Report - justklass.com/Login.php

Report Overview

Submitted URL
justklass.com/Login.php
IP
5.39.10.93
ASN
#16276 OVH SAS
Submitted
2023-06-06 04:27:37
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
39
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-06-05	2.7 kB	5.6 kB	142.250.74.131
ocsp.sectigo.com	487	2018-08-16	2019-11-29	2023-06-05	660 B	1.9 kB	104.18.14.101
img.imena.ua	337021	2004-09-01	2018-05-03	2023-06-05	12 kB	147 kB	195.39.197.221
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-06-05	462 B	1.8 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-06-05	1.6 kB	104 kB	142.250.74.35
russiawarcrimes.com	unknown	2022-03-01	2022-03-03	2023-06-05	18 kB	1.3 MB	104.21.54.241
www.googletagmanager.com	75	2011-11-11	2013-05-22	2023-06-05	870 B	162 kB	142.250.74.72
justklass.com	unknown	2022-11-21	2018-01-19	2023-05-14	395 B	8.5 kB	5.39.10.93

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-06-06 04:27:18	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:18	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:18	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:18	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:18	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:18	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:18	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:18	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:18	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:18	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:18	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:18	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)
2023-06-06 04:27:19	low	Client IP	Internal IP	ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	russiawarcrimes.com/	211 B	2023-03-10	2023-11-24
Pretty URL russiawarcrimes.com/ IP 104.21.54.241 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 00:49:22 Last Seen2023-11-24 02:32:40 Times Seen147 Hash 6d98abcd03a431a85d0d4044f87fd409 22fc183095d9b6566282127ce28309ba8a5f4359 c182aa77570879668ef0316074d910112458a39b1bc769dea496a73988deb288 Loading...

	russiawarcrimes.com/	96 B	2023-03-10	2023-11-24
Pretty URL russiawarcrimes.com/ IP 104.21.54.241 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 00:49:22 Last Seen2023-11-24 02:32:40 Times Seen145 Hash 6ab6d4bcc78b8fd606681e54328d40f6 7712384e6657d69d625f0671fe0a622a8c5c5236 41dcfab77d71910e909f4b4ddc95b09214b11e572c1b94006e2bf9071ecd894f Loading...

	russiawarcrimes.com/framework-aa7b094891191ce71167.js	130 kB	2023-03-10	2023-11-24
Pretty URL russiawarcrimes.com/framework-aa7b094891191ce71167.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 05:09:53 Last Seen2023-11-24 02:32:41 Times Seen274 Hash fa972bb351c5f8ba82cc09ff4d42c6a2 af7fa705bc046ca403818260162c5b855c171c8f d7352c697f4397dc3c017ea4ea5d9992ee162981b6fa661f98e1af4031489ce4 Loading...

	russiawarcrimes.com/	672 B	2023-03-10	2023-11-24
Pretty URL russiawarcrimes.com/ IP 104.21.54.241 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 00:49:22 Last Seen2023-11-24 02:32:40 Times Seen144 Hash 216e1de99ce5b0a3bd1e6227cd5fa470 cea03e5218b038e047a7e45365ac346a9982a667 0f4f282052fa21570a8afb1ba8793e13f300e13fddfe806e5dc12a9f842ab031 Loading...

	russiawarcrimes.com/	1.2 kB	2023-06-06	2023-06-06
Pretty URL russiawarcrimes.com/ IP 104.21.54.241 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-06 06:27:38 Last Seen2023-06-06 06:27:38 Times Seen1 Hash 8e1c271783fe3db3ef74903c127444ef 50084a4b59da1c56d4b17e19a21eb36f684653a9 9fe6ff918bbed5c9e8d4bd0e50dbf5105881e26bc0e5d63c6683775a9c892f93 Loading...

	russiawarcrimes.com/	0 B	2023-03-07	2024-04-18
Pretty URL russiawarcrimes.com/ IP 104.21.54.241 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-18 16:26:58 Times Seen36945825 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	russiawarcrimes.com/db6a1ce8b9b7b548e87f9aaf2c866476a465ae6d-f8761ef143ff26ee7bbd.js	67 kB	2023-04-06	2023-11-24
Pretty URL russiawarcrimes.com/db6a1ce8b9b7b548e87f9aaf2c866476a465ae6d-f8761ef143ff26ee7bbd.js IP 104.21.54.241 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-06 00:08:42 Last Seen2023-11-24 02:32:41 Times Seen209 Hash 32febbbdb0ab377e815a23ad6ebebd8d a33a76d01baa5a65e922b98f931523e1dc5f842e 4a0a2e4519fdcdb7e2597c96e5fed17922215caa1ab1e05eaddf8838d70bc3aa Loading...

	russiawarcrimes.com/webpack-runtime-8857e2c5d9583197fbd7.js	5.2 kB	2023-03-10	2023-11-24
Pretty URL russiawarcrimes.com/webpack-runtime-8857e2c5d9583197fbd7.js IP 104.21.54.241 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 00:49:22 Last Seen2023-11-24 02:32:40 Times Seen198 Hash 6e8979c07c45969de94aeb26c492d115 c864f4d8e11d1344c66171e906e6819b5b256516 5dd3d450dd2d943fe8450cc113e046867c1febbaf5d0428f5eb4cd96fce98bc1 Loading...

	russiawarcrimes.com/app-1b1003c51aacfb97f779.js	181 kB	2023-03-10	2023-11-24
Pretty URL russiawarcrimes.com/app-1b1003c51aacfb97f779.js IP 104.21.54.241 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 05:09:53 Last Seen2023-11-24 02:32:41 Times Seen195 Hash a4c6f46b2c5e294d4d011bd990ba178a b587caff2607bf30d6e3707f64b79b613e644941 bf1eef746e474d3f37d80ea80c5bb31188824ac39fbdfe3d17eb6863b08b305c Loading...

	russiawarcrimes.com/cdn-cgi/challenge-platform/scripts/invisible.js	30 kB	2023-06-06	2023-06-06
Pretty URL russiawarcrimes.com/cdn-cgi/challenge-platform/scripts/invisible.js IP 104.21.54.241 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 06:27:38 Last Seen2023-06-06 06:48:28 Times Seen3 Hash 712c72b072d702f7256efc3a8aa89c8b a4ceecfbb196a9474a778a8e86374f002922cf37 f678c1ff0391f7fb5676e8c58981bc5cd84de7bc6c35fd405348ec3aa779adf2 Loading...

	russiawarcrimes.com/0f1ac474-3c28027aa95d6b3bb696.js	72 kB	2023-03-10	2023-11-24
Pretty URL russiawarcrimes.com/0f1ac474-3c28027aa95d6b3bb696.js IP 104.21.54.241 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 05:09:53 Last Seen2023-11-24 02:32:40 Times Seen190 Hash bbfd35bb25782adc203c7d33ffad4c92 722868ef826a18c0354f0cc66b471bc598f2ec72 dbd61aabbdbcff0ec6bcd8986752690a2d4e51252f9b96828c79cccdf2bfe081 Loading...

	russiawarcrimes.com/component---src-templates-crimes-tsx-f6ccb3fed302c2659a6f.js	1.5 kB	2023-03-10	2023-11-24
Pretty URL russiawarcrimes.com/component---src-templates-crimes-tsx-f6ccb3fed302c2659a6f.js IP 104.21.54.241 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 05:09:53 Last Seen2023-11-24 02:32:40 Times Seen196 Hash d156e185f5484167342ffdb50c38dacd 8040d21d33032447febdc12907d87d606ac54e7c c3c47e462d0a45b5419d75ee14eaa69ed80ff5fea138fe2818f89d04d99694cd Loading...

	russiawarcrimes.com/898-7c0f4028f664cc76c849.js	1.2 kB	2023-03-10	2023-11-24
Pretty URL russiawarcrimes.com/898-7c0f4028f664cc76c849.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 09:52:32 Last Seen2023-11-24 02:32:40 Times Seen179 Hash 9593804eb43d9e4f42dde82bd8bd7c19 97e3da5cb223c970f8c54ed1997e536afaebcd75 87bc0b24159b3111dc5deb552dbb1329d5ddab0577946620d5f19e6eb15d4802 Loading...

	unknown	361 B	2023-06-06	2023-06-06
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 06:27:38 Last Seen2023-06-06 06:27:38 Times Seen1 Hash aaafbbaa03397a7eed66645327d16a64 87a2ddd5aaf08db2d95c3b99509b63b4ef5eb585 dc924437b3ac804624bd6ea026eaad3b7e5bafffb2e0c3f9b31d7aeb1ebb216f Loading...

	www.googletagmanager.com/gtag/js?id=G-T3PZ31BLM4	229 kB	2023-06-06	2023-06-06
Pretty URL www.googletagmanager.com/gtag/js?id=G-T3PZ31BLM4 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 06:27:38 Last Seen2023-06-06 06:27:38 Times Seen2 Hash e637056790b30796d2f06ae904ded99c a096d6629a308b5e6d1e64fc8f0e70bfa98483a0 159a9b2e485d823d7767ef8b78105b81102fbab1ddbd664c5e8c164592c3b311 Loading...

	russiawarcrimes.com/610-b830da46798bc1c9e099.js	764 B	2023-03-10	2023-11-24
Pretty URL russiawarcrimes.com/610-b830da46798bc1c9e099.js IP 104.21.54.241 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 09:52:32 Last Seen2023-11-24 02:32:40 Times Seen171 Hash 5fdd75bf796c077a2f9af349efb21af7 3b66bf8008f0848935f7a82e9f3e077f073f7e40 c9bbe569cafc6b9ad8c82416e06eaedf788949d357d2a8aeda29e46248f380fd Loading...

