; path=/; domain=.am15.net
Content-Encoding: gzip
am15.net/cu.php?s=3204
95.216.224.48200 OK 9.5 kB IP 95.216.224.48:443
ASN #24940 Hetzner Online GmbH
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
File type ASCII text, with very long lines (31933)
Hash c976919826dce68e911ac33b3924b365
66e5f7396eb7dfce7905618c5f5cb2b41bee5408
f717430e03ae742072f60e657a0cb8a028d4dd05e73263694ab6cd36d30c7a31
GET /cu.php?s=3204 HTTP/1.1
Host: am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:12 GMT
Content-Type: text/javascript; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.1.27-1+ubuntu16.04.1+deb.sury.org+1
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Tue, 01 Jan 2000 00:00:00 GMT
Last-Modified: Mon, 22 May 2023 17:40:12 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
am15.net/bn.php?s=3204&f=3&d=72981
95.216.224.48200 OK 2.0 kB URL GET HTTP/1.1 am15.net/bn.php?s=3204&f=3&d=72981
IP 95.216.224.48:443
ASN #24940 Hetzner Online GmbH
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
File type ASCII text, with very long lines (1379)
Hash 0d25b018f8f41ba2630c37f311c0dfc8
4a36fc8e8f9e5c7ad6f5eabcb5dbb8561f5fac1e
cc78aaea23a569ae1d245db64579c317e309af78ad6a3168c43729556c242a9a
GET /bn.php?s=3204&f=3&d=72981 HTTP/1.1
Host: am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:12 GMT
Content-Type: text/javascript; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.1.27-1+ubuntu16.04.1+deb.sury.org+1
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Tue, 01 Jan 2000 00:00:00 GMT
Last-Modified: Mon, 22 May 2023 17:40:12 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: wbn=10400; expires=Tue, 23-May-2023 03:40:12 GMT; Max-Age=36000; path=/; domain=.am15.net
unic_vc=yhYxysfxyQJ.B7IJFFnn; expires=Mon, 22-May-2023 20:59:59 GMT; Max-Age=11987; path=/; domain=.am15.net
Content-Encoding: gzip
vsebesplatno.clan.su/3/vozvr.bl.popugaya.3.0-01-25.jpg
195.216.243.23200 OK 264 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/vozvr.bl.popugaya.3.0-01-25.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:31 16:39:36], baseline, precision 8, 640x480, components 3\012- data
Size 264 kB (264514 bytes)
Hash a8da829df25723a98b9e19a4dde492ce
6f089cbe2679a2fcf318da2b5479f4378f5da538
2ec123e1bb3a6a47ecc919d4f26d0de764d27f4afb418ac00779a5a90a340d6d
GET /3/vozvr.bl.popugaya.3.0-01-25.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/jpeg
Content-Length: 264514
Last-Modified: Sun, 09 Jan 2011 17:43:04 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f3a8-40942"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/varegka.0-04-14.jpg
195.216.243.23200 OK 172 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/varegka.0-04-14.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:29 21:32:44], baseline, precision 8, 640x480, components 3\012- data
Size 172 kB (171666 bytes)
Hash df728c089d0a83167bf14a946df24c22
d3c8da04100de08ad008f12e3e40e6dbd44e9d72
c1f8b91d5c348b2cd7a124b15a5cbe21738180a358a81c7658c1984abeec8372
GET /3/varegka.0-04-14.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/jpeg
Content-Length: 171666
Last-Modified: Sun, 09 Jan 2011 17:38:04 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f27c-29e92"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/v.strane.nevyuchennyx.urokov.0-11-03.jpg
195.216.243.23200 OK 216 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/v.strane.nevyuchennyx.urokov.0-11-03.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:29 20:58:34], baseline, precision 8, 640x480, components 3\012- data
Size 216 kB (216493 bytes)
Hash 9d964c95b4f99f80e8aa4a9f9548a8fc
9ba567cfd2a255f59103ed1e5140763f9d07cf85
f4965c3865d4cb8ef3fb55c1443bc5005a401f96df8d7bfbf0846548264ec288
GET /3/v.strane.nevyuchennyx.urokov.0-11-03.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/jpeg
Content-Length: 216493
Last-Modified: Sun, 09 Jan 2011 17:35:56 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f1fc-34dad"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/vsebesplatno.clan.su1.gif
195.216.243.23200 OK 8.2 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/vsebesplatno.clan.su1.gif
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type GIF image data, version 89a, 142 x 142\012- data
Hash 829d4f326934e03a87c604f3e9450f2c
150dd6d01f732fe2bf99b03ac6b65bf5b2110200
e21d8e021656c85103886935b36ae9ae52750210da78d3ceefbf2571bec2e400
GET /3/vsebesplatno.clan.su1.gif HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/gif
Content-Length: 8204
Last-Modified: Sun, 13 Sep 2009 11:16:35 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4aacd493-200c"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/vsebesplatno.clan.su3.gif
195.216.243.23200 OK 8.9 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/vsebesplatno.clan.su3.gif
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type GIF image data, version 89a, 142 x 142\012- data
Hash 24fb030ea6426c74f4cd04ec18843c40
aa0f072f40945202c88c1195c684daadcc3a416f
ab68aab8fa4dff03635097d325045841fc092a6c37ab0eac52a1132b639c30bb
GET /3/vsebesplatno.clan.su3.gif HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/gif
Content-Length: 8852
Last-Modified: Sun, 13 Sep 2009 11:23:23 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4aacd62b-2294"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/vsebesplatno.clan.su2.gif
195.216.243.23200 OK 8.3 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/vsebesplatno.clan.su2.gif
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type GIF image data, version 89a, 142 x 142\012- data
Hash 657751a47d672e101253f2c615aea801
a40998d337416999206066ca164789605e09961b
abd8f0ca28ce57e34c1d09f47f6a9ba08ec91267c76a12fd0968b370f1294a65
GET /3/vsebesplatno.clan.su2.gif HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/gif
Content-Length: 8308
Last-Modified: Sun, 13 Sep 2009 11:23:14 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4aacd622-2074"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/vsebesplatno.clan.su4.gif
195.216.243.23200 OK 7.3 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/vsebesplatno.clan.su4.gif
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type GIF image data, version 89a, 142 x 142\012- data
Hash 47b3a5fbc565b2513b974f3fd437b8e6
0e34377ee962f6e242cb8b73cf85a7a44f5b484b
d083d50671edb2e7553a3fa6a6e515c419460a89d428ccdf8a5a0916c4c404d1
GET /3/vsebesplatno.clan.su4.gif HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/gif
Content-Length: 7332
Last-Modified: Sun, 13 Sep 2009 11:43:50 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4aacdaf6-1ca4"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/vsebesplatno.clan.su5.gif
195.216.243.23200 OK 8.1 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/vsebesplatno.clan.su5.gif
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type GIF image data, version 89a, 142 x 142\012- data
Hash 144249f9521b18067e34b0b34ccffc22
420cccc0ea5611f1e0ba020df756ed4de5fc3d2b
56a3029e0b155b7acfceded8761e2515fe69242765dad0f95221be1cec56d503
GET /3/vsebesplatno.clan.su5.gif HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/gif
Content-Length: 8091
Last-Modified: Sun, 13 Sep 2009 11:44:03 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4aacdb03-1f9b"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/buro.nahodok.3.0-04-34.jpg
195.216.243.23200 OK 264 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/buro.nahodok.3.0-04-34.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:29 20:10:02 DIY-Thermocam raw data\012- (Lepton 2.x), scale 30062-25715, spot sensor temperature 4323621993986912157696.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 72040682646173419717479635091456.000000], baseline, precision 8, 640x496, components 3\012- data
Size 264 kB (264465 bytes)
Hash 92d9e93a1d9ab8b49fedba3bd25fc15c
a119601eb913cccd7c26cbabfcbf6c7bca5917ed
73ce779b431fe740067f523a4f7138b29d7f37e9dd14ec47fc35709b7935daa6
GET /3/buro.nahodok.3.0-04-34.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/jpeg
Content-Length: 264465
Last-Modified: Sun, 09 Jan 2011 17:35:03 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f1c7-40911"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/winni.pooh.i.den.zabot.0-03-42.jpg
195.216.243.23200 OK 197 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/winni.pooh.i.den.zabot.0-03-42.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:31 14:50:29], baseline, precision 8, 640x480, components 3\012- data
Size 197 kB (196589 bytes)
Hash b4404c4aa5436f80cc53b05ac916f788
e9b5501bfc202606c73bbfe37466221a7cc3c00c
2138fbda4a61dd8e706c692bfc0a6e79dc5dc6fc666b497bf2ea6dcda06764c8
GET /3/winni.pooh.i.den.zabot.0-03-42.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/jpeg
Content-Length: 196589
Last-Modified: Sun, 09 Jan 2011 17:40:13 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f2fd-2ffed"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/click.gif
195.216.243.23200 OK 24 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/click.gif
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type GIF image data, version 89a, 125 x 70\012- data
Hash 913ae6e1470045086c454b4ee5d795b2
5c48969e2b207f83af02ab555f009d0faf6c882f
cf557330925ad655197e4ca67e3c28832e309a394b0ec9423f8228b4bcdca41a
GET /3/click.gif HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/gif
Content-Length: 24442
Last-Modified: Tue, 01 Sep 2009 18:06:13 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4a9d6295-5f7a"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/2/22.jpg
195.216.243.23200 OK 19 kB URL GET HTTP/1.1 vsebesplatno.clan.su/2/22.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPCM), density 28x28, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=3, software=Adobe Photoshop CS4 Windows, datetime=2011:02:11 22:40:37], baseline, precision 8, 180x30, components 3\012- data
Hash bdf98f3bec445f1f80de8a4dd3e7fd9e
f7edc199f671cc3a78a690a5348482110ece2c15
ffe7b267841b828e358685e0760f92e38ab2d25514c62e4c82fe6efbe7d2033b
GET /2/22.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/jpeg
Content-Length: 19429
Last-Modified: Fri, 11 Feb 2011 20:43:28 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d559f70-4be5"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/2/Untitled-5.jpg
195.216.243.23200 OK 22 kB URL GET HTTP/1.1 vsebesplatno.clan.su/2/Untitled-5.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPCM), density 28x28, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=3, software=Adobe Photoshop CS4 Windows, datetime=2011:02:11 22:40:03], baseline, precision 8, 180x30, components 3\012- data
Hash 41722a758deb6665b3a1bf0dbdb6e3d9
3bb4b2fa7446b27767022faefa088e1da3295e9d
f9d90281c32220a16e5e03d0a65476526fc8464dd8a9239d3bc2ba86bd988eb1
GET /2/Untitled-5.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/jpeg
Content-Length: 21471
Last-Modified: Fri, 11 Feb 2011 20:43:28 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d559f70-53df"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 73d84022844c72951a56044d4bcf3039
1bb5397b6fdab7f58f63e715bdf3111708d96a2f
a86c145779bbdc93a14c8e42495d6cd431d6d820e268c66e9960244fa7ea3ecf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 17:40:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vsebesplatno.clan.su/3/kto.skazal.myau.0-04-28.jpg
195.216.243.23200 OK 209 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/kto.skazal.myau.0-04-28.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:01 16:23:20], baseline, precision 8, 640x464, components 3\012- data
Size 209 kB (209006 bytes)
Hash 06f4f26b98dcfa8b948ec0d3769f3436
61b9b9e8b7d1e63a934e3ec0f0cc4ee039a8fd3f
1b8dbd423ae352b089a27524267c4e112dba919b3741f1c9e9cb834c018d82f7
GET /3/kto.skazal.myau.0-04-28.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/jpeg
Content-Length: 209006
Last-Modified: Sun, 09 Jan 2011 18:09:51 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f9ef-3306e"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/kroshka.enot.0-06-07.jpg
195.216.243.23200 OK 184 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/kroshka.enot.0-06-07.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:01 15:26:16], baseline, precision 8, 640x496, components 3\012- data
Size 184 kB (183584 bytes)
Hash 89472af3dd0de9b4865864f0a298233d
f8f662cc6119ad87fabf1a13c63d10a855ad6bf5
05457640d7d76b0b92c3c95c82b271fbb12a6e8068ef02285b4b349aa7ae37dc
GET /3/kroshka.enot.0-06-07.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/jpeg
Content-Length: 183584
Last-Modified: Sun, 09 Jan 2011 18:07:58 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f97e-2cd20"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/letuchiy.korabl.0-05-02.jpg
195.216.243.23200 OK 221 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/letuchiy.korabl.0-05-02.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:01 16:52:27], baseline, precision 8, 640x480, components 3\012- data
Size 221 kB (221431 bytes)
Hash 5d22cb59d31557b7fa98d8e63077ee4b
1ce8199480cd14a49107853023143524646a346b
6260ccf158a99767d5aeb2006d378b3bbfbd9ec71104de160feb1895102847fe
GET /3/letuchiy.korabl.0-05-02.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/jpeg
Content-Length: 221431
Last-Modified: Sun, 09 Jan 2011 18:13:08 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29fab4-360f7"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/lisa.i.medved.0-05-37.jpg
195.216.243.23200 OK 174 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/lisa.i.medved.0-05-37.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:01 19:34:57], baseline, precision 8, 512x384, components 3\012- data
Size 174 kB (174208 bytes)
Hash d6f1cfd4eda2c8e2a40c9271b055805c
a3eaafb075eb0c76a82d16a1e9e90c959074e4d4
001be0fb6c631c3672e98338aedc96f93f4d272523958409100cfd896f80d864
GET /3/lisa.i.medved.0-05-37.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 174208
Last-Modified: Sun, 09 Jan 2011 18:18:00 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29fbd8-2a880"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/mama.dla.mamontenka.0-02-01.jpg
195.216.243.23200 OK 283 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/mama.dla.mamontenka.0-02-01.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:02 21:44:55], baseline, precision 8, 720x544, components 3\012- data
Size 283 kB (283192 bytes)
Hash 7a75cf8d762ecd25857c68348bddd753
94f3c53f5e7cc98cd990fda24d975f70951ad5f6
7afac82d1b9f80469849668dd2396531e01d99293b006d54052671ae9b4d3c79
GET /3/mama.dla.mamontenka.0-02-01.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 283192
Last-Modified: Sun, 09 Jan 2011 18:21:54 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29fcc2-45238"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
am15.net/x/uid.php?rand=286012663&uid=1di78uR
95.216.224.48200 OK 847 B URL GET HTTP/1.1 am15.net/x/uid.php?rand=286012663&uid=1di78uR
IP 95.216.224.48:443
ASN #24940 Hetzner Online GmbH
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 4947cb49bee456903844977f991398bf
dcdc08423804145ead5f13b81ff71c31ba1c5043
c669c0502354e7dd228b9af9cabaa89e37f38911cdcbec2bad3d1611b746bc10
GET /x/uid.php?rand=286012663&uid=1di78uR HTTP/1.1
Host: am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:13 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.1.27-1+ubuntu16.04.1+deb.sury.org+1
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Tue, 01 Jan 2000 00:00:00 GMT
Last-Modified: Mon, 22 May 2023 17:40:13 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
am15.net/x/fpx.php?s=3204&w=10400&t=cu&rand=1265782259
95.216.224.48200 OK 1.3 kB URL GET HTTP/1.1 am15.net/x/fpx.php?s=3204&w=10400&t=cu&rand=1265782259
IP 95.216.224.48:443
ASN #24940 Hetzner Online GmbH
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (309)
Hash 71590b3c956798b544033ec7e9fa434b
ab6532592447b0881989441a2afd24c43e5e1ce8
c302eb686baa9054b39af7da0e27a22b29ffb28aec08864577eb121c890f5ccb
GET /x/fpx.php?s=3204&w=10400&t=cu&rand=1265782259 HTTP/1.1
Host: am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:13 GMT
Content-Type: text/html; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.1.27-1+ubuntu16.04.1+deb.sury.org+1
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Tue, 01 Jan 2000 00:00:00 GMT
Last-Modified: Mon, 22 May 2023 17:40:13 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Access-Control-Allow-Origin: *
Set-Cookie: feb19=1; expires=Mon, 22-May-2023 18:10:13 GMT; Max-Age=1800; path=/; domain=.am15.net
Content-Encoding: gzip
vsebesplatno.clan.su/3/volk.i.semero.kozlyat.0-02-00.jpg
195.216.243.23200 OK 234 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/volk.i.semero.kozlyat.0-02-00.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:31 17:28:15], baseline, precision 8, 640x480, components 3\012- data
Size 234 kB (233916 bytes)
Hash 1ef617a655026ababf0d38070428cf97
6f003819ca4f85380f0714072d7a4b6c1070a521
d7af4909b0cef92d6bbe24606edd59371681447eac7ba9c9fc8caa2a4b092000
GET /3/volk.i.semero.kozlyat.0-02-00.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/jpeg
Content-Length: 233916
Last-Modified: Sun, 09 Jan 2011 17:44:09 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f3e9-391bc"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/prihodi.na.katok.0-01-00.jpg
195.216.243.23200 OK 287 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/prihodi.na.katok.0-01-00.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:03 08:09:47], baseline, precision 8, 640x480, components 3\012- data
Size 287 kB (287409 bytes)
Hash 894f463eb444c2c3827c35733d09287c
5a2caa014bdf5b9aa30aed7a882767aa29f550c2
dc8abdce117920629980b06dc5378ae3d69c06a68fef78df2ab8652ab944e8b9
GET /3/prihodi.na.katok.0-01-00.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 287409
Last-Modified: Sun, 09 Jan 2011 18:23:42 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29fd2e-462b1"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/lisa.medved.i.motocikl.s.koljaskoj.0-02-18.jpg
