migadget.ru/faq/temy-na-xiaomi-miui.html
87.236.16.214301 Moved Permanently 179 B URL HTTP/1.1 migadget.ru/faq/temy-na-xiaomi-miui.html
IP 87.236.16.214:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 2e80ba8bff71b4ebd5dd91a33801ec28
890ebf3f1d92bd251109723245c3c2c91654f04b
e229871f7c4a5d8d85827f811549a3e72246c75a5580b80084795794655741d8
GET /faq/temy-na-xiaomi-miui.html HTTP/1.1
Host: migadget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx-reuseport/1.21.1
Date: Fri, 02 Sep 2022 12:31:33 GMT
Content-Type: text/html
Content-Length: 179
Connection: keep-alive
Keep-Alive: timeout=30
Location: https://migadget.ru/faq/temy-na-xiaomi-miui.html
r3.o.lencr.org/
23.36.76.225200 OK 503 B IP 23.36.76.225:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9172
Expires: Fri, 02 Sep 2022 15:04:25 GMT
Date: Fri, 02 Sep 2022 12:31:33 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 02 Sep 2022 11:41:44 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: V72nqBW-TlXjtoWgbgSe3mstYDx_5QVJ5I5ea6EeLIeTJtr9bMaAtQ==
Age: 2989
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Sep 2022 01:15:17 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2z9MT4cjysrqOkSAM-w72SsUa_kBpGLiwR5CUPQ1OfFkXA0ZZLUxEA==
age: 40576
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.225200 OK 503 B IP 23.36.76.225:0
ASN #20940 Akamai International B.V.
Hash 7719966c97f1c618e9e97ba8ee35a7d6
e61707084280aac63e4836fbca73233e796c9667
9657b7e7d72b6d3dad7f5962fab2f32fbb1202a67f50b9930a3038a284f7b793
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9657B7E7D72B6D3DAD7F5962FAB2F32FBB1202A67F50B9930A3038A284F7B793"
Last-Modified: Wed, 31 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5282
Expires: Fri, 02 Sep 2022 13:59:35 GMT
Date: Fri, 02 Sep 2022 12:31:33 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 02 Sep 2022 11:38:16 GMT
Expires: Fri, 02 Sep 2022 12:20:56 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OfeCfgswVVvs4jicdlA0OFZO8K3uC4q337x_gkQnefgYdwqBvlDpFA==
Age: 3198
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 21daf45cdda2eb462873226bb5c1f0fb
4d4621bbf1461f35f7e536c1dbd9de71978ffa23
8164c742d013bdc2836cac1167acfe482547347ab6a1daefa15475f694dae057
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5739
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:34 GMT
Last-Modified: Fri, 02 Sep 2022 10:55:55 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6c2e5114156ac45cec856f3ea7f45872
011859d6358ad9298b557c1a4b33b80a7a5411ab
3a17c68f9f6cb51ef5c39157a5cae6526f7efae019cc9ae96706da80aea667da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
migadget.ru/wp-content/themes/reboot/assets/fonts/wpshop-core.ttf
87.236.16.214200 OK 59 kB URL HTTP/2 migadget.ru/wp-content/themes/reboot/assets/fonts/wpshop-core.ttf
IP 87.236.16.214:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, wpshop-core\012- data
Hash 2fcda07cf0f6e04e36a23362734caea2
c596aa516e5cf216fdc514679b4a6abe337eed13
973408bd1a1da181c7eaa9293c0cd095f3836a76b626bc76af21e1cd96b5dcde
GET /wp-content/themes/reboot/assets/fonts/wpshop-core.ttf HTTP/1.1
Host: migadget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/faq/temy-na-xiaomi-miui.html
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Fri, 02 Sep 2022 12:31:34 GMT
content-type: application/octet-stream
content-length: 58668
last-modified: Sun, 14 Nov 2021 19:50:53 GMT
etag: "6191689d-e52c"
expires: Sun, 02 Oct 2022 12:31:34 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
migadget.ru/wp-content/uploads/2021/02/miui-themes.jpg
87.236.16.214200 OK 41 kB URL HTTP/2 migadget.ru/wp-content/uploads/2021/02/miui-themes.jpg
IP 87.236.16.214:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x400, components 3\012- data
Hash b3ab578edc25f0a22dc3f1d9dc4d5deb
aa065e52e15014f1eea4e830fb45c6b48ebdcd1c
0bd53ccf51f771b72eca9e7677560d95a3dd624abccd81fd6900c6317ccd9660
GET /wp-content/uploads/2021/02/miui-themes.jpg HTTP/1.1
Host: migadget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/faq/temy-na-xiaomi-miui.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Fri, 02 Sep 2022 12:31:34 GMT
content-type: image/jpeg
content-length: 41066
last-modified: Fri, 31 Dec 2021 07:10:46 GMT
etag: "61ceacf6-a06a"
expires: Sun, 02 Oct 2022 12:31:34 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
migadget.ru/wp-content/uploads/2020/02/logo.png
87.236.16.214200 OK 4.8 kB URL HTTP/2 migadget.ru/wp-content/uploads/2020/02/logo.png
IP 87.236.16.214:0
File type PNG image data, 250 x 78, 8-bit colormap, non-interlaced\012- data
Hash 82b8bf7694b17d88e8117bc9faa99892
a4d409e96e357bef0fd9ceac5565535daf0b9209
09c161c600e26fff69f2bcbc29b38d3fc341ba8b778488ef217ba5bc81f5d225
GET /wp-content/uploads/2020/02/logo.png HTTP/1.1
Host: migadget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/faq/temy-na-xiaomi-miui.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Fri, 02 Sep 2022 12:31:34 GMT
content-type: image/png
content-length: 4799
last-modified: Thu, 30 Dec 2021 21:35:40 GMT
etag: "61ce262c-12bf"
expires: Sun, 02 Oct 2022 12:31:34 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
migadget.ru/wp-content/cache/wmac/css/wmac_72446be90ba0c44073e5e5a7b686ba3a.css
87.236.16.214200 OK 3.2 kB URL HTTP/2 migadget.ru/wp-content/cache/wmac/css/wmac_72446be90ba0c44073e5e5a7b686ba3a.css
IP 87.236.16.214:0
Hash 847d2588ce3f2099e45b71a96dfd19d1
3368a0c0f98f49357b118746b052a3ea0a1a8b29
183f3c42a650f4ed6f5577ef90e87011a58cb235ceba5fd8dfcf031206c5f999
GET /wp-content/cache/wmac/css/wmac_72446be90ba0c44073e5e5a7b686ba3a.css HTTP/1.1
Host: migadget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/faq/temy-na-xiaomi-miui.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Fri, 02 Sep 2022 12:31:34 GMT
content-type: text/css
last-modified: Tue, 28 Jun 2022 08:59:54 GMT
vary: Accept-Encoding
etag: W/"62bac30a-4579"
expires: Fri, 09 Sep 2022 12:31:34 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.215.91.121101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.91.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: g5vjX5A+//ttBYATLQ9l5A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NVDeW3IIdGZbzUCOR9+RZ6gCMQk=
migadget.ru/wp-content/plugins/wp-appbox/img/googleplay.png
87.236.16.214200 OK 3.1 kB URL HTTP/2 migadget.ru/wp-content/plugins/wp-appbox/img/googleplay.png
IP 87.236.16.214:0
File type PNG image data, 41 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 41b7247e20a8816cc2214f03f330497a
0821149300e13e0ba63728b60aaa4ada79165b12
e4b48f4491c7e94e135cf77040a96ff8cf365032401edb7f21e0591d3a102419
GET /wp-content/plugins/wp-appbox/img/googleplay.png HTTP/1.1
Host: migadget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/wp-content/cache/wmac/css/wmac_72446be90ba0c44073e5e5a7b686ba3a.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Fri, 02 Sep 2022 12:31:34 GMT
content-type: image/png
content-length: 3106
last-modified: Mon, 07 Mar 2022 11:24:27 GMT
etag: "6225eb6b-c22"
expires: Sun, 02 Oct 2022 12:31:34 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
migadget.ru/wp-content/plugins/wp-appbox/img/stars-sprites-monochrome.png
87.236.16.214200 OK 2.5 kB URL HTTP/2 migadget.ru/wp-content/plugins/wp-appbox/img/stars-sprites-monochrome.png
IP 87.236.16.214:0
File type PNG image data, 65 x 143, 8-bit colormap, non-interlaced\012- data
Hash 2455d4168fa711ea0aae97ac4c7d3694
31b5e4e2f455d20fe6b57a3c4015e98e139754c3
f4097e6b1fa4e527a3ebddb380d144392a690b5396bf7688e99a91c2eb7fbf55
GET /wp-content/plugins/wp-appbox/img/stars-sprites-monochrome.png HTTP/1.1
Host: migadget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/wp-content/cache/wmac/css/wmac_72446be90ba0c44073e5e5a7b686ba3a.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Fri, 02 Sep 2022 12:31:34 GMT
content-type: image/png
content-length: 2481
last-modified: Mon, 07 Mar 2022 11:24:27 GMT
etag: "6225eb6b-9b1"
expires: Sun, 02 Oct 2022 12:31:34 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 18:53:20 GMT
expires: Tue, 29 Aug 2023 18:53:20 GMT
cache-control: public, max-age=31536000
age: 322694
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
migadget.ru/faq/temy-na-xiaomi-miui.html
87.236.16.214200 OK 219 kB URL HTTP/2 migadget.ru/faq/temy-na-xiaomi-miui.html
IP 87.236.16.214:0
Size 219 kB (218619 bytes)
Hash e688037c60b9f624f1be04d87eea50c7
3bcb9344112e2a07ca6b706b2140cda5c42281a0
d2a3a9125dae51b907ecc8169b07e2178c644001d64f04184ff87a20344ceb09
GET /faq/temy-na-xiaomi-miui.html HTTP/1.1