		Size	First Seen	Last Seen
	#1 Eval - 9e925e9341b490bfd3b4c4ca3b0c1ef2	4 B	2023-03-07	2024-04-18
Pretty Observations First Seen2023-03-07 01:03:43 Last Seen2024-04-18 16:19:18 Times Seen347528 Hash 9e925e9341b490bfd3b4c4ca3b0c1ef2 c2543fff3bfa6f144c2f06a7de6cd10c0b650cae 1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408 Loading...

	#2 Eval - 244dff9c53f07603c40a8c9811cd6b80	687 B	2023-06-06	2023-06-06
Pretty Observations First Seen2023-06-06 06:27:38 Last Seen2023-06-06 06:27:38 Times Seen1 Hash 244dff9c53f07603c40a8c9811cd6b80 b2404b6e056478ad96eba139bdd85916a3d70b73 d6271821e1285636782fcf9228ad91fd5c80d4219e3bb99e25c21a131726e73d Loading...

	#3 Eval - 70efa725f660990cc6701727e98c360b	769 kB	2023-03-07	2023-07-11
Pretty Observations First Seen2023-03-07 01:07:04 Last Seen2023-07-11 03:19:46 Times Seen6035 Hash 70efa725f660990cc6701727e98c360b 04f4df4180629c6a1a8648630310794bfdb39eb8 cb2789441eb37a5d5520d68b778e5e1a0743c6d105076aa2e3be07147e0dc752 Loading...

	#4 Eval - 0a6b245d97a84a141fd2e8dde642b6d8	2.3 kB	2023-06-06	2023-06-06
Pretty Observations First Seen2023-06-06 06:27:38 Last Seen2023-06-06 06:27:38 Times Seen1 Hash 0a6b245d97a84a141fd2e8dde642b6d8 fa88a6b87f5d12f959744ed76cfbc3d3aebd1916 49c801cf800d24b31e47eec6763b879d10ed9f85158225fa11c69284703af2ee Loading...

	#5 Eval - b31e428141edf9fc173f0fbec39c93d0	1.0 kB	2023-06-06	2023-06-06
Pretty Observations First Seen2023-06-06 06:17:49 Last Seen2023-06-06 06:27:38 Times Seen3 Hash b31e428141edf9fc173f0fbec39c93d0 da0982ea3ce5e82df752f1b80b785eb9335118a5 a0bdaf13330d1322e627bcff9c92bc3fcbe1a3ce71feae4705220d9ffb0f2add Loading...

HTTP Transactions (74)

	URL	IP	Response	Size
	justklass.com/Login.php	5.39.10.93		8.3 kB
URL User Request GET justklass.com/Login.php IP 5.39.10.93:0 ASN #16276 OVH SAS File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text Size 8.3 kB (8299 bytes) Hash 66fbdaad6807957fde067a34a14c8845 4e997811e71dc8814c7e3de0d991cf49a817e2fb 8713697f080c619f70aa343a64b5eb43e2c6afd76afa75462fee8b976dfd9ce8 HTTP Headers `GET /Login.php HTTP/1.1 Host: justklass.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Tue, 06 Jun 2023 04:27:19 GMT Content-Type: text/html; charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive Content-Encoding: gzip`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash f6e0fad54cb828605d258b3a3fc3494d 1998f119ae42787f25cac22435e05b7d8a7ecbcc fdde19b20684979988b4db7567fdb883ef8cd0438f4c4ef053bdd058011f1dbc HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 04:27:19 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash f6e0fad54cb828605d258b3a3fc3494d 1998f119ae42787f25cac22435e05b7d8a7ecbcc fdde19b20684979988b4db7567fdb883ef8cd0438f4c4ef053bdd058011f1dbc HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 04:27:19 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.sectigo.com/	104.18.14.101		471 B
URL ocsp.sectigo.com/ IP 104.18.14.101:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash 4cf0829d44c5ff03023ba3374e81070e d1dbf43343545ef5f7ce6b7b45652a3ccef37b0d 3758e461ba238553799901387be2378db67a4ec19e78b9389f307ea8c8109b5c HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Tue, 06 Jun 2023 04:27:19 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Sun, 04 Jun 2023 05:10:02 GMT Expires: Sun, 11 Jun 2023 05:10:01 GMT Etag: "d1dbf43343545ef5f7ce6b7b45652a3ccef37b0d" Cache-Control: max-age=433961,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb2 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7d2de6f70969b4f9-OSL`

	ocsp.sectigo.com/	104.18.14.101		471 B
URL ocsp.sectigo.com/ IP 104.18.14.101:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash 4cf0829d44c5ff03023ba3374e81070e d1dbf43343545ef5f7ce6b7b45652a3ccef37b0d 3758e461ba238553799901387be2378db67a4ec19e78b9389f307ea8c8109b5c HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Tue, 06 Jun 2023 04:27:19 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Sun, 04 Jun 2023 05:10:02 GMT Expires: Sun, 11 Jun 2023 05:10:01 GMT Etag: "d1dbf43343545ef5f7ce6b7b45652a3ccef37b0d" Cache-Control: max-age=433998,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb4 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 7d2de6f7dc21b523-OSL`

	img.imena.ua/i/footer-logo-1.png	195.39.197.221		162 B
URL img.imena.ua/i/footer-logo-1.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET /i/footer-logo-1.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://justklass.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Date: Tue, 06 Jun 2023 04:27:19 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://img.imena.ua/i/footer-logo-1.png Server: nginx/1.12.0 X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; Content-Security-Policy: frame-ancestors 'self'`

	img.imena.ua/i/logo_Imena_clean.svg	195.39.197.221		162 B
URL img.imena.ua/i/logo_Imena_clean.svg IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET /i/logo_Imena_clean.svg HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://justklass.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Date: Tue, 06 Jun 2023 04:27:19 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://img.imena.ua/i/logo_Imena_clean.svg Server: nginx/1.12.0 X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; Content-Security-Policy: frame-ancestors 'self'`

	img.imena.ua/i/footer-logo-2.png	195.39.197.221		162 B
URL img.imena.ua/i/footer-logo-2.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET /i/footer-logo-2.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://justklass.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Date: Tue, 06 Jun 2023 04:27:19 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://img.imena.ua/i/footer-logo-2.png Server: nginx/1.12.0 X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; Content-Security-Policy: frame-ancestors 'self'`

	img.imena.ua/i/footer-logo-3.png	195.39.197.221		162 B
URL img.imena.ua/i/footer-logo-3.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET /i/footer-logo-3.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://justklass.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Date: Tue, 06 Jun 2023 04:27:19 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://img.imena.ua/i/footer-logo-3.png Server: nginx/1.12.0 X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; Content-Security-Policy: frame-ancestors 'self'`

	img.imena.ua/i/footer-logo-4.png	195.39.197.221		162 B
URL img.imena.ua/i/footer-logo-4.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET /i/footer-logo-4.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://justklass.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Date: Tue, 06 Jun 2023 04:27:19 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://img.imena.ua/i/footer-logo-4.png Server: nginx/1.12.0 X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; Content-Security-Policy: frame-ancestors 'self'`

	img.imena.ua/i/footer-logo-8.png	195.39.197.221		162 B
URL img.imena.ua/i/footer-logo-8.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET /i/footer-logo-8.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://justklass.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Date: Tue, 06 Jun 2023 04:27:19 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://img.imena.ua/i/footer-logo-8.png Server: nginx/1.12.0 X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; Content-Security-Policy: frame-ancestors 'self'`

	img.imena.ua/i/footer-logo-6.png	195.39.197.221		162 B
URL img.imena.ua/i/footer-logo-6.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET /i/footer-logo-6.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://justklass.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Date: Tue, 06 Jun 2023 04:27:19 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://img.imena.ua/i/footer-logo-6.png Server: nginx/1.12.0 X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; Content-Security-Policy: frame-ancestors 'self'`

	img.imena.ua/i/footer-logo-5.png	195.39.197.221		162 B
URL img.imena.ua/i/footer-logo-5.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET /i/footer-logo-5.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://justklass.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Date: Tue, 06 Jun 2023 04:27:19 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://img.imena.ua/i/footer-logo-5.png Server: nginx/1.12.0 X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; Content-Security-Policy: frame-ancestors 'self'`

	img.imena.ua/js/bundle.min.js	195.39.197.221		46 kB
URL img.imena.ua/js/bundle.min.js IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type C source, ASCII text, with very long lines (32039) Size 46 kB (46290 bytes) Hash 3895d8daf3720f2ce552eee05256fbe4 a757a16cc3b52e789f1534e9975189fc0d32e5d8 920470d938d0a06e55050fbea6a9d8748190416d1c799639e26d7b9d5335cb17 HTTP Headers `GET /js/bundle.min.js HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://justklass.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:19 GMT content-type: application/javascript content-length: 46290 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 23 Jun 2022 11:25:38 GMT etag: "23f13-5e21bb6895080-gzip" content-encoding: gzip server: nginx/1.12.0 expires: Sat, 17 Jun 2023 04:27:19 GMT x-cache-status: BYPASS cache-control: max-age=950400, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	img.imena.ua/css/media-set.css	195.39.197.221		18 kB
URL img.imena.ua/css/media-set.css IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type ASCII text, with very long lines (65536), with no line terminators Size 18 kB (18391 bytes) Hash 292b47f4a4f319049c104e86c8721095 fc0eb611126a0f2746dcc0417b419f4bab342e85 593c8f319c522ab33a51336ed42bd6556b815d89b14d3864111e1343c2bb869a HTTP Headers `GET /css/media-set.css HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://justklass.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:19 GMT content-type: text/css content-length: 18391 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Tue, 16 May 2023 12:27:40 GMT etag: "196bb-5fbceb28ab5a4-gzip" content-encoding: gzip server: nginx/1.12.0 expires: Sat, 17 Jun 2023 04:27:19 GMT x-cache-status: BYPASS cache-control: max-age=950400, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	img.imena.ua/i/footer-logo-7.png	195.39.197.221		162 B
URL img.imena.ua/i/footer-logo-7.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET /i/footer-logo-7.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://justklass.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Date: Tue, 06 Jun 2023 04:27:19 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://img.imena.ua/i/footer-logo-7.png Server: nginx/1.12.0 X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; Content-Security-Policy: frame-ancestors 'self'`