195.216.243.23200 OK 206 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/lisa.medved.i.motocikl.s.koljaskoj.0-02-18.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:02 21:06:08], baseline, precision 8, 512x384, components 3\012- data
Size 206 kB (205569 bytes)
Hash 9ccdf0f68980a671ea1ac9cca94bf84c
cccaba6c7190c5542f39afae79c890d22207cada
4caad6a8a4c5ec65558a5a012c50657125761118a07cd25efcf2217cae9aa49a
GET /3/lisa.medved.i.motocikl.s.koljaskoj.0-02-18.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 205569
Last-Modified: Sun, 09 Jan 2011 18:21:22 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29fca2-32301"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
95.216.224.48200 OK 1.0 kB URL GET HTTP/1.1 am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
IP 95.216.224.48:443
ASN #24940 Hetzner Online GmbH
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d780485b1193b3e403d4431b78e55427
0cdf83a018cf678d0f2b0663e7688e7a0d873451
2d07f86e7e0b266b3f620acb78237748af7d9cdcc40444892e899696c79df40f
GET /x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996 HTTP/1.1
Host: am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:13 GMT
Content-Type: text/html; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.1.27-1+ubuntu16.04.1+deb.sury.org+1
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Tue, 01 Jan 2000 00:00:00 GMT
Last-Modified: Mon, 22 May 2023 17:40:13 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Access-Control-Allow-Origin: *
Set-Cookie: 6be87=1; expires=Mon, 22-May-2023 18:10:13 GMT; Max-Age=1800; path=/; domain=.am15.net
Content-Encoding: gzip
vsebesplatno.clan.su/3/leopold.progulka.kota.leopolda.0-02-49.jpg
195.216.243.23200 OK 196 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/leopold.progulka.kota.leopolda.0-02-49.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:02 20:25:42], baseline, precision 8, 640x480, components 3\012- data
Size 196 kB (195758 bytes)
Hash 492777b6ef90711a03b60d207ba25ed9
ee484c80e568be11c1d3177a155cba328c8594dc
1236f19c5fd2733c3eea19e05e2ede4261a3ed919d82757a18cc99de663811ef
GET /3/leopold.progulka.kota.leopolda.0-02-49.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/jpeg
Content-Length: 195758
Last-Modified: Sun, 09 Jan 2011 18:10:40 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29fa20-2fcae"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/masha.i.volshebnoe.varenje.0-03-19.jpg
195.216.243.23200 OK 231 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/masha.i.volshebnoe.varenje.0-03-19.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:02 22:31:31], baseline, precision 8, 640x480, components 3\012- data
Size 231 kB (230878 bytes)
Hash 47b519f9602a8bc763bcbffe886d5dcf
3dbdfde58adc46bb13664f357865abb3cf517c34
e8423976a927876fe6ed90c6f7a3e0f47bc6fa081a265bc9b851ce9f9112e42d
GET /3/masha.i.volshebnoe.varenje.0-03-19.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 230878
Last-Modified: Sun, 09 Jan 2011 18:25:10 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29fd86-385de"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/mojdodyr.0-05-07.jpg
195.216.243.23200 OK 178 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/mojdodyr.0-05-07.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:02 23:53:00], baseline, precision 8, 640x464, components 3\012- data
Size 178 kB (177980 bytes)
Hash 18558c3361f5483f2b4db7d75f258eae
d02eb5004fc033a5bae32cb0d3ebf41c830db7a4
dd0296d5bac382bf5af7d5272c162fa38c50c2b44527103fb793d974e95392b3
GET /3/mojdodyr.0-05-07.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 177980
Last-Modified: Sun, 09 Jan 2011 18:30:31 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29fec7-2b73c"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/lisa.i.volk.0-02-40.jpg
195.216.243.23200 OK 228 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/lisa.i.volk.0-02-40.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:01 17:08:16], baseline, precision 8, 692x564, components 3\012- data
Size 228 kB (228140 bytes)
Hash bc9f54fdacb23157da9b5b5b7635df89
4346c4772bf8ba153b3b6f50c7ad3c8c2cac5e03
e0ae2453b5468f8aea07943a6a4e6e6b3b812a3fa96c339e1b85a09418ab191b
GET /3/lisa.i.volk.0-02-40.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:17 GMT
Content-Type: image/jpeg
Content-Length: 228140
Last-Modified: Sun, 09 Jan 2011 18:17:24 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29fbb4-37b2c"
Expires: Sun, 11 Jun 2023 17:40:17 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/bolshoj.secret.dlia.kompanii.0-06-51.jpg
195.216.243.23200 OK 187 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/bolshoj.secret.dlia.kompanii.0-06-51.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:29 17:41:37], baseline, precision 8, 720x576, components 3\012- data
Size 187 kB (187156 bytes)
Hash 37c226531a0eb9afdf3b2f35d81054c0
7827dff1fcf1aa18bf67ff431e8107545f24e2ec
f59d888c447e16d45e52b745a8de17314b8ffd03ed721ece4e215fe2e3089958
GET /3/bolshoj.secret.dlia.kompanii.0-06-51.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 187156
Last-Modified: Sun, 09 Jan 2011 17:11:52 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29ec58-2db14"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/bolshoi.uh.0-02-31.jpg
195.216.243.23200 OK 146 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/bolshoi.uh.0-02-31.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:29 17:57:01], baseline, precision 8, 576x432, components 3\012- data
Size 146 kB (146521 bytes)
Hash 482ac42936ac05debfa8ea10cb45991c
12148edb0ec9c7c483af566e24e71fd9e3ed8636
12d2af340c91f0c7a01e1a9dc2b5cf64820cb22357a07368af115db8b31a5de8
GET /3/bolshoi.uh.0-02-31.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 146521
Last-Modified: Sun, 09 Jan 2011 17:30:22 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f0ae-23c59"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
w10300.am15.net/sb1.php?k=SrVD1Bb.yBIXN1_11sSx22Jh22FhyKbh2FlSvcN5fiCYfXLYlxKPlplvv7qGqI1Qb8MXIoXcFjoe&dt=17&fl=0&jq=1&un=0&ref=&tt=%D0%A1%D0%BE%D0%B2%D0%B5%D1%82%D1%81%D0%BA%D0%B8%D0%B5%20%D0%BC%D1%83%D0%BB%D1%8C%D1%82%D1%84%D0%B8%D0%BB%D1%8C%D0%BC%D1%8B%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE
95.216.224.23200 OK 1.1 kB URL GET HTTP/1.1 w10300.am15.net/sb1.php?k=SrVD1Bb.yBIXN1_11sSx22Jh22FhyKbh2FlSvcN5fiCYfXLYlxKPlplvv7qGqI1Qb8MXIoXcFjoe&dt=17&fl=0&jq=1&un=0&ref=&tt=%D0%A1%D0%BE%D0%B2%D0%B5%D1%82%D1%81%D0%BA%D0%B8%D0%B5%20%D0%BC%D1%83%D0%BB%D1%8C%D1%82%D1%84%D0%B8%D0%BB%D1%8C%D0%BC%D1%8B%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE
IP 95.216.224.23:443
ASN #24940 Hetzner Online GmbH
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
File type ASCII text, with very long lines (2735), with no line terminators
Hash 46d8d22859b45e697c5ca3d3e6b1ed4d
f49009082c88855da9cd91784c7e8a58cb5bbba0
8c620eb221e266a9e92f6ac5bbb4a8f9b67c5d06b650c97b1fd84cf0ca9f00f5
GET /sb1.php?k=SrVD1Bb.yBIXN1_11sSx22Jh22FhyKbh2FlSvcN5fiCYfXLYlxKPlplvv7qGqI1Qb8MXIoXcFjoe&dt=17&fl=0&jq=1&un=0&ref=&tt=%D0%A1%D0%BE%D0%B2%D0%B5%D1%82%D1%81%D0%BA%D0%B8%D0%B5%20%D0%BC%D1%83%D0%BB%D1%8C%D1%82%D1%84%D0%B8%D0%BB%D1%8C%D0%BC%D1%8B%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE HTTP/1.1
Host: w10300.am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:13 GMT
Content-Type: text/javascript; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.1.27-1+ubuntu16.04.1+deb.sury.org+1
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Tue, 01 Jan 2000 00:00:00 GMT
Last-Modified: Mon, 22 May 2023 17:40:13 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
vsebesplatno.clan.su/3/prikluchenija.buratino.0-11-31.jpg
195.216.243.23200 OK 168 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/prikluchenija.buratino.0-11-31.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:06 02:12:11], baseline, precision 8, 608x448, components 3\012- data
Size 168 kB (167483 bytes)
Hash ba75746275b6ce96a2629dea659a88b5
112b7d43cb590c23473acdf15d8e71c10e69e75f
70ed10fa45f335b28b8964f9c95c48c858be8c52d9142a6f9df3e33944cba39f
GET /3/prikluchenija.buratino.0-11-31.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 167483
Last-Modified: Sun, 09 Jan 2011 17:34:13 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f195-28e3b"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
am15.net/ssp/dsp?upst=j9ouyBm.sBbDyI_x293n&site=3204&height=200&width=600&block=ambn72981&ref=https%3A%2F%2Fvsebesplatno.clan.su%2F&title=%D0%A1%D0%BE%D0%B2%D0%B5%D1%82%D1%81%D0%BA%D0%B8%D0%B5%20%D0%BC%D1%83%D0%BB%D1%8C%D1%82%D1%84%D0%B8%D0%BB%D1%8C%D0%BC%D1%8B%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&js=1&time=1684777213
95.216.224.48200 OK 358 B URL GET HTTP/1.1 am15.net/ssp/dsp?upst=j9ouyBm.sBbDyI_x293n&site=3204&height=200&width=600&block=ambn72981&ref=https%3A%2F%2Fvsebesplatno.clan.su%2F&title=%D0%A1%D0%BE%D0%B2%D0%B5%D1%82%D1%81%D0%BA%D0%B8%D0%B5%20%D0%BC%D1%83%D0%BB%D1%8C%D1%82%D1%84%D0%B8%D0%BB%D1%8C%D0%BC%D1%8B%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&js=1&time=1684777213
IP 95.216.224.48:443
ASN #24940 Hetzner Online GmbH
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
Hash a0ce4621c4d330c22f2fc4a3d28b4d31
205f9bbb4cdd7634df72f28ae3510a6928d46d00
18283d7d4c8c5a89fcdcf9dc4a14188f97c85371ecd92ffa73cf7539788d047e
GET /ssp/dsp?upst=j9ouyBm.sBbDyI_x293n&site=3204&height=200&width=600&block=ambn72981&ref=https%3A%2F%2Fvsebesplatno.clan.su%2F&title=%D0%A1%D0%BE%D0%B2%D0%B5%D1%82%D1%81%D0%BA%D0%B8%D0%B5%20%D0%BC%D1%83%D0%BB%D1%8C%D1%82%D1%84%D0%B8%D0%BB%D1%8C%D0%BC%D1%8B%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&js=1&time=1684777213 HTTP/1.1
Host: am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Content-Encoding: gzip
vsebesplatno.clan.su/.s/t/888/3.gif
195.216.243.23200 OK 441 B URL GET HTTP/1.1 vsebesplatno.clan.su/.s/t/888/3.gif
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type GIF image data, version 89a, 17 x 36\012- data
Hash 3159674f9caa79d08933dff296562a65
10f4c31437bd335b6dfa660d3bbd0f088569d7e0
c648a09b84a8b0c16044e1c36c187ac1dff5eeff3b1c725f18c7d742ed007e98
GET /.s/t/888/3.gif HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/.s/src/css/888.css
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/gif
Content-Length: 441
Last-Modified: Tue, 23 Feb 2016 13:20:17 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c91-1b9"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
am15.net/s/adv_banner.gif
95.216.224.48200 OK 49 B URL GET HTTP/1.1 am15.net/s/adv_banner.gif
IP 95.216.224.48:443
ASN #24940 Hetzner Online GmbH
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ed280a0ea3cc38f3cbbc747acfbef47d
6bdcb32ee75e957a5085c010f4dfd0c716bfdadc
8f69e10876805b747a3ad08a818d46ac7e731b1af417ea6e259d9b6b7deb65c5
GET /s/adv_banner.gif HTTP/1.1
Host: am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:13 GMT
Content-Type: image/gif
Content-Length: 49
Connection: keep-alive
Last-Modified: Sat, 18 Apr 2020 20:11:42 GMT
ETag: "5e9b5efe-31"
Expires: Wed, 21 Jun 2023 17:40:13 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
vsebesplatno.clan.su/3/alenkij.tsvetochek.0-10-41.jpg
195.216.243.23200 OK 225 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/alenkij.tsvetochek.0-10-41.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:29 05:56:49], baseline, precision 8, 640x480, components 3\012- data
Size 225 kB (224666 bytes)
Hash eae4c9bb47a3658aa8a9f8b81af4b957
b87c6f6ecac631339112c410d4eee254947e9d64
4cdf4c6e996471d2d18d791798921f30b452363990e85188df7ac1b25023fd29
GET /3/alenkij.tsvetochek.0-10-41.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 224666
Last-Modified: Sun, 09 Jan 2011 14:31:35 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29c6c7-36d9a"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/.s/t/888/2.jpg
195.216.243.23200 OK 78 kB URL GET HTTP/1.1 vsebesplatno.clan.su/.s/t/888/2.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1200x850, components 3\012- data
Hash ad9df2c4a20997113d02b53dbe29731f
e08405841364ceb7e3136d63415f488c5a8a96e8
8cf094371a98b131da35d09834b5f7cd852f07bbf58f1bd0304e4574a7612cb9
GET /.s/t/888/2.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/.s/src/css/888.css
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 77979
Last-Modified: Tue, 23 Feb 2016 13:20:17 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c91-1309b"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/meshok.yablok.0-06-10.jpg
195.216.243.23200 OK 196 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/meshok.yablok.0-06-10.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:02 23:22:02], baseline, precision 8, 640x480, components 3\012- data
Size 196 kB (196235 bytes)
Hash c2e1478d28d5b59e4c5f5f4274fd01f5
a2e1ea0d25a2d3225dacc6d10b4db31f170c6085
c66adf8835aa2d33635f6612f0384ebd8ee154a571f2558e38e7f1d07c1ef7e7
GET /3/meshok.yablok.0-06-10.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 196235
Last-Modified: Sun, 09 Jan 2011 18:27:18 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29fe06-2fe8b"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/1/kanikuly.v.prostokvashino.0-12-46.jpg
195.216.243.23200 OK 296 kB URL GET HTTP/1.1 vsebesplatno.clan.su/1/kanikuly.v.prostokvashino.0-12-46.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:08 12:15:21], baseline, precision 8, 640x480, components 3\012- data
Size 296 kB (296522 bytes)
Hash fdfaa0658e2478cdae22b5f500e5c252
1d95b130672e4b82fa9b36105e61e7ac31dff6bf
4e261893fcc6107b4475cfd5714fd627a87ce962723c7fb0855c24c79f1edb61
GET /1/kanikuly.v.prostokvashino.0-12-46.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 296522
Last-Modified: Thu, 02 Jul 2009 19:57:37 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4a4d1131-4864a"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/bobik.v.gostjah.u.barbosa.0-04-51.jpg
195.216.243.23200 OK 227 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/bobik.v.gostjah.u.barbosa.0-04-51.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:29 17:17:21], baseline, precision 8, 640x480, components 3\012- data
Size 227 kB (226965 bytes)
Hash 1e1b2f39b35b0ba66524c43bb2adaa5d
b558036a78bc0c81a384358ae5ba09792b1f3db6
ff149bf8d8ed6f56107cc18ab2b890f720a21b6c8757ebeac8e01b84c0909ce7
GET /3/bobik.v.gostjah.u.barbosa.0-04-51.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 226965
Last-Modified: Sun, 09 Jan 2011 17:11:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29ec34-37695"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/1/winni.pooh.i.den.zabot.0-02-00.jpg
195.216.243.23200 OK 298 kB URL GET HTTP/1.1 vsebesplatno.clan.su/1/winni.pooh.i.den.zabot.0-02-00.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:31 14:58:10], baseline, precision 8, 640x480, components 3\012- data
Size 298 kB (297522 bytes)
Hash 889ce207c62cea2637e24a4454b9a0da
1601a4f634c35e6c21758ff075d5564b1f3cf48b
45fa7b41a01e61f7ba10ae37f37415a0976b4e360e588405aba440723e5df74f
GET /1/winni.pooh.i.den.zabot.0-02-00.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 297522
Last-Modified: Thu, 02 Jul 2009 19:38:53 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4a4d0ccd-48a32"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/1/gil.byl.pes.0-05-33.jpg
195.216.243.23200 OK 170 kB URL GET HTTP/1.1 vsebesplatno.clan.su/1/gil.byl.pes.0-05-33.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:01 00:01:51], baseline, precision 8, 608x448, components 3\012- data
Size 170 kB (170492 bytes)
Hash ab074b7ce1d452700035bd959c4ce80c
710a41281eb47960261efdb9845495ed9c7a3299
213f5b99797409cce82729408728d8f9b5fda1e9703fea02c0972aeba99b2772
GET /1/gil.byl.pes.0-05-33.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 170492
Last-Modified: Thu, 02 Jul 2009 19:28:27 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4a4d0a5b-299fc"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/nu.pogodi.12.0-03-18.jpg
195.216.243.23200 OK 226 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/nu.pogodi.12.0-03-18.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:04 16:12:29], baseline, precision 8, 640x480, components 3\012- data
Size 226 kB (226013 bytes)
Hash 7217aec284a6e4fbdc7c54a9ce54764c
2d00303ac3714f01df001381681bb65bf2177cc9
4c829b0544ad399461bea449b7ae760d3d540f049c345492474cb45c284ba9a9
GET /3/nu.pogodi.12.0-03-18.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 226013
Last-Modified: Sun, 09 Jan 2011 18:33:24 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29ff74-372dd"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/bremenskie.muzykanty.0-03-00.jpg
195.216.243.23200 OK 314 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/bremenskie.muzykanty.0-03-00.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:29 18:15:07], baseline, precision 8, 640x480, components 3\012- data
Size 314 kB (314544 bytes)
Hash 9d0300156dd507c0d2ea9fcc0c7bc6fc
987551184502c04e03c4116a3b8f9de0caa491d0
a07cfed635e1c336b30fdae0016bb197ce61fe322c0b98fa4a51ac7d0bfca2ea
GET /3/bremenskie.muzykanty.0-03-00.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 314544
Last-Modified: Sun, 09 Jan 2011 17:32:08 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f118-4ccb0"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
am15.net/ssp/banner?upst=j9ouyBm.sBbDyI_x293n&bid=8fa5fc8d-7eca-4f60-b909-6091aaadec17
95.216.224.48200 OK 697 B URL GET HTTP/1.1 am15.net/ssp/banner?upst=j9ouyBm.sBbDyI_x293n&bid=8fa5fc8d-7eca-4f60-b909-6091aaadec17
IP 95.216.224.48:443
ASN #24940 Hetzner Online GmbH
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (421)
Hash 7cbfe43515d384019ee22f38af0e474b
420372295c6ea1b6216e14d58984d2c916c42f91
0f4abf0a3b7c0cc95125b8e96bbc49f2c71a0dbdab0adbcedca18c18fad9a267
GET /ssp/banner?upst=j9ouyBm.sBbDyI_x293n&bid=8fa5fc8d-7eca-4f60-b909-6091aaadec17 HTTP/1.1
Host: am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:14 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
vsebesplatno.clan.su/3/obezyanki.i.grabiteli.0-01-03.jpg