Host: migadget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Fri, 02 Sep 2022 12:31:34 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.25
last-modified: Tue, 23 Feb 2021 09:41:16 GMT
link: <https://migadget.ru/wp-json/>; rel="https://api.w.org/", <https://migadget.ru/wp-json/wp/v2/posts/2156>; rel="alternate"; type="application/json"
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
migadget.ru/wp-content/uploads/2021/03/dozator-xiaomi-335x220.jpg
87.236.16.214200 OK 15 kB URL HTTP/2 migadget.ru/wp-content/uploads/2021/03/dozator-xiaomi-335x220.jpg
IP 87.236.16.214:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=9, orientation=upper-left, xresolution=122, yresolution=130, resolutionunit=2, software=ACD Systems Digital Imaging, datetime=2021:03:12 12:34:16], baseline, precision 8, 335x220, components 3\012- data
Hash c89c67aae66d95d7cb1b48551f19f02f
4f4e656725dc2058c98f73ab4e818ccda9081bcb
ba9abed932a9a3b620e079f9cf7930c96438134878335f13574cbf40bdaebbee
GET /wp-content/uploads/2021/03/dozator-xiaomi-335x220.jpg HTTP/1.1
Host: migadget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/faq/temy-na-xiaomi-miui.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Fri, 02 Sep 2022 12:31:34 GMT
content-type: image/jpeg
content-length: 15110
last-modified: Fri, 12 Mar 2021 10:39:35 GMT
etag: "604b44e7-3b06"
expires: Sun, 02 Oct 2022 12:31:34 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
migadget.ru/wp-content/uploads/2017/11/xiaomi-in-aliexpress-335x220.jpg
87.236.16.214200 OK 15 kB URL HTTP/2 migadget.ru/wp-content/uploads/2017/11/xiaomi-in-aliexpress-335x220.jpg
IP 87.236.16.214:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, software=ACD Systems Digital Imaging, datetime=2018:10:06 15:52:21], baseline, precision 8, 335x220, components 3\012- data
Hash f16487440f6f0f7f966db0fad36c922a
67418a815b9a8388a520090b8baf73b091e583d9
48a6c55327d47903ef3dc0d7c70d1face511c771f1fb7024093fcb6fab42ca30
GET /wp-content/uploads/2017/11/xiaomi-in-aliexpress-335x220.jpg HTTP/1.1
Host: migadget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/faq/temy-na-xiaomi-miui.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Fri, 02 Sep 2022 12:31:34 GMT
content-type: image/jpeg
content-length: 15177
last-modified: Thu, 06 Feb 2020 16:26:33 GMT
etag: "5e3c3e39-3b49"
expires: Sun, 02 Oct 2022 12:31:34 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
migadget.ru/wp-content/uploads/2020/01/delete-apps-in-xiaomi-335x220.jpg
87.236.16.214200 OK 17 kB URL HTTP/2 migadget.ru/wp-content/uploads/2020/01/delete-apps-in-xiaomi-335x220.jpg
IP 87.236.16.214:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 335x220, components 3\012- data
Hash 565ef8afbcf6dfe22316693acd08e2a3
19e959739b2e0f3f45740bcaec12d59c6371e218
6fca26873c0352be03aa79ab4f2b52c89494104391fb38bf894559220ab1c048
GET /wp-content/uploads/2020/01/delete-apps-in-xiaomi-335x220.jpg HTTP/1.1
Host: migadget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/faq/temy-na-xiaomi-miui.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Fri, 02 Sep 2022 12:31:34 GMT
content-type: image/jpeg
content-length: 17353
last-modified: Sat, 01 Feb 2020 18:23:12 GMT
etag: "5e35c210-43c9"
expires: Sun, 02 Oct 2022 12:31:34 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
migadget.ru/wp-content/uploads/2018/12/pamyat-xiaomi-kak-ochistit-335x220.jpg
87.236.16.214200 OK 14 kB URL HTTP/2 migadget.ru/wp-content/uploads/2018/12/pamyat-xiaomi-kak-ochistit-335x220.jpg
IP 87.236.16.214:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 335x220, components 3\012- data
Hash fccee5aabe50fdd2e477af5533d0d2ad
162846404db655ba51a49f685af5b245b96e1235
3722ce6def53947dd153b36f1579dd43535cacc244ca7b97470a07e64d2d665d
GET /wp-content/uploads/2018/12/pamyat-xiaomi-kak-ochistit-335x220.jpg HTTP/1.1
Host: migadget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/faq/temy-na-xiaomi-miui.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Fri, 02 Sep 2022 12:31:34 GMT
content-type: image/jpeg
content-length: 13932
last-modified: Sat, 01 Feb 2020 19:19:32 GMT
etag: "5e35cf44-366c"
expires: Sun, 02 Oct 2022 12:31:34 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
migadget.ru/wp-content/cache/wmac/js/wmac_5258f6e0ee2dfa61dd5575de373dfc08.js
87.236.16.214200 OK 127 kB URL HTTP/2 migadget.ru/wp-content/cache/wmac/js/wmac_5258f6e0ee2dfa61dd5575de373dfc08.js
IP 87.236.16.214:0
Size 127 kB (126808 bytes)
Hash 0f495ddce042927a197e27cb085e9039
a26d1a576ec75ea34f84534be98cdd3e96a74a7a
478892ae5363955276094a7003bffb6a185276af19d717a2f2f619fbfb2043b5
GET /wp-content/cache/wmac/js/wmac_5258f6e0ee2dfa61dd5575de373dfc08.js HTTP/1.1
Host: migadget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/faq/temy-na-xiaomi-miui.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Fri, 02 Sep 2022 12:31:34 GMT
content-type: application/x-javascript
last-modified: Tue, 28 Jun 2022 08:59:54 GMT
vary: Accept-Encoding
etag: W/"62bac30a-55414"
expires: Fri, 09 Sep 2022 12:31:34 GMT
cache-control: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b58d12316d2671bdb51acd6f258bf6fe
e68a8cb68c38302c66704a1925274c9bda8ee013
4185409552b5356673b8037781e84094eb06a1622bf73f771071e1128a4d1419
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5939
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:35 GMT
Last-Modified: Fri, 02 Sep 2022 10:52:36 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 8c878d7d117d9cf21b280dfe2396170e
d4b6aca8a8b49f6e3b7c319ae96f6591187350fb
abe95553d7e660c30dd12355a0be5c0769eb793c21728feae89af3d52c8b75a0
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 12:31:35 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Tue, 06 Sep 2022 08:50:03 GMT
ETag: "d4b6aca8a8b49f6e3b7c319ae96f6591187350fb"
Last-Modified: Fri, 02 Sep 2022 08:50:04 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2920
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 744643763bf60b31-OSL
mc.yandex.ru/watch/68034574/1?wmode=7&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aa8mjefddwss4ne717e2g%3Afp%3A1488%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A780%3Acn%3A1%3Adp%3A0%3Als%3A1139708590007%3Ahid%3A229973812%3Az%3A0%3Ai%3A20220902123133%3Aet%3A1662121894%3Ac%3A1%3Arn%3A775062168%3Arqn%3A1%3Au%3A16621218941011640384%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662121892205%3Ads%3A0%2C132%2C559%2C0%2C377%2C0%2C%2C478%2C%2C%2C%2C%2C%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662121894%3At%3A%D0%A2%D0%B5%D0%BC%D1%8B%20%D0%BD%D0%B0%20Xiaomi%20%28MIUI%29%3A%20%D0%BE%D0%B1%D0%B7%D0%BE%D1%80%20%D0%BB%D1%83%D1%87%D1%88%D0%B8%D1%85%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D0%BE%D0%BC%D0%B5%D0%BD%D1%8F%D1%82%D1%8C%20%D1%82%D0%B5%D0%BC%D1%83%2C%20%D1%81%D0%BE%D0%B7%D0%B4%D0%B0%D1%82%D1%8C%20%D1%81%D0%B2%D0%BE%D1%8E%2C%20%D0%B2%D0%B5%D1%80%D0%BD%D1%83%D1%82%D1%8C%20%D1%81%D1%82%D0%B0%D0%BD%D0%B4%D0%B0%D1%80%D1%82%D0%BD%D1%83%D1%8E%20%D0%BF%D0%BE%20%D1%83%D0%BC%D0%BE%D0%BB%D1%87%D0%B0%D0%BD%D0%B8%D1%8E&t=gdpr%2814%29aw%281%29fip%281%29ti%282%29
87.250.251.119200 OK 400 B URL HTTP/2 mc.yandex.ru/watch/68034574/1?wmode=7&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aa8mjefddwss4ne717e2g%3Afp%3A1488%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A780%3Acn%3A1%3Adp%3A0%3Als%3A1139708590007%3Ahid%3A229973812%3Az%3A0%3Ai%3A20220902123133%3Aet%3A1662121894%3Ac%3A1%3Arn%3A775062168%3Arqn%3A1%3Au%3A16621218941011640384%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662121892205%3Ads%3A0%2C132%2C559%2C0%2C377%2C0%2C%2C478%2C%2C%2C%2C%2C%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662121894%3At%3A%D0%A2%D0%B5%D0%BC%D1%8B%20%D0%BD%D0%B0%20Xiaomi%20%28MIUI%29%3A%20%D0%BE%D0%B1%D0%B7%D0%BE%D1%80%20%D0%BB%D1%83%D1%87%D1%88%D0%B8%D1%85%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D0%BE%D0%BC%D0%B5%D0%BD%D1%8F%D1%82%D1%8C%20%D1%82%D0%B5%D0%BC%D1%83%2C%20%D1%81%D0%BE%D0%B7%D0%B4%D0%B0%D1%82%D1%8C%20%D1%81%D0%B2%D0%BE%D1%8E%2C%20%D0%B2%D0%B5%D1%80%D0%BD%D1%83%D1%82%D1%8C%20%D1%81%D1%82%D0%B0%D0%BD%D0%B4%D0%B0%D1%80%D1%82%D0%BD%D1%83%D1%8E%20%D0%BF%D0%BE%20%D1%83%D0%BC%D0%BE%D0%BB%D1%87%D0%B0%D0%BD%D0%B8%D1%8E&t=gdpr%2814%29aw%281%29fip%281%29ti%282%29
IP 87.250.251.119:0
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash f0e3193d08a671d85f67a14f3638e281
5fd5c2492b2535ef5d6c9308c23311778404e40a
c06b285677d94ad7aacd7abee8ecd11292748de0084de7c56bbb1d04b97b4396