	img.imena.ua/i/footer-logo-1.png	195.39.197.221		1.5 kB
URL img.imena.ua/i/footer-logo-1.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type PNG image data, 46 x 46, 8-bit grayscale, non-interlaced\012- data Size 1.5 kB (1504 bytes) Hash a6227dd6094a8fc6e810dfea0afdc634 100b4266bb3c4defdce6aea735465700504586ba 2b5bc6c4c8c60bac2fabaff2565ddbb0fcea59d5497d5200898d9947b4a96334 HTTP Headers `GET /i/footer-logo-1.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://justklass.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:19 GMT content-type: image/png content-length: 1504 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "5e0-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:19 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	img.imena.ua/i/footer-logo-2.png	195.39.197.221		1.6 kB
URL img.imena.ua/i/footer-logo-2.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type PNG image data, 51 x 46, 8-bit grayscale, non-interlaced\012- data Size 1.6 kB (1553 bytes) Hash 880322d3bb98ac7daab9a669d1c71be7 f29304d5ba4752cc448bb831844a90461cb76241 87be95daaf32eefb57417cb4c5b81712ed5844c7bb6f61839d4cc8e024639abd HTTP Headers `GET /i/footer-logo-2.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://justklass.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:19 GMT content-type: image/png content-length: 1553 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "611-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:19 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	img.imena.ua/i/footer-logo-3.png	195.39.197.221		1.0 kB
URL img.imena.ua/i/footer-logo-3.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type PNG image data, 76 x 38, 8-bit grayscale, non-interlaced\012- data Size 1.0 kB (1037 bytes) Hash 0d93502a102e51ae399c7c1896f5cf8b 0b1330b2df5b7ec1e7b8a5d3f325a44f604a94d0 c168be47422667999923183569da9952b144becf4aa5829b3a44adb976f125cd HTTP Headers `GET /i/footer-logo-3.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://justklass.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:19 GMT content-type: image/png content-length: 1037 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "40d-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:19 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	img.imena.ua/i/footer-logo-8.png	195.39.197.221		1.2 kB
URL img.imena.ua/i/footer-logo-8.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type PNG image data, 86 x 38, 8-bit grayscale, non-interlaced\012- data Size 1.2 kB (1172 bytes) Hash d4e8652a2997f3a3dbf8edd5e65c6409 fd4ad1788ffa135a7d640b88a6db4f467cdb0fc4 6736a076edbf78a9d9935f39a359b4a2d28aa5b725535ba79251183cb2a5429c HTTP Headers `GET /i/footer-logo-8.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://justklass.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:19 GMT content-type: image/png content-length: 1172 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "494-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:19 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	img.imena.ua/i/footer-logo-4.png	195.39.197.221		915 B
URL img.imena.ua/i/footer-logo-4.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type PNG image data, 67 x 38, 8-bit grayscale, non-interlaced\012- data Size 915 B (915 bytes) Hash ad710b0e56488104998a0697cd549143 32e0157589f6c1c983c6d4a046f1b21366a23068 c1e930c43ac5ec194aa8aa2690210560a15c8a7905dd6eea9511fe6ff110a6a1 HTTP Headers `GET /i/footer-logo-4.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://justklass.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:19 GMT content-type: image/png content-length: 915 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "393-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:19 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	img.imena.ua/i/footer-logo-6.png	195.39.197.221		524 B
URL img.imena.ua/i/footer-logo-6.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type PNG image data, 60 x 38, 8-bit grayscale, non-interlaced\012- data Size 524 B (524 bytes) Hash f1858ea31112fb3206028ac4f396520e fa9f40ff14cd4a90cfaf83d8ddbc261ef2e6bdb2 d6a59bfe6f2dbc9f0a5c6733f9cdb24330e2f5c788ed3484fe8ee7c10d5593fa HTTP Headers `GET /i/footer-logo-6.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://justklass.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:19 GMT content-type: image/png content-length: 524 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "20c-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:19 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	img.imena.ua/i/footer-logo-5.png	195.39.197.221		893 B
URL img.imena.ua/i/footer-logo-5.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type PNG image data, 60 x 38, 8-bit grayscale, non-interlaced\012- data Size 893 B (893 bytes) Hash d3e5cf0a27a5db602152dba87928a7c7 09f03e5d127c18bbfb2a1c2f174209ac301d22a8 c91734ac33ee1fda6edde6a069f90ccfb45d87ca6597afd6587182eac59863a3 HTTP Headers `GET /i/footer-logo-5.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://justklass.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:19 GMT content-type: image/png content-length: 893 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "37d-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:19 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	img.imena.ua/i/footer-logo-7.png	195.39.197.221		1.0 kB
URL img.imena.ua/i/footer-logo-7.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type PNG image data, 75 x 38, 8-bit grayscale, non-interlaced\012- data Size 1.0 kB (1047 bytes) Hash 979fc3a9153264af55d5555c59671e52 16b1df60f74a7c89ca34716c069f7b0574d4b307 a5bffc067026c57bc5b47a7d289b7dde81aa1aa1b04aef5c21af3b329dbde09d HTTP Headers `GET /i/footer-logo-7.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://justklass.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:19 GMT content-type: image/png content-length: 1047 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "417-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:19 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 82d60e5c89d861bf88494c1b30123a7d 696454de610c86434fca82187d45b770aa712b74 1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 04:27:20 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	img.imena.ua/i/ic_menu_white.svg	195.39.197.221		195 B
URL img.imena.ua/i/ic_menu_white.svg IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators Size 195 B (195 bytes) Hash 43ede0cc691a6c7c1137bd3857aebd19 39d5382aa4c70e10e3142f3a12ac4a9ba8f6b8b4 e4e8c60faeabbd5ddda081b1b0b70575ab2741076b73e0e986384ddb2ed99410 HTTP Headers `GET /i/ic_menu_white.svg HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://img.imena.ua/css/media-set.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:20 GMT content-type: image/svg+xml content-length: 195 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "c3-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:20 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	img.imena.ua/i/ic_arrow_drop_down_white.svg	195.39.197.221		144 B
URL img.imena.ua/i/ic_arrow_drop_down_white.svg IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators Size 144 B (144 bytes) Hash b2343d5fdc7d65bf9adbbac8d7b58a58 4d648325bcbb90067af6012b58ccd8c11ba95a09 ad418b1b6a002fda74ef5bc1bd72263bb8d17557e2b8375191e348031dd59f0b HTTP Headers `GET /i/ic_arrow_drop_down_white.svg HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://img.imena.ua/css/media-set.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:20 GMT content-type: image/svg+xml content-length: 144 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "90-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:20 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	img.imena.ua/i/ic_exit_to_app_white_48px.svg	195.39.197.221		307 B
URL img.imena.ua/i/ic_exit_to_app_white_48px.svg IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (307), with no line terminators Size 307 B (307 bytes) Hash af87ef571386c5c1d320ba8ab1f65314 359575c0d167cbfdc32a86b893bd98a53841628a 2975369074ed2b3d1560229c44ab61a456582fa493fdc3055dfff8691fc471f3 HTTP Headers `GET /i/ic_exit_to_app_white_48px.svg HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://img.imena.ua/css/media-set.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:20 GMT content-type: image/svg+xml content-length: 307 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "133-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:20 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	img.imena.ua/i/ic_menu_red.svg	195.39.197.221		198 B
URL img.imena.ua/i/ic_menu_red.svg IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators Size 198 B (198 bytes) Hash 5a8bad262393702c1e97790fbee5dce8 f891e7d738662e8d70191ab749a4a0b11d3b88fd eeb2c7c4683a1d6136c89f925620df6fc48a5272efe352d3a3ed069a169bd0ad HTTP Headers `GET /i/ic_menu_red.svg HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://img.imena.ua/css/media-set.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:20 GMT content-type: image/svg+xml content-length: 198 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "c6-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:20 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	img.imena.ua/i/ic_arrow_down_red.svg	195.39.197.221		217 B
URL img.imena.ua/i/ic_arrow_down_red.svg IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators Size 217 B (217 bytes) Hash d1af95acc4c7eff50c4564efc6f6372b ec8ed561682875ca073212569f8a7573a7ff7649 56cb02e8942cac713b2f598bb835305d15914d896798f2c0acbb4ca3aade59d6 HTTP Headers `GET /i/ic_arrow_down_red.svg HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://img.imena.ua/css/media-set.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:20 GMT content-type: image/svg+xml content-length: 217 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "d9-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:20 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 82d60e5c89d861bf88494c1b30123a7d 696454de610c86434fca82187d45b770aa712b74 1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 04:27:20 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.googleapis.com/css?family=Open+Sans:400,700,300&subset=latin,cyrillic	142.250.74.106		1.1 kB
URL fonts.googleapis.com/css?family=Open+Sans:400,700,300&subset=latin,cyrillic IP 142.250.74.106:0 ASN #15169 GOOGLE File type gzip compressed data, max compression\012- data Size 1.1 kB (1128 bytes) Hash dc8f91c89475db00d64068a04e85d26f 19933b16224748cd1ba1bf7cd6f2140010d6acad 90579ea0b374a695add693f39f2c2425900f20dbfbd020313530e1a007415758 HTTP Headers `GET /css?family=Open+Sans:400,700,300&subset=latin,cyrillic HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: http://justklass.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 06 Jun 2023 04:27:19 GMT date: Tue, 06 Jun 2023 04:27:19 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 82d60e5c89d861bf88494c1b30123a7d 696454de610c86434fca82187d45b770aa712b74 1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 04:27:20 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	img.imena.ua/i/logo_Imena_clean.svg	195.39.197.221		49 kB
URL img.imena.ua/i/logo_Imena_clean.svg IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type gzip compressed data, max compression, from Unix\012- data Size 49 kB (49431 bytes) Hash 1350a4ce7c801cf6f982dddff4d65986 e1c2eceeaebd1cb1aa58ee27b9978dbe298759d8 a649ba44d7f3d63104ac25f39540bdf46bbc7885ad75f0b63c75a81c7101e89b HTTP Headers `GET /i/logo_Imena_clean.svg HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://justklass.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:19 GMT content-type: image/svg+xml x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: W/"82f-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:19 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' content-encoding: gzip X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 82d60e5c89d861bf88494c1b30123a7d 696454de610c86434fca82187d45b770aa712b74 1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 04:27:20 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	img.imena.ua/i/ic_arrow_drop_down_blue.svg	195.39.197.221		147 B
URL img.imena.ua/i/ic_arrow_drop_down_blue.svg IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators Size 147 B (147 bytes) Hash b2affabbe4e04e8774cbf8d9b88f31af f60b91b03f144a380c1250d9444b6e63be887a8d ef004522eb51de0a14c1445d4069171fdb80e8e8e2502c3cdc17585dc966bfb5 HTTP Headers `GET /i/ic_arrow_drop_down_blue.svg HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://img.imena.ua/css/media-set.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:20 GMT content-type: image/svg+xml content-length: 147 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "93-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:20 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2	142.250.74.35		27 kB
URL fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 26616, version 1.0\012- data Size 27 kB (26616 bytes) Hash a91884dde05099b030787565e5def49d 036a2f70043f893c5c2598380128d10a7b8d565d 600130a0fc244c82240330b3d0e4d9a592ca6523cf0509f16e3e1a3da0eebbab HTTP Headers GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://justklass.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 26616 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 31 May 2023 20:18:32 GMT expires: Thu, 30 May 2024 20:18:32 GMT cache-control: public, max-age=31536000 age: 461328 last-modified: Tue, 02 May 2023 15:07:14 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2	142.250.74.35		27 kB
URL fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 26616, version 1.0\012- data Size 27 kB (26616 bytes) Hash a91884dde05099b030787565e5def49d 036a2f70043f893c5c2598380128d10a7b8d565d 600130a0fc244c82240330b3d0e4d9a592ca6523cf0509f16e3e1a3da0eebbab HTTP Headers GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSumu1aB.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://justklass.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 26616 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 31 May 2023 20:18:32 GMT expires: Thu, 30 May 2024 20:18:32 GMT cache-control: public, max-age=31536000 age: 461328 last-modified: Tue, 02 May 2023 15:07:14 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	142.250.74.35		48 kB
URL fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data Size 48 kB (48412 bytes) Hash 31a8297826cdcea344698ff952694a7f 4fa1ee4c471d1c05e9141855eec5ee09b898d594 7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5 HTTP Headers GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://justklass.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48412 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 Jun 2023 11:49:35 GMT expires: Fri, 31 May 2024 11:49:35 GMT cache-control: public, max-age=31536000 age: 405465 last-modified: Tue, 02 May 2023 15:08:53 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 82d60e5c89d861bf88494c1b30123a7d 696454de610c86434fca82187d45b770aa712b74 1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 04:27:20 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	img.imena.ua/i/32.png	195.39.197.221		162 B
URL img.imena.ua/i/32.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET /i/32.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://justklass.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Date: Tue, 06 Jun 2023 04:27:20 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://img.imena.ua/i/32.png Server: nginx/1.12.0 X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; Content-Security-Policy: frame-ancestors 'self'`