195.216.243.23200 OK 117 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/obezyanki.i.grabiteli.0-01-03.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:05 19:27:26], baseline, precision 8, 512x384, components 3\012- data
Size 117 kB (117022 bytes)
Hash 80dd72701a072b334871e0db22bbed79
940a08d0a782b1a36742071702885461c0fdc539
e03ff0db3b32127e8b55b5f97bc724fd91d869d1fdeb6196ff11ce5880bbe0fc
GET /3/obezyanki.i.grabiteli.0-01-03.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 117022
Last-Modified: Sun, 09 Jan 2011 18:35:51 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a0007-1c91e"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/1/nu.pogodi.14.0-00-57.jpg
195.216.243.23200 OK 230 kB URL GET HTTP/1.1 vsebesplatno.clan.su/1/nu.pogodi.14.0-00-57.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:05 16:05:46], baseline, precision 8, 640x480, components 3\012- data
Size 230 kB (229487 bytes)
Hash e53cd02cbccdea4ee510f68df699ca2b
81b58cad1ec83278fa365bcffa422b3ac9bc513c
41d2653d93ce755c3d6f29c10ac24fb72b0762528d8531a60c0982bb4e77e654
GET /1/nu.pogodi.14.0-00-57.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 229487
Last-Modified: Thu, 02 Jul 2009 19:41:27 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4a4d0d67-3806f"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/osminozhki.0-04-05.jpg
195.216.243.23200 OK 227 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/osminozhki.0-04-05.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:05 23:00:45], baseline, precision 8, 720x544, components 3\012- data
Size 227 kB (227251 bytes)
Hash 2117d716cdfb8cd3366b2c976ea13167
0118c8b5ff83d3b9e8139f8bb1133362821e1cca
0f4aee361aa2b3ac6edafbb05a78560efa13a5a94727ff85f838ff30aa15b027
GET /3/osminozhki.0-04-05.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 227251
Last-Modified: Sun, 09 Jan 2011 18:36:27 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a002b-377b3"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/nehochuha.0-01-57.jpg
195.216.243.23200 OK 160 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/nehochuha.0-01-57.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:03 00:20:02], baseline, precision 8, 576x432, components 3\012- data
Size 160 kB (159789 bytes)
Hash 4f3ab13bcb3eeaff1f15c977ce95493b
f9cfeebde69e4383a8eca2382630889f29bc5a63
6a59897a67ec18223dfa2730345417d1c42084099612c266ba0dad891a391c3c
GET /3/nehochuha.0-01-57.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 159789
Last-Modified: Sun, 09 Jan 2011 18:31:11 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29feef-2702d"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
am15.net/bn.php?s=3204&f=1&d=777&p=float
95.216.224.48200 OK 2.0 kB URL GET HTTP/1.1 am15.net/bn.php?s=3204&f=1&d=777&p=float
IP 95.216.224.48:443
ASN #24940 Hetzner Online GmbH
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
File type ASCII text, with very long lines (1379)
Hash fcff7d62b2b0e4f8cb61dc50132a8003
3260d007290610bf19adc9a9f27870df0415607d
d157e3f28b3c2edc722322b01c3cd29b9f7f050de245a965b7fd8a24d6d40dd7
GET /bn.php?s=3204&f=1&d=777&p=float HTTP/1.1
Host: am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:14 GMT
Content-Type: text/javascript; charset=windows-1251
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.1.27-1+ubuntu16.04.1+deb.sury.org+1
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Tue, 01 Jan 2000 00:00:00 GMT
Last-Modified: Mon, 22 May 2023 17:40:14 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: wbn=10200; expires=Tue, 23-May-2023 03:40:14 GMT; Max-Age=36000; path=/; domain=.am15.net
unic_vc=yhYxysfxyQJ.B7IJFFnn; expires=Mon, 22-May-2023 20:59:59 GMT; Max-Age=11985; path=/; domain=.am15.net
Content-Encoding: gzip
vsebesplatno.clan.su/3/parovozik.iz.romashkova.0-05-58.jpg
195.216.243.23200 OK 210 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/parovozik.iz.romashkova.0-05-58.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:06 01:07:30], baseline, precision 8, 512x384, components 3\012- data
Size 210 kB (209672 bytes)
Hash 0a555844ea86284170ecf2263c8e80cd
e31eda9399c509add94a42902ee1b0bd459fcd70
1dc9df8fcdf4f13643b15da535bdd1fc5d1814594b4e07e6381f4b1820d974a0
GET /3/parovozik.iz.romashkova.0-05-58.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 209672
Last-Modified: Sun, 09 Jan 2011 18:41:47 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a016b-33308"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/petya.i.krasnaya.shapochka.0-06-50.jpg
195.216.243.23200 OK 216 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/petya.i.krasnaya.shapochka.0-06-50.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:23 13:20:41], baseline, precision 8, 640x480, components 3\012- data
Size 216 kB (216000 bytes)
Hash 0adf5246655dc9ae1f3fbb0b56480503
2526877adddaa150970892a525a3208bbccec74b
5d192b54f15598dbbc7aaa9c05bd271698535577ca4f42e92e174859aa115993
GET /3/petya.i.krasnaya.shapochka.0-06-50.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 216000
Last-Modified: Sun, 09 Jan 2011 18:43:30 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a01d2-34bc0"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/padal.proshlogodnij.sneg.0-05-34.jpg
195.216.243.23200 OK 153 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/padal.proshlogodnij.sneg.0-05-34.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:06 00:38:05], baseline, precision 8, 640x480, components 3\012- data
Size 153 kB (153294 bytes)
Hash 6e0f281a5bb32aced1410605ae819efa
30dcc4d895ca00e3d68a9a746cc45fe8bc3bf522
6f04c1e0b2c356126bf2b64a78a6d2a697f70ca657959f132ed9f30dfa6a28ed
GET /3/padal.proshlogodnij.sneg.0-05-34.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 153294
Last-Modified: Sun, 09 Jan 2011 18:41:08 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a0144-256ce"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
b.am15.net/c8/c85180c1.png
95.216.225.17200 OK 2.0 kB URL GET HTTP/1.1 b.am15.net/c8/c85180c1.png
IP 95.216.225.17:443
ASN #24940 Hetzner Online GmbH
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
File type PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash e4af1afe5a7ca40136e780b6befda3f0
5f44ebecc43a791cc68af0844872fb0fa8e3b95d
9b04dbbd5e9eead87846631b2fbdf652bed08e4253bd33932487da75334eebdd
GET /c8/c85180c1.png HTTP/1.1
Host: b.am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:14 GMT
Content-Type: image/png
Content-Length: 2003
Last-Modified: Fri, 06 Sep 2013 09:18:53 GMT
Connection: keep-alive
ETag: "52299dfd-7d3"
Expires: Wed, 21 Jun 2023 17:40:14 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
vsebesplatno.clan.su/3/podarok.dlya.samogo.slabogo.0-06-46.jpg
195.216.243.23200 OK 168 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/podarok.dlya.samogo.slabogo.0-06-46.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:23 21:37:02], baseline, precision 8, 576x432, components 3\012- data
Size 168 kB (168235 bytes)
Hash a05d3b85cb4b5cdabc69a3cb70b7f948
77d1d2edc68869d8c361288bce03a97d4cd39384
28b82ba79f69f81d568855d5d1ac4f5278e310dc75ce7514db4f4832fc9859f5
GET /3/podarok.dlya.samogo.slabogo.0-06-46.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 168235
Last-Modified: Sun, 09 Jan 2011 18:49:23 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a0333-2912b"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/plaistilinovaja.vorona.0-02-33.jpg
195.216.243.23200 OK 276 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/plaistilinovaja.vorona.0-02-33.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:23 20:32:53], baseline, precision 8, 640x480, components 3\012- data
Size 276 kB (275574 bytes)
Hash f2b607cfc025f4e10c64513fba0015d1
9548b46ddffd7aa2ed06c7a7a2b8ee67b8eb9ce1
3e13b8f032020a2c405e225c721e5da991580f92dfccdbec5d5bae31130633e1
GET /3/plaistilinovaja.vorona.0-02-33.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 275574
Last-Modified: Sun, 09 Jan 2011 18:46:26 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a0282-43476"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/oh.i.ah.0-03-31.jpg
195.216.243.23200 OK 200 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/oh.i.ah.0-03-31.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:05 23:30:01], baseline, precision 8, 640x496, components 3\012- data
Size 200 kB (200374 bytes)
Hash db244d23433b54d993fc70aebe4e270f
30684d377bdbe8206c49e132e3bfb34694795cfd
3710c752a80b5c3dd90dc800f0acff5082045ef932a8c357e5ab66bd02347000
GET /3/oh.i.ah.0-03-31.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 200374
Last-Modified: Sun, 09 Jan 2011 18:37:58 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a0086-30eb6"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/pes.v.sapogah.0-03-11.jpg
195.216.243.23200 OK 178 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/pes.v.sapogah.0-03-11.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:06 01:39:36], baseline, precision 8, 512x384, components 3\012- data
Size 178 kB (177597 bytes)
Hash ecd6723fbe6f8da2071f858da506d8fa
b947c426fffa18872cec3c44969267128de36c09
96cc169d55d101cb383e60e835bed73b6305d1d51c047363c45ea903d9c5986d
GET /3/pes.v.sapogah.0-03-11.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 177597
Last-Modified: Sun, 09 Jan 2011 18:45:06 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a0232-2b5bd"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/1/vozvr.bl.popugaya.2.0-05-50.jpg
195.216.243.23200 OK 302 kB URL GET HTTP/1.1 vsebesplatno.clan.su/1/vozvr.bl.popugaya.2.0-05-50.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:31 16:05:09], baseline, precision 8, 640x480, components 3\012- data
Size 302 kB (301871 bytes)
Hash d5c6b4a5ef70dff6ed00cfd476bda2a6
85b1c4e80574762f1b67829448461fc907163db5
518edc6642d68d300f4092942876c364090d996fadb9e7bcfd979dbbe6a09d91
GET /1/vozvr.bl.popugaya.2.0-05-50.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 301871
Last-Modified: Thu, 02 Jul 2009 19:40:16 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4a4d0d20-49b2f"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226 1.4 kB URL ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash fe5729e76f1751179f381d42587ce4a9
a405a231fd35b1dbe6a9110b3a8545afb7401f3b
b643faf546bb7afef878a3f65bf81ed0eb589849af4eeacc7b0d6ae3dc8daee1
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 22 May 2023 17:40:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Fri, 26 May 2023 14:46:51 GMT
ETag: "a405a231fd35b1dbe6a9110b3a8545afb7401f3b"
Last-Modified: Mon, 22 May 2023 14:46:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1495
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7cb6d7d61b41b4f4-OSL
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226 1.4 kB URL ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash fe5729e76f1751179f381d42587ce4a9
a405a231fd35b1dbe6a9110b3a8545afb7401f3b
b643faf546bb7afef878a3f65bf81ed0eb589849af4eeacc7b0d6ae3dc8daee1
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 22 May 2023 17:40:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Fri, 26 May 2023 14:46:51 GMT
ETag: "a405a231fd35b1dbe6a9110b3a8545afb7401f3b"
Last-Modified: Mon, 22 May 2023 14:46:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1495
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7cb6d7d60ecbb4fd-OSL
vsebesplatno.clan.su/3/pro.fomu.i.pro.eremu.0-07-42.jpg
195.216.243.23200 OK 198 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/pro.fomu.i.pro.eremu.0-07-42.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:23 22:10:53], baseline, precision 8, 512x384, components 3\012- data
Size 198 kB (198293 bytes)
Hash 4d94a2a5c61fc5f3115d5d8d9e46c3f0
f16b4c164bfd34395c220e785b647e7f0116e500
756752870c9a158c829e6b1023a56c164526d99df1a4196cf31ae845bafe92a4
GET /3/pro.fomu.i.pro.eremu.0-07-42.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 198293
Last-Modified: Sun, 09 Jan 2011 18:53:46 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a043a-30695"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/po.shuchemu.veleniu.0-05-09.jpg
195.216.243.23200 OK 207 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/po.shuchemu.veleniu.0-05-09.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:23 20:51:34], baseline, precision 8, 576x432, components 3\012- data
Size 207 kB (206943 bytes)
Hash f2c18753fada7222118683aa0324a47b
d84f13c7fca16e534b7aa215376582084c4cf9aa
6d0bde913b201d79439ca1a73e3673269e61b09acd7fff9fb001ab7702edc513
GET /3/po.shuchemu.veleniu.0-05-09.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 206943
Last-Modified: Sun, 09 Jan 2011 18:51:44 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a03c0-3285f"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/kanikuly.v.prostokvashino.0-13-16.jpg
195.216.243.23200 OK 275 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/kanikuly.v.prostokvashino.0-13-16.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:08 12:14:23], baseline, precision 8, 640x480, components 3\012- data
Size 275 kB (275040 bytes)
Hash 166d335e63158929ec5c1337e0e02287
8d5d336ad04ad93844903cba5b0e2c1e737edabf
a9b2c29f25053ad88b41e099c4f6db469d5109ac5b06d0b89455462dac0056ce
GET /3/kanikuly.v.prostokvashino.0-13-16.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:18 GMT
Content-Type: image/jpeg
Content-Length: 275040
Last-Modified: Sun, 09 Jan 2011 18:50:14 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a0366-43260"
Expires: Sun, 11 Jun 2023 17:40:18 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
hdbcode.com/kkqahhd3.js
185.98.54.153200 OK 9.5 kB IP 185.98.54.153:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjecthdbcode.com
Fingerprint51:23:D7:11:42:AD:E4:1F:10:65:0E:D2:3B:38:72:A0:B6:31:8C:0A
ValiditySat, 22 Apr 2023 00:51:24 GMT - Fri, 21 Jul 2023 00:51:23 GMT
File type ASCII text, with very long lines (17724)
Hash 848142896a4f6132ef04cf70abc1e236
66879f97c314ccad90dfc73b2582a333cff0119d
9f864d034ae7f692455ab472588af14c5eecca9f703004baf5c0ef5625dad583
GET /kkqahhd3.js HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 22 May 2023 17:40:13 GMT
content-type: application/javascript
last-modified: Mon, 22 May 2023 14:15:13 GMT
vary: Accept-Encoding
etag: W/"646b78f1-5af4"
content-encoding: gzip
X-Firefox-Spdy: h2
t02.rbnt.org/rsc.php?mode=bu&pkey=35a09e2e4f2fca475f4da7404dd115c9&scr=1&p=advmaker&callback=AdvMakerMyragon&sitename=3204
148.251.159.22302 Found 0 B URL GET HTTP/1.1 t02.rbnt.org/rsc.php?mode=bu&pkey=35a09e2e4f2fca475f4da7404dd115c9&scr=1&p=advmaker&callback=AdvMakerMyragon&sitename=3204
IP 148.251.159.22:443
ASN #24940 Hetzner Online GmbH
Requested by https://am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
Certificate IssuerLet's Encrypt
Subjectrbnt.org
FingerprintDF:58:2C:F3:37:54:34:4A:A9:95:87:F4:D7:69:2E:78:B9:8D:DB:FF
ValiditySun, 23 Apr 2023 02:28:08 GMT - Sat, 22 Jul 2023 02:28:07 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsc.php?mode=bu&pkey=35a09e2e4f2fca475f4da7404dd115c9&scr=1&p=advmaker&callback=AdvMakerMyragon&sitename=3204 HTTP/1.1
Host: t02.rbnt.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Mon, 22 May 2023 17:40:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 22 May 2023 17:40:14 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: bus=LIamif18mULsVOS52VSBr3; expires=Thu, 21-May-2048 17:40:14 GMT; Max-Age=788918400; path=/; domain=.rbnt.org; SameSite=None; Secure;
csc=1; expires=Mon, 22-May-2023 17:41:14 GMT; Max-Age=60; path=/; domain=.rbnt.org; SameSite=None; Secure;
Location: /rsc.php?mode=bu&pkey=35a09e2e4f2fca475f4da7404dd115c9&scr=1&p=advmaker&callback=AdvMakerMyragon&sitename=3204&csc=1
Strict-Transport-Security: max-age=0
s.uuidksinc.net/match/1/?cb_url=https%3A%2F%2Fhdbcode.com%2Fsetuid%3F%5BUID%5D&gdpr=0&gdpr_consent=
31.220.27.135302 Found 0 B URL GET HTTP/2 s.uuidksinc.net/match/1/?cb_url=https%3A%2F%2Fhdbcode.com%2Fsetuid%3F%5BUID%5D&gdpr=0&gdpr_consent=
IP 31.220.27.135:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectuuidksinc.net
Fingerprint09:56:40:57:03:64:6D:33:57:08:B2:D5:51:26:4E:27:92:16:13:A6
ValiditySat, 13 May 2023 23:22:41 GMT - Fri, 11 Aug 2023 23:22:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/1/?cb_url=https%3A%2F%2Fhdbcode.com%2Fsetuid%3F%5BUID%5D&gdpr=0&gdpr_consent= HTTP/1.1
Host: s.uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.23.2
date: Mon, 22 May 2023 17:40:14 GMT
content-length: 0
location: https://hdbcode.com/setuid?jemKBgAMLqGI4UO8573f
set-cookie: jcsuuid=jemKBgAMLqGI4UO8573f; expires=Tue, 21 May 2024 17:40:14 GMT; domain=uuidksinc.net; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
sync.dmp.otm-r.com/match/aotm.js
194.55.244.185204 No Content 0 B URL GET HTTP/2 sync.dmp.otm-r.com/match/aotm.js
IP 194.55.244.185:443
Requested by https://am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
Certificate IssuerGlobalSign nv-sa
Subject*.dmp.otm-r.com
Fingerprint5C:BF:61:B6:87:D5:B8:5F:16:46:AF:56:F8:19:AE:F0:DF:0B:58:A2
ValidityFri, 27 May 2022 14:16:26 GMT - Wed, 28 Jun 2023 14:16:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/aotm.js HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx/1.23.2
date: Mon, 22 May 2023 17:40:14 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
sync.dmp.otm-r.com/match/aotm.js
194.55.244.185204 No Content 0 B URL GET HTTP/2 sync.dmp.otm-r.com/match/aotm.js
IP 194.55.244.185:443
Requested by https://am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
Certificate IssuerGlobalSign nv-sa
Subject*.dmp.otm-r.com
Fingerprint5C:BF:61:B6:87:D5:B8:5F:16:46:AF:56:F8:19:AE:F0:DF:0B:58:A2
ValidityFri, 27 May 2022 14:16:26 GMT - Wed, 28 Jun 2023 14:16:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/aotm.js HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx/1.23.2
date: Mon, 22 May 2023 17:40:14 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
x.instreamatic.com/v2/mark/787.gif
51.250.21.242302 FOUND 0 B URL GET HTTP/1.1 x.instreamatic.com/v2/mark/787.gif
IP 51.250.21.242:443
ASN #200350 Yandex.Cloud LLC
Requested by https://am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
Certificate IssuerDigiCert, Inc.