GET /watch/68034574/1?wmode=7&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aa8mjefddwss4ne717e2g%3Afp%3A1488%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A780%3Acn%3A1%3Adp%3A0%3Als%3A1139708590007%3Ahid%3A229973812%3Az%3A0%3Ai%3A20220902123133%3Aet%3A1662121894%3Ac%3A1%3Arn%3A775062168%3Arqn%3A1%3Au%3A16621218941011640384%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662121892205%3Ads%3A0%2C132%2C559%2C0%2C377%2C0%2C%2C478%2C%2C%2C%2C%2C%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662121894%3At%3A%D0%A2%D0%B5%D0%BC%D1%8B%20%D0%BD%D0%B0%20Xiaomi%20%28MIUI%29%3A%20%D0%BE%D0%B1%D0%B7%D0%BE%D1%80%20%D0%BB%D1%83%D1%87%D1%88%D0%B8%D1%85%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D0%BE%D0%BC%D0%B5%D0%BD%D1%8F%D1%82%D1%8C%20%D1%82%D0%B5%D0%BC%D1%83%2C%20%D1%81%D0%BE%D0%B7%D0%B4%D0%B0%D1%82%D1%8C%20%D1%81%D0%B2%D0%BE%D1%8E%2C%20%D0%B2%D0%B5%D1%80%D0%BD%D1%83%D1%82%D1%8C%20%D1%81%D1%82%D0%B0%D0%BD%D0%B4%D0%B0%D1%80%D1%82%D0%BD%D1%83%D1%8E%20%D0%BF%D0%BE%20%D1%83%D0%BC%D0%BE%D0%BB%D1%87%D0%B0%D0%BD%D0%B8%D1%8E&t=gdpr%2814%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://migadget.ru
Referer: https://migadget.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Fri, 02 Sep 2022 12:31:35 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://migadget.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:35 GMT
last-modified: Fri, 02-Sep-2022 12:31:35 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
rotarb.bid/23qsm.json
46.4.104.244200 OK 1.5 kB IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7093), with no line terminators
Hash ced3deb590b85a51f037021b33c513ea
7fb4aad6ebae589fe59e78b96b41ac3af5f936a0
f5e3a4e5aa3b974e361499bf98763e3638a58432884938721585db07c11ce203
Analyzer Verdict Alert quad9 Sinkholed
POST /23qsm.json HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 386
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:35 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
migadget.ru/wp-content/uploads/2017/09/cropped-logo-192x192.png
87.236.16.214200 OK 3.3 kB URL HTTP/2 migadget.ru/wp-content/uploads/2017/09/cropped-logo-192x192.png
IP 87.236.16.214:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 6173c260c938945e366235e4271fdff6
b46d85d1359eb81f5936633546f069bb3b2358e5
9c8ecca7b858c68638c4b2a50065166a58e7c05262d76a8253147e3396fb27bf
GET /wp-content/uploads/2017/09/cropped-logo-192x192.png HTTP/1.1
Host: migadget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/faq/temy-na-xiaomi-miui.html
Cookie: _ym_uid=16621218941011640384; _ym_d=1662121894; flat_r_mb=%2F%2F%2F%3Adirect
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Fri, 02 Sep 2022 12:31:35 GMT
content-type: image/png
content-length: 3349
last-modified: Sat, 02 Sep 2017 19:01:25 GMT
etag: "59ab0005-d15"
expires: Sun, 02 Oct 2022 12:31:35 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
migadget.ru/wp-content/uploads/2017/09/cropped-logo-32x32.png
87.236.16.214200 OK 405 B URL HTTP/2 migadget.ru/wp-content/uploads/2017/09/cropped-logo-32x32.png
IP 87.236.16.214:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 3889a741d5d078aba8d4f108bab4cbd6
6e8e43e0d0569ada09ed3ed0afc32df632254e08
53b51d9f0f31c778b0c758df1b19e198ca65d92711b3df219d943d1ef8b342fe
GET /wp-content/uploads/2017/09/cropped-logo-32x32.png HTTP/1.1
Host: migadget.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/faq/temy-na-xiaomi-miui.html
Cookie: _ym_uid=16621218941011640384; _ym_d=1662121894; flat_r_mb=%2F%2F%2F%3Adirect
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx-reuseport/1.21.1
date: Fri, 02 Sep 2022 12:31:35 GMT
content-type: image/png
content-length: 405
last-modified: Sat, 02 Sep 2017 19:01:25 GMT
etag: "59ab0005-195"
expires: Sun, 02 Oct 2022 12:31:35 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f4f9dc502e2ff07dd351da7bbc20e323
739b6c8334472846232b84b99989be93dc1582d4
0852238945d340493f33e498b75a893d24681f2687fdc05349476faccf426efd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2280
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:35 GMT
Last-Modified: Fri, 02 Sep 2022 11:53:35 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 6f0d13621a550aa591f087c2945aa2c5
18b520f7f9a71966c115f664def155bcacc60096
cf7e40d37010a5aa8ab4cb3091bd665b7401fa42fac3b1de62ca7a48c6b89b4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ad09a80249e2e90386b2f90775392c11
d35ae8865263214aac90a39db3979704ed702815
6ad2875361a5d443c374eff54fb1f510dff13c254f7c0bc31580bf3967481048
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/metrika/advert.gif
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Sep 2022 12:31:35 GMT
access-control-allow-origin: *
etag: "630f3113-2b"
expires: Fri, 02 Sep 2022 13:31:35 GMT
accept-ranges: bytes
last-modified: Wed, 31 Aug 2022 12:59:47 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
play-lh.googleusercontent.com/jEJuwjmPnmyUajSgtHf7aLZ6YzQoQikP9yDD1INgyB7SV7NR-1lNVJ5XGvcfd661LOc=s128-h480
142.250.74.54200 OK 6.6 kB URL HTTP/2 play-lh.googleusercontent.com/jEJuwjmPnmyUajSgtHf7aLZ6YzQoQikP9yDD1INgyB7SV7NR-1lNVJ5XGvcfd661LOc=s128-h480
IP 142.250.74.54:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 178a8f1bbb2174701ff187f147492475
bb1eafdbbbfacd339c3ee197efd0086bdba5926f
6c870807dde4c521c081ef36ce5f908a62c5e4be8ff0e50a1c4bbe9deff669f7
GET /jEJuwjmPnmyUajSgtHf7aLZ6YzQoQikP9yDD1INgyB7SV7NR-1lNVJ5XGvcfd661LOc=s128-h480 HTTP/1.1
Host: play-lh.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sat, 03 Sep 2022 12:31:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 02 Sep 2022 12:31:35 GMT
server: fife
content-length: 6635
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 147447
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
chart.googleapis.com/chart?cht=qr&chl=https%3A%2F%2Fplay.google.com%2Fstore%2Fapps%2Fdetails%3Fid%3Dcom.mixapplications.miuithemeeditor&chs=200x200&chld=L%7C0
142.250.74.42200 OK 1.4 kB URL HTTP/2 chart.googleapis.com/chart?cht=qr&chl=https%3A%2F%2Fplay.google.com%2Fstore%2Fapps%2Fdetails%3Fid%3Dcom.mixapplications.miuithemeeditor&chs=200x200&chld=L%7C0
IP 142.250.74.42:0
File type PNG image data, 200 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash f7438b5c19595a4947dc188567347211
e04ecebb639297e461cbb39520e17d25c6c4cec3
1bd687460d56e2b83a4ed330df66dba61e005836f2178be83d675fb129eb204c
GET /chart?cht=qr&chl=https%3A%2F%2Fplay.google.com%2Fstore%2Fapps%2Fdetails%3Fid%3Dcom.mixapplications.miuithemeeditor&chs=200x200&chld=L%7C0 HTTP/1.1
Host: chart.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-frame-options: ALLOWALL
access-control-allow-origin: *
x-content-type-options: nosniff
server: GoogleChartAPI/1.0
content-length: 1402
x-xss-protection: 1; mode=block
date: Fri, 02 Sep 2022 12:31:35 GMT
expires: Thu, 25 Aug 2022 18:50:44 GMT
cache-control: public, max-age=86400
last-modified: Wed, 02 May 2018 18:35:04 GMT
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
graph.facebook.com/?id=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&callback=goodshare_017483123560490255
31.13.72.8200 OK 184 B URL HTTP/2 graph.facebook.com/?id=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&callback=goodshare_017483123560490255
IP 31.13.72.8:0
Hash 37a54d28fa3b6dd3b340453043147572
09b256d58af292b7d673fa99d23ba3bdba4fb788
801fbdb9a729df6e4148ef3e8db3661f080d211de96c2096ee5915895bdf5abe
GET /?id=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&callback=goodshare_017483123560490255 HTTP/1.1
Host: graph.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
vary: Origin, Accept-Encoding
x-fb-rlafr: 0
content-type: text/javascript; charset=UTF-8
www-authenticate: OAuth "Facebook Platform" "invalid_request" "(#2) Service temporarily unavailable"
access-control-allow-origin: *
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
pragma: no-cache
cache-control: no-store
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-fb-request-id: Ax6ZD5B8iqfcgoZsTQkNpco
x-fb-trace-id: EY8hBfXi9D9
x-fb-rev: 1006139826
x-fb-debug: Fc1pHhUdW3OUXSO/ZV5bOSwPM7YcacGcy+pne4H9YPcVeAZtaLz0sb8Isk2lut+Ph4j2tj34N6TvNjIcsGHzew==
content-length: 184
date: Fri, 02 Sep 2022 12:31:35 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2
142.250.74.163200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 9644, version 1.0\012- data
Hash 6f112ec2b932ee12379442c42853244e
b2e73c8c70d6261e1d187f41693c43ac4fe0809d
6a84eeee6a25e7c9a8a03191007a6720566b5a2aa2384d36168fb07f49e97e9e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9644
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:41 GMT
expires: Thu, 31 Aug 2023 19:34:41 GMT