	img.imena.ua/i/96.png	195.39.197.221		162 B
URL img.imena.ua/i/96.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET /i/96.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate DNT: 1 Connection: keep-alive Referer: http://justklass.com/ Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Date: Tue, 06 Jun 2023 04:27:20 GMT Content-Type: text/html Content-Length: 162 Connection: keep-alive Location: https://img.imena.ua/i/96.png Server: nginx/1.12.0 X-Frame-Options: SAMEORIGIN Strict-Transport-Security: max-age=31536000; Content-Security-Policy: frame-ancestors 'self'`

	img.imena.ua/i/32.png	195.39.197.221		447 B
URL img.imena.ua/i/32.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data Size 447 B (447 bytes) Hash cc71129fbb34f2051b2bf74994c1f427 baf8e5540455926c224b06b18ee5271c66fcd2fd 0ed05f93f194907d6ff5a057774edead6ac17dd20b7c1d6a875d7a3a01865a88 HTTP Headers `GET /i/32.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://justklass.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:20 GMT content-type: image/png content-length: 447 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "1bf-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:20 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	img.imena.ua/i/96.png	195.39.197.221		863 B
URL img.imena.ua/i/96.png IP 195.39.197.221:0 ASN #28907 Internet Invest Ltd. File type PNG image data, 96 x 96, 8-bit colormap, non-interlaced\012- data Size 863 B (863 bytes) Hash a62bd01380e19b84435defea61405258 6574de7d2a987999f9fa2d13f8db41001c8098b8 205d10fd34e9726b4874841d3dbc66282ebb524972ac4deef61f38f1c055035d HTTP Headers `GET /i/96.png HTTP/1.1 Host: img.imena.ua User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://justklass.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:27:20 GMT content-type: image/png content-length: 863 x-xss-protection: 1; mode=block strict-transport-security: max-age=31536000 last-modified: Thu, 13 May 2021 06:05:28 GMT etag: "35f-5c22fe9f5ba00" server: nginx/1.12.0 expires: Mon, 04 Sep 2023 04:27:20 GMT x-cache-status: BYPASS cache-control: max-age=7776000, public, must-revalidate, proxy-revalidate vary: Accept-Encoding, Cookie x-frame-options: SAMEORIGIN, SAMEORIGIN content-security-policy: default-src 'self' https://.imena.ua; style-src 'unsafe-inline' 'self' https://.imena.ua https://fonts.googleapis.com; font-src 'self' https://fonts.googleapis.com https://fonts.gstatic.com https://www.paypal.com/; script-src 'unsafe-inline' 'self' https://*.imena.ua; frame-ancestors 'self';, frame-ancestors 'self' accept-ranges: bytes X-Firefox-Spdy: h2