Subject*.instreamatic.com
Fingerprint4C:26:52:C5:44:D8:29:6C:D1:73:85:5F:38:67:E2:FF:6A:26:F3:09
ValidityThu, 29 Sep 2022 00:00:00 GMT - Mon, 09 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/mark/787.gif HTTP/1.1
Host: x.instreamatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 FOUND
Server: nginx
Date: Mon, 22 May 2023 17:40:14 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: https://ad.mail.ru/cm.gif?p=66&id=eb7b1f695527bfd8
Set-Cookie: uns=OOJYLMXTZZZR; Domain=.instreamatic.com; Expires=Thu, 19 May 2033 20:40:14 GMT; Path=/; SameSite=None; Secure
Access-Control-Allow-Credentials: true
am15.net/ssp/dsp?upst=j9ouyBm.sBbDyI_x293n&site=3204&height=250&width=300&block=ambn777&ref=https%3A%2F%2Fvsebesplatno.clan.su%2F&title=%D0%A1%D0%BE%D0%B2%D0%B5%D1%82%D1%81%D0%BA%D0%B8%D0%B5%20%D0%BC%D1%83%D0%BB%D1%8C%D1%82%D1%84%D0%B8%D0%BB%D1%8C%D0%BC%D1%8B%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&js=1&time=1684777214
95.216.224.48200 OK 355 B URL GET HTTP/1.1 am15.net/ssp/dsp?upst=j9ouyBm.sBbDyI_x293n&site=3204&height=250&width=300&block=ambn777&ref=https%3A%2F%2Fvsebesplatno.clan.su%2F&title=%D0%A1%D0%BE%D0%B2%D0%B5%D1%82%D1%81%D0%BA%D0%B8%D0%B5%20%D0%BC%D1%83%D0%BB%D1%8C%D1%82%D1%84%D0%B8%D0%BB%D1%8C%D0%BC%D1%8B%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&js=1&time=1684777214
IP 95.216.224.48:443
ASN #24940 Hetzner Online GmbH
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
Hash 9523381786a55f16bb9a6823c1a5781d
c8172d94c56674501a299ba2c30de439b6049fb3
2bbe7406fcb46f4034ee8b4047fa5ad44aff1ec006b4d09bd35dd3aa8f720406
GET /ssp/dsp?upst=j9ouyBm.sBbDyI_x293n&site=3204&height=250&width=300&block=ambn777&ref=https%3A%2F%2Fvsebesplatno.clan.su%2F&title=%D0%A1%D0%BE%D0%B2%D0%B5%D1%82%D1%81%D0%BA%D0%B8%D0%B5%20%D0%BC%D1%83%D0%BB%D1%8C%D1%82%D1%84%D0%B8%D0%BB%D1%8C%D0%BC%D1%8B%20%D1%81%D0%BA%D0%B0%D1%87%D0%B0%D1%82%D1%8C%20%D0%B1%D0%B5%D1%81%D0%BF%D0%BB%D0%B0%D1%82%D0%BD%D0%BE&js=1&time=1684777214 HTTP/1.1
Host: am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Content-Encoding: gzip
vsebesplatno.clan.su/3/vot.kakoj.rassejannyj.0-05-07.jpg
195.216.243.23200 OK 251 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/vot.kakoj.rassejannyj.0-05-07.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:31 17:47:21], baseline, precision 8, 720x544, components 3\012- data
Size 251 kB (251335 bytes)
Hash f24f6aee25639fffa9fd5f920a310502
cef19ee8191cf8aa32cd5f4840e46bdb78737536
41c29a06eb3037b6dbd299ecf47d925961153e35b00772ec24d68b3dd3efb500
GET /3/vot.kakoj.rassejannyj.0-05-07.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 251335
Last-Modified: Sun, 09 Jan 2011 17:45:49 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f44d-3d5c7"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/samiy.malenkiy.gnom.2.0-04-22.jpg
195.216.243.23200 OK 195 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/samiy.malenkiy.gnom.2.0-04-22.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:24 01:59:13], baseline, precision 8, 640x480, components 3\012- data
Size 195 kB (195166 bytes)
Hash 80a57498b188fad6cdc7019e52a3fdc4
702bf0968fbc72a3aaf9658f0764d57b9c1352e3
826535f41b4bd5be1f6b7e4cf0185ecae96b063bd7b200f96c3af6473d7e5b68
GET /3/samiy.malenkiy.gnom.2.0-04-22.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 195166
Last-Modified: Sun, 09 Jan 2011 18:55:06 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a048a-2fa5e"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/kolobki.0-05-22.jpg
195.216.243.23200 OK 200 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/kolobki.0-05-22.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:24 03:19:28], baseline, precision 8, 512x384, components 3\012- data
Size 200 kB (200239 bytes)
Hash 149b4d50e4e25ae34648ab6ab18552cd
452728c95dfd311b821655dd14ed43cd6aa0b25d
69b908ccfe76b5738cd414b8f6e1d48f5194bb57c84012e07192b77de7959e44
GET /3/kolobki.0-05-22.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 200239
Last-Modified: Sun, 09 Jan 2011 18:59:22 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a058a-30e2f"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/gadkiy.utenok.0-02-17.jpg
195.216.243.23200 OK 119 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/gadkiy.utenok.0-02-17.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:31 18:13:01], baseline, precision 8, 640x464, components 3\012- data
Size 119 kB (119399 bytes)
Hash c56300b5141b5fddd10b5ae26fa5a57e
923c030c179d97f36bf6496716df7dffeb034e25
dd93d7f7d01b177fcf7de9b5243021140328af726ce29ed173b4938e15542b51
GET /3/gadkiy.utenok.0-02-17.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 119399
Last-Modified: Sun, 09 Jan 2011 17:46:34 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f47a-1d267"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
am15.net/ssp/banner?upst=j9ouyBm.sBbDyI_x293n&bid=d1095bd5-121e-4902-9d23-d89589822053
95.216.224.48200 OK 696 B URL GET HTTP/1.1 am15.net/ssp/banner?upst=j9ouyBm.sBbDyI_x293n&bid=d1095bd5-121e-4902-9d23-d89589822053
IP 95.216.224.48:443
ASN #24940 Hetzner Online GmbH
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (421)
Hash d24fd6782907df84c741f30c2d6e9483
d47a69eb4a60fdfa386b8dd2977490f611886273
fee867107ca628102350924a2ca7deda93edde4b7e13e8040777a190d78b1828
GET /ssp/banner?upst=j9ouyBm.sBbDyI_x293n&bid=d1095bd5-121e-4902-9d23-d89589822053 HTTP/1.1
Host: am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:14 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
b.am15.net/ambn.png
95.216.225.17200 OK 6.4 kB IP 95.216.225.17:443
ASN #24940 Hetzner Online GmbH
Requested by https://am15.net/ssp/banner?upst=j9ouyBm.sBbDyI_x293n&bid=d1095bd5-121e-4902-9d23-d89589822053
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
File type PNG image data, 100 x 18, 8-bit/color RGBA, interlaced\012- data
Hash ce7dd36e5303a34b1e9cb3f5fff40270
b11654f4d983e453c21b79eea49bc0c3a3cdc8f2
f8ef0068a018e69ac5f56505d59a2fa3acf3916b0040fa3a28301b39daf6bc19
GET /ambn.png HTTP/1.1
Host: b.am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:14 GMT
Content-Type: image/png
Content-Length: 6395
Last-Modified: Fri, 06 Sep 2013 09:15:37 GMT
Connection: keep-alive
ETag: "52299d39-18fb"
Expires: Wed, 21 Jun 2023 17:40:14 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
t02.rbnt.org/rsc.php?mode=bu&pkey=35a09e2e4f2fca475f4da7404dd115c9&scr=1&p=advmaker&callback=AdvMakerMyragon&sitename=3204&csc=1
148.251.159.22200 OK 40 B URL GET HTTP/1.1 t02.rbnt.org/rsc.php?mode=bu&pkey=35a09e2e4f2fca475f4da7404dd115c9&scr=1&p=advmaker&callback=AdvMakerMyragon&sitename=3204&csc=1
IP 148.251.159.22:443
ASN #24940 Hetzner Online GmbH
Requested by https://am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
Certificate IssuerLet's Encrypt
Subjectrbnt.org
FingerprintDF:58:2C:F3:37:54:34:4A:A9:95:87:F4:D7:69:2E:78:B9:8D:DB:FF
ValiditySun, 23 Apr 2023 02:28:08 GMT - Sat, 22 Jul 2023 02:28:07 GMT
File type ASCII text, with no line terminators
Hash 4f6b717f848c20a6806c6af11103126c
14736a179072dbc3a1968db941b01ea9412362b5
21b82e2818317d8154b0015d7a606c590429a8645c79d2f90922449c805a2fd9
GET /rsc.php?mode=bu&pkey=35a09e2e4f2fca475f4da7404dd115c9&scr=1&p=advmaker&callback=AdvMakerMyragon&sitename=3204&csc=1 HTTP/1.1
Host: t02.rbnt.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://am15.net/
DNT: 1
Connection: keep-alive
Cookie: bus=LIamif18mULsVOS52VSBr3; csc=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:14 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 22 May 2023 17:40:14 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Strict-Transport-Security: max-age=0
Content-Encoding: gzip
t02.rbnt.org/rsc.php?mode=bu&pkey=35a09e2e4f2fca475f4da7404dd115c9&scr=1&p=advmaker&callback=AdvMakerMyragon&sitename=3204&csc=1
148.251.159.22200 OK 40 B URL GET HTTP/1.1 t02.rbnt.org/rsc.php?mode=bu&pkey=35a09e2e4f2fca475f4da7404dd115c9&scr=1&p=advmaker&callback=AdvMakerMyragon&sitename=3204&csc=1
IP 148.251.159.22:443
ASN #24940 Hetzner Online GmbH
Requested by https://am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
Certificate IssuerLet's Encrypt
Subjectrbnt.org
FingerprintDF:58:2C:F3:37:54:34:4A:A9:95:87:F4:D7:69:2E:78:B9:8D:DB:FF
ValiditySun, 23 Apr 2023 02:28:08 GMT - Sat, 22 Jul 2023 02:28:07 GMT
File type ASCII text, with no line terminators
Hash 4f6b717f848c20a6806c6af11103126c
14736a179072dbc3a1968db941b01ea9412362b5
21b82e2818317d8154b0015d7a606c590429a8645c79d2f90922449c805a2fd9
GET /rsc.php?mode=bu&pkey=35a09e2e4f2fca475f4da7404dd115c9&scr=1&p=advmaker&callback=AdvMakerMyragon&sitename=3204&csc=1 HTTP/1.1
Host: t02.rbnt.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://am15.net/
DNT: 1
Connection: keep-alive
Cookie: bus=LIamif18mULsVOS52VSBr3; csc=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:14 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 22 May 2023 17:40:14 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Strict-Transport-Security: max-age=0
Content-Encoding: gzip
vsebesplatno.clan.su/3/taina.tretiey.planety.0-08-24.jpg
195.216.243.23200 OK 240 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/taina.tretiey.planety.0-08-24.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:06 03:49:45], baseline, precision 8, 640x480, components 3\012- data
Size 240 kB (239583 bytes)
Hash 8168206778aa2c0f393fc876730ee33f
1fa3a617b29f1543cc9007af4c83b787e8123ed5
4f33ee7b0f90f32bda02236630146daa6584a6f99781fbf8b50dc6d8d641ff89
GET /3/taina.tretiey.planety.0-08-24.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 239583
Last-Modified: Sun, 09 Jan 2011 19:24:45 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a0b7d-3a7df"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/kuzia.vozvrashenie.domovenka.0-06-07.jpg
195.216.243.23200 OK 136 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/kuzia.vozvrashenie.domovenka.0-06-07.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:31 22:40:26], baseline, precision 8, 512x384, components 3\012- data
Size 136 kB (135585 bytes)
Hash 4f1f6146c58f031b2abd49b0d00665ed
7d2e5fc16fbe2a91dcd23e2cbece20bbe39d1ccb
67f55ea57775ad8c0337cfabd064ca0ce19b39bd719a46953a4ad14ab8ec7ad0
GET /3/kuzia.vozvrashenie.domovenka.0-06-07.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 135585
Last-Modified: Sun, 09 Jan 2011 17:50:12 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f554-211a1"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
hdbcode.com/setuid?jemKBgAMLqGI4UO8573f
185.98.54.153200 OK 74 B URL GET HTTP/2 hdbcode.com/setuid?jemKBgAMLqGI4UO8573f
IP 185.98.54.153:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjecthdbcode.com
Fingerprint51:23:D7:11:42:AD:E4:1F:10:65:0E:D2:3B:38:72:A0:B6:31:8C:0A
ValiditySat, 22 Apr 2023 00:51:24 GMT - Fri, 21 Jul 2023 00:51:23 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET /setuid?jemKBgAMLqGI4UO8573f HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vsebesplatno.clan.su/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 22 May 2023 17:40:14 GMT
content-type: image/png
content-length: 74
set-cookie: dmpUid=jemKBgAMLqGI4UO8573f; expires=Wed, 22 May 2024 17:40:14 GMT; domain=hdbcode.com; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
vsebesplatno.clan.su/3/ezhik.v.tumane.0-04-28.jpg
195.216.243.23200 OK 204 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/ezhik.v.tumane.0-04-28.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:31 23:35:12], baseline, precision 8, 720x544, components 3\012- data
Size 204 kB (203663 bytes)
Hash e8a98b9f6a4771d5d368a76f1457a967
ce41e302b745a01a660488243fff764123e308a6
509c5b04f4fbf9cd4e6f94ac4ce7171589cc38dcdaea1d1703d3b90ff78c64d1
GET /3/ezhik.v.tumane.0-04-28.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 203663
Last-Modified: Sun, 09 Jan 2011 17:52:36 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f5e4-31b8f"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/gusi-lebedi.0-02-24.jpg
195.216.243.23200 OK 230 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/gusi-lebedi.0-02-24.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:31 18:48:16], baseline, precision 8, 640x480, components 3\012- data
Size 230 kB (229925 bytes)
Hash f2d4e4df4768cb299bf88a68358b300e
2a451d950dfff18d4a55c6012dae5bb94d6c856a
0af04b37ea616bedd5f16d1acbf7403c12d46c1da56dbcc9c9a5e181dbc41888
GET /3/gusi-lebedi.0-02-24.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 229925
Last-Modified: Sun, 09 Jan 2011 17:47:17 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f4a5-38225"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/12.mesyacev.0-07-23.jpg
195.216.243.23200 OK 228 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/12.mesyacev.0-07-23.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:31 19:15:24], baseline, precision 8, 640x464, components 3\012- data
Size 228 kB (227881 bytes)
Hash 84e338c002023ad6e1bd63d57fbcdd5f
7f91089eedb0074b15d031a75a3ac43e57f40595
4fe0a11e456684b05a56134fbbe5cbba4147dfd7e2d5180ce2de0d5de52de561
GET /3/12.mesyacev.0-07-23.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 227881
Last-Modified: Sun, 09 Jan 2011 17:48:13 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f4dd-37a29"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/tryam.0-03-33.jpg
195.216.243.23200 OK 227 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/tryam.0-03-33.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:24 11:52:46], baseline, precision 8, 640x480, components 3\012- data
Size 227 kB (227274 bytes)
Hash 54aeea7f60059c040fcb203b993fd540
3afb9e05a40105293a5d896c482b2525809f8a16
27b23ff62b50a5482520dd473cbb98231763bbdeb0b300a95c79ee58a7030e7c
GET /3/tryam.0-03-33.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 227274
Last-Modified: Sun, 09 Jan 2011 19:05:24 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a06f4-377ca"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/duimovochka.0-08-11.jpg
195.216.243.23200 OK 152 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/duimovochka.0-08-11.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:31 23:01:28], baseline, precision 8, 640x464, components 3\012- data
Size 152 kB (152394 bytes)
Hash bc0ae02b53c9090b072ce6a798427106
939c0abad0d36578d41c5dc6ba4cec946a519b95
3211b520d481e3c670d9dc44b4287f7490fb3cb456b9eff34c1a0fdc587117d0
GET /3/duimovochka.0-08-11.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 152394
Last-Modified: Sun, 09 Jan 2011 17:51:05 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f589-2534a"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/gil.byl.pes.0-03-511.jpg
195.216.243.23200 OK 226 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/gil.byl.pes.0-03-511.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:01 00:09:20], baseline, precision 8, 608x448, components 3\012- data
Size 226 kB (226087 bytes)
Hash cd575ba3e971255c8fd825e290302372
1a7902df44b881e7df99308581c74befd5d367ec
b7b3289291eb205c9c8ea78c656fd332bb43f122754a3e1549913c2ef37bbbd7
GET /3/gil.byl.pes.0-03-511.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 226087
Last-Modified: Sun, 09 Jan 2011 17:53:26 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f616-37327"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/zakoldovannyj.malchik.0-05-23.jpg
195.216.243.23200 OK 123 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/zakoldovannyj.malchik.0-05-23.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:01 00:33:49], baseline, precision 8, 640x480, components 3\012- data
Size 123 kB (122960 bytes)
Hash 51e09704573c13cb19a4e00c850070d7
5602b7402a82f8102c4eb81946e44a22dc21c231
e282c58207a3b38d580c351b8fcab639debad55a2f271d0badfabe65a8c85abe
GET /3/zakoldovannyj.malchik.0-05-23.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 122960
Last-Modified: Sun, 09 Jan 2011 17:54:17 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f649-1e050"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/tri.porosenka.0-03-31.jpg
195.216.243.23200 OK 196 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/tri.porosenka.0-03-31.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:24 11:39:49], baseline, precision 8, 640x480, components 3\012- data
Size 196 kB (195991 bytes)
Hash 22e989fd95bbf8592241d3d8f6ee2432
07c627d8139c29c40df1fd93a3d138f59b0feda0
6bdf36898375df71ceb6c7c538c9a08e04cc243000dc60c1c0de11dacc8f1461
GET /3/tri.porosenka.0-03-31.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 195991
Last-Modified: Sun, 09 Jan 2011 19:04:47 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a06cf-2fd97"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/kapitoshka.0-04-05.jpg
195.216.243.23200 OK 140 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/kapitoshka.0-04-05.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:10 17:34:20], progressive, precision 8, 640x480, components 3\012- data
Size 140 kB (140528 bytes)
Hash 4318f6989dcbc011ac27420e22631415
13cbb235d0797d150298438f90762da349c57dac
6ce004ba5066cc12314ea5ca148919f18dd539b681cf6c1db62ae8690fc1c4e9
GET /3/kapitoshka.0-04-05.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 140528
Last-Modified: Sun, 09 Jan 2011 17:56:48 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f6e0-224f0"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
x.instreamatic.com/v2/mark/787.gif
51.250.21.242302 FOUND 0 B URL GET HTTP/1.1 x.instreamatic.com/v2/mark/787.gif
IP 51.250.21.242:443
ASN #200350 Yandex.Cloud LLC
Requested by https://am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
Certificate IssuerDigiCert, Inc.
Subject*.instreamatic.com
Fingerprint4C:26:52:C5:44:D8:29:6C:D1:73:85:5F:38:67:E2:FF:6A:26:F3:09
ValidityThu, 29 Sep 2022 00:00:00 GMT - Mon, 09 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/mark/787.gif HTTP/1.1
Host: x.instreamatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Cookie: uns=OOJYLMXTZZZR
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 FOUND
Server: nginx
Date: Mon, 22 May 2023 17:40:15 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: https://ad.mail.ru/cm.gif?p=66&id=eb7b1f695527bfd8
Set-Cookie: uns=OOJYLMXTZZZR; Domain=.instreamatic.com; Expires=Thu, 19 May 2033 20:40:15 GMT; Path=/; SameSite=None; Secure
Access-Control-Allow-Credentials: true
vsebesplatno.clan.su/3/ivashka.iz.dvortsa.pionerov.0-06-08.jpg
195.216.243.23200 OK 188 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/ivashka.iz.dvortsa.pionerov.0-06-08.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:01 00:54:12], baseline, precision 8, 576x432, components 3\012- data
Size 188 kB (188017 bytes)
Hash 4c7ff21c6ebc98b7fe51d7684dbe6291
211577822a7e16b7d9f11aed227685415ae4715d
4fdb66e188f42653df4b7f9abf0f9910a330c4280b30ef3f3e1d761823bbe640
GET /3/ivashka.iz.dvortsa.pionerov.0-06-08.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 188017
Last-Modified: Sun, 09 Jan 2011 17:54:53 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f66d-2de71"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/karlson.vernulsya.0-05-22.jpg
195.216.243.23200 OK 277 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/karlson.vernulsya.0-05-22.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:10 18:24:56], progressive, precision 8, 640x480, components 3\012- data
Size 277 kB (276791 bytes)
Hash 078c7727fe56ba22fe8c5b2884b9c7d0
70831af7239e2b546ac3b2542b9a2c50c8536e49
4ca5ee17b7e70fbbef7aeb8412da14e9100ca08f1093832d9f555b31c3eac031
GET /3/karlson.vernulsya.0-05-22.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 276791
Last-Modified: Sun, 09 Jan 2011 17:58:03 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f72b-43937"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/kak.lvenok.i.cherepaha.peli.pesnyu.0-03-20.jpg
195.216.243.23200 OK 184 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/kak.lvenok.i.cherepaha.peli.pesnyu.0-03-20.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:10 16:02:57], progressive, precision 8, 640x480, components 3\012- data
Size 184 kB (184462 bytes)
Hash 3361c5e0aa85f8150a2a2edd0a7911cc
8c2666220819ab4777b7f42e73039ede3da7d6b4
fe41a5a7feb44229ca31975c7bddff3f0373b82ffe72958164d4249ce6520685
GET /3/kak.lvenok.i.cherepaha.peli.pesnyu.0-03-20.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 184462
Last-Modified: Sun, 09 Jan 2011 17:55:57 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f6ad-2d08e"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=vsebesplatno.clan.su&blockID=322613&width=640&height=3252&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=c8c914ee-cce6-4d50-8a91-4590f48e685a
185.98.54.153200 OK 0 B URL GET HTTP/2 hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=vsebesplatno.clan.su&blockID=322613&width=640&height=3252&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=c8c914ee-cce6-4d50-8a91-4590f48e685a
IP 185.98.54.153:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjecthdbcode.com
Fingerprint51:23:D7:11:42:AD:E4:1F:10:65:0E:D2:3B:38:72:A0:B6:31:8C:0A
ValiditySat, 22 Apr 2023 00:51:24 GMT - Fri, 21 Jul 2023 00:51:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=vsebesplatno.clan.su&blockID=322613&width=640&height=3252&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=c8c914ee-cce6-4d50-8a91-4590f48e685a HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Origin: https://vsebesplatno.clan.su
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 22 May 2023 17:40:15 GMT
content-length: 0
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: https://vsebesplatno.clan.su