cache-control: public, max-age=31536000
age: 147414
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 147447
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
142.250.74.163200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data
Hash d9ac47c7e500fb7083b8d595eaf6fe12
112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933
495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 06:19:49 GMT
expires: Fri, 01 Sep 2023 06:19:49 GMT
cache-control: public, max-age=31536000
age: 108706
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.ok.ru/dk?st.cmd=extLike&uid=1&ref=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html
217.20.147.3200 OK 57 kB URL HTTP/2 connect.ok.ru/dk?st.cmd=extLike&uid=1&ref=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html
IP 217.20.147.3:0
File type ASCII text, with no line terminators
Hash 6ee1394cfb5f37572a100556f2f7ed14
b589f9c5ddad4414fc86e1d3eb790151393b1ce5
398e09a226e4b17e3d24a572c9db987e991b2035d55295426e97f04593a055b4
GET /dk?st.cmd=extLike&uid=1&ref=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html HTTP/1.1
Host: connect.ok.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: apache
date: Fri, 02 Sep 2022 12:31:35 GMT
content-type: application/javascript;charset=UTF-8
vary: Accept-Encoding
set-cookie: bci=-1593281335152711057; Domain=.ok.ru; Expires=Wed, 20-Sep-2090 15:45:42 GMT; Path=/; Secure; HttpOnly
_statid=82749595-9d8b-4645-b48c-41549d1df73d; Domain=.ok.ru; Expires=Wed, 20-Sep-2090 15:45:42 GMT; Path=/; Secure; HttpOnly
landref=migadget.ru; Domain=.ok.ru; Path=/; Secure
content-security-policy: default-src data: 'self' 'unsafe-inline' 'unsafe-eval' ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me wss://ad.mail.ru *.mail.ru *.imgsmail.ru *.mradx.net *.serving-sys.com *.googleapis.com *.gstatic.com www.google.com https://api-maps.yandex.ru yastatic.net yandex.st *.doubleverify.com *.adsafeprotected.com https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://football.sportmail.ru *.google.ru *.google.com *.googlesyndication.com *.yandex.ru blob:; script-src 'unsafe-inline' 'unsafe-eval' *.mail.ru https://*.mail.ru *.imgsmail.ru *.mradx.net ok.ru *.ok.ru odnoklassniki.ru *.odnoklassniki.ru mycdn.me http://*.mycdn.me https://*.mycdn.me mc.yandex.ru an.yandex.ru yastatic.net yandex.st *.google-analytics.com api-maps.yandex.ru https://api-maps.yandex.ru https://clck.yandex.ru *.googleapis.com *.gstatic.com www.google.com www.youtube.com https://www.youtube.com *.ytimg.com https://*.ytimg.com *.doubleverify.com *.dvtps.com *.doubleclick.net *.googletagservices.com *.googlesyndication.com *.googleadservices.com *.goodgame.ru https://*.goodgame.ru https://*.moatads.com *.adlooxtracking.com *.adlooxtracking.ru *.adsafeprotected.com *.serving-sys.com *.serving-sys.ru *.weborama.fr *.weborama-tech.ru https://enterprise.api-maps.yandex.ru https://suggest-maps.yandex.ru https://*.hit.gemius.pl https://consentmanager.mgr.consensu.org https://cdn.consentmanager.mgr.consensu.org https://gum.criteo.com https://football.sportmail.ru *.googletagmanager.com connect.facebook.net *.google.ru *.google.com *.googlesyndication.com yandex.ru; worker-src blob: 'self'; connect-src * wss: blob:; font-src * data: blob:; frame-src * blob: 'self'; img-src * data: blob: about:; media-src * data: blob:; object-src *; report-uri /csp/report;
content-security-policy-report-only: default-src data: blob: about: 'self' 'unsafe-inline' 'unsafe-eval' https: wss:; report-uri /csp/report?always;
cache-control: no-cache, no-store
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=63072000;includeSubdomains;preload
access-control-allow-origin: *
access-control-allow-credentials: true
rendered-blocks: WidgetExtLike
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
142.250.74.163200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Hash abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:47:56 GMT
expires: Thu, 31 Aug 2023 19:47:56 GMT
cache-control: public, max-age=31536000
age: 146619
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xMIzIFKw.woff2
142.250.74.163200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xMIzIFKw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 10292, version 1.0\012- data
Hash 5bdb5a70335e7a4462e02f8c45decb57
1c98607dae007f36fcc31ccc15df771fb925f543
a6933e678530b263486fa7b185a449cac947e1496ef61d496642032f339e9e43
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xMIzIFKw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 20:06:14 GMT
expires: Thu, 31 Aug 2023 20:06:14 GMT
cache-control: public, max-age=31536000
age: 145521
last-modified: Wed, 11 May 2022 19:24:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
counter.yadro.ru/hit?t57.1;r;s1280*1024*24;uhttps%3A//migadget.ru/faq/temy-na-xiaomi-miui.html;0.012820999779247444
88.212.202.52200 OK 672 B URL HTTP/1.1 counter.yadro.ru/hit?t57.1;r;s1280*1024*24;uhttps%3A//migadget.ru/faq/temy-na-xiaomi-miui.html;0.012820999779247444
IP 88.212.202.52:0
ASN #39134 United Network LLC
File type GIF image data, version 89a, 88 x 31\012- data
Hash 960e8ee774a81fdbd72dc6322529dbfb
12441842e2ff4a591b61a8ceb9b49067b8db8f40
3e25b0478e495776aeb31dbca4c92a9bffbad68161f91e261ef88aaf4ea2dd71
GET /hit?t57.1;r;s1280*1024*24;uhttps%3A//migadget.ru/faq/temy-na-xiaomi-miui.html;0.012820999779247444 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Fri, 02 Sep 2022 12:31:35 GMT
Content-Type: image/gif
Content-Length: 672
Connection: keep-alive
Expires: Wed, 01 Sep 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 342b044e99a7a211c17e4f6750495b15
995a552dedda5a2cc69dbea4a4b7abea3f86a651
f467784a45b49e7cc8f121edd668fdf073076ff4b2b94a0fc81e25b7fe537e3c
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 12:31:35 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Tue, 06 Sep 2022 09:55:18 GMT
ETag: "995a552dedda5a2cc69dbea4a4b7abea3f86a651"
Last-Modified: Fri, 02 Sep 2022 09:55:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 641
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 744643795a040b06-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f4f9dc502e2ff07dd351da7bbc20e323
739b6c8334472846232b84b99989be93dc1582d4
0852238945d340493f33e498b75a893d24681f2687fdc05349476faccf426efd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2280
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:35 GMT
Last-Modified: Fri, 02 Sep 2022 11:53:35 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ad09a80249e2e90386b2f90775392c11
d35ae8865263214aac90a39db3979704ed702815
6ad2875361a5d443c374eff54fb1f510dff13c254f7c0bc31580bf3967481048
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 940 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 66c1b848e849d1280b4e76c1485956b8
214b9e3677a59c7acdc152eb89e1ca583f275b3a
2b038a9d3ac84151cf740beb9b49a4721f8ea66b8ce8737b0ac6b0de08a0308f
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 12:31:35 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Tue, 06 Sep 2022 08:38:36 GMT
ETag: "214b9e3677a59c7acdc152eb89e1ca583f275b3a"
Last-Modified: Fri, 02 Sep 2022 08:38:37 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1104
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74464379980b0b31-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 6f0d13621a550aa591f087c2945aa2c5
18b520f7f9a71966c115f664def155bcacc60096
cf7e40d37010a5aa8ab4cb3091bd665b7401fa42fac3b1de62ca7a48c6b89b4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rotarb.bid/23qsm.min.js?4bffd1b
46.4.104.244200 OK 19 kB URL HTTP/2 rotarb.bid/23qsm.min.js?4bffd1b
IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
File type Unicode text, UTF-8 text, with very long lines (63119), with no line terminators
Hash abe646d2ed206c13e4d9c730400b24bf
c3b6d25e21042ba7b0c02626cf79306a2d4db163
e10ef489b51f7b45031630ac5f965521cdae95ffb1a8c9be73b3b31a2b1a90a5
Analyzer Verdict Alert quad9 Sinkholed
GET /23qsm.min.js?4bffd1b HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:34 GMT
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
cache-control: max-age=300
expires: Fri, 02-Sep-2022 15:36:34 EEST
duration: 556427
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
rotarb.bid/23qsm.json
46.4.104.244200 OK 567 B IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Hash e684e50dc14449b7f7bb33aabd484a28
c496534a0dca63df0313634f7db86fcbadf5c92c
a1b1a37548e549f8e79b86dc02021cc7fd8266e883868b0cfc51792c6bb60524
Analyzer Verdict Alert quad9 Sinkholed