	russiawarcrimes.com/	104.21.54.241	403 Forbidden	4.2 kB
URL User Request GET HTTP/2 russiawarcrimes.com/ IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2884) Size 4.2 kB (4198 bytes) Hash 64446b9a03d4ffcaa93eb1161556618a f77c03e43668d74d6978ad4cdf6ceeaeed2a5deb 95ed657101fe62a6a7329ffee1cabfa556b6ba601fdcb7c998435cc14f3d767a HTTP Headers `GET / HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 403 Forbidden date: Tue, 06 Jun 2023 04:27:25 GMT content-type: text/html; charset=UTF-8 cross-origin-embedder-policy: require-corp cross-origin-opener-policy: same-origin cross-origin-resource-policy: same-origin permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=() referrer-policy: same-origin x-frame-options: SAMEORIGIN cf-mitigated: challenge cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0 expires: Thu, 01 Jan 1970 00:00:01 GMT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cwRX19cJ7VF6PFc7M%2FhUhp3%2FY2Qt%2Bf6kl%2FxmC163AGJq1Jypk2OKr%2FBWtKs%2FamIm7YI1ElEIuFIWgU091BmK2aJ0zT9vNBPjeOw7TGPs1hHHLulepbkM%2BFE1kkEwmZVpbEPbNRrH"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7d2de71a3fdc1c16-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	russiawarcrimes.com/db6a1ce8b9b7b548e87f9aaf2c866476a465ae6d-f8761ef143ff26ee7bbd.js	104.21.54.241	200 OK	19 kB
URL GET HTTP/3 russiawarcrimes.com/db6a1ce8b9b7b548e87f9aaf2c866476a465ae6d-f8761ef143ff26ee7bbd.js IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type Unicode text, UTF-8 text, with very long lines (65502), with no line terminators Size 19 kB (19065 bytes) Hash 32febbbdb0ab377e815a23ad6ebebd8d a33a76d01baa5a65e922b98f931523e1dc5f842e 4a0a2e4519fdcdb7e2597c96e5fed17922215caa1ab1e05eaddf8838d70bc3aa HTTP Headers GET /db6a1ce8b9b7b548e87f9aaf2c866476a465ae6d-f8761ef143ff26ee7bbd.js HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:31 GMT content-type: application/javascript cache-control: max-age=14400 cf-bgj: minify cf-polished: origSize=67538 etag: W/"d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:56 GMT last-modified: Tue, 24 May 2022 15:28:48 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6HsoUwOSEJHe9JYtrfEeb9cPom3QEwqz1VabKLrm%2FxU6MUTLo%2FUxX2tEv2DyP7yYNB4iXLYc39ZtAFx8usJQcRGumgXdZGDhgLvFWPOx7HsYCEmwJVnehEaT%2FadZK7u%2FXdSBvjbP"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7428b971c0e-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/0f1ac474-3c28027aa95d6b3bb696.js	104.21.54.241	200 OK	41 kB
URL GET HTTP/3 russiawarcrimes.com/0f1ac474-3c28027aa95d6b3bb696.js IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type Unicode text, UTF-8 text, with very long lines (65440), with no line terminators Size 41 kB (41418 bytes) Hash bbfd35bb25782adc203c7d33ffad4c92 722868ef826a18c0354f0cc66b471bc598f2ec72 dbd61aabbdbcff0ec6bcd8986752690a2d4e51252f9b96828c79cccdf2bfe081 HTTP Headers GET /0f1ac474-3c28027aa95d6b3bb696.js HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:31 GMT content-type: application/javascript cache-control: max-age=14400 cf-bgj: minify cf-polished: origSize=72011 etag: W/"d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:56 GMT last-modified: Tue, 24 May 2022 15:28:48 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ild2nx0fp7%2FsCw2QTFdx3FNh9FYh2XDkqM%2BPtMGq8rBMusONzcASSrSC0wJ6a%2FVg%2BILyIyzj08Y%2ByPF%2FpanfMAMRR4hXk693al9Btj1SEUDPSsUVqD0ouTk3sk635eFRpeH4pzx%2B"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7428b961c0e-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/static/montserrat-latin-900-e66c7edc609e24bacbb705175669d814.woff2	104.21.54.241	200 OK	19 kB
URL GET HTTP/3 russiawarcrimes.com/static/montserrat-latin-900-e66c7edc609e24bacbb705175669d814.woff2 IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type Web Open Font Format (Version 2), TrueType, length 19240, version 1.0\012- data Size 19 kB (19240 bytes) Hash 58cd789700850375b834e8b6776002eb 7cdad40a50bdd4718bf5731e70b19ec782ad46e2 d2fca2ae6ff4ffea8690cb747cfb9237c873b227c4ad3425a1d84598c8bd0148 HTTP Headers GET /static/montserrat-latin-900-e66c7edc609e24bacbb705175669d814.woff2 HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:31 GMT content-type: font/woff2 content-length: 19240 cache-control: max-age=14400 etag: "d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:56 GMT last-modified: Tue, 24 May 2022 15:28:48 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U%2FQ0omkt%2Bzji68jAAldcpwkjDzAfsgMBJWClr1cd%2Fykt1YZcTPHJCDtqn5%2FgZMlmGmKwVYmMouWQ%2F1ssNpVF79obHnR8OaLW6BDna%2FO2bO8WSWmfQAZ5obDwT2d5H9HciNqbDG2u"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7434bf91c0e-OSL alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/static/merriweather-latin-400italic-2de7bfeaf08fb03d4315d49947f062f7.woff2	104.21.54.241	200 OK	19 kB
URL GET HTTP/3 russiawarcrimes.com/static/merriweather-latin-400italic-2de7bfeaf08fb03d4315d49947f062f7.woff2 IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type Web Open Font Format (Version 2), TrueType, length 19152, version 1.0\012- data Size 19 kB (19152 bytes) Hash 3a9be9ea9f7aa4af6de7307df21d9fc0 ffb0eb4db26c61c9cf49397044a4c43ae3de2eca afba6e308182b28f02233e3c816e99fe5cc51511f90cab2cc6219d652f14f3a6 HTTP Headers GET /static/merriweather-latin-400italic-2de7bfeaf08fb03d4315d49947f062f7.woff2 HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:31 GMT content-type: font/woff2 content-length: 19152 cache-control: max-age=14400 etag: "d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:56 GMT last-modified: Tue, 24 May 2022 15:28:48 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WL1I1ZFge0kFZefEJVncj80%2BILBAClxcps1rOjWWY3Y%2F8TlWS%2BvhJ9ttzY6EmPzW7AmfrrBXbVk2p33Aja0Kd76ro1UBS7gw4JKucJVz7pe%2FcPoPbfjWmOwmayhiPJM%2BU4gA%2B2VK"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7436c041c0e-OSL alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/webpack-runtime-8857e2c5d9583197fbd7.js	104.21.54.241		22 kB
URL russiawarcrimes.com/webpack-runtime-8857e2c5d9583197fbd7.js IP 104.21.54.241:0 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type ASCII text, with very long lines (5230), with no line terminators Size 22 kB (21899 bytes) Hash 6e8979c07c45969de94aeb26c492d115 c864f4d8e11d1344c66171e906e6819b5b256516 5dd3d450dd2d943fe8450cc113e046867c1febbaf5d0428f5eb4cd96fce98bc1 HTTP Headers GET /webpack-runtime-8857e2c5d9583197fbd7.js HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:31 GMT content-type: application/javascript cache-control: max-age=14400 cf-bgj: minify cf-polished: origSize=5295 etag: W/"d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:56 GMT last-modified: Tue, 24 May 2022 15:28:48 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tDvxoIu6epvXUKrkC5XbCMAuy%2Bbq3VkXW8QspYal7Hr063S0YX60kepDij1OFa5tsCum2aKHVv21PoankXJgxUvnI2kEX4tXu0q%2BlOfKbLQTdcyhU3YyP66sANSs8g5x0iXghEBd"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7428b901c0e-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.googletagmanager.com/gtag/js?id=G-T3PZ31BLM4	142.250.74.72		81 kB
URL GET www.googletagmanager.com/gtag/js?id=G-T3PZ31BLM4 IP 142.250.74.72:0 ASN #15169 GOOGLE Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT File type ASCII text, with very long lines (3288) Size 81 kB (80702 bytes) Hash e637056790b30796d2f06ae904ded99c a096d6629a308b5e6d1e64fc8f0e70bfa98483a0 159a9b2e485d823d7767ef8b78105b81102fbab1ddbd664c5e8c164592c3b311 HTTP Headers `GET /gtag/js?id=G-T3PZ31BLM4 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 06 Jun 2023 04:27:31 GMT expires: Tue, 06 Jun 2023 04:27:31 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 80702 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	russiawarcrimes.com/	104.21.54.241	403 Forbidden	87 kB
URL User Request GET HTTP/2 russiawarcrimes.com/ IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type gzip compressed data, from Unix\012- data Size 87 kB (87030 bytes) Hash 7fa25ecef7620f36ba573ffd84fa209a 3901daac732a43545e0ec1b11999c18460ff244b b55d66839bac809f5c3abd272846a930f10f2d12a2a9a6039ca4ef6fb19cd8d4 HTTP Headers POST / HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://russiawarcrimes.com/?__cf_chl_tk=uW7RvbE79x.eDOVLiZuWd7N0VaGYBoYT1JsOEqETvkc-1686025645-0-gaNycGzNCxA Content-Type: application/x-www-form-urlencoded Content-Length: 2998 Origin: https://russiawarcrimes.com DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:31 GMT content-type: text/html; charset=utf-8 set-cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160; path=/; expires=Wed, 05-Jun-24 04:27:30 GMT; domain=.russiawarcrimes.com; HttpOnly; Secure; SameSite=None cache-control: max-age=600 expires: Tue, 06 Jun 2023 04:37:31 UTC last-modified: Tue, 24 May 2022 15:29:17 GMT permissions-policy: interest-cohort=() vary: Origin cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xfsgM66p7BlmYz0Ohxmkyh17ItFjsmRmEKhLBxsmadIQ25DXgCBM%2FPLq7QBXWS1RFU41GYOKXO6q%2BDBCxb54C7s3L46eR6tLPpHxEWpQozKhTpO34Rb%2F%2Fg4ZMiabloKcLjifQoQx"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de73e49a61c0e-OSL content-encoding: gzip alt-svc: h3=":443"; ma=86400