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
b.am15.net/ambn.png
95.216.225.17200 OK 6.4 kB IP 95.216.225.17:443
ASN #24940 Hetzner Online GmbH
Requested by https://am15.net/ssp/banner?upst=j9ouyBm.sBbDyI_x293n&bid=d1095bd5-121e-4902-9d23-d89589822053
Certificate IssuerLet's Encrypt
Subjectam15.net
FingerprintF0:C0:B4:7D:CE:7C:3A:CB:A6:2E:FA:01:50:E6:C8:11:2E:3F:BB:19
ValidityTue, 21 Mar 2023 22:01:52 GMT - Mon, 19 Jun 2023 22:01:51 GMT
File type PNG image data, 100 x 18, 8-bit/color RGBA, interlaced\012- data
Hash ce7dd36e5303a34b1e9cb3f5fff40270
b11654f4d983e453c21b79eea49bc0c3a3cdc8f2
f8ef0068a018e69ac5f56505d59a2fa3acf3916b0040fa3a28301b39daf6bc19
GET /ambn.png HTTP/1.1
Host: b.am15.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 22 May 2023 17:40:15 GMT
Content-Type: image/png
Content-Length: 6395
Last-Modified: Fri, 06 Sep 2013 09:15:37 GMT
Connection: keep-alive
ETag: "52299d39-18fb"
Expires: Wed, 21 Jun 2023 17:40:15 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=vsebesplatno.clan.su&blockID=322502&width=640&height=3252&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=c8c914ee-cce6-4d50-8a91-4590f48e685a
185.98.54.153200 OK 0 B URL GET HTTP/2 hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=vsebesplatno.clan.su&blockID=322502&width=640&height=3252&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=c8c914ee-cce6-4d50-8a91-4590f48e685a
IP 185.98.54.153:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjecthdbcode.com
Fingerprint51:23:D7:11:42:AD:E4:1F:10:65:0E:D2:3B:38:72:A0:B6:31:8C:0A
ValiditySat, 22 Apr 2023 00:51:24 GMT - Fri, 21 Jul 2023 00:51:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=vsebesplatno.clan.su&blockID=322502&width=640&height=3252&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=c8c914ee-cce6-4d50-8a91-4590f48e685a HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Origin: https://vsebesplatno.clan.su
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 22 May 2023 17:40:15 GMT
content-length: 0
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: https://vsebesplatno.clan.su
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
X-Firefox-Spdy: h2
video.onetouch8.info/d-video.js?b=24
188.114.96.1200 OK 13 kB URL GET HTTP/3 video.onetouch8.info/d-video.js?b=24
IP 188.114.96.1:443
Requested by https://am15.net/ssp/banner?upst=j9ouyBm.sBbDyI_x293n&bid=d1095bd5-121e-4902-9d23-d89589822053
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint86:52:05:07:6F:D8:98:CC:63:16:8B:47:C9:D6:EF:2D:F1:D5:2C:73
ValiditySat, 02 Jul 2022 00:00:00 GMT - Sun, 02 Jul 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (31108)
Hash c7d3be466003ee4d63b53e0cf5ff136f
421304dc3c8696c2370c01d73ecda28a636a87f3
1825cfe3f18db5a062e4f37b134b6d4a3568c67d557921939e4b5e26ca1ae723
GET /d-video.js?b=24 HTTP/1.1
Host: video.onetouch8.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 22 May 2023 17:40:15 GMT
content-type: application/javascript
last-modified: Tue, 21 Dec 2021 10:57:09 GMT
etag: W/"61c1b305-16d04"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5263
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pa5MmS1F%2BUi5DRn0KAkTnXXNH0n5ceQr0TaoAlV1Wx2Kt7XGGZIb3Ar60jH0qgYgjtjUPffkY248fI5hVOCZEtbVF67KoOwlgvfGZ0tDBsBfoj3LXPGO7AZWUXlNnQCRYWp9b%2F6s0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cb6d7db3ab4b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
vsebesplatno.clan.su/3/kolobok.0-05-01.jpg
195.216.243.23200 OK 226 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/kolobok.0-05-01.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:01 02:27:45], baseline, precision 8, 720x544, components 3\012- data
Size 226 kB (226367 bytes)
Hash 49f52771e2b1f8fc5d1da74374a9cb5c
8681921db3f36add283c36444f7152b9e7e5c6c3
d251b41af0384f9a08e8311683652af9e6416d00d64e7c00341b52a1b5d7fc43
GET /3/kolobok.0-05-01.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 226367
Last-Modified: Sun, 09 Jan 2011 17:58:43 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f753-3743f"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 8d1ffc63ece540992319c6f7637db168
b84a5580317750f11fea9fb0ca41710c88e66d38
905441c3ec5505f8196be1b4c4123cd1862bc6f03ce2bc5cf5fe37b21e07c907
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 17:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vsebesplatno.clan.su/3/koshkin.dom.kukolnyj.0-05-26.jpg
195.216.243.23200 OK 214 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/koshkin.dom.kukolnyj.0-05-26.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:01 15:20:24], baseline, precision 8, 640x496, components 3\012- data
Size 214 kB (213464 bytes)
Hash 73153cc77cd6f4dc82f2ce3643e11fbe
0e7523a4542df794aebf8529eee01291eba628eb
b034519e32ce342e423eaf228c21c9d41c797e453397908ce1a30ecf79dd3ce5
GET /3/koshkin.dom.kukolnyj.0-05-26.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:20 GMT
Content-Type: image/jpeg
Content-Length: 213464
Last-Modified: Sun, 09 Jan 2011 18:02:46 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f846-341d8"
Expires: Sun, 11 Jun 2023 17:40:20 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/kolosok.0-02-54.jpg
195.216.243.23200 OK 192 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/kolosok.0-02-54.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:01 03:21:04], baseline, precision 8, 608x464, components 3\012- data
Size 192 kB (192167 bytes)
Hash a2b5ef1049ed39a626a2f3c508771afe
c5e075b4850cc9ec35189b173008172935f97e21
83dfead3a61040eb8f8822e80230c781bc8338edb4da61c942f57a9b09b9b1c1
GET /3/kolosok.0-02-54.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 192167
Last-Modified: Sun, 09 Jan 2011 17:59:54 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f79a-2eea7"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
pixel.vihub.ru/smart/_pub/advmaker/dist/smartPixel.min.js
136.243.149.224200 OK 9.0 kB URL GET HTTP/2 pixel.vihub.ru/smart/_pub/advmaker/dist/smartPixel.min.js
IP 136.243.149.224:443
ASN #24940 Hetzner Online GmbH
Requested by https://am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
Certificate IssuerLet's Encrypt
Subject*.vihub.ru
FingerprintEC:34:0C:0E:D7:94:0E:44:DB:4A:84:8B:5B:07:92:8E:D8:A1:40:99
ValiditySun, 05 Mar 2023 22:04:06 GMT - Sat, 03 Jun 2023 22:04:05 GMT
File type ASCII text, with very long lines (9006), with no line terminators
Hash 84e23e901174a8cf57ffb581e7cbf2ec
693248e84945f8a495e0686cbf8833066793749e
a72f6e287ccbd8e44f5f415148688ca4cc0abddd57e0b14e62560eb7e3152397
GET /smart/_pub/advmaker/dist/smartPixel.min.js HTTP/1.1
Host: pixel.vihub.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.12.2
date: Mon, 22 May 2023 17:40:15 GMT
content-type: application/javascript
content-length: 9006
last-modified: Wed, 26 Jul 2017 10:56:15 GMT
etag: "5978754f-232e"
access-control-allow-credentials: true
access-control-allow-methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
access-control-allow-headers: Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
accept-ranges: bytes
X-Firefox-Spdy: h2
vsebesplatno.clan.su/.s/img/cp/15.gif
195.216.243.23200 OK 203 B URL GET HTTP/1.1 vsebesplatno.clan.su/.s/img/cp/15.gif
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type GIF image data, version 89a, 80 x 15\012- data
Hash 83c3c5dccbcbc2c3ef887cca714c4549
e217fdeea7e2b58ab114cf5f642a99beaaca814b
c214726ca446fbbfe83c8836e92ee3f30b92e8ecdccd3d69d0084a915ef3d876
GET /.s/img/cp/15.gif HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:20 GMT
Content-Type: image/gif
Content-Length: 203
Last-Modified: Wed, 05 Apr 2023 11:24:27 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "642d5a6b-cb"
Expires: Sun, 11 Jun 2023 17:40:20 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/gav4.0-03-59.jpg
195.216.243.23200 OK 195 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/gav4.0-03-59.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:01 14:22:21], baseline, precision 8, 640x480, components 3\012- data
Size 195 kB (195231 bytes)
Hash 8c03f59f09d1edb9bc7680193523f67b
146bc7e74ebe84cdb55553e0258076d8f78246e2
4f178bf18d0d02a0a7c2e279387bb475e9e0a005cc340462eb66f8f05dc64815
GET /3/gav4.0-03-59.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 195231
Last-Modified: Sun, 09 Jan 2011 18:01:39 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f803-2fa9f"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.74200 OK 122 kB URL GET HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.74:443
Requested by https://am15.net/ssp/banner?upst=j9ouyBm.sBbDyI_x293n&bid=d1095bd5-121e-4902-9d23-d89589822053
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (2675)
Size 122 kB (122524 bytes)
Hash 3511f37cbfc7f4320a151f1a783179e7
b8e9053428643344d024144b725d042d4f6144b9
77851be5afb51840c7809b09bcaf75d2220513c2d5a3ac5fb66b173cd3032c34
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 122524
date: Mon, 22 May 2023 17:40:15 GMT
expires: Mon, 22 May 2023 17:40:15 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vsebesplatno.clan.su/.s/t/888/1.jpg
195.216.243.23200 OK 27 kB URL GET HTTP/1.1 vsebesplatno.clan.su/.s/t/888/1.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1200x446, components 3\012- data
Hash 3d0cac151d88af6fc540e8c4a0eff794
44e7328e7ff7fe77420e7623857de85a1c1ce25d
93fc24f22a3a18ee3562ef391daad433295b87783ee26c80a3c77edcbc6adf06
GET /.s/t/888/1.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/.s/src/css/888.css
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:20 GMT
Content-Type: image/jpeg
Content-Length: 27125
Last-Modified: Tue, 23 Feb 2016 13:20:17 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "56cc5c91-69f5"
Expires: Sun, 11 Jun 2023 17:40:20 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/krylija.nogi.i.hvost.0-01-30.jpg
195.216.243.23200 OK 216 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/krylija.nogi.i.hvost.0-01-30.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:01 15:59:34], baseline, precision 8, 576x432, components 3\012- data
Size 216 kB (215644 bytes)
Hash cf10ba72ccb3bd7de1e8508c38cb63ae
3c194399fac4081ab9a62398d35c3abcf96aebe4
70c107399abd2622f2141d75a80fade4072ba6454c172bbebafd743260cd2e02
GET /3/krylija.nogi.i.hvost.0-01-30.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:20 GMT
Content-Type: image/jpeg
Content-Length: 215644
Last-Modified: Sun, 09 Jan 2011 18:03:19 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f867-34a5c"
Expires: Sun, 11 Jun 2023 17:40:20 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.74200 OK 122 kB URL GET HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.74:443
Requested by https://am15.net/ssp/banner?upst=j9ouyBm.sBbDyI_x293n&bid=d1095bd5-121e-4902-9d23-d89589822053
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (2675)
Size 122 kB (122524 bytes)
Hash 3511f37cbfc7f4320a151f1a783179e7
b8e9053428643344d024144b725d042d4f6144b9
77851be5afb51840c7809b09bcaf75d2220513c2d5a3ac5fb66b173cd3032c34
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 122524
date: Mon, 22 May 2023 17:40:15 GMT
expires: Mon, 22 May 2023 17:40:15 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vsebesplatno.clan.su/3/kolia.olia.i.arhimed.0-05-38.jpg
195.216.243.23200 OK 261 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/kolia.olia.i.arhimed.0-05-38.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:06:01 03:39:19], baseline, precision 8, 688x576, components 3\012- data
Size 261 kB (260740 bytes)
Hash 6f61e67774d5b2fbfd0f279e4e80e392
8d835615462baf2b9a756338d6b7b541d7e0c44d
bcf72d3eef4fc56d316ba5405669eca97ddcd927399b48d306b90d16d89dbbb2
GET /3/kolia.olia.i.arhimed.0-05-38.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:19 GMT
Content-Type: image/jpeg
Content-Length: 260740
Last-Modified: Sun, 09 Jan 2011 18:00:41 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d29f7c9-3fa84"
Expires: Sun, 11 Jun 2023 17:40:19 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
vsebesplatno.clan.su/3/umka.0-03-49.jpg
195.216.243.23200 OK 188 kB URL GET HTTP/1.1 vsebesplatno.clan.su/3/umka.0-03-49.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:24 12:11:56], baseline, precision 8, 704x512, components 3\012- data
Size 188 kB (187976 bytes)
Hash 5068c1e6784cef6c84a2fab27e0e1d8f
bc752ab119a04c185bf58caa71a34d842785cbd8
d57b72fa5f0ae7abd7d1f389e38587b920095c74653bb993c6e640fde1029f66
GET /3/umka.0-03-49.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:20 GMT
Content-Type: image/jpeg
Content-Length: 187976
Last-Modified: Sun, 09 Jan 2011 19:19:48 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4d2a0a54-2de48"
Expires: Sun, 11 Jun 2023 17:40:20 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 8d1ffc63ece540992319c6f7637db168
b84a5580317750f11fea9fb0ca41710c88e66d38
905441c3ec5505f8196be1b4c4123cd1862bc6f03ce2bc5cf5fe37b21e07c907
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 17:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vsebesplatno.clan.su/1/38.privet.martyshke.0-04-25.jpg
195.216.243.23200 OK 178 kB URL GET HTTP/1.1 vsebesplatno.clan.su/1/38.privet.martyshke.0-04-25.jpg
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS2 Windows, datetime=2009:05:29 05:26:29], baseline, precision 8, 640x480, components 3\012- data
Size 178 kB (177729 bytes)
Hash 6e0cabd218bf92f1a899d040d109f8d2
9c61578074e045c841094d8e15d2187212572fbd
e8ac3783484c2037f5d10e52c58269fcf832b9111435294e6db3d832d35ed585
GET /1/38.privet.martyshke.0-04-25.jpg HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: 6vsebesplatnopushi=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:20 GMT
Content-Type: image/jpeg
Content-Length: 177729
Last-Modified: Thu, 02 Jul 2009 19:42:44 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4a4d0db4-2b641"
Expires: Sun, 11 Jun 2023 17:40:20 GMT
Cache-Control: max-age=1728000
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=vsebesplatno.clan.su&blockID=322613&width=640&height=3252&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=c8c914ee-cce6-4d50-8a91-4590f48e685a
185.98.54.153200 OK 5.0 kB URL GET HTTP/2 hdbcode.com/get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=vsebesplatno.clan.su&blockID=322613&width=640&height=3252&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=c8c914ee-cce6-4d50-8a91-4590f48e685a
IP 185.98.54.153:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjecthdbcode.com
Fingerprint51:23:D7:11:42:AD:E4:1F:10:65:0E:D2:3B:38:72:A0:B6:31:8C:0A
ValiditySat, 22 Apr 2023 00:51:24 GMT - Fri, 21 Jul 2023 00:51:23 GMT
File type gzip compressed data, from Unix\012- data
Hash 5adfc240a9c3790fb33ab383a37cb6e6
f210fdfa0e2b9800be9618ee1e8dce2218d91faf
f39d86cb6c74b0dcd1ca79dfbf06f7c79fde2dcaa38792e88db29c16991c2c1c
GET /get_data?v=default&page=https%253A%252F%252Fucoz.ru%252F&domain=vsebesplatno.clan.su&blockID=322613&width=640&height=3252&windowWidth=1280&gdpr=0&gdprConsent=&os=&osVersion=&limit=1&format=json&sspUid=c8c914ee-cce6-4d50-8a91-4590f48e685a HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://vsebesplatno.clan.su
DNT: 1
Connection: keep-alive
Cookie: dmpUid=jemKBgAMLqGI4UO8573f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 22 May 2023 17:40:15 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: https://vsebesplatno.clan.su
content-encoding: gzip
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/core/bridge3.574.0_en.html
142.250.74.74 231 kB URL imasdk.googleapis.com/js/core/bridge3.574.0_en.html
IP 142.250.74.74:0
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (48275)
Size 231 kB (231178 bytes)
Hash d1ed43c26fb69d551a250e601bef64e8
c30734d7a476980268a8352bd8c4174129f9282c
f29b2ceedb4715f748435499d0ecb6e642d03e40a30c3cefe1633da65937cfe2
GET /js/core/bridge3.574.0_en.html HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 231178
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 May 2023 09:59:05 GMT
expires: Thu, 16 May 2024 09:59:05 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 May 2023 09:54:13 GMT
content-type: text/html
vary: Accept-Encoding
age: 459670
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
imasdk.googleapis.com/js/core/bridge3.574.0_en.html
142.250.74.74 231 kB URL imasdk.googleapis.com/js/core/bridge3.574.0_en.html
IP 142.250.74.74:0
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (48275)
Size 231 kB (231178 bytes)
Hash d1ed43c26fb69d551a250e601bef64e8
c30734d7a476980268a8352bd8c4174129f9282c
f29b2ceedb4715f748435499d0ecb6e642d03e40a30c3cefe1633da65937cfe2
GET /js/core/bridge3.574.0_en.html HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 231178
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 May 2023 09:59:05 GMT
expires: Thu, 16 May 2024 09:59:05 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 May 2023 09:54:13 GMT
content-type: text/html
vary: Accept-Encoding
age: 459670
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
s.viitjcfx.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
31.220.27.155200 OK 74 B URL GET HTTP/2 s.viitjcfx.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
IP 31.220.27.155:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectviitjcfx.com
Fingerprint22:EE:EE:DE:30:A4:AD:B7:12:84:26:D1:D9:79:E1:CD:E1:51:D5:CB
ValiditySun, 21 May 2023 01:26:38 GMT - Sat, 19 Aug 2023 01:26:37 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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 HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 22 May 2023 17:40:15 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 8ab94d7259411fe8a216956474b19511
48c63eaff708604c5f7af9514c3e77109a1f3f73
1dfd960074784d17f2fab64fab44d8aa41c1a794a7000980b428f6ab6392439a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 17:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.viitjcfx.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====
31.220.27.155200 OK 74 B URL GET HTTP/2 s.viitjcfx.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====
IP 31.220.27.155:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectviitjcfx.com
Fingerprint22:EE:EE:DE:30:A4:AD:B7:12:84:26:D1:D9:79:E1:CD:E1:51:D5:CB
ValiditySun, 21 May 2023 01:26:38 GMT - Sat, 19 Aug 2023 01:26:37 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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==== HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 22 May 2023 17:40:15 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
i.cdnkimg.com/auto/200x150/image/tesr/2096/96/rect_64649bfe3ea2ft1684315134r4693.jpg
45.133.44.36200 OK 18 kB URL GET HTTP/2 i.cdnkimg.com/auto/200x150/image/tesr/2096/96/rect_64649bfe3ea2ft1684315134r4693.jpg
IP 45.133.44.36:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjecti.cdnkimg.com
Fingerprint2D:D1:B7:BB:31:AF:3B:9F:A5:FF:0E:1E:ED:7D:71:44:B3:A1:CB:4F
ValidityWed, 29 Mar 2023 01:01:13 GMT - Tue, 27 Jun 2023 01:01:12 GMT
File type JPEG image data, baseline, precision 8, 200x150, components 3\012- data
Hash 9b0b977e5fb3e8d43904b47376d7e903
92743b19844d0632004c78571505632f9c68a267
c968f3351bef27ec83618ee624aa258ad2485c3b1e2a8084c62121ad75e76f77
GET /auto/200x150/image/tesr/2096/96/rect_64649bfe3ea2ft1684315134r4693.jpg HTTP/1.1
Host: i.cdnkimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 22 May 2023 17:40:15 GMT
content-type: image/jpeg
content-length: 17636
server: nginx/1.23.2
cache-control: max-age=1209600
x-cache-status: HIT
expires: Mon, 05 Jun 2023 17:40:15 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
s.viitjcfx.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====
31.220.27.155200 OK 74 B URL GET HTTP/2 s.viitjcfx.com/w/1/ovihu72zinnh273epf3ueyycpfxhc3t2ibcfuakeifa6jr2qjngginlyprjekwzjfnce462gnmhxs2c44knwevnnulljva5pr62zcr2eqtxinl3qlvfxarqyimvtwvuy6klnlcgb7hfqkgunvh7ngta6y24lrekmdgygjqcjdzamvyusgrkve3o2k6h7vydxxrgrauqjjjxem3cqjo4v553mjpmfp5plpprtptgumwlufs7p4l3xlj3z2oja2vnonvcnms6rstjhfgkuyvli3xfubclhx72cj3cwgmokomlyq4pywpwmiu5ljdj2vr7cjo7etglrue3u4cqrcxfhg5lcgjjnyp5zj7qgyrjzamh7sy7z2tyzjlfxxwgkyn4pljcj6qibu5qdfktqpkyhftxfrhwvpqkknejf4733mr7ccegdgvhmar7jilixmh42ofz4qu3r6jwyvahpjkewfpmb6ve2ms477x2jat62ibilf23w56ihc67qkqp5u2veppee6sgboojjxzxvj3zhphfg5gyj7upyopgwnpglzgskvd5vsg4w3acp7fi222k6eizskcjrgr3qafbvcafekibnbjdukszw2bhw73tjke======
IP 31.220.27.155:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectviitjcfx.com
Fingerprint22:EE:EE:DE:30:A4:AD:B7:12:84:26:D1:D9:79:E1:CD:E1:51:D5:CB
ValiditySun, 21 May 2023 01:26:38 GMT - Sat, 19 Aug 2023 01:26:37 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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==== HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 22 May 2023 17:40:15 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotoslab/v25/BngbUXZYTXPIvIBgJJSb6s3BzlRRfKOFbvjojISmb2Rj.woff2
142.250.74.35200 OK 14 kB URL GET HTTP/2 fonts.gstatic.com/s/robotoslab/v25/BngbUXZYTXPIvIBgJJSb6s3BzlRRfKOFbvjojISmb2Rj.woff2
IP 142.250.74.35:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type Web Open Font Format (Version 2), TrueType, length 14032, version 1.0\012- data
Hash 596946b804346c0f5b9109030e2d52e9
359ed67db1c2c9e3835bfc3c747aef5e4907af05
3aec4deab850f14ab4faf92a9997d07638e0160133a25cf52c196acb4da78f18
GET /s/robotoslab/v25/BngbUXZYTXPIvIBgJJSb6s3BzlRRfKOFbvjojISmb2Rj.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vsebesplatno.clan.su
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14032
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 May 2023 17:32:23 GMT