GET /23qsm.json HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:34 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.225200 OK 503 B IP 23.36.76.225:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6032
Expires: Fri, 02 Sep 2022 14:12:08 GMT
Date: Fri, 02 Sep 2022 12:31:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cfd0462-8823-4971-b883-caf554e900df.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cfd0462-8823-4971-b883-caf554e900df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62010c86472d14f87499b41dc46c12e4
d15de8ceb6fef98b46a87aec2e071c909efd2973
0fd93286e0381c85fa0db6cca62c4736b7a3837efcd035d25f7a4d948d9a0af0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cfd0462-8823-4971-b883-caf554e900df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8381
x-amzn-requestid: fcfbb9fb-66bd-40db-9088-d7c6110675bd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjbGLToAMF6Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-75d4a2991a1bbf266e81c2e2;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: _HYMbSu2Xdv2-CWi2SPHdhsGCkJbarEhaO0l3jmBjNaKYuaoZAUgyA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
age: 53650
etag: "d15de8ceb6fef98b46a87aec2e071c909efd2973"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg
34.120.237.76200 OK 17 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 12756903aaa74164feb5f8525398ca36
9fef9b071daea6793cbbdfe391254ac4326b1aa2
6d474a6d96aebfed43a4f6812f18a1be8d100c590f75eb0fbf4ec7277dd0c442
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16818
x-amzn-requestid: fa921878-2054-453b-b313-681cdd9c9068
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj-Z_HUNIAMFltg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b110c-053ce81943fea70c2de7daa0;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 06:54:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 69fDjN-ZeYA8RVO_WGTY1KQHZ1t3PNdWIwq3ax1e1wKmuPODyGCMcQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 14:46:29 GMT
age: 78307
etag: "9fef9b071daea6793cbbdfe391254ac4326b1aa2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 955f2a35bd6b3802670e7fa8a7cda833
4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6DJbsUGTdXT42cNLTDq6Uz28H2SDhwq6drdKP4axAHsBz471X7r_g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
age: 53650
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5ba50b2fd1814c5ffc95aef40c69ce8c
cbb4546228115cccc122b16209e70171bef5c1f2
de822c8549508b28a07d29b203ae3ef356470df906cba727fc765f1bd14bb866
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9252
x-amzn-requestid: 7feebba8-f6b9-4b79-9726-5a7534da277e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyVG5DoAMF_Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112675-3123158f3dcfbd476537ca3c;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BOa5zGQyJS9q9bHmtKzlNtyS9ToGPZJkDFo2uY2lzz8Lnd3cZLQEaA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:01:10 GMT
age: 52226
etag: "cbb4546228115cccc122b16209e70171bef5c1f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfd29a2d-3498-41a7-af26-6104f50c81c8.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfd29a2d-3498-41a7-af26-6104f50c81c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 25983224daee47c629690b65e7db685b
6f144e4e28ba6dfb56860b187a224cfbc23b50bb
2ada67937844f22cf524d39cf034ae5e49dd892c4b2e70af31cec62c747e3762
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfd29a2d-3498-41a7-af26-6104f50c81c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10015
x-amzn-requestid: 28b44607-90c3-42b0-9a47-5ffd4f670347
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLlfGBqIAMFWqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112622-38788fd737d1b6a35acc1fee;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zMXXwsarlTt3JoospInef1pe4wZKTV_YmnM_ZXD79XLq1f9aZzSl1w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:38:30 GMT
age: 53586
etag: "6f144e4e28ba6dfb56860b187a224cfbc23b50bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e05660322f0368dd2bf8067d7e4554d
ec65cb47d86488f734c945a210d5f636a40fea2c
98875230ec45766102191bdc4180742fa3b8f3ad5ad1a128d12437105f86247e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6196
x-amzn-requestid: a7d6ce70-06d7-498c-8024-80185a3fc3e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyLFmVIAMFkcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112674-3fad622927177e9236d7c50a;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wLezqM4_yKqtOR7D43beBqm8TAD5y8eQ7xHOxjDJdHchCpyusuzMuQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:55:46 GMT
etag: "ec65cb47d86488f734c945a210d5f636a40fea2c"
content-type: image/jpeg
age: 52550
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 003e8a2cb35bb65683fccbf8bf7a9797
b26fbc7607825162686c7e164d51956addeb1a6c
a71ec1144878270f76c09c51967a1d24b7d82dd700e83216be1e814a74796403
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20220831/r20190131/zrt_lookup.html
216.58.207.194200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220831/r20190131/zrt_lookup.html
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 09a8bd805dba1307ae0bd76a0c9ca73d
bdc16e7610abae944da47ff3a0e5fea818241fb0
e3978f36e9c5f0b909ed64015db629e2c64b46e75d165c6d1d146fcb792cdbde
GET /pagead/html/r20220831/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4412
x-xss-protection: 0
date: Thu, 01 Sep 2022 23:39:48 GMT
expires: Thu, 15 Sep 2022 23:39:48 GMT
cache-control: public, max-age=1209600
age: 46308
etag: 8616628553774171045
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f6a10707a425f088f16a3c0636bb2ca5
3c1b071f41e288ae808c0f441d8c5149bab2c63e
20211ee0e501a51e2ab75d247573d871c6d72158db2f29a5c01f12f0b77af50f
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5049
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:36 GMT
Last-Modified: Fri, 02 Sep 2022 11:07:27 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f6a10707a425f088f16a3c0636bb2ca5
3c1b071f41e288ae808c0f441d8c5149bab2c63e
20211ee0e501a51e2ab75d247573d871c6d72158db2f29a5c01f12f0b77af50f
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5249
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:36 GMT
Last-Modified: Fri, 02 Sep 2022 11:04:07 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f6a10707a425f088f16a3c0636bb2ca5
3c1b071f41e288ae808c0f441d8c5149bab2c63e
20211ee0e501a51e2ab75d247573d871c6d72158db2f29a5c01f12f0b77af50f
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5049
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:36 GMT
Last-Modified: Fri, 02 Sep 2022 11:07:27 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f6a10707a425f088f16a3c0636bb2ca5
3c1b071f41e288ae808c0f441d8c5149bab2c63e
20211ee0e501a51e2ab75d247573d871c6d72158db2f29a5c01f12f0b77af50f
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6206
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:36 GMT
Last-Modified: Fri, 02 Sep 2022 10:48:10 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 003e8a2cb35bb65683fccbf8bf7a9797
b26fbc7607825162686c7e164d51956addeb1a6c
a71ec1144878270f76c09c51967a1d24b7d82dd700e83216be1e814a74796403
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rotarb.bid/23qsm.json
46.4.104.244200 OK 939 B IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Hash 0e41391886c49469801f184ea9ec574d
22f4b3964ab40df8e9f37305180bca0fa32956c0
36bf4ba751fc901e2271ae1cf4d39938fa911c1848bff291aaabe7c8067bc237
Analyzer Verdict Alert quad9 Sinkholed
POST /23qsm.json HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 82
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:35 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
nativerent.ru/ext/article/visit
84.201.172.198204 No Content 0 B URL HTTP/2 nativerent.ru/ext/article/visit
IP 84.201.172.198:0
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /ext/article/visit HTTP/1.1
Host: nativerent.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://migadget.ru/
Origin: https://migadget.ru
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 02 Sep 2022 12:31:36 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: PUT, GET, POST, OPTIONS, HEAD
access-control-allow-headers: Content-Type, X-Ray-ID
access-control-max-age: 600
content-length: 0
X-Firefox-Spdy: h2
nativerent.ru/ext/site/styles?uuid=6254915c64f82
84.201.172.198200 OK 0 B URL HTTP/2 nativerent.ru/ext/site/styles?uuid=6254915c64f82
IP 84.201.172.198:0
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ext/site/styles?uuid=6254915c64f82 HTTP/1.1
Host: nativerent.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 12:31:36 GMT