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash ce0ebcb6eab1a7dd3eab3a8147da0859 8164473145746d55203f9505ae8a1643350a79e3 b8771619cd596cd7015fdf1ff5e21e989535b3ba3d90f5efcd5867d85b98adcc HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 04:27:31 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	russiawarcrimes.com/app-1b1003c51aacfb97f779.js	104.21.54.241	200 OK	70 kB
URL GET HTTP/3 russiawarcrimes.com/app-1b1003c51aacfb97f779.js IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 70 kB (69956 bytes) Hash a4c6f46b2c5e294d4d011bd990ba178a b587caff2607bf30d6e3707f64b79b613e644941 bf1eef746e474d3f37d80ea80c5bb31188824ac39fbdfe3d17eb6863b08b305c HTTP Headers GET /app-1b1003c51aacfb97f779.js HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:31 GMT content-type: application/javascript cache-control: max-age=14400 cf-bgj: minify cf-polished: origSize=180920 etag: W/"d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:56 GMT last-modified: Tue, 24 May 2022 15:28:48 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JE51nRkX%2B9rp7DktmynAn3N8OOvI%2BKYHOHdYlSSSG09b9YZSoc17HS7dlMYO1ccAhb5CvZx61fXzOeiLUf8ZzkkqupWVjJEYXLzH6Nyg6fODL%2B%2BoM866mV6o2i3sN3zyjhOVuT5M"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7428b921c0e-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/static/montserrat-latin-900-e66c7edc609e24bacbb705175669d814.woff2	104.21.54.241	200 OK	19 kB
URL GET HTTP/3 russiawarcrimes.com/static/montserrat-latin-900-e66c7edc609e24bacbb705175669d814.woff2 IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type Web Open Font Format (Version 2), TrueType, length 19240, version 1.0\012- data Size 19 kB (19240 bytes) Hash 58cd789700850375b834e8b6776002eb 7cdad40a50bdd4718bf5731e70b19ec782ad46e2 d2fca2ae6ff4ffea8690cb747cfb9237c873b227c4ad3425a1d84598c8bd0148 HTTP Headers GET /static/montserrat-latin-900-e66c7edc609e24bacbb705175669d814.woff2 HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160; _ga_T3PZ31BLM4=GS1.1.1686025651.1.0.1686025651.0.0.0; _ga=GA1.1.1887755568.1686025651 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:32 GMT content-type: font/woff2 content-length: 19240 cache-control: max-age=14400 etag: "d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:56 GMT last-modified: Tue, 24 May 2022 15:28:48 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 36 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vcz%2BVYHuF4QlNWKxaq%2F2D%2B5V0YtDN6IBcMB8OiC28vuFHAfLXLeln1d5sYYI8y0KsMFlhBkpbbmBtvnNLZl1FNtM0JapunHbOImwpTP03eZS8sOzP5j3Y3h%2FKqun5fBjCA1UJ5Db"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7457ccd1c0e-OSL alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/static/montserrat-latin-700-7dbcc8a5ea2289d83f657c25b4be6193.woff2	104.21.54.241	200 OK	20 kB
URL GET HTTP/3 russiawarcrimes.com/static/montserrat-latin-700-7dbcc8a5ea2289d83f657c25b4be6193.woff2 IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type Web Open Font Format (Version 2), TrueType, length 19480, version 1.0\012- data Size 20 kB (19480 bytes) Hash 39d93cf678c740f9f6b2b1cfde34bee3 0d98d755bbbdfbb0943665c2c2a644005952e4cd 4545eb1dec25fe868d19dc292d417d8a9e41c0276d75a4eaf524a9db21aa705a HTTP Headers GET /static/montserrat-latin-700-7dbcc8a5ea2289d83f657c25b4be6193.woff2 HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160; _ga_T3PZ31BLM4=GS1.1.1686025651.1.0.1686025651.0.0.0; _ga=GA1.1.1887755568.1686025651 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:32 GMT content-type: font/woff2 content-length: 19480 cache-control: max-age=14400 etag: "d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:56 GMT last-modified: Tue, 24 May 2022 15:28:48 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 36 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1fVTt13FKzUnaaIoLKG%2FUif1AkhFqbx74EgwGnO53aSGzbsgxBbBPCUOyrcacSyTi46eWriTlzl94BZFC%2B8bcFsufMKPTgstGZkLn8BHI7hQ4D09kS2UyswNU1tyXA0h40%2BdclRP"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7458cd01c0e-OSL alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/cdn-cgi/challenge-platform/scripts/invisible.js	104.21.54.241	302 Found	19 kB
URL GET HTTP/3 russiawarcrimes.com/cdn-cgi/challenge-platform/scripts/invisible.js IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type Web Open Font Format (Version 2), TrueType, length 19300, version 1.0\012- data Size 19 kB (19300 bytes) Hash 8276fdb72ae8f4714d4e6eba704cc39f 1bb7eeed869005d889d1667305aed51f8128fa76 e19e5fec549d0d871301c8196f4a954abe8d6913464a1ac511f81ef71529f89b HTTP Headers `GET /cdn-cgi/challenge-platform/scripts/invisible.js HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 302 Found date: Tue, 06 Jun 2023 04:27:31 GMT cache-control: max-age=300, public location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/68662470/invisible.js access-control-allow-origin: * vary: accept-encoding report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=80amEbGBrXEFPXv%2FL8rVJ3xUTIatUlwf1ZkO2m8AHCMHMra4RPU%2B0U6Bnl14W%2B%2FbidtSZKmTqyyYZosZ7A7xSQW0kscee%2FcW6gf1TOx3hKZEjEfnKDFlAp%2FaNhN%2Fhv59MqkB2KRd"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7438c0a1c0e-OSL alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/component---src-templates-crimes-tsx-f6ccb3fed302c2659a6f.js	104.21.54.241	200 OK	20 kB
URL GET HTTP/3 russiawarcrimes.com/component---src-templates-crimes-tsx-f6ccb3fed302c2659a6f.js IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type ASCII text, with very long lines (1480), with no line terminators Size 20 kB (19923 bytes) Hash d156e185f5484167342ffdb50c38dacd 8040d21d33032447febdc12907d87d606ac54e7c c3c47e462d0a45b5419d75ee14eaa69ed80ff5fea138fe2818f89d04d99694cd HTTP Headers GET /component---src-templates-crimes-tsx-f6ccb3fed302c2659a6f.js HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:31 GMT content-type: application/javascript cache-control: max-age=14400 cf-bgj: minify cf-polished: origSize=1566 etag: W/"d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:56 GMT last-modified: Tue, 24 May 2022 15:28:48 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c5aHtr8jY8lWnErqj5xjE8rUNFSiCLnpU4Y7sqxayEY2RWilU%2BBOnU2qd%2F4tEZZHMDUsk4NA14LnAVwQJAlRWb6QeCHzr5fy%2Fab3xro%2B6dI%2B9iaPFs1JxyH2AolaIT6rZ8z0cUld"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7429b981c0e-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.googletagmanager.com/gtag/js?id=G-T3PZ31BLM4	142.250.74.72		80 kB
URL GET www.googletagmanager.com/gtag/js?id=G-T3PZ31BLM4 IP 142.250.74.72:0 ASN #15169 GOOGLE Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT File type ASCII text, with very long lines (3288) Size 80 kB (80473 bytes) Hash 1c5c58d2871d35fc6eb26515d3b33e27 48c05406f4b86c7632b6f2c0c4dd0be6241691c6 aae63e42d1c1080d982de6a6d1212dcdd2946b17f41b89582f5bfe0917fc44e6 HTTP Headers `GET /gtag/js?id=G-T3PZ31BLM4 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 06 Jun 2023 04:27:32 GMT expires: Tue, 06 Jun 2023 04:27:32 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 80473 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	russiawarcrimes.com/static/ac62038320adde6849c09734f448c7d1/c58e4/1.webp	104.21.54.241		169 kB
URL GET russiawarcrimes.com/static/ac62038320adde6849c09734f448c7d1/c58e4/1.webp IP 104.21.54.241:0 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1597x898, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 169 kB (168818 bytes) Hash 2778ef880558df2b0a58979d8c99fad3 8d6ced5bad160ab8481912dd50fd85725ed08b4e 02719626e93e644817cc660775aa508428b77ecf756850c1b3970045162618ee HTTP Headers GET /static/ac62038320adde6849c09734f448c7d1/c58e4/1.webp HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160; _ga_T3PZ31BLM4=GS1.1.1686025651.1.0.1686025651.0.0.0; _ga=GA1.1.1887755568.1686025651; __cf_bm=5.PzYLQPE8WWgKIZzkaeuIvNrDEVQS3NhVeKavRhyUE-1686025652-0-AXKXksC2lm6jfNSDtPpmx5xwGhMGjjay/TEe/VgShc0JcSjh35WSgC2V0nGsSLW83U1UQ60P7AASpY8i9vr8JBgolT0/PvEt7W+uQmUKal5k Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:32 GMT content-type: image/webp content-length: 168818 cache-control: max-age=14400 etag: "d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:57 GMT last-modified: Tue, 24 May 2022 15:28:50 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1vqq9cw2tfXzOGWdh0VhNsm4%2F4MSyilWkjfBtKa4Yxr123Xh9y8AVjqfbkRCKCQNW5lMjwZZcL%2BlQO93H785Pr0Kv4qYETCPDrk54JjUVXZLsq7dufhyOPJKMEdDWGjJOB3rNnc2"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7477d8f1c0e-OSL alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/static/f91ed2dee43d83847ab8110b6fdc6423/f2559/2.webp	104.21.54.241		30 kB