expires: Wed, 15 May 2024 17:32:23 GMT
cache-control: public, max-age=31536000
age: 518872
last-modified: Tue, 02 May 2023 17:01:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto+Slab&display=swap
142.250.74.106200 OK 1.1 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Roboto+Slab&display=swap
IP 142.250.74.106:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type gzip compressed data, max compression\012- data
Hash 3bd0031baf2eb6b6687bb9e3cd7c8bad
2efe1b324f4f78fa80ed4b39660bf6c9e7362664
268daf3e9b9ac8737fd968e1611167701e24a88e261b7bb728525c482c567e05
GET /css2?family=Roboto+Slab&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 22 May 2023 17:40:15 GMT
date: Mon, 22 May 2023 17:40:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.21.226 1.4 kB URL ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.21.226:0
Hash 3c0a94d5269b4709ff4b0a2934b3d79b
c5d108612e2345ba5795b9246e831fbee21ea663
e357e8afb220ed323bfa02ed5e2580c4c7b079650dec3f171e0f9e29102e6fcf
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 22 May 2023 17:40:16 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Fri, 26 May 2023 13:00:46 GMT
ETag: "c5d108612e2345ba5795b9246e831fbee21ea663"
Last-Modified: Mon, 22 May 2023 13:00:47 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3090
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7cb6d7e069e7b4f4-OSL
s.viitjcfx.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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
31.220.27.155200 OK 74 B URL GET HTTP/2 s.viitjcfx.com/n/1/ovihu72zinnh273epf3ueyycpfxhc3t2ibcfuakeifa6jr2qjngginlyprjekwzjfnce462gnmhxs2c44knwevnnulljva5pr62zcr2eqtxinl3qlvfxarqyimvtwvuy6klnlcgb7hfqkgunvh7ngta6y24lrekmdgygjqcjdzamvyusgrkve3o2k6h7vydxxrgrauqjjjxem3cqjo4v553mjpmfp5plpprtptgumwlufs7p4l3xlj3z2oja2vnonvcnms6rstjhfgkuyvli3xfubclhxrkce4ormrqcafbh6xz4ai7qoorjm4bbqadffqstq3i5e4msinjdnarbqek7andews3eiz6fm52ym57x2vcalf7x6y34mqpduutqnbrcg7sainnamrkfj5rec72igucti5tqlfauwlz2nn46u4tmqzgfx7cwfsuxjuhp3dnhxmdr7cz6zrctunelu5m7jnfqihia7jitmtkymt4qjgckzayhcjzlctaeryh726gldnu6rcjexcsubvrxjizaauelqp34lbavg352brotgt32pj7hqei2eqeik4nar5ursqttkm3e2wfuna5hnblupiri4edp6ffvu5zrta2wyasi4rfrsozbwbx3t4lssbdcpeltow5da4esplkpxbppihtfgqzmkjbf46d6guv5e4cqvzhomrpxiagn2yjtyjyxt2dtq2bps3mqjcby3sdmxjfyxrxf2vi3isk7wxgub7gxme56e5u2i7ue437gncxzvz6cohou5b6g5svkrvmnj7qebwp2zkuzrtmnrwdvdico3z3lmvc7emcbujqif4lqkdqccr7xsdiln53emrqesj3xhucvoe======?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE}
IP 31.220.27.155:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectviitjcfx.com
Fingerprint22:EE:EE:DE:30:A4:AD:B7:12:84:26:D1:D9:79:E1:CD:E1:51:D5:CB
ValiditySun, 21 May 2023 01:26:38 GMT - Sat, 19 Aug 2023 01:26:37 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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====?cur=${AUCTION_CURRENCY}&bid=${AUCTION_PRICE} HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 22 May 2023 17:40:16 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
s.viitjcfx.com/i/1/ovihu72zinnh273epf3ueyycpfxhc3t2ibcfuakeifa6jr2qjngginlyprjekwzjfnce462gnmhxs2c44knwevnnulljva5pr62zcr2eqtxinl3qlvfxarqyimvtwvuy6klnlcgb7hfqkgunvh7ngta6y24lrekmdgygjqcjdzamvyusgrkve3o2k6h7vydxxrgrauqjjjxem3cqjo4v553mjpmfp5plpprtptgumwlufs7p4l3xlj3z2oja2vnonvcnms6rstjhfgkuyvli3xfubclhxrkce4ormrqcafbh6xz4ai7qoorjm4bbqadffqstq3i5e4msinjdnarbqek7andews3eiz6fm52ym57x2vcalf7x6y34mqpduutqnbrcg7sainnamrkfj5rec72igucti5tqlfauwlz2nn46u4tmqzgfx7cwfsuxjuhp3dnhxmdr7cz6zrctunelu5m7jnfqihia7jitmtkymt4qjgckzayhcjzlctaeryh726gldnu6rcjexcsumfrxjizaauelqp34lbavg352brotgt32pj7hqkkmxf3t6pnwebu4sq2hmjvykjtbgr6ls5ys4byhficsokvgzqxht7fe523umuxxwy33obctavo5lnd46qgpotbdcd62pni4aslp7zxzzj7wmc3w5afe5fe3e4eoxdvp4rwvi53ij6br77ihwwpyjz2nm2fsltiwk5wnj23ypzxboxrtfawi4c7zr56omcfhn7gb5owlbenzsoxuvglfy5ozatcceitr4gdufimqsgzsgy6fmzz5jjgwoqzmzzbw36coja======
31.220.27.155200 OK 74 B URL GET HTTP/2 s.viitjcfx.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====
IP 31.220.27.155:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectviitjcfx.com
Fingerprint22:EE:EE:DE:30:A4:AD:B7:12:84:26:D1:D9:79:E1:CD:E1:51:D5:CB
ValiditySun, 21 May 2023 01:26:38 GMT - Sat, 19 Aug 2023 01:26:37 GMT
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e24e19b024c44b778301d880bd8e6f4
d2b1b39cb4434d34c22c2cf52cbbe9967b1b688e
01b58ddb2f86a768f91751b62f25395417f6cf526191a4aefc1ebe4f8beacdcb
GET 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==== HTTP/1.1
Host: s.viitjcfx.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 22 May 2023 17:40:16 GMT
content-type: image/png
content-length: 74
X-Firefox-Spdy: h2
sync.videonow.ru/ssp?dsp=16&uuid=196baece-b15d-45b5-ad19-e97ca7c30b25
212.76.131.50200 OK 35 B URL GET HTTP/2 sync.videonow.ru/ssp?dsp=16&uuid=196baece-b15d-45b5-ad19-e97ca7c30b25
IP 212.76.131.50:443
Requested by https://am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
Certificate IssuerGlobalSign nv-sa
Subject*.videonow.ru
Fingerprint53:9F:0C:BB:04:6F:5A:B8:C1:9D:67:44:FB:E8:CB:CD:CC:3B:DB:B1
ValidityWed, 24 Aug 2022 09:30:52 GMT - Mon, 25 Sep 2023 09:30:51 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash df16d33739defe9bda1f4c45d36fd7a7
ff7489a6dd9ab0d9a4b084315f5b9d77cf9fdf50
90252ef0aa9e3d36c861bbeaa1bd57b7f855333edf2957ab9473838a52e2dd7f
GET /ssp?dsp=16&uuid=196baece-b15d-45b5-ad19-e97ca7c30b25 HTTP/1.1
Host: sync.videonow.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 22 May 2023 17:40:16 GMT
content-type: image/gif
content-length: 35
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
access-control-allow-origin: *
vary: Origin
x-conn-id: 3116448
x-conn-req: 1
x-error: dsp disabled
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/recaptcha__ru.js
142.250.74.35200 OK 171 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/recaptcha__ru.js
IP 142.250.74.35:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type ASCII text, with very long lines (771)
Size 171 kB (170778 bytes)
Hash 5ee55e4774f7047ff36c50d754de7a45
5706760775775aca8883b7e4fef43105b58a1b34
50be60d04fa931d5b28c8e0866e64c44a7ffe724c8874fe70236528be43ca213
GET /recaptcha/releases/FFtxPnbuZxq6kkeHkQJR2MNQ/recaptcha__ru.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vsebesplatno.clan.su
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 170778
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 05:36:54 GMT
expires: Tue, 21 May 2024 05:36:54 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 May 2023 04:00:52 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 43403
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vsebesplatno.clan.su/favicon.ico
195.216.243.23200 OK 1.4 kB URL GET HTTP/1.1 vsebesplatno.clan.su/favicon.ico
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type MS Windows icon resource - 1 icon, 16x16\012- data
Hash 05ebca9ac1eda5c4463ebcf5a4f5a210
9a68057a4cd4adaef6de08621b734b1435434f1b
f4be6172f1bce76a078f29ecdbab9fbfb407f0925eebc8e97d0de9388bc37e7e
GET /favicon.ico HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1; kdSspUid=c8c914ee-cce6-4d50-8a91-4590f48e685a; hotlog=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:22 GMT
Content-Type: image/x-icon
Content-Length: 1406
Last-Modified: Mon, 28 Dec 2009 12:29:22 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "4b38a4a2-57e"
X-Frame-Options: SAMEORIGIN
Accept-Ranges: bytes
csi.gstatic.com/csi?v=2&s=ima&puid=1~lhz4urpq&c=3485068870743&slotId=1742534435371.5&eee=missing-element&bi=missing-id&vast_v=3.0&lima_p_ich=0&lima_p_icu=0
172.217.0.67204 No Content 0 B URL POST HTTP/2 csi.gstatic.com/csi?v=2&s=ima&puid=1~lhz4urpq&c=3485068870743&slotId=1742534435371.5&eee=missing-element&bi=missing-id&vast_v=3.0&lima_p_ich=0&lima_p_icu=0
IP 172.217.0.67:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.574.0_en.html#goog_2123119235
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=1~lhz4urpq&c=3485068870743&slotId=1742534435371.5&eee=missing-element&bi=missing-id&vast_v=3.0&lima_p_ich=0&lima_p_icu=0 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: *
date: Mon, 22 May 2023 17:40:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=ima&puid=2~lhz4us6h&c=3485068870743&slotId=1742534435371.5&ghmsh_eids=44765701%2C44772139%2C44773378%2C44777649%2C44781409%2C44781753%2C44782991%2C44788275
172.217.0.67204 No Content 0 B URL POST HTTP/2 csi.gstatic.com/csi?v=2&s=ima&puid=2~lhz4us6h&c=3485068870743&slotId=1742534435371.5&ghmsh_eids=44765701%2C44772139%2C44773378%2C44777649%2C44781409%2C44781753%2C44782991%2C44788275
IP 172.217.0.67:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.574.0_en.html#goog_2123119235
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=2~lhz4us6h&c=3485068870743&slotId=1742534435371.5&ghmsh_eids=44765701%2C44772139%2C44773378%2C44777649%2C44781409%2C44781753%2C44782991%2C44788275 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: *
date: Mon, 22 May 2023 17:40:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=ima&puid=2~lhz4us9j&c=8215857117278&slotId=4107928558639&ghmsh_eids=44765701%2C44772139%2C44777649%2C44781409%2C44781753%2C44782991%2C44788275
172.217.0.67204 No Content 0 B URL POST HTTP/2 csi.gstatic.com/csi?v=2&s=ima&puid=2~lhz4us9j&c=8215857117278&slotId=4107928558639&ghmsh_eids=44765701%2C44772139%2C44777649%2C44781409%2C44781753%2C44782991%2C44788275
IP 172.217.0.67:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.574.0_en.html#goog_616972687
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=2~lhz4us9j&c=8215857117278&slotId=4107928558639&ghmsh_eids=44765701%2C44772139%2C44777649%2C44781409%2C44781753%2C44782991%2C44788275 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: *
date: Mon, 22 May 2023 17:40:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=ima&puid=1~lhz4uruj&c=8215857117278&slotId=4107928558639&eee=missing-element&bi=missing-id&vast_v=3.0&lima_p_ich=0&lima_p_icu=0
172.217.0.67204 No Content 0 B URL POST HTTP/2 csi.gstatic.com/csi?v=2&s=ima&puid=1~lhz4uruj&c=8215857117278&slotId=4107928558639&eee=missing-element&bi=missing-id&vast_v=3.0&lima_p_ich=0&lima_p_icu=0
IP 172.217.0.67:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.574.0_en.html#goog_616972687
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE2:33:59:47:38:D7:4A:7A:9E:28:5D:EC:AA:94:7F:92:25:D2:B1:C4
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=ima&puid=1~lhz4uruj&c=8215857117278&slotId=4107928558639&eee=missing-element&bi=missing-id&vast_v=3.0&lima_p_ich=0&lima_p_icu=0 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: *
date: Mon, 22 May 2023 17:40:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vsebesplatno.clan.su/?FfaPC%5E02N0hUUXElj6%3B%5EB4Ci6EfbwLMBqIW3ml%5EgxwrYQ1jI%3BgVkHtGv%21msnxXlt41byIcewWA4ubCjPZlazdVr1e6go
195.216.243.23200 OK 800 B URL GET HTTP/1.1 vsebesplatno.clan.su/?FfaPC%5E02N0hUUXElj6%3B%5EB4Ci6EfbwLMBqIW3ml%5EgxwrYQ1jI%3BgVkHtGv%21msnxXlt41byIcewWA4ubCjPZlazdVr1e6go
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 3bc95de7255ebeb09a5c5b27370997e7
c2677a555c7c564d37d6a3a3417862e7167ebc1b
5b7da98e72ec8c135b389532f3ac4812dddb665d39dea49e21b406b6c6b7e2d5
Analyzer Verdict Alert fortinet Phishing
GET /?FfaPC%5E02N0hUUXElj6%3B%5EB4Ci6EfbwLMBqIW3ml%5EgxwrYQ1jI%3BgVkHtGv%21msnxXlt41byIcewWA4ubCjPZlazdVr1e6go HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: 6vsebesplatnopushi=1; kdSspUid=c8c914ee-cce6-4d50-8a91-4590f48e685a; hotlog=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:24 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Cache-Control: no-cache, no-store, private
Pragma: no-cache
Content-Encoding: gzip
s23.ucoz.net/adv/dummy/000/css/style.css
195.216.243.23200 OK 1.6 kB URL GET HTTP/1.1 s23.ucoz.net/adv/dummy/000/css/style.css
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/?FfaPC%5E02N0hUUXElj6%3B%5EB4Ci6EfbwLMBqIW3ml%5EgxwrYQ1jI%3BgVkHtGv%21msnxXlt41byIcewWA4ubCjPZlazdVr1e6go
Certificate IssuerGoGetSSL
Subject*.ucoz.net
Fingerprint9C:9F:0E:28:57:CD:A6:DE:BC:89:EA:60:7A:68:97:BB:58:9F:C1:4A
ValidityWed, 15 Mar 2023 00:00:00 GMT - Sun, 14 Apr 2024 23:59:59 GMT
Hash 66bafd673de0c9223fcb6de5548e0e6f
cff0e25c3783772bfb13ad21ad8b328ccca63cb9
25ed1276f20986488e24b40548f023af771181ac7862900bde43cbdaffe0d0b9
GET /adv/dummy/000/css/style.css HTTP/1.1
Host: s23.ucoz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:24 GMT
Content-Type: text/css
Last-Modified: Tue, 26 Mar 2019 14:28:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
ETag: W/"5c9a36f8-19eb"
Content-Encoding: gzip
s23.ucoz.net/adv/dummy/000/img/ucoz-logo.png
195.216.243.23200 OK 4.6 kB URL GET HTTP/1.1 s23.ucoz.net/adv/dummy/000/img/ucoz-logo.png
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/?FfaPC%5E02N0hUUXElj6%3B%5EB4Ci6EfbwLMBqIW3ml%5EgxwrYQ1jI%3BgVkHtGv%21msnxXlt41byIcewWA4ubCjPZlazdVr1e6go
Certificate IssuerGoGetSSL
Subject*.ucoz.net
Fingerprint9C:9F:0E:28:57:CD:A6:DE:BC:89:EA:60:7A:68:97:BB:58:9F:C1:4A
ValidityWed, 15 Mar 2023 00:00:00 GMT - Sun, 14 Apr 2024 23:59:59 GMT
File type PNG image data, 136 x 136, 8-bit/color RGBA, non-interlaced\012- data
Hash 14d37a3409afc2c450c62b97bc8019da
43fc12bf16a292d6d10b17ab7d1e37785288858c
fc4f998c5fcacc6cf161f1bedf46ec55e56273670ecce8b59e947b68d3c5bdb2
GET /adv/dummy/000/img/ucoz-logo.png HTTP/1.1
Host: s23.ucoz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:25 GMT
Content-Type: image/png
Content-Length: 4585
Last-Modified: Tue, 26 Mar 2019 14:28:08 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5c9a36f8-11e9"
Accept-Ranges: bytes
video.onetouch8.info/api/video/tag?sourceId=46305&tmax=500&video-skipafter=10&count=2&tagId=ua4z8zqzrsf2x3wf&repeat=1
188.114.96.1200 OK 553 B URL GET HTTP/3 video.onetouch8.info/api/video/tag?sourceId=46305&tmax=500&video-skipafter=10&count=2&tagId=ua4z8zqzrsf2x3wf&repeat=1
IP 188.114.96.1:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.574.0_en.html#goog_2123119235
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint86:52:05:07:6F:D8:98:CC:63:16:8B:47:C9:D6:EF:2D:F1:D5:2C:73
ValiditySat, 02 Jul 2022 00:00:00 GMT - Sun, 02 Jul 2023 23:59:59 GMT
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash f415954b10a2419c1fa5697c818da116
55c9925f22ee85fa54c73514bebff2a71e911f15
dee092381bf403c68084047d869bdc8b3e157f01f9ff93479809538f97db87c8
GET /api/video/tag?sourceId=46305&tmax=500&video-skipafter=10&count=2&tagId=ua4z8zqzrsf2x3wf&repeat=1 HTTP/1.1
Host: video.onetouch8.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 22 May 2023 17:40:16 GMT
content-type: application/xml; charset=UTF-8
access-control-allow-origin: https://imasdk.googleapis.com
vary: -: Origin
access-control-allow-headers: Content-type
access-control-expose-headers: *
access-control-allow-credentials: true
set-cookie: d-vi-u-uni=811d9c3f940f9f397022db6df4758970a%3A2%3A%7Bi%3A0%3Bs%3A10%3A%22d-vi-u-uni%22%3Bi%3A1%3Bs%3A2%3A%22no%22%3B%7D; expires=Tue, 23-May-2023 17:40:16 GMT; Max-Age=86400; path=/; HttpOnly; SameSite=Lax
d-vi-u-id=4516c18fb130076bc0382014a252d2e6a%3A2%3A%7Bi%3A0%3Bs%3A9%3A%22d-vi-u-id%22%3Bi%3A1%3Bs%3A33%3A%22daec3dcb54977565abfd9485f894b9ea3%22%3B%7D; expires=Sat, 20-May-2028 17:40:16 GMT; Max-Age=157680000; path=/; HttpOnly; SameSite=Lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2sWnsaMf5Pd%2Fv3bkYwqRlI%2BpcSHv9DkOn7mNirl%2FU8jUXQNO8kUN0crVavSVIOj94iAz%2Fuey0Te0WemLviLcyzov6bfH8ZSEKKdK18z2MMnLs%2FgvexQ%2BShWxdcRM2iXHkn09M96BMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cb6d7e52a24b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash cdf31842a0b595736c600a091a26a82a
bf5c34f23e569a4c213003b734d80e00537d01ad
d7fdfa230e54561c1c0cabb77cf35b354383f0cf4d46225214d94dfb61354ea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 17:40:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
video.onetouch8.info/api/video/tag?sourceId=46304&tmax=500&video-skipafter=5&count=2&tagId=i44bc970y7p9rfkw&repeat=2
188.114.96.1200 OK 41 B URL GET HTTP/3 video.onetouch8.info/api/video/tag?sourceId=46304&tmax=500&video-skipafter=5&count=2&tagId=i44bc970y7p9rfkw&repeat=2
IP 188.114.96.1:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.574.0_en.html#goog_616972687
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint86:52:05:07:6F:D8:98:CC:63:16:8B:47:C9:D6:EF:2D:F1:D5:2C:73
ValiditySat, 02 Jul 2022 00:00:00 GMT - Sun, 02 Jul 2023 23:59:59 GMT
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash f415954b10a2419c1fa5697c818da116
55c9925f22ee85fa54c73514bebff2a71e911f15
dee092381bf403c68084047d869bdc8b3e157f01f9ff93479809538f97db87c8
GET /api/video/tag?sourceId=46304&tmax=500&video-skipafter=5&count=2&tagId=i44bc970y7p9rfkw&repeat=2 HTTP/1.1
Host: video.onetouch8.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 22 May 2023 17:40:17 GMT
content-type: application/xml; charset=UTF-8
access-control-allow-origin: https://imasdk.googleapis.com
vary: -: Origin
access-control-allow-headers: Content-type
access-control-expose-headers: *
access-control-allow-credentials: true
set-cookie: d-vi-u-uni=811d9c3f940f9f397022db6df4758970a%3A2%3A%7Bi%3A0%3Bs%3A10%3A%22d-vi-u-uni%22%3Bi%3A1%3Bs%3A2%3A%22no%22%3B%7D; expires=Tue, 23-May-2023 17:40:17 GMT; Max-Age=86400; path=/; HttpOnly; SameSite=Lax
d-vi-u-id=4516c18fb130076bc0382014a252d2e6a%3A2%3A%7Bi%3A0%3Bs%3A9%3A%22d-vi-u-id%22%3Bi%3A1%3Bs%3A33%3A%22daec3dcb54977565abfd9485f894b9ea3%22%3B%7D; expires=Sat, 20-May-2028 17:40:17 GMT; Max-Age=157680000; path=/; HttpOnly; SameSite=Lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AaRXuQnPc2c%2Fi%2Bfik15mlZyrnX6InzOlV3og%2BHsN6DDokezSViTfDGw7QDoe9KMScc%2BFIILTKnnPXQ7NB8oWahUgGyQOs82Dw5zj3DTExc7XDVSWIwMEra6cf3YYoPEKnBWJhDcICg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cb6d7e67bf0b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
rot.spotsniper.ru/?src=ujs6&s_subid=btn
31.172.81.160200 OK 1 B URL GET HTTP/1.1 rot.spotsniper.ru/?src=ujs6&s_subid=btn
IP 31.172.81.160:443
ASN #44066 diva-e Datacenters GmbH
Requested by https://vsebesplatno.clan.su/?FfaPC%5E02N0hUUXElj6%3B%5EB4Ci6EfbwLMBqIW3ml%5EgxwrYQ1jI%3BgVkHtGv%21msnxXlt41byIcewWA4ubCjPZlazdVr1e6go
Certificate IssuerLet's Encrypt
Subjectrot.spotsniper.ru
Fingerprint13:D8:07:73:18:96:DD:24:23:40:59:1D:77:25:1E:F0:00:59:B3:07
ValidityTue, 11 Apr 2023 04:45:34 GMT - Mon, 10 Jul 2023 04:45:33 GMT
File type very short file (no magic)
Hash 7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
GET /?src=ujs6&s_subid=btn HTTP/1.1
Host: rot.spotsniper.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:20 GMT
Content-Type: application/javascript
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
themes.googleusercontent.com/static/fonts/ptsans/v5/LKf8nhXsWg5ybwEGXk8UBQ.woff
142.250.74.97200 OK 60 kB URL GET HTTP/2 themes.googleusercontent.com/static/fonts/ptsans/v5/LKf8nhXsWg5ybwEGXk8UBQ.woff
IP 142.250.74.97:443
Requested by https://vsebesplatno.clan.su/?FfaPC%5E02N0hUUXElj6%3B%5EB4Ci6EfbwLMBqIW3ml%5EgxwrYQ1jI%3BgVkHtGv%21msnxXlt41byIcewWA4ubCjPZlazdVr1e6go
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint49:A1:78:AA:CC:58:2A:18:8D:75:CC:D3:F4:F7:DD:A5:5D:58:B0:B1
ValidityMon, 24 Apr 2023 12:00:35 GMT - Mon, 17 Jul 2023 12:00:34 GMT
File type Web Open Font Format, TrueType, length 60332, version 1.1\012- data
Hash 0d6d6ae28614efe13ec053eaeef473c1
20cd1c419ba0763bb4bbb1435bc0aed00452af2e
5dfdd878d2d6bdd50f37fde1800a044753dd00bac3c3a30a35f999b422a48ee1
GET /static/fonts/ptsans/v5/LKf8nhXsWg5ybwEGXk8UBQ.woff HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://vsebesplatno.clan.su
DNT: 1
Connection: keep-alive
Referer: https://s23.ucoz.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
timing-allow-origin: *
content-length: 60332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 21:21:24 GMT
expires: Sun, 19 May 2024 21:21:24 GMT
cache-control: public, max-age=31536000
age: 159536
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: font/woff
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash cdf31842a0b595736c600a091a26a82a
bf5c34f23e569a4c213003b734d80e00537d01ad
d7fdfa230e54561c1c0cabb77cf35b354383f0cf4d46225214d94dfb61354ea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 22 May 2023 17:40:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s23.ucoz.net/adv/dummy/000/img/bg.gif
195.216.243.23200 OK 1.3 kB URL GET HTTP/1.1 s23.ucoz.net/adv/dummy/000/img/bg.gif
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/?FfaPC%5E02N0hUUXElj6%3B%5EB4Ci6EfbwLMBqIW3ml%5EgxwrYQ1jI%3BgVkHtGv%21msnxXlt41byIcewWA4ubCjPZlazdVr1e6go
Certificate IssuerGoGetSSL
Subject*.ucoz.net
Fingerprint9C:9F:0E:28:57:CD:A6:DE:BC:89:EA:60:7A:68:97:BB:58:9F:C1:4A
ValidityWed, 15 Mar 2023 00:00:00 GMT - Sun, 14 Apr 2024 23:59:59 GMT
File type GIF image data, version 89a, 485 x 3\012- data
Hash b19967d808ed7c42b41316d6c8474f55
18d80748bd4041b13a3373a429281ec65347a0e2
16c9962c4ecd52efc16d9d639d52fc60b9e427b6e454190d162f1aa1d220ad50
GET /adv/dummy/000/img/bg.gif HTTP/1.1
Host: s23.ucoz.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://s23.ucoz.net/adv/dummy/000/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:25 GMT
Content-Type: image/gif
Content-Length: 1268
Last-Modified: Tue, 26 Mar 2019 14:28:08 GMT
Connection: keep-alive
Keep-Alive: timeout=15
ETag: "5c9a36f8-4f4"
Accept-Ranges: bytes
dm-eu.hybrid.ai/match?id=158&vid=jemKBgAMLqGI4UO8573f
37.230.131.16204 No Content 0 B URL GET HTTP/2 dm-eu.hybrid.ai/match?id=158&vid=jemKBgAMLqGI4UO8573f
IP 37.230.131.16:443
ASN #58272 LeaderTelecom B.V.