content-type: text/css; charset=utf-8
content-length: 0
cache-control: max-age=600
expires: Fri, 02 Sep 2022 12:41:36 UTC
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: PUT, GET, POST, OPTIONS, HEAD
access-control-allow-headers: Content-Type, X-Ray-ID
X-Firefox-Spdy: h2
nativerent.ru/ext/article/visit
84.201.172.198200 OK 11 B URL HTTP/2 nativerent.ru/ext/article/visit
IP 84.201.172.198:0
ASN #200350 Yandex.Cloud LLC
File type JSON data\012- , ASCII text, with no line terminators
Hash 062f9c47f1769331fda12202f51c96e0
85ed90ba09b8422f300c8b23e57819f7ecdc5134
abf30a4908dcbdf199a7d086326714792b04c6a9d9bbf1cfe89e786c739c5ca3
POST /ext/article/visit HTTP/1.1
Host: nativerent.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 239
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 12:31:36 GMT
content-type: application/json
content-length: 11
cache-control: max-age=0, no-cache, no-store, must-revalidate
expires: Fri, 02 Sep 2022 12:31:36 UTC
pragma: no-cache
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: PUT, GET, POST, OPTIONS, HEAD
access-control-allow-headers: Content-Type, X-Ray-ID
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 612a1e90ff0aeeb5aba07d1e33e503f0
0ed5f45a058387305268ff1de743f26d88c0bba0
483f1dbc94ebe4f6eeb406c9ca9b9cd4a5e4c90c041c15aeae2e6f156b7b9b66
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 12:31:36 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 06 Sep 2022 10:56:39 GMT
ETag: "0ed5f45a058387305268ff1de743f26d88c0bba0"
Last-Modified: Fri, 02 Sep 2022 10:56:40 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 909
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7446437c3b7d0b31-OSL
tms.dmp.wi-fi.ru/?dmpkit_cid=81460eb5-647b-4d9b-a3e3-7863f294c3da&dmpkit_evid=ab914581-c2bd-45ef-9242-3128c73c48c5&g_adv=nativerent
91.220.120.21200 OK 35 B URL HTTP/2 tms.dmp.wi-fi.ru/?dmpkit_cid=81460eb5-647b-4d9b-a3e3-7863f294c3da&dmpkit_evid=ab914581-c2bd-45ef-9242-3128c73c48c5&g_adv=nativerent
IP 91.220.120.21:0
ASN #202173 MaximaTelecom JSC
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /?dmpkit_cid=81460eb5-647b-4d9b-a3e3-7863f294c3da&dmpkit_evid=ab914581-c2bd-45ef-9242-3128c73c48c5&g_adv=nativerent HTTP/1.1
Host: tms.dmp.wi-fi.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:36 GMT
content-type: application/javascript
content-length: 35
expires: 0
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
set-cookie: dmpuid=J4wuJukfQJeZDFHcaDI2Hg; Version=1; Path=/; Domain=.wi-fi.ru; Expires=Sat, 02 Sep 2023 12:31:36 GMT; SameSite=None; Secure
dmpuid-legacy=J4wuJukfQJeZDFHcaDI2Hg; Version=1; Path=/; Domain=.wi-fi.ru; Expires=Sat, 02 Sep 2023 12:31:36 GMT
pragma: no-cache
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-None-Match,Last-Modified,If-Modified-Since,Keep-Alive,Origin,User-Agent,Vary,X-Mx-ReqToken,X-Requested-With
X-Firefox-Spdy: h2
yastatic.net/safeframe-bundles/0.83/host.js
178.154.131.215200 OK 8.9 kB URL HTTP/2 yastatic.net/safeframe-bundles/0.83/host.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (33703), with no line terminators
Hash f80882bf67cf261aa08d636da095149a
3e5bf3fbdb45c9696f9b925d3e71b2e9777c82cd
4794febaad77bf94edba1c860dbcf9612722ad0a18b95831dad359b0bba4bed6
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 02 Sep 2022 12:31:36 GMT
content-type: text/javascript; charset=utf-8
content-length: 8878
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "f80882bf67cf261aa08d636da095149a"
expires: Sun, 01 Sep 2052 19:04:56 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/641907/f60821e9b87e4e83ebed.js
178.154.131.215200 OK 19 kB URL HTTP/2 yastatic.net/partner-code-bundles/641907/f60821e9b87e4e83ebed.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (65494)
Hash afc85e648b5e6868eec864bd3844addd
52d2ad698a10a1110d5b5390557c2fe7fd114cbe
249c4ce14bf73008feacbd05476e85133afbc8bc140096e7a3e70fa69e006223
GET /partner-code-bundles/641907/f60821e9b87e4e83ebed.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 02 Sep 2022 12:31:36 GMT
content-type: text/javascript; charset=utf-8
content-length: 18629
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "afc85e648b5e6868eec864bd3844addd"
expires: Sun, 01 Sep 2052 19:04:19 GMT
last-modified: Thu, 01 Sep 2022 18:08:06 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/641907/e2bc1b4ba26be48c08ac.js
178.154.131.215200 OK 111 kB URL HTTP/2 yastatic.net/partner-code-bundles/641907/e2bc1b4ba26be48c08ac.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (65497)
Size 111 kB (110740 bytes)
Hash 333a80567c1948377bf309be17aaf5de
7af29aa30d0b3512f6050f618e6b4f7572020f95
cd0268bea0f9b7e5a59eba1e75609accfd73e43e7a25d9c1902b712859082f2a
GET /partner-code-bundles/641907/e2bc1b4ba26be48c08ac.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 02 Sep 2022 12:31:36 GMT
content-type: text/javascript; charset=utf-8
content-length: 110740
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "333a80567c1948377bf309be17aaf5de"
expires: Sun, 01 Sep 2052 19:04:19 GMT
last-modified: Thu, 01 Sep 2022 18:08:06 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/641907/337b10d1b61a921653c1.js
178.154.131.215200 OK 4.5 kB URL HTTP/2 yastatic.net/partner-code-bundles/641907/337b10d1b61a921653c1.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (13535)
Hash 5ac6656aeefb04168e44a8ff1d879a7c
2a912762179d2af64236e486ba8f929c342c431a
1431d3eed9a4f5324946696bbb258ea41fb331ad1f607f3b101a600f71a46fa2
GET /partner-code-bundles/641907/337b10d1b61a921653c1.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 02 Sep 2022 12:31:36 GMT
content-type: text/javascript; charset=utf-8
content-length: 4463
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "5ac6656aeefb04168e44a8ff1d879a7c"
expires: Sun, 01 Sep 2052 19:04:19 GMT
last-modified: Thu, 01 Sep 2022 18:08:05 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash cd1e31c892ecbbf15208725d3fa38f6f
c7e30fec67aa850564a7dd14fb22c71f6bd52087
95dc535fdb7fe218ee8edf035ff60f401ecee705296f3f59bd59741a27c51272
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 12:31:36 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 06 Sep 2022 09:50:11 GMT
ETag: "c7e30fec67aa850564a7dd14fb22c71f6bd52087"
Last-Modified: Fri, 02 Sep 2022 09:50:12 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1726
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7446437e3db20b31-OSL
rotarb.bid/23qsm.json
46.4.104.244200 OK 264 B IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Hash f0ff2ac706fd8bb10a2d44bcef1d249d
cad975d739908d36e54beba4822749d03918fd19
fb1c9424962d681dbd65cbbd424252c287472095e2476587b317d0658288025a
Analyzer Verdict Alert quad9 Sinkholed
POST /23qsm.json HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 259
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:36 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0aae712e1c80eda97fb62f31ed527c78
b0e7042d0c0fc9f34b6bde01292a9d30d9118ee7
4cbcf3c4805ef24821ee501bd5610a51ad3e2ad870e4e2d138c41b164a03ec7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0aae712e1c80eda97fb62f31ed527c78
b0e7042d0c0fc9f34b6bde01292a9d30d9118ee7
4cbcf3c4805ef24821ee501bd5610a51ad3e2ad870e4e2d138c41b164a03ec7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5750c2d8ad348838b41b96ebb27b0b81
86526a56637555a0463df607b7b5cf565a439f27
5cbde2bd32be846c5afb1fce35b0f7de0c4aeec9de4213ddd118467ea70c3e62
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
px.adhigh.net/p/cm/qvnt?u=[[qvant_user_id]]
193.232.150.149302 Found 0 B URL HTTP/2 px.adhigh.net/p/cm/qvnt?u=[[qvant_user_id]]
IP 193.232.150.149:0
ASN #48061 Limited Liability Company GPM Digital Technologies
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/cm/qvnt?u=[[qvant_user_id]] HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Fri, 02 Sep 2022 12:31:36 GMT
content-length: 0
x-backend-id: f16-ru
access-control-allow-origin: *
access-control-allow-credentials: true
set-cookie: gi_u=uPt0YzhRpfsR.AikABlGC_i9rRA;Path=/;Domain=.adhigh.net;Expires=Sat, 02-Sep-2023 12:31:36 GMT;Secure;SameSite=None
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
location: https://px.adhigh.net/p/cm/qvnt?u=[[qvant_user_id]]&bounced=1
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=migadget.ru
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=migadget.ru