URL GET russiawarcrimes.com/static/f91ed2dee43d83847ab8110b6fdc6423/f2559/2.webp IP 104.21.54.241:0 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 30 kB (29912 bytes) Hash 20247e25e4206c2343fcb37164a49bd4 51eaa9b3c3917b7f46706c4174722daab38526f1 c968c9edfbbec49246fedd91b55ef17cf6bd0721b10452f3e28e2bf8c0ba8dfa HTTP Headers GET /static/f91ed2dee43d83847ab8110b6fdc6423/f2559/2.webp HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160; _ga_T3PZ31BLM4=GS1.1.1686025651.1.0.1686025651.0.0.0; _ga=GA1.1.1887755568.1686025651; __cf_bm=5.PzYLQPE8WWgKIZzkaeuIvNrDEVQS3NhVeKavRhyUE-1686025652-0-AXKXksC2lm6jfNSDtPpmx5xwGhMGjjay/TEe/VgShc0JcSjh35WSgC2V0nGsSLW83U1UQ60P7AASpY8i9vr8JBgolT0/PvEt7W+uQmUKal5k Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:32 GMT content-type: image/webp content-length: 29912 cache-control: max-age=14400 etag: "d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:57 GMT last-modified: Tue, 24 May 2022 15:28:24 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BThXf88v3pKc%2B3axr2G3MCLMaWFhg48qu1L9LlVyfpefky5BGH2Qyyet43IydSAjGTd%2B0YAMs9wuU9rkbxtQlrcYxS7ILWW05IFCp2b3JKLta4TZZeb0C%2BPcIeojWMA6UXb7CEbl"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7477d911c0e-OSL alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/cdn-cgi/challenge-platform/h/g/cv/result/7d2de73e49a61c0e	104.21.54.241	200 OK	102 kB
URL POST HTTP/3 russiawarcrimes.com/cdn-cgi/challenge-platform/h/g/cv/result/7d2de73e49a61c0e IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type ASCII text, with no line terminators Size 102 kB (102224 bytes) Hash 444bcb3a3fcf8389296c49467f27e1d6 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df HTTP Headers POST /cdn-cgi/challenge-platform/h/g/cv/result/7d2de73e49a61c0e HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 12371 Origin: https://russiawarcrimes.com DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160; _ga_T3PZ31BLM4=GS1.1.1686025651.1.0.1686025651.0.0.0; _ga=GA1.1.1887755568.1686025651 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:32 GMT content-type: text/plain; charset=UTF-8 set-cookie: __cf_bm=5.PzYLQPE8WWgKIZzkaeuIvNrDEVQS3NhVeKavRhyUE-1686025652-0-AXKXksC2lm6jfNSDtPpmx5xwGhMGjjay/TEe/VgShc0JcSjh35WSgC2V0nGsSLW83U1UQ60P7AASpY8i9vr8JBgolT0/PvEt7W+uQmUKal5k; path=/; expires=Tue, 06-Jun-23 04:57:32 GMT; domain=.russiawarcrimes.com; HttpOnly; Secure; SameSite=None report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ecBWOX0VQ7W%2F%2B7xGf4oHMWSq%2BfCF3fqFSzklxDq1BPstqobD%2BAq49zmrmurw27YpRijsoVAZSuqsPwoIZS9yL%2FoVuibrVx%2F3b%2BKhW6JE%2BfwGkp84YbFiER%2FduzdrTFUVHeVYU8VM"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de746cd391c0e-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/static/a73dfce04f6d8a1fca2471ad616daa41/c5979/4.webp	104.21.54.241		37 kB
URL russiawarcrimes.com/static/a73dfce04f6d8a1fca2471ad616daa41/c5979/4.webp IP 104.21.54.241:0 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 690x387, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 37 kB (37196 bytes) Hash 91a017a88e36c8455c7f8874c197c010 1c3600e032dd4489995fb28c1c55d9b6d388577a af9edf32818453eab4b186ee39f82dd6d134295f8349b5ff936a7d7cca4da061 HTTP Headers GET /static/a73dfce04f6d8a1fca2471ad616daa41/c5979/4.webp HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160; _ga_T3PZ31BLM4=GS1.1.1686025651.1.0.1686025651.0.0.0; _ga=GA1.1.1887755568.1686025651; __cf_bm=5.PzYLQPE8WWgKIZzkaeuIvNrDEVQS3NhVeKavRhyUE-1686025652-0-AXKXksC2lm6jfNSDtPpmx5xwGhMGjjay/TEe/VgShc0JcSjh35WSgC2V0nGsSLW83U1UQ60P7AASpY8i9vr8JBgolT0/PvEt7W+uQmUKal5k Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:32 GMT content-type: image/webp content-length: 37196 cache-control: max-age=14400 etag: "d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:57 GMT last-modified: Tue, 24 May 2022 15:28:25 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lXliI97A9FViid7Qp5zac7HK0yOu8WkUddyyMJZmMPxIuvv%2BI1qN7ml8tWvM7wBl8Tb0dSekQCUqIeoqYWZyaTRhnDMdPE4WUs6jAwNdsnSb1BjLERrjJH6n8RlWg3ORJwaB%2B44W"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7478d9b1c0e-OSL alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/static/58978ae5f71011a41feb5622e9664e63/f0429/3.webp	104.21.54.241		69 kB
URL GET russiawarcrimes.com/static/58978ae5f71011a41feb5622e9664e63/f0429/3.webp IP 104.21.54.241:0 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 721x640, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 69 kB (68946 bytes) Hash 1dca8cd38da8f87e1665f0e20546cef1 d78c087c4d06aa021bd22648e0378f28cfbcccbb 146e8051815792db8c92cfcba9cc9edcff68ee967c7fa9950bae46042e05e1b8 HTTP Headers GET /static/58978ae5f71011a41feb5622e9664e63/f0429/3.webp HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160; _ga_T3PZ31BLM4=GS1.1.1686025651.1.0.1686025651.0.0.0; _ga=GA1.1.1887755568.1686025651; __cf_bm=5.PzYLQPE8WWgKIZzkaeuIvNrDEVQS3NhVeKavRhyUE-1686025652-0-AXKXksC2lm6jfNSDtPpmx5xwGhMGjjay/TEe/VgShc0JcSjh35WSgC2V0nGsSLW83U1UQ60P7AASpY8i9vr8JBgolT0/PvEt7W+uQmUKal5k Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:32 GMT content-type: image/webp content-length: 68946 cache-control: max-age=14400 etag: "d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:57 GMT last-modified: Tue, 24 May 2022 15:28:14 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pqO8qSMqAjKOCOiP3f%2BVhGxh0cVKVkdeB2c5xZMYX0JpyIebjHLKimoPaRL%2FMuZSYHyTQ%2BbPX5B1M1KV%2BOMaKxUtx2HjtIVtlfJOB6XW%2FaaEK%2FoAj0pRxOhc4k66MWbjuaoPmg%2FP"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7477d941c0e-OSL alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/static/f06b4a4bb91721d3c13b06a77ea8358d/30a1f/5.webp	104.21.54.241		84 kB
URL russiawarcrimes.com/static/f06b4a4bb91721d3c13b06a77ea8358d/30a1f/5.webp IP 104.21.54.241:0 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1024x576, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 84 kB (84352 bytes) Hash a63a5fd66072e02658101625e4847929 3df91ec259254c13b92c66a0053995c73fb107af a0ffa1b7c0ba3e05764207293d1115710d8926308e025d6b46f12fd5b6a5de92 HTTP Headers GET /static/f06b4a4bb91721d3c13b06a77ea8358d/30a1f/5.webp HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160; _ga_T3PZ31BLM4=GS1.1.1686025651.1.0.1686025651.0.0.0; _ga=GA1.1.1887755568.1686025651; __cf_bm=5.PzYLQPE8WWgKIZzkaeuIvNrDEVQS3NhVeKavRhyUE-1686025652-0-AXKXksC2lm6jfNSDtPpmx5xwGhMGjjay/TEe/VgShc0JcSjh35WSgC2V0nGsSLW83U1UQ60P7AASpY8i9vr8JBgolT0/PvEt7W+uQmUKal5k Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:32 GMT content-type: image/webp content-length: 84352 cache-control: max-age=14400 etag: "d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:57 GMT last-modified: Tue, 24 May 2022 15:28:19 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=woAk3ZY6TR3WKAFiM1XHApieGdChDuyh2YZg88%2Fw3EJkMWy99nIwy7ZecgHKB0qbDePuGDMrvRakDbkvVqsg1S%2BhvApzoHMizuD%2F7c3yaSTjxhSkHNa5qGetBNDCZNLN%2BWwnr%2BuJ"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de747cdb61c0e-OSL alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/static/53b2400871dea43a4110c5aba6124683/8bd01/6.webp	104.21.54.241		158 kB
URL russiawarcrimes.com/static/53b2400871dea43a4110c5aba6124683/8bd01/6.webp IP 104.21.54.241:0 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1050x1280, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 158 kB (158358 bytes) Hash 4ea495e9810c8387750f7170e4299143 05281b7d6642a0b8c57df53177ba0fcf13a879ac 1a3a1d6442c4fd8dbb936fd64b070dab729f1d10ec62322b088e2da29f9e6b9d HTTP Headers GET /static/53b2400871dea43a4110c5aba6124683/8bd01/6.webp HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160; _ga_T3PZ31BLM4=GS1.1.1686025651.1.0.1686025651.0.0.0; _ga=GA1.1.1887755568.1686025651; __cf_bm=5.PzYLQPE8WWgKIZzkaeuIvNrDEVQS3NhVeKavRhyUE-1686025652-0-AXKXksC2lm6jfNSDtPpmx5xwGhMGjjay/TEe/VgShc0JcSjh35WSgC2V0nGsSLW83U1UQ60P7AASpY8i9vr8JBgolT0/PvEt7W+uQmUKal5k Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:32 GMT content-type: image/webp content-length: 158358 cache-control: max-age=14400 etag: "d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:57 GMT last-modified: Tue, 24 May 2022 15:28:27 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T5zZZ42AlRvF16DPHcrvej997mVB4RtFj8WOan%2Fz8Q9QXFLTiOiLSYFvqQHjsBqHtMC5phoxsLXdWAxBB7LwjtPSU1%2B822zulgCnIAsX4QbLKn7a0JJvr%2BfDkXRXFQrSnPBkShkb"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de747cdb51c0e-OSL alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/page-data/index/page-data.json	104.21.54.241	200 OK	4.2 kB
URL GET HTTP/3 russiawarcrimes.com/page-data/index/page-data.json IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type Unicode text, UTF-8 text, with very long lines (4188), with no line terminators Size 4.2 kB (4187 bytes) Hash 4ac8e6f40e8c91d3a39e673d681c9534 7da4d9a412bcaf16215c448a9bbccb754227abc9 dead399d625d965d624d866da688dfabf8d19cc9b70a724e04d953eb01339719 HTTP Headers `GET /page-data/index/page-data.json HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:31 GMT content-type: application/json cache-control: max-age=600 etag: W/"d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:37:31 UTC last-modified: Tue, 24 May 2022 15:29:14 GMT permissions-policy: interest-cohort=() vary: Origin cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NqBZ6xsI%2BqwQl1z5CnqWGvOxzUsswwiZ2IJ%2FER4MfiGc3Az84hMfIe6Xe3pEBMaA8zrm5mtn5DdIwaFs%2BFMIYOQ%2BXq%2FbLSRJTy46Yyx1g%2FvPcf%2Fm2r%2FxHF8LzF2SCzCS%2BiBcdC4e"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de742aba91c0e-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/page-data/app-data.json	104.21.54.241	200 OK	50 B