Requested by https://uuidksinc.net/matchx?gdpr=0&gdpr_consent=
Certificate IssuerSectigo Limited
Subject*.hybrid.ai
FingerprintBC:E6:95:A6:22:29:B6:24:D7:E6:0C:34:42:6E:CB:21:F3:F3:B3:93
ValidityMon, 26 Sep 2022 00:00:00 GMT - Tue, 26 Sep 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=158&vid=jemKBgAMLqGI4UO8573f HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uuidksinc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Mon, 22 May 2023 17:40:20 GMT
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
set-cookie: vid=879f383d221c9c452444; Expires=Tue, 21 May 2024 17:40:20 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 527
x-xss-protection: 1; mode=block
access-control-allow-origin: https://uuidksinc.net
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
dmpprof.com/matching/external/pixel.gif?sid=14&uid=jemKBgAMLqGI4UO8573f
85.192.12.173200 OK 43 B URL GET HTTP/2 dmpprof.com/matching/external/pixel.gif?sid=14&uid=jemKBgAMLqGI4UO8573f
IP 85.192.12.173:443
ASN #12695 LLC Digital Network
Requested by https://uuidksinc.net/matchx?gdpr=0&gdpr_consent=
Certificate IssuerLet's Encrypt
Subjectdmpprof.com
FingerprintC3:8C:83:41:0D:B5:16:30:83:92:56:99:D6:A2:27:C9:43:A8:14:D3
ValiditySat, 20 May 2023 05:41:58 GMT - Fri, 18 Aug 2023 05:41:57 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /matching/external/pixel.gif?sid=14&uid=jemKBgAMLqGI4UO8573f HTTP/1.1
Host: dmpprof.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uuidksinc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Mon, 22 May 2023 17:40:20 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 22 May 2023 17:40:20 GMT
expires: Wed, 11 Nov 1998 11:11:11 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: nmatch=14_jemKBgAMLqGI4UO8573f; expires=Tue, 23 May 2023 05:40:20 GMT; path=/; secure; SameSite=None
uid=temp-91.90.42.154-; expires=Mon, 22 May 2023 19:40:20 GMT; path=/; secure; SameSite=None
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS, PUT, DELETE, HEAD, PATCH, GET, POST, OPTIONS
access-control-allow-headers: Origin,Content-Type,Accept,Authorization,X-Requested-With, DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
X-Firefox-Spdy: h2
dmpprof.com/matching/external/pixel.gif?sid=16&uid=jemKBgAMLqGI4UO8573f
85.192.12.173200 OK 43 B URL GET HTTP/2 dmpprof.com/matching/external/pixel.gif?sid=16&uid=jemKBgAMLqGI4UO8573f
IP 85.192.12.173:443
ASN #12695 LLC Digital Network
Requested by https://uuidksinc.net/matchx?gdpr=0&gdpr_consent=
Certificate IssuerLet's Encrypt
Subjectdmpprof.com
FingerprintC3:8C:83:41:0D:B5:16:30:83:92:56:99:D6:A2:27:C9:43:A8:14:D3
ValiditySat, 20 May 2023 05:41:58 GMT - Fri, 18 Aug 2023 05:41:57 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /matching/external/pixel.gif?sid=16&uid=jemKBgAMLqGI4UO8573f HTTP/1.1
Host: dmpprof.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uuidksinc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Mon, 22 May 2023 17:40:20 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 22 May 2023 17:40:20 GMT
expires: Wed, 11 Nov 1998 11:11:11 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: nmatch=16_jemKBgAMLqGI4UO8573f; expires=Tue, 23 May 2023 05:40:20 GMT; path=/; secure; SameSite=None
uid=temp-91.90.42.154-; expires=Mon, 22 May 2023 19:40:20 GMT; path=/; secure; SameSite=None
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS, PUT, DELETE, HEAD, PATCH, GET, POST, OPTIONS
access-control-allow-headers: Origin,Content-Type,Accept,Authorization,X-Requested-With, DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
X-Firefox-Spdy: h2
rtb.com.ru/kadam-sync?uid=jemKBgAMLqGI4UO8573f
83.222.114.186204 No Content 0 B URL GET HTTP/1.1 rtb.com.ru/kadam-sync?uid=jemKBgAMLqGI4UO8573f
IP 83.222.114.186:443
Requested by https://uuidksinc.net/matchx?gdpr=0&gdpr_consent=
Certificate IssuerLet's Encrypt
Subjectrtb.com.ru
Fingerprint26:DC:DF:B4:69:DD:5B:16:0E:2C:3C:AE:BC:80:EA:DD:04:E9:3F:A9
ValidityMon, 24 Apr 2023 04:02:08 GMT - Sun, 23 Jul 2023 04:02:07 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /kadam-sync?uid=jemKBgAMLqGI4UO8573f HTTP/1.1
Host: rtb.com.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uuidksinc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx/1.18.0
Date: Mon, 22 May 2023 17:40:20 GMT
Connection: keep-alive
Cache-Control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
P3p: CP="rtb.com.ru does not have a P3P policy"
x.instreamatic.com/v2/mark/787.gif
51.250.21.242302 FOUND 0 B URL GET HTTP/1.1 x.instreamatic.com/v2/mark/787.gif
IP 51.250.21.242:443
ASN #200350 Yandex.Cloud LLC
Requested by https://am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
Certificate IssuerDigiCert, Inc.
Subject*.instreamatic.com
Fingerprint4C:26:52:C5:44:D8:29:6C:D1:73:85:5F:38:67:E2:FF:6A:26:F3:09
ValidityThu, 29 Sep 2022 00:00:00 GMT - Mon, 09 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/mark/787.gif HTTP/1.1
Host: x.instreamatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Cookie: uns=OOJYLMXTZZZR
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 FOUND
Server: nginx
Date: Mon, 22 May 2023 17:40:25 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 0
Connection: keep-alive
Location: https://ad.mail.ru/cm.gif?p=66&id=eb7b1f695527bfd8
Set-Cookie: uns=OOJYLMXTZZZR; Domain=.instreamatic.com; Expires=Thu, 19 May 2033 20:40:25 GMT; Path=/; SameSite=None; Secure
Access-Control-Allow-Credentials: true
pixel.vihub.ru/smart/_pub/advmaker/dist/smartPixel.min.js
136.243.149.224200 OK 9.0 kB URL GET HTTP/2 pixel.vihub.ru/smart/_pub/advmaker/dist/smartPixel.min.js
IP 136.243.149.224:443
ASN #24940 Hetzner Online GmbH
Requested by https://am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
Certificate IssuerLet's Encrypt
Subject*.vihub.ru
FingerprintEC:34:0C:0E:D7:94:0E:44:DB:4A:84:8B:5B:07:92:8E:D8:A1:40:99
ValiditySun, 05 Mar 2023 22:04:06 GMT - Sat, 03 Jun 2023 22:04:05 GMT
File type ASCII text, with very long lines (9006), with no line terminators
Hash 84e23e901174a8cf57ffb581e7cbf2ec
693248e84945f8a495e0686cbf8833066793749e
a72f6e287ccbd8e44f5f415148688ca4cc0abddd57e0b14e62560eb7e3152397
GET /smart/_pub/advmaker/dist/smartPixel.min.js HTTP/1.1
Host: pixel.vihub.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.12.2
date: Mon, 22 May 2023 17:40:25 GMT
content-type: application/javascript
content-length: 9006
last-modified: Wed, 26 Jul 2017 10:56:15 GMT
etag: "5978754f-232e"
access-control-allow-credentials: true
access-control-allow-methods: GET, HEAD, POST, OPTIONS, PUT, DELETE
access-control-allow-headers: Content-Type, Authorization, Origin, X-Requested-With, Accept, Key, Accept-Encoding, DNT
accept-ranges: bytes
X-Firefox-Spdy: h2
dmp.vihub.ru/pixeljs?sa=17
136.243.149.224200 OK 1.1 kB URL GET HTTP/2 dmp.vihub.ru/pixeljs?sa=17
IP 136.243.149.224:443
ASN #24940 Hetzner Online GmbH
Requested by https://am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
Certificate IssuerLet's Encrypt
Subject*.vihub.ru
FingerprintEC:34:0C:0E:D7:94:0E:44:DB:4A:84:8B:5B:07:92:8E:D8:A1:40:99
ValiditySun, 05 Mar 2023 22:04:06 GMT - Sat, 03 Jun 2023 22:04:05 GMT
File type ASCII text, with very long lines (1149), with no line terminators
Hash d69dc3930aeb1494cf1acff1b28ef2e8
d99ff2daa401d34c0b464742641f51f7b1888911
a3c80a898fa77c69486afe2be21a94b69330ec576e8446bc13bbaf11248d7b2e
GET /pixeljs?sa=17 HTTP/1.1
Host: dmp.vihub.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Mon, 22 May 2023 17:40:25 GMT
content-type: application/javascript
content-length: 1149
server: fasthttp
set-cookie: uid=afce2101-981a-4c50-aeef-f38d237f01ed; expires=Sun, 12 May 2024 17:40:25 GMT; domain=.vihub.ru; path=/
X-Firefox-Spdy: h2
sync.videonow.ru/ssp?dsp=16&uuid=afce2101-981a-4c50-aeef-f38d237f01ed
212.76.131.50 35 B URL sync.videonow.ru/ssp?dsp=16&uuid=afce2101-981a-4c50-aeef-f38d237f01ed
IP 212.76.131.50:0
Certificate IssuerGlobalSign nv-sa
Subject*.videonow.ru
Fingerprint53:9F:0C:BB:04:6F:5A:B8:C1:9D:67:44:FB:E8:CB:CD:CC:3B:DB:B1
ValidityWed, 24 Aug 2022 09:30:52 GMT - Mon, 25 Sep 2023 09:30:51 GMT
Hash df16d33739defe9bda1f4c45d36fd7a7
ff7489a6dd9ab0d9a4b084315f5b9d77cf9fdf50
90252ef0aa9e3d36c861bbeaa1bd57b7f855333edf2957ab9473838a52e2dd7f
GET /ssp?dsp=16&uuid=afce2101-981a-4c50-aeef-f38d237f01ed HTTP/1.1
Host: sync.videonow.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 22 May 2023 17:40:25 GMT
content-type: image/gif
content-length: 35
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
access-control-allow-origin: *
vary: Origin
x-conn-id: 3129878
x-conn-req: 1
x-error: dsp disabled
X-Firefox-Spdy: h2
z.cdn.adtarget.me/smc?s=22&u=jemKBgAMLqGI4UO8573f
212.32.253.229 0 B URL GET z.cdn.adtarget.me/smc?s=22&u=jemKBgAMLqGI4UO8573f
IP 212.32.253.229:0
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://uuidksinc.net/matchx?gdpr=0&gdpr_consent=
Certificate IssuerLet's Encrypt
Subjectadtarget.me
FingerprintEE:E8:65:F4:A7:24:2E:DF:FD:66:38:92:23:21:0F:FF:C6:FE:B9:E0
ValidityTue, 04 Apr 2023 23:11:40 GMT - Mon, 03 Jul 2023 23:11:39 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smc?s=22&u=jemKBgAMLqGI4UO8573f HTTP/1.1
Host: z.cdn.adtarget.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uuidksinc.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Server: nginx
Date: Mon, 22 May 2023 17:40:25 GMT
Connection: keep-alive
aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-72-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
35.244.181.201 445 B URL aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-72-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
IP 35.244.181.201:0
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (332)
Hash d39546249a86d29697ea6b389afd84f2
244ce5f2d9a3e80da843e527f35cae0b9d9e20be
ba339c9812783530a739e05b9bc0ec254d9c22eb13779e8e5be5860a192f8c80
GET /update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-72-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: 17805
rule-data-version: 1
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2023-06-30-14-14-56.chain; p384ecdsa=ZaSTFxJoGQ94FEPKAtdgRNduHAz-dctmI0emd5lcd01dNkX8XcSmFUnsNGy5mkYQfQpHINQawxptzYdpvHQYxmFw5rLDl7tJm-LK-3u_q96QyR9tEv-vniIezoFKUJlb
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Mon, 22 May 2023 17:40:11 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 445
age: 18
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip
62.115.252.113 512 kB URL ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip
IP 62.115.252.113:0
ASN #1299 Telia Company AB
File type Zip archive data, at least v2.0 to extract, compression method=deflate\012- data
Size 512 kB (511815 bytes)
Hash 152eda253e242e18443ef3282495bc7c
ff0fa85565f21ec4931baad4573b4c0bd08c4019
8e03090fee16f6e0ee2e436af8e51d0c3deed6d9f0db80dec048e668fc009a48
GET /openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip HTTP/1.1
Host: ciscobinary.openh264.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Last-Modified: Thu, 04 May 2023 01:43:52 GMT
ETag: 152eda253e242e18443ef3282495bc7c
Content-Length: 511815
Accept-Ranges: bytes
X-Timestamp: 1683164631.85253
Content-Type: application/zip
X-Trans-Id: tx9c22935e88014093a8837-006455bcebdfw1
Cache-Control: public, max-age=59448
Expires: Tue, 23 May 2023 10:11:18 GMT
Date: Mon, 22 May 2023 17:40:30 GMT
Connection: keep-alive
uuidksinc.net/matchx?gdpr=0&gdpr_consent=
31.220.27.134200 OK 3.0 kB URL GET HTTP/2 uuidksinc.net/matchx?gdpr=0&gdpr_consent=
IP 31.220.27.134:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectuuidksinc.net
Fingerprint09:56:40:57:03:64:6D:33:57:08:B2:D5:51:26:4E:27:92:16:13:A6
ValiditySat, 13 May 2023 23:22:41 GMT - Fri, 11 Aug 2023 23:22:40 GMT
File type gzip compressed data, from Unix\012- data
Hash b8385a4987430d9b49e67e99b56949f9
91443cccddaf06c9cd2306ab02d56e344d609009
e7430a385fa8cebab63ab1bd7cee10670a9f2d02813745ccd3b48ae686358226
GET /matchx?gdpr=0&gdpr_consent= HTTP/1.1
Host: uuidksinc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Cookie: jcsuuid=jemKBgAMLqGI4UO8573f
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 22 May 2023 17:40:20 GMT
content-type: text/html
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
video.onetouch8.info/api/video/tag?sourceId=46305&tmax=500&video-skipafter=10&count=2&tagId=ua4z8zqzrsf2x3wf
188.114.96.1200 OK 63 kB URL GET HTTP/3 video.onetouch8.info/api/video/tag?sourceId=46305&tmax=500&video-skipafter=10&count=2&tagId=ua4z8zqzrsf2x3wf
IP 188.114.96.1:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.574.0_en.html#goog_2123119235
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint86:52:05:07:6F:D8:98:CC:63:16:8B:47:C9:D6:EF:2D:F1:D5:2C:73
ValiditySat, 02 Jul 2022 00:00:00 GMT - Sun, 02 Jul 2023 23:59:59 GMT
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash f415954b10a2419c1fa5697c818da116
55c9925f22ee85fa54c73514bebff2a71e911f15
dee092381bf403c68084047d869bdc8b3e157f01f9ff93479809538f97db87c8
GET /api/video/tag?sourceId=46305&tmax=500&video-skipafter=10&count=2&tagId=ua4z8zqzrsf2x3wf HTTP/1.1
Host: video.onetouch8.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Mon, 22 May 2023 17:40:16 GMT
content-type: application/xml; charset=UTF-8
access-control-allow-origin: https://imasdk.googleapis.com
vary: -: Origin
access-control-allow-headers: Content-type
access-control-expose-headers: *
access-control-allow-credentials: true
set-cookie: d-vi-u-uni=811d9c3f940f9f397022db6df4758970a%3A2%3A%7Bi%3A0%3Bs%3A10%3A%22d-vi-u-uni%22%3Bi%3A1%3Bs%3A2%3A%22no%22%3B%7D; expires=Tue, 23-May-2023 17:40:16 GMT; Max-Age=86400; path=/; HttpOnly; SameSite=Lax
d-vi-u-id=4516c18fb130076bc0382014a252d2e6a%3A2%3A%7Bi%3A0%3Bs%3A9%3A%22d-vi-u-id%22%3Bi%3A1%3Bs%3A33%3A%22daec3dcb54977565abfd9485f894b9ea3%22%3B%7D; expires=Sat, 20-May-2028 17:40:16 GMT; Max-Age=157680000; path=/; HttpOnly; SameSite=Lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iV2I%2FFOIUuPuN4P62Kvlc7uek6pFqHZLOpNpW7tfYgy%2FcHs%2FGNuTdvBk6reBMgcUW8ufRAodtODku3Q%2FeRJXuS71FTzx1nE69lkgvIZ8PUFu4RSK9ZOyJjEpIR6BdPU5ik3hz9%2BRwA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cb6d7e3b81cb515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
vsebesplatno.clan.su/?FfaPC%5E02N0hUUXElj6%3B%5EB4Ci6EfbwLMBqIW3ml%5EgxwrYQ1jI%3BgVkHtGv%21msnxXlt41byIcewWA4ubCjPZlazdVr1e6go
195.216.243.23200 OK 800 B URL GET HTTP/1.1 vsebesplatno.clan.su/?FfaPC%5E02N0hUUXElj6%3B%5EB4Ci6EfbwLMBqIW3ml%5EgxwrYQ1jI%3BgVkHtGv%21msnxXlt41byIcewWA4ubCjPZlazdVr1e6go
IP 195.216.243.23:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGlobalSign nv-sa
Subject*.clan.su
Fingerprint34:37:A9:45:84:C8:78:DA:5C:95:B0:2D:A9:B2:C5:F3:74:6E:C7:01
ValidityThu, 01 Sep 2022 15:46:56 GMT - Tue, 03 Oct 2023 15:46:55 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 3bc95de7255ebeb09a5c5b27370997e7
c2677a555c7c564d37d6a3a3417862e7167ebc1b
5b7da98e72ec8c135b389532f3ac4812dddb665d39dea49e21b406b6c6b7e2d5
Analyzer Verdict Alert fortinet Phishing
GET /?FfaPC%5E02N0hUUXElj6%3B%5EB4Ci6EfbwLMBqIW3ml%5EgxwrYQ1jI%3BgVkHtGv%21msnxXlt41byIcewWA4ubCjPZlazdVr1e6go HTTP/1.1
Host: vsebesplatno.clan.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Cache-Control: no-cache, no-store, private
Pragma: no-cache
Content-Encoding: gzip
bodaybo.net/?ssp=10&callback=advmakerfunc
0.0.0.0 0 B URL GET bodaybo.net/?ssp=10&callback=advmakerfunc
IP 0.0.0.0:0
Requested by https://am15.net/x/fpx.php?s=3204&w=10400&t=cu&rand=1265782259
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /?ssp=10&callback=advmakerfunc HTTP/1.1
Host: bodaybo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
openstat.net/cnt.js
172.67.176.207404 Not Found 0 B IP 172.67.176.207:443
Requested by https://vsebesplatno.clan.su/
Certificate IssuerGoogle Trust Services LLC
Subject*.openstat.net
FingerprintF8:0C:32:64:BC:14:44:AA:B8:93:9B:55:3C:68:AA:AB:53:E7:F8:0D
ValiditySun, 09 Apr 2023 09:45:27 GMT - Sat, 08 Jul 2023 09:45:26 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cnt.js HTTP/1.1
Host: openstat.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Mon, 22 May 2023 17:40:20 GMT
content-type: text/html
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 116
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ixIzToDAuBhB8qDPpkUME6hn9uWlWvpJ3eq%2FxTU%2BH5U4XVYCdSyH23oV%2FsIE%2FLY4uFii2J%2F1Jgq92gvkn8eNM7Z%2FPZLGKGg6IVfpNZL3UfDlpY3mZhv4UFn%2BPcjAn4w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cb6d7f9ad470b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rot.spotsniper.ru/?src=ujs6
31.172.81.160200 OK 1 B URL GET HTTP/1.1 rot.spotsniper.ru/?src=ujs6
IP 31.172.81.160:443
ASN #44066 diva-e Datacenters GmbH
Requested by https://vsebesplatno.clan.su/?FfaPC%5E02N0hUUXElj6%3B%5EB4Ci6EfbwLMBqIW3ml%5EgxwrYQ1jI%3BgVkHtGv%21msnxXlt41byIcewWA4ubCjPZlazdVr1e6go
Certificate IssuerLet's Encrypt
Subjectrot.spotsniper.ru
Fingerprint13:D8:07:73:18:96:DD:24:23:40:59:1D:77:25:1E:F0:00:59:B3:07
ValidityTue, 11 Apr 2023 04:45:34 GMT - Mon, 10 Jul 2023 04:45:33 GMT
File type very short file (no magic)
Hash 7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
GET /?src=ujs6 HTTP/1.1
Host: rot.spotsniper.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 22 May 2023 17:40:20 GMT
Content-Type: application/javascript
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
static.weborama.io/556d807310823b694772f699.js
0.0.0.0 0 B URL GET static.weborama.io/556d807310823b694772f699.js
IP 0.0.0.0:0
Requested by https://am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /556d807310823b694772f699.js HTTP/1.1
Host: static.weborama.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
imasdk.googleapis.com/js/core/bridge3.574.0_en.html
142.250.74.74200 OK 725 kB URL GET HTTP/3 imasdk.googleapis.com/js/core/bridge3.574.0_en.html
IP 142.250.74.74:443
Requested by https://am15.net/ssp/banner?upst=j9ouyBm.sBbDyI_x293n&bid=d1095bd5-121e-4902-9d23-d89589822053
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (48275)
Size 725 kB (724639 bytes)
Hash d1ed43c26fb69d551a250e601bef64e8
c30734d7a476980268a8352bd8c4174129f9282c
f29b2ceedb4715f748435499d0ecb6e642d03e40a30c3cefe1633da65937cfe2
GET /js/core/bridge3.574.0_en.html HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 231178
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 May 2023 09:59:05 GMT
expires: Thu, 16 May 2024 09:59:05 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 May 2023 09:54:13 GMT
content-type: text/html
vary: Accept-Encoding
age: 459670
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
video.onetouch8.info/api/video/tag?sourceId=46305&tmax=500&video-skipafter=10&count=2&tagId=ua4z8zqzrsf2x3wf&repeat=2
188.114.96.1200 OK 42 B URL GET HTTP/3 video.onetouch8.info/api/video/tag?sourceId=46305&tmax=500&video-skipafter=10&count=2&tagId=ua4z8zqzrsf2x3wf&repeat=2
IP 188.114.96.1:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.574.0_en.html#goog_2123119235
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint86:52:05:07:6F:D8:98:CC:63:16:8B:47:C9:D6:EF:2D:F1:D5:2C:73
ValiditySat, 02 Jul 2022 00:00:00 GMT - Sun, 02 Jul 2023 23:59:59 GMT
File type XML document, ASCII text, with no line terminators
Hash f29fa95ad87f485f7035607dff300612
1ee041a8d8f667faf817150e7734bafe4d9d2665
1a500fd1728cc042f8211bf64027389d98b86df9253945cb7efc95f54f8e8b44
GET /api/video/tag?sourceId=46305&tmax=500&video-skipafter=10&count=2&tagId=ua4z8zqzrsf2x3wf&repeat=2 HTTP/1.1
Host: video.onetouch8.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 22 May 2023 17:40:17 GMT
content-type: application/xml; charset=UTF-8
access-control-allow-origin: https://imasdk.googleapis.com
vary: -: Origin
access-control-allow-headers: Content-type
access-control-expose-headers: *
access-control-allow-credentials: true
set-cookie: d-vi-u-uni=811d9c3f940f9f397022db6df4758970a%3A2%3A%7Bi%3A0%3Bs%3A10%3A%22d-vi-u-uni%22%3Bi%3A1%3Bs%3A2%3A%22no%22%3B%7D; expires=Tue, 23-May-2023 17:40:17 GMT; Max-Age=86400; path=/; HttpOnly; SameSite=Lax
d-vi-u-id=4516c18fb130076bc0382014a252d2e6a%3A2%3A%7Bi%3A0%3Bs%3A9%3A%22d-vi-u-id%22%3Bi%3A1%3Bs%3A33%3A%22daec3dcb54977565abfd9485f894b9ea3%22%3B%7D; expires=Sat, 20-May-2028 17:40:17 GMT; Max-Age=157680000; path=/; HttpOnly; SameSite=Lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=elqbQvCRvZSVU5qNzJW3Sp6b4Fo%2Bwi1nF%2BwkqH5VhmlZVsaiv0%2FGaiTg7vmOWnHZwi70xacsV0FkV7VmqV92rEmuRNpUgcRe2oatAtLGbeHTGFOrSxPWFMeFJP%2FMX6g0lT68tzdssA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cb6d7e62b89b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
sync.1dmp.io/pixel.gif?cid=5cf84683-2e0c-42f6-ad4f-7502fc73b092&pid=1c414efa-7700-4fed-9953-20c233fe626d&uid=196baece-b15d-45b5-ad19-e97ca7c30b25
0.0.0.0 0 B URL GET sync.1dmp.io/pixel.gif?cid=5cf84683-2e0c-42f6-ad4f-7502fc73b092&pid=1c414efa-7700-4fed-9953-20c233fe626d&uid=196baece-b15d-45b5-ad19-e97ca7c30b25
IP 0.0.0.0:0
Requested by https://am15.net/x/fpx.php?upst=j9ouyBm.sBbDyI_x293n&s=3204&t=bn&rand=1501753996
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel.gif?cid=5cf84683-2e0c-42f6-ad4f-7502fc73b092&pid=1c414efa-7700-4fed-9953-20c233fe626d&uid=196baece-b15d-45b5-ad19-e97ca7c30b25 HTTP/1.1
Host: sync.1dmp.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
bodaybo.net/?ssp=10&callback=advmakerfunc
0.0.0.0 0 B URL GET bodaybo.net/?ssp=10&callback=advmakerfunc
IP 0.0.0.0:0
Requested by https://am15.net/x/fpx.php?s=3204&w=10400&t=cu&rand=1265782259
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /?ssp=10&callback=advmakerfunc HTTP/1.1
Host: bodaybo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
dsp.dskrt.net/advmaker?ip=91.90.42.154&site=3204&uid=&domain=vsebesplatno.clan.su
0.0.0.0 0 B URL GET dsp.dskrt.net/advmaker?ip=91.90.42.154&site=3204&uid=&domain=vsebesplatno.clan.su
IP 0.0.0.0:0
Requested by https://am15.net/x/fpx.php?s=3204&w=10400&t=cu&rand=1265782259
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advmaker?ip=91.90.42.154&site=3204&uid=&domain=vsebesplatno.clan.su HTTP/1.1
Host: dsp.dskrt.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
s.dskrt.net/take?your_id=&ssp=advmaker
0.0.0.0 0 B URL GET s.dskrt.net/take?your_id=&ssp=advmaker
IP 0.0.0.0:0
Requested by https://am15.net/x/fpx.php?s=3204&w=10400&t=cu&rand=1265782259
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /take?your_id=&ssp=advmaker HTTP/1.1
Host: s.dskrt.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
zcode12.me/?ze=grstanjtgu5ha3ddf4ztgobr
185.177.93.30200 OK 10 B URL GET HTTP/2 zcode12.me/?ze=grstanjtgu5ha3ddf4ztgobr
IP 185.177.93.30:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjectzpgetcode12.com
Fingerprint5F:99:7D:06:EF:A3:4B:DF:58:6F:FA:B2:67:8F:88:83:2B:3A:45:F9
ValidityWed, 17 May 2023 02:42:23 GMT - Tue, 15 Aug 2023 02:42:22 GMT
File type ASCII text, with no line terminators
Hash f495e69f2e9edc75eeae7dd3ea78a747
a89e38bbe70fa2de5db9d578975abd4e9dcda52e
8bf4c7cf443426b4cd8b5a56d22109b4e70314c1d2b8d0eb68887696722c132c
GET /?ze=grstanjtgu5ha3ddf4ztgobr HTTP/1.1
Host: zcode12.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Mon, 22 May 2023 17:40:20 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
set-cookie: uuid=43b0338c-a156-4ac0-8284-4c64d7350ed8; expires=Wed, 21-Jun-2023 17:40:20 GMT; Max-Age=2592000; path=/; SameSite=None; domain=zcode12.me; secure
strict-transport-security: max-age=31536000
content-security-policy: img-src https: data:; upgrade-insecure-requests
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/core/bridge3.574.0_en.html
142.250.74.74200 OK 725 kB URL GET HTTP/3 imasdk.googleapis.com/js/core/bridge3.574.0_en.html
IP 142.250.74.74:443
Requested by https://am15.net/ssp/banner?upst=j9ouyBm.sBbDyI_x293n&bid=8fa5fc8d-7eca-4f60-b909-6091aaadec17
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint9B:D0:53:C4:55:9D:41:A4:94:03:4A:2B:6A:5B:57:EB:EB:A5:F0:4A
ValidityMon, 24 Apr 2023 12:00:43 GMT - Mon, 17 Jul 2023 12:00:42 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (48275)
Size 725 kB (724639 bytes)
Hash d1ed43c26fb69d551a250e601bef64e8
c30734d7a476980268a8352bd8c4174129f9282c
f29b2ceedb4715f748435499d0ecb6e642d03e40a30c3cefe1633da65937cfe2
GET /js/core/bridge3.574.0_en.html HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://am15.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 231178
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 May 2023 09:59:05 GMT
expires: Thu, 16 May 2024 09:59:05 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 May 2023 09:54:13 GMT
content-type: text/html
vary: Accept-Encoding
age: 459670
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
video.onetouch8.info/api/video/tag?sourceId=46304&tmax=500&video-skipafter=5&count=2&tagId=i44bc970y7p9rfkw
188.114.96.1200 OK 42 B URL GET HTTP/3 video.onetouch8.info/api/video/tag?sourceId=46304&tmax=500&video-skipafter=5&count=2&tagId=i44bc970y7p9rfkw
IP 188.114.96.1:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.574.0_en.html#goog_616972687
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint86:52:05:07:6F:D8:98:CC:63:16:8B:47:C9:D6:EF:2D:F1:D5:2C:73
ValiditySat, 02 Jul 2022 00:00:00 GMT - Sun, 02 Jul 2023 23:59:59 GMT
File type XML document, ASCII text, with no line terminators
Hash f29fa95ad87f485f7035607dff300612
1ee041a8d8f667faf817150e7734bafe4d9d2665
1a500fd1728cc042f8211bf64027389d98b86df9253945cb7efc95f54f8e8b44
GET /api/video/tag?sourceId=46304&tmax=500&video-skipafter=5&count=2&tagId=i44bc970y7p9rfkw HTTP/1.1
Host: video.onetouch8.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 22 May 2023 17:40:16 GMT
content-type: application/xml; charset=UTF-8
access-control-allow-origin: https://imasdk.googleapis.com
vary: -: Origin
access-control-allow-headers: Content-type
access-control-expose-headers: *
access-control-allow-credentials: true
set-cookie: d-vi-u-uni=811d9c3f940f9f397022db6df4758970a%3A2%3A%7Bi%3A0%3Bs%3A10%3A%22d-vi-u-uni%22%3Bi%3A1%3Bs%3A2%3A%22no%22%3B%7D; expires=Tue, 23-May-2023 17:40:16 GMT; Max-Age=86400; path=/; HttpOnly; SameSite=Lax
d-vi-u-id=4516c18fb130076bc0382014a252d2e6a%3A2%3A%7Bi%3A0%3Bs%3A9%3A%22d-vi-u-id%22%3Bi%3A1%3Bs%3A33%3A%22daec3dcb54977565abfd9485f894b9ea3%22%3B%7D; expires=Sat, 20-May-2028 17:40:16 GMT; Max-Age=157680000; path=/; HttpOnly; SameSite=Lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SqU46VgS2XzKsvr4ugrdkrhZ2XnAsmuPtRiOE9pzwI8dK09l%2BnJQFOWHpcTS5arVy3W6iPpalpMOVf4X182dwkGrLfse62I6Q25ZhmwfkafefY1tqdrLTBrhL%2BDL74K53%2FkPn2qs5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cb6d7e47929b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
video.onetouch8.info/api/video/tag?sourceId=46304&tmax=500&video-skipafter=5&count=2&tagId=i44bc970y7p9rfkw&repeat=1
188.114.96.1200 OK 42 B URL GET HTTP/3 video.onetouch8.info/api/video/tag?sourceId=46304&tmax=500&video-skipafter=5&count=2&tagId=i44bc970y7p9rfkw&repeat=1
IP 188.114.96.1:443
Requested by https://imasdk.googleapis.com/js/core/bridge3.574.0_en.html#goog_616972687
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint86:52:05:07:6F:D8:98:CC:63:16:8B:47:C9:D6:EF:2D:F1:D5:2C:73
ValiditySat, 02 Jul 2022 00:00:00 GMT - Sun, 02 Jul 2023 23:59:59 GMT
File type XML document, ASCII text, with no line terminators
Hash f29fa95ad87f485f7035607dff300612
1ee041a8d8f667faf817150e7734bafe4d9d2665
1a500fd1728cc042f8211bf64027389d98b86df9253945cb7efc95f54f8e8b44
GET /api/video/tag?sourceId=46304&tmax=500&video-skipafter=5&count=2&tagId=i44bc970y7p9rfkw&repeat=1 HTTP/1.1
Host: video.onetouch8.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://imasdk.googleapis.com
DNT: 1
Connection: keep-alive
Referer: https://imasdk.googleapis.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Mon, 22 May 2023 17:40:16 GMT
content-type: application/xml; charset=UTF-8
access-control-allow-origin: https://imasdk.googleapis.com
vary: -: Origin
access-control-allow-headers: Content-type
access-control-expose-headers: *
access-control-allow-credentials: true
set-cookie: d-vi-u-uni=811d9c3f940f9f397022db6df4758970a%3A2%3A%7Bi%3A0%3Bs%3A10%3A%22d-vi-u-uni%22%3Bi%3A1%3Bs%3A2%3A%22no%22%3B%7D; expires=Tue, 23-May-2023 17:40:16 GMT; Max-Age=86400; path=/; HttpOnly; SameSite=Lax
d-vi-u-id=4516c18fb130076bc0382014a252d2e6a%3A2%3A%7Bi%3A0%3Bs%3A9%3A%22d-vi-u-id%22%3Bi%3A1%3Bs%3A33%3A%22daec3dcb54977565abfd9485f894b9ea3%22%3B%7D; expires=Sat, 20-May-2028 17:40:16 GMT; Max-Age=157680000; path=/; HttpOnly; SameSite=Lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9QNH7ccOOllW5%2F78cG9eb%2BqRIkeo9djWCOHH%2FLg4HIhbUVOyxxK8CuOsQHO9UiBFHaZ0cIyU3%2BRc7X%2FnXU1VFPmjzsXJXcFCXsBFiF4%2BRjSY4CqNqqWj4DTbmqVfVUzirbWsCFjccg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cb6d7e5eb20b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
hdbcode.com/b3aad1kk.js
185.98.54.153200 OK 23 kB IP 185.98.54.153:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjecthdbcode.com
Fingerprint51:23:D7:11:42:AD:E4:1F:10:65:0E:D2:3B:38:72:A0:B6:31:8C:0A
ValiditySat, 22 Apr 2023 00:51:24 GMT - Fri, 21 Jul 2023 00:51:23 GMT
File type ASCII text, with very long lines (17724)
Hash 848142896a4f6132ef04cf70abc1e236
66879f97c314ccad90dfc73b2582a333cff0119d
9f864d034ae7f692455ab472588af14c5eecca9f703004baf5c0ef5625dad583
GET /b3aad1kk.js HTTP/1.1
Host: hdbcode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 22 May 2023 17:40:13 GMT
content-type: application/javascript
last-modified: Mon, 22 May 2023 14:15:13 GMT
vary: Accept-Encoding
etag: W/"646b78f1-5af4"
content-encoding: gzip
X-Firefox-Spdy: h2
i.wmgtr.com/cim/VVrY3J3on-hEeTVpBfSCAW3rkyxWIRNy.png
0.0.0.0 0 B URL GET i.wmgtr.com/cim/VVrY3J3on-hEeTVpBfSCAW3rkyxWIRNy.png
IP 0.0.0.0:0
Requested by https://vsebesplatno.clan.su/
Certificate IssuerLet's Encrypt
Subjecti.wmgtr.com
Fingerprint7D:1B:65:9B:B8:35:3F:63:AA:D6:0E:B1:DB:13:80:AA:F0:55:75:FC
ValiditySun, 23 Apr 2023 23:02:02 GMT - Sat, 22 Jul 2023 23:02:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cim/VVrY3J3on-hEeTVpBfSCAW3rkyxWIRNy.png HTTP/1.1
Host: i.wmgtr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vsebesplatno.clan.su/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Mon, 22 May 2023 17:40:15 GMT
content-type: image/png
server: nginx/1.19.0
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-option: nosniff
content-encoding: gzip
cache-control: max-age=82800
expires: Tue, 23 May 2023 16:40:15 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2