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=migadget.ru HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 02 Sep 2022 12:31:36 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/watch/68034574?wmode=7&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aa8mjefddwss4ne717e2g%3Afp%3A1488%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A780%3Acn%3A1%3Adp%3A0%3Als%3A1139708590007%3Ahid%3A229973812%3Az%3A0%3Ai%3A20220902123133%3Aet%3A1662121894%3Ac%3A1%3Arn%3A775062168%3Arqn%3A1%3Au%3A16621218941011640384%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662121892205%3Ads%3A0%2C132%2C559%2C0%2C377%2C0%2C%2C478%2C%2C%2C%2C%2C%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662121894%3At%3A%D0%A2%D0%B5%D0%BC%D1%8B%20%D0%BD%D0%B0%20Xiaomi%20(MIUI)%3A%20%D0%BE%D0%B1%D0%B7%D0%BE%D1%80%20%D0%BB%D1%83%D1%87%D1%88%D0%B8%D1%85%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D0%BE%D0%BC%D0%B5%D0%BD%D1%8F%D1%82%D1%8C%20%D1%82%D0%B5%D0%BC%D1%83%2C%20%D1%81%D0%BE%D0%B7%D0%B4%D0%B0%D1%82%D1%8C%20%D1%81%D0%B2%D0%BE%D1%8E%2C%20%D0%B2%D0%B5%D1%80%D0%BD%D1%83%D1%82%D1%8C%20%D1%81%D1%82%D0%B0%D0%BD%D0%B4%D0%B0%D1%80%D1%82%D0%BD%D1%83%D1%8E%20%D0%BF%D0%BE%20%D1%83%D0%BC%D0%BE%D0%BB%D1%87%D0%B0%D0%BD%D0%B8%D1%8E&t=gdpr(14)aw(1)fip(1)ti(2)
87.250.251.119302 Found 81 kB URL HTTP/2 mc.yandex.ru/watch/68034574?wmode=7&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aa8mjefddwss4ne717e2g%3Afp%3A1488%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A780%3Acn%3A1%3Adp%3A0%3Als%3A1139708590007%3Ahid%3A229973812%3Az%3A0%3Ai%3A20220902123133%3Aet%3A1662121894%3Ac%3A1%3Arn%3A775062168%3Arqn%3A1%3Au%3A16621218941011640384%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662121892205%3Ads%3A0%2C132%2C559%2C0%2C377%2C0%2C%2C478%2C%2C%2C%2C%2C%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662121894%3At%3A%D0%A2%D0%B5%D0%BC%D1%8B%20%D0%BD%D0%B0%20Xiaomi%20(MIUI)%3A%20%D0%BE%D0%B1%D0%B7%D0%BE%D1%80%20%D0%BB%D1%83%D1%87%D1%88%D0%B8%D1%85%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D0%BE%D0%BC%D0%B5%D0%BD%D1%8F%D1%82%D1%8C%20%D1%82%D0%B5%D0%BC%D1%83%2C%20%D1%81%D0%BE%D0%B7%D0%B4%D0%B0%D1%82%D1%8C%20%D1%81%D0%B2%D0%BE%D1%8E%2C%20%D0%B2%D0%B5%D1%80%D0%BD%D1%83%D1%82%D1%8C%20%D1%81%D1%82%D0%B0%D0%BD%D0%B4%D0%B0%D1%80%D1%82%D0%BD%D1%83%D1%8E%20%D0%BF%D0%BE%20%D1%83%D0%BC%D0%BE%D0%BB%D1%87%D0%B0%D0%BD%D0%B8%D1%8E&t=gdpr(14)aw(1)fip(1)ti(2)
IP 87.250.251.119:0
Hash 5deafc1ff01da0dcf76a92861a996ccc
4dd9090dd8357f51bd090df9ad1c41ecfe3f2fbf
4be20a5ddf92b613aa4801ccd3eb1c61675052b1897922b5059894b05ea757a4
GET /watch/68034574?wmode=7&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aa8mjefddwss4ne717e2g%3Afp%3A1488%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A780%3Acn%3A1%3Adp%3A0%3Als%3A1139708590007%3Ahid%3A229973812%3Az%3A0%3Ai%3A20220902123133%3Aet%3A1662121894%3Ac%3A1%3Arn%3A775062168%3Arqn%3A1%3Au%3A16621218941011640384%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662121892205%3Ads%3A0%2C132%2C559%2C0%2C377%2C0%2C%2C478%2C%2C%2C%2C%2C%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662121894%3At%3A%D0%A2%D0%B5%D0%BC%D1%8B%20%D0%BD%D0%B0%20Xiaomi%20(MIUI)%3A%20%D0%BE%D0%B1%D0%B7%D0%BE%D1%80%20%D0%BB%D1%83%D1%87%D1%88%D0%B8%D1%85%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D0%BE%D0%BC%D0%B5%D0%BD%D1%8F%D1%82%D1%8C%20%D1%82%D0%B5%D0%BC%D1%83%2C%20%D1%81%D0%BE%D0%B7%D0%B4%D0%B0%D1%82%D1%8C%20%D1%81%D0%B2%D0%BE%D1%8E%2C%20%D0%B2%D0%B5%D1%80%D0%BD%D1%83%D1%82%D1%8C%20%D1%81%D1%82%D0%B0%D0%BD%D0%B4%D0%B0%D1%80%D1%82%D0%BD%D1%83%D1%8E%20%D0%BF%D0%BE%20%D1%83%D0%BC%D0%BE%D0%BB%D1%87%D0%B0%D0%BD%D0%B8%D1%8E&t=gdpr(14)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /watch/68034574/1?wmode=7&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aa8mjefddwss4ne717e2g%3Afp%3A1488%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A780%3Acn%3A1%3Adp%3A0%3Als%3A1139708590007%3Ahid%3A229973812%3Az%3A0%3Ai%3A20220902123133%3Aet%3A1662121894%3Ac%3A1%3Arn%3A775062168%3Arqn%3A1%3Au%3A16621218941011640384%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ans%3A1662121892205%3Ads%3A0%2C132%2C559%2C0%2C377%2C0%2C%2C478%2C%2C%2C%2C%2C%3Awv%3A2%3Aco%3A0%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1662121894%3At%3A%D0%A2%D0%B5%D0%BC%D1%8B%20%D0%BD%D0%B0%20Xiaomi%20%28MIUI%29%3A%20%D0%BE%D0%B1%D0%B7%D0%BE%D1%80%20%D0%BB%D1%83%D1%87%D1%88%D0%B8%D1%85%2C%20%D0%BA%D0%B0%D0%BA%20%D0%BF%D0%BE%D0%BC%D0%B5%D0%BD%D1%8F%D1%82%D1%8C%20%D1%82%D0%B5%D0%BC%D1%83%2C%20%D1%81%D0%BE%D0%B7%D0%B4%D0%B0%D1%82%D1%8C%20%D1%81%D0%B2%D0%BE%D1%8E%2C%20%D0%B2%D0%B5%D1%80%D0%BD%D1%83%D1%82%D1%8C%20%D1%81%D1%82%D0%B0%D0%BD%D0%B4%D0%B0%D1%80%D1%82%D0%BD%D1%83%D1%8E%20%D0%BF%D0%BE%20%D1%83%D0%BC%D0%BE%D0%BB%D1%87%D0%B0%D0%BD%D0%B8%D1%8E&t=gdpr%2814%29aw%281%29fip%281%29ti%282%29
date: Fri, 02 Sep 2022 12:31:35 GMT
access-control-allow-origin: https://migadget.ru
set-cookie: yandexuid=6421911171662121895; Expires=Sat, 02-Sep-2023 12:31:35 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=6421911171662121895; Expires=Sat, 02-Sep-2023 12:31:35 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=2581518841662121895; Path=/; SameSite=None; Secure
i=nNV6/2E1Whp0xGhTVrySXmh6zndsA5oef17Xn9kfqpkaAIYjdTvQTpU0xk539wQEcrii4VlNhOm8C+t8ujBt3JmD2cQ=; Expires=Mon, 30-Aug-2032 12:31:34 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1693657895.yrts.1662121895#1693657895.yrtsi.1662121895; Expires=Sat, 02-Sep-2023 12:31:35 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:35 GMT
last-modified: Fri, 02-Sep-2022 12:31:35 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
rotarb.bid/23qsm.json
46.4.104.244200 OK 165 B IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Hash 4e68ea8868b4c8a1f620e04c6971cb39
6622eae4b091b57866fbf39e73b997ed4a510cff
706562892346fd62912d5257a796963e3cd35aa50ff77541d0eec5650bbaba14
Analyzer Verdict Alert quad9 Sinkholed
POST /23qsm.json HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 375
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:36 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5750c2d8ad348838b41b96ebb27b0b81
86526a56637555a0463df607b7b5cf565a439f27
5cbde2bd32be846c5afb1fce35b0f7de0c4aeec9de4213ddd118467ea70c3e62
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 77dcbad667fa753223ab404f9e5efc2e
8aa7da6ed9b77d478e9205e41c8b6fe0a973ae70
0a59d091c042b60cb2193e33754db4e8c2fd7c8e4abd5150a72db06cdc661a94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
px.adhigh.net/p/cm/qvnt?u=[[qvant_user_id]]&bounced=1
193.232.150.149200 OK 49 B URL HTTP/2 px.adhigh.net/p/cm/qvnt?u=[[qvant_user_id]]&bounced=1
IP 193.232.150.149:0
ASN #48061 Limited Liability Company GPM Digital Technologies
File type GIF image data, version 89a, 1 x 1\012- data
Hash 889bc1fffc025af4685839fb516a0b8b
7f105137a4eafe93213ecd8cc34dd907c340467c
d0409a1b73dab4e29dc40f92fb431fa9133baa23b4a1ffae4897f39068110e32
GET /p/cm/qvnt?u=[[qvant_user_id]]&bounced=1 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://migadget.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:36 GMT
content-type: image/gif
content-length: 49
x-backend-id: f16-ru
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash a6b84a99e1daac72c50e2e1584329e74
a8d7bd75c30c46e2c7e3f32dda7fd3988dc7102e
617be5f00e4ac550be50dbc26ea2a63550d4b36f30026f6612f66c80fa06bc3f
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 12:31:37 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 06 Sep 2022 12:26:05 GMT
ETag: "a8d7bd75c30c46e2c7e3f32dda7fd3988dc7102e"
Last-Modified: Fri, 02 Sep 2022 12:26:06 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 744643828b1d0b31-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 68a4217b3e77473315052f97d6f3f0f1
4fddb559bc0f85063021438f8666b14c530ef0d8
5b156ac741db0ad05e3de259a53590be41bbb2bda2e84290abfb4f71fa650735
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 68a4217b3e77473315052f97d6f3f0f1
4fddb559bc0f85063021438f8666b14c530ef0d8
5b156ac741db0ad05e3de259a53590be41bbb2bda2e84290abfb4f71fa650735
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20220831/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220831/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (2276)
Hash ceef0ca095073b4ec419ad144ec336c1
9b3f3d2431b9c0d99435d45d420bbd4b1927b1e1
a6bd3712cc1aeaec9f5a7445c595d52607d34457546a189bf51a775a4112e4e8
GET /pagead/js/r20220831/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7599
x-xss-protection: 0
date: Fri, 02 Sep 2022 12:25:12 GMT
expires: Fri, 16 Sep 2022 12:25:12 GMT
cache-control: public, max-age=1209600
etag: 9215437806027971270
content-type: text/javascript; charset=UTF-8
age: 385
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rotarb.bid/23qsm.json
46.4.104.244200 OK 9.7 kB IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Hash edb14f034386291366cb464d029ae48a
754a62eff0b701bae3157a0f5c438faafd41dad5
d9c340c87eabfc484df058750e8c07182057b2581f1bb26151b55f55e2fbe9fe
Analyzer Verdict Alert quad9 Sinkholed
POST /23qsm.json HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 430
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:37 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sadbundle/$csp%3Der3$/6129642000842446483/index.html
142.250.74.33200 OK 18 kB URL HTTP/2 tpc.googlesyndication.com/sadbundle/$csp%3Der3$/6129642000842446483/index.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5850)
Hash a0a803a0768e6a9b459b6f90be3ee6f9
55add69730e58c4fa9f1a14d0d1f7f2ba8db5f70
d7a1853196c5aff9b9c2915a892fc3e48f7efa0aa51928a96984befe7954c6ce
GET /sadbundle/$csp%3Der3$/6129642000842446483/index.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
content-security-policy: default-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com; script-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com 'unsafe-eval' 'unsafe-inline' https://ajax.googleapis.com/ajax/ https://s0.2mdn.net/ads/studio/cached_libs/ https://storage.googleapis.com/vr-assets-static/test_ads/GMAPlayable/ https://www.gstatic.com/ads/ci/ https://www.gstatic.com/swiffy/; object-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com; style-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com 'unsafe-eval' 'unsafe-inline' https://ajax.googleapis.com/ajax/ https://fonts.googleapis.com; img-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com blob: data: https://*.ggpht.com https://*.gstatic.cn https://*.gstatic.com https://ajax.googleapis.com/ajax/ https://lh3.googleusercontent.com https://lh4.googleusercontent.com https://lh5.googleusercontent.com https://lh6.googleusercontent.com https://s0.2mdn.net/ads/studio/cached_libs/ https://static.doubleclick.net https://vr.google.com/shaders/w/techspecs/; media-src 'none'; frame-src 'unsafe-inline' javascript:; font-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com data: https://fonts.gstatic.com; connect-src https://tpc.googlesyndication.com https://pagead2.googlesyndication.com https://csi.gstatic.com/csi https://fonts.googleapis.com/css https://fonts.googleapis.com/css2 https://vr.google.com/shaders/w/techspecs/; report-uri /pagead/gen_csp?id=adbundle; child-src 'unsafe-inline' javascript:; form-action 'none'
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="content-ads-owners"
report-to: {"group":"content-ads-owners","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/content-ads-owners"}]}
timing-allow-origin: *
x-content-type-options: nosniff
x-dns-prefetch-control: off
content-encoding: gzip
server: sffe
x-xss-protection: 0
content-length: 17659
date: Sun, 28 Aug 2022 07:09:28 GMT
expires: Mon, 28 Aug 2023 07:09:28 GMT
cache-control: public, max-age=31536000
age: 451329
last-modified: Thu, 30 Jun 2022 11:49:55 GMT
content-type: text/html
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rotarb.bid/23qsm.json
46.4.104.244200 OK 33 kB IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Hash 5904d9c975fa2217fc6a71b7fb8d55e7
810192919859abe7df0a4854c2001f75f7c12923
1934b4d0f6dfcf0a31651e05a953359829cb7010ec98a98f1d36f30babb8ee2c
Analyzer Verdict Alert quad9 Sinkholed
POST /23qsm.json HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 287
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:37 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 67921e2bd7c620bdd4db5ed1e73d3146
1deaa030ab490c63f94bde4c7ada5e2f849fb506
7fcee2496cdc63c9779941621d9e61acd006910947ccb6c7e98f383b0bf4574c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/measurement/l?ebcid=ALh7CaQyc1850H2vWmVAIIOX8vFbFzDUuu6QPaapig8FixZZ_jphdnorwoblxjOQFKrqJEqM4aO93wCkLmd9YO8YTaNzAtnjaA
142.250.74.164204 No Content 0 B URL HTTP/2 www.google.com/ads/measurement/l?ebcid=ALh7CaQyc1850H2vWmVAIIOX8vFbFzDUuu6QPaapig8FixZZ_jphdnorwoblxjOQFKrqJEqM4aO93wCkLmd9YO8YTaNzAtnjaA
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/measurement/l?ebcid=ALh7CaQyc1850H2vWmVAIIOX8vFbFzDUuu6QPaapig8FixZZ_jphdnorwoblxjOQFKrqJEqM4aO93wCkLmd9YO8YTaNzAtnjaA HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 02 Sep 2022 12:31:37 GMT
server: jumble_frontend_server
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dc076b754adaddcb000f3f987b6c5df2
01e9b40591692b8b2a6a94729e9481c7e600d248
9dbf2e71e1cbad91a71154b729e8ef496eda7544828a8bfd4f64e6dd70c4f64d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yastatic.net/s3/market-static/affiliate/4bff92a76f442a53c650.chunk.js
178.154.131.215200 OK 3.4 kB URL HTTP/2 yastatic.net/s3/market-static/affiliate/4bff92a76f442a53c650.chunk.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (9964), with no line terminators
Hash 7a3cc40c14a94b8b98bd7b16fe0fc5de
d971a4e405732be4e2f0febb6bc06cd5b14f7149
f5b1de61cd132ff7585b8384e85c3c5692d5560ee44d3534dbdedd392ab359a3
GET /s3/market-static/affiliate/4bff92a76f442a53c650.chunk.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 02 Sep 2022 12:31:37 GMT
content-type: application/javascript
content-length: 3381
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
etag: "7a3cc40c14a94b8b98bd7b16fe0fc5de"
expires: Fri, 02 Sep 2022 13:29:06 GMT
last-modified: Thu, 01 Sep 2022 09:28:41 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/islands/_/PyVcRbwHetz0gOVWLonWH7Od8zM.woff2
178.154.131.215200 OK 38 kB URL HTTP/2 yastatic.net/islands/_/PyVcRbwHetz0gOVWLonWH7Od8zM.woff2
IP 178.154.131.215:0
File type Web Open Font Format (Version 2), TrueType, length 37552, version 1.0\012- data
Hash a14e74e2823c691e357a82324da5ded4
5cd4cf4a7b893ed4aec412e019c9fe572a002f86
cb38f1bb308dd39b9c243ebd9482f2ac29b67c3c789413ede0383667fab2843c
GET /islands/_/PyVcRbwHetz0gOVWLonWH7Od8zM.woff2 HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 02 Sep 2022 12:31:37 GMT
content-type: application/font-woff2
content-length: 37556
access-control-allow-origin: *
cache-control: public, max-age=31556952
content-encoding: br
etag: "a14e74e2823c691e357a82324da5ded4"
expires: Sat, 02 Sep 2023 18:20:49 GMT
last-modified: Tue, 22 Jan 2019 17:13:11 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-nginx-request-id: af466f99cb55953c
accept-ranges: bytes
X-Firefox-Spdy: h2
aflt.market.yandex.ru/widgets/service?appVersion=1dad8d1eebba8a596fb21bcecddeec89eff41580
213.180.193.165200 OK 452 B URL HTTP/1.1 aflt.market.yandex.ru/widgets/service?appVersion=1dad8d1eebba8a596fb21bcecddeec89eff41580
IP 213.180.193.165:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 03b30b0de139bd6226e61245c4864f71
ff892bd2863a438ca8c4effc1e9ede4d7c201ae4
9a203105b0a51e0c2d10209a792a05912323af0b58c4252db1555e8a31173d34
GET /widgets/service?appVersion=1dad8d1eebba8a596fb21bcecddeec89eff41580 HTTP/1.1
Host: aflt.market.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=31536000
Transfer-Encoding: chunked
cache-control: max-age=31556952, public
content-encoding: gzip
content-security-policy: base-uri 'none'; child-src 'self' https://yarabey.github.io blob: mc.yandex.ru googletagmanager.com; connect-src 'self' mc.yandex.az mc.yandex.by mc.yandex.co.il mc.yandex.com mc.yandex.com.am mc.yandex.com.ge mc.yandex.com.tr mc.yandex.ee mc.yandex.fr mc.yandex.kg mc.yandex.kz mc.yandex.lt mc.yandex.lv mc.yandex.md mc.yandex.ru mc.yandex.tj mc.yandex.tm mc.yandex.ua mc.yandex.uz mc.webvisor.com mc.webvisor.org mc.admetrica.ru yandex.ru googletagmanager.com; default-src 'none'; font-src 'self' yastatic.net; form-action 'self'; frame-ancestors 'self' http: https: yastatic.net file:; frame-src 'self' https://yarabey.github.io blob: mc.yandex.ru mc.yandex.md yastatic.net googletagmanager.com; img-src 'self' data: yastatic.net avatars.mds.yandex.net ysa-static.passport.yandex.ru mc.yandex.az mc.yandex.by mc.yandex.co.il mc.yandex.com mc.yandex.com.am mc.yandex.com.ge mc.yandex.com.tr mc.yandex.ee mc.yandex.fr mc.yandex.kg mc.yandex.kz mc.yandex.lt mc.yandex.lv mc.yandex.md mc.yandex.ru mc.yandex.tj mc.yandex.tm mc.yandex.ua mc.yandex.uz mc.webvisor.com mc.webvisor.org mc.admetrica.ru googletagmanager.com https://www.google.com https://www.google.ru; script-src 'self' 'nonce-L+9uhcgsrfFnQ44KFx9BTQ==' yastatic.net 'unsafe-eval' mc.yandex.az mc.yandex.by mc.yandex.co.il mc.yandex.com mc.yandex.com.am mc.yandex.com.ge mc.yandex.com.tr mc.yandex.ee mc.yandex.fr mc.yandex.kg mc.yandex.kz mc.yandex.lt mc.yandex.lv mc.yandex.md mc.yandex.ru mc.yandex.tj mc.yandex