URL GET HTTP/3 russiawarcrimes.com/page-data/app-data.json IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type troff or preprocessor input, ASCII text, with no line terminators Size 50 B (50 bytes) Hash f864570518610a84b12c4fc28b752d13 2700863d79997ba1580ddfa1d4b4a07abf19e632 37f5f554415a27f1b201493e20cf7922c863ba9ce969517803b5dd5684b3c671 HTTP Headers `GET /page-data/app-data.json HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:32 GMT content-type: application/json cache-control: max-age=600 etag: W/"d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:37:31 UTC last-modified: Tue, 24 May 2022 15:29:14 GMT permissions-policy: interest-cohort=() vary: Origin cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mSl7k%2B7nnXIDa0S%2BS6Ci4E7R9CKdqgl%2FC6TqFtHMdFQbd%2Bskcir8N4Du1uMe0YJoTOvoiBKB0kO%2FiycdzP5A0ainZtSHPAHzzrfHpuTTm6MmtR4PUZ0MYxB3YtMXXatzqdI%2BcgMV"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de742abaa1c0e-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/static/d74c0d9ea1ac41039ab6da1226b6fdf0/638bb/banner4.webp	104.21.54.241	200 OK	75 kB
URL GET HTTP/3 russiawarcrimes.com/static/d74c0d9ea1ac41039ab6da1226b6fdf0/638bb/banner4.webp IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 75 kB (74830 bytes) Hash 2cfbd5d404f478ff5bee4e8cffe670c1 7ad7e3024586c0e41d8f93e540f32a638a203aeb 207c2fe5cc053b360f4b69ff162d29de9ebf72f4395aa4205370fb34ccc462f2 HTTP Headers GET /static/d74c0d9ea1ac41039ab6da1226b6fdf0/638bb/banner4.webp HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:31 GMT content-type: image/webp content-length: 74830 cache-control: max-age=14400 etag: "d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:56 GMT last-modified: Tue, 24 May 2022 15:28:49 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ee82j7fNaJUaoLOTNpyjnTC%2FWNANg42Z9nN%2FTApk1MXWA%2FEFR7tUmAdRZUTy0LEHbxCnGxDxOur1i1HX7rLyt8%2BgkJmsTgDfJAuzffuA3U9edCr4Szvlkxp8Fneuo%2FVO34vzCDs3"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7438c091c0e-OSL alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/static/8f597ecbe80b7bbcb7880df60967d53d/9ba0b/7.webp	0.0.0.0		102 kB
URL GET russiawarcrimes.com/static/8f597ecbe80b7bbcb7880df60967d53d/9ba0b/7.webp IP 0.0.0.0:0 ASN #0 Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x960, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 102 kB (102218 bytes) Hash 57cb898cf032263b0c6f61648abb2d41 94f4b1da363bdb081cd6042592f9db6fcf1a6607 d428dff66530482e33413125142d0e026e0df7d5c2730017ede2e1a0305069b9 HTTP Headers GET /static/8f597ecbe80b7bbcb7880df60967d53d/9ba0b/7.webp HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160; _ga_T3PZ31BLM4=GS1.1.1686025651.1.0.1686025651.0.0.0; _ga=GA1.1.1887755568.1686025651; __cf_bm=5.PzYLQPE8WWgKIZzkaeuIvNrDEVQS3NhVeKavRhyUE-1686025652-0-AXKXksC2lm6jfNSDtPpmx5xwGhMGjjay/TEe/VgShc0JcSjh35WSgC2V0nGsSLW83U1UQ60P7AASpY8i9vr8JBgolT0/PvEt7W+uQmUKal5k Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:32 GMT content-type: image/webp content-length: 102218 cache-control: max-age=14400 etag: "d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:57 GMT last-modified: Tue, 24 May 2022 15:28:23 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oTwjzvYS%2F5s8w48Q3B8PIP7j2dXD8jmsSOOAz8ol2yRcroEKbDzQY1p%2FFp1XHPMrRrd3cQd3Pm3T1vIyCnpavwwSjZ8jYDZR3OrIeC2EfsAHba3CtO3OTC2MxNWqXW8yxc9t9uji"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7477d891c0e-OSL alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/static/merriweather-latin-400-d9479e8023bef9cbd9bf8d6eabd6bf36.woff2	104.21.54.241	200 OK	19 kB
URL GET HTTP/3 russiawarcrimes.com/static/merriweather-latin-400-d9479e8023bef9cbd9bf8d6eabd6bf36.woff2 IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type Web Open Font Format (Version 2), TrueType, length 19300, version 1.0\012- data Size 19 kB (19300 bytes) Hash 8276fdb72ae8f4714d4e6eba704cc39f 1bb7eeed869005d889d1667305aed51f8128fa76 e19e5fec549d0d871301c8196f4a954abe8d6913464a1ac511f81ef71529f89b HTTP Headers GET /static/merriweather-latin-400-d9479e8023bef9cbd9bf8d6eabd6bf36.woff2 HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160; _ga_T3PZ31BLM4=GS1.1.1686025651.1.0.1686025651.0.0.0; _ga=GA1.1.1887755568.1686025651 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:32 GMT content-type: font/woff2 content-length: 19300 cache-control: max-age=14400 etag: "d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:56 GMT last-modified: Tue, 24 May 2022 15:28:48 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 36 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QtrOgVJ9QgNK5ZO8oVZYX361iwqW%2BAQGr7M0pANL3uWN8Q5Kq7573edqWIhg%2FnWLUlSrBlSmeu8rX8LJo64TPH%2F2O6KMP%2BiWFFQVak8PMXa4t52Gxw%2BZQbNthl4UDJYO2KuDw0NV"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7457ccb1c0e-OSL alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/static/icon-431132ca8d6562da8b7cbf35b6f046fb.png	104.21.54.241	200 OK	15 kB
URL GET HTTP/3 russiawarcrimes.com/static/icon-431132ca8d6562da8b7cbf35b6f046fb.png IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data Size 15 kB (15406 bytes) Hash fdfba35a461301fc194b7d75034e7b36 477410ca2cba1de55fd4c794057eff2473431fd7 e34693515a1e2063912c1e2f968abc459255982839703ebe3a9489f19edbcc0f HTTP Headers GET /static/icon-431132ca8d6562da8b7cbf35b6f046fb.png HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160; _ga_T3PZ31BLM4=GS1.1.1686025651.1.0.1686025651.0.0.0; _ga=GA1.1.1887755568.1686025651 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:31 GMT content-type: image/png content-length: 15406 cache-control: max-age=14400 etag: "d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:56 GMT last-modified: Tue, 24 May 2022 15:28:48 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bKfrfSVHg6fW2Sl5HEkIqXzsTUVaRjmlfvXqx4FHEIibuikb35KUR%2F0rAZRVUWyfivncYxVp0aeeRWL9OlLAQl3XwAgNHUWT7B4Ve4EKVp8l0hZsj3RChBpZjiSauDRnPO4qopt0"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de744bc711c0e-OSL alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/610-b830da46798bc1c9e099.js	104.21.54.241	200 OK	764 B
URL GET HTTP/3 russiawarcrimes.com/610-b830da46798bc1c9e099.js IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type troff or preprocessor input, ASCII text, with very long lines (774), with no line terminators Size 764 B (764 bytes) Hash 53dc0dbca887509e86b3732a72b27bd8 52c72fb84d9e13fa18f68db391c392d3d7b2efd9 f64b567d6189de1db78c2013a7d696c9e49371b6d019967ad979faafede351ea HTTP Headers GET /610-b830da46798bc1c9e099.js HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160; _ga_T3PZ31BLM4=GS1.1.1686025651.1.0.1686025651.0.0.0; _ga=GA1.1.1887755568.1686025651; __cf_bm=5.PzYLQPE8WWgKIZzkaeuIvNrDEVQS3NhVeKavRhyUE-1686025652-0-AXKXksC2lm6jfNSDtPpmx5xwGhMGjjay/TEe/VgShc0JcSjh35WSgC2V0nGsSLW83U1UQ60P7AASpY8i9vr8JBgolT0/PvEt7W+uQmUKal5k Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:32 GMT content-type: application/javascript cache-control: max-age=14400 cf-bgj: minify cf-polished: origSize=817 etag: W/"d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:56 GMT last-modified: Tue, 24 May 2022 15:28:48 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 36 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QRt%2B6A1QV91dirPU3wlxnAFhuZwbw6kzMZ%2BXdPKfje%2F%2BH3BFyAAfGDTHlup6FvfxIIQAnc34ousGS4Vq%2F6Oq6IUM7C4HZH%2B%2F%2FlikAVOySxtii9Jb2xhwtK1IUrSOtaY%2B1MWo1I2I"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de746fd4b1c0e-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	russiawarcrimes.com/static/merriweather-latin-400-d9479e8023bef9cbd9bf8d6eabd6bf36.woff2	104.21.54.241	200 OK	19 kB
URL GET HTTP/3 russiawarcrimes.com/static/merriweather-latin-400-d9479e8023bef9cbd9bf8d6eabd6bf36.woff2 IP 104.21.54.241:443 ASN #13335 CLOUDFLARENET Requested by https://russiawarcrimes.com/ Certificate IssuerGoogle Trust Services LLC Subjectrussiawarcrimes.com FingerprintA7:43:9B:77:A2:B7:7D:BA:0C:50:75:83:90:63:87:FF:3F:2F:0A:7A ValiditySat, 22 Apr 2023 17:17:52 GMT - Fri, 21 Jul 2023 17:17:51 GMT File type Web Open Font Format (Version 2), TrueType, length 19300, version 1.0\012- data Size 19 kB (19300 bytes) Hash 8276fdb72ae8f4714d4e6eba704cc39f 1bb7eeed869005d889d1667305aed51f8128fa76 e19e5fec549d0d871301c8196f4a954abe8d6913464a1ac511f81ef71529f89b HTTP Headers GET /static/merriweather-latin-400-d9479e8023bef9cbd9bf8d6eabd6bf36.woff2 HTTP/1.1 Host: russiawarcrimes.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://russiawarcrimes.com/ Cookie: cf_clearance=WFK7wH_y27SuHcb8V4BJHY3bC9SkcvtCXRWM4sep1xc-1686025645-0-160 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 06 Jun 2023 04:27:31 GMT content-type: font/woff2 content-length: 19300 cache-control: max-age=14400 etag: "d6c901218cf964128e87054b0418c44d773ecd39e356a8bbaba2e5571cdb3f75" expires: Tue, 06 Jun 2023 04:36:56 GMT last-modified: Tue, 24 May 2022 15:28:48 GMT permissions-policy: interest-cohort=() vary: Origin, Accept-Encoding cf-cache-status: HIT age: 35 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=howE2dP1RLPeCvTa6QCdTf9eA6X4%2BPHbFVkuQ%2Fsfs%2F8XbKswpuOfZsDGUiM66uLjI7n3NkbeOGq7hmx81mko5yQy%2FJDeTb1XSj4ivvCLtALHp3Zu8U1khiGA5jrsaJoFeuSCU4yS"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7d2de7433bf81c0e-OSL alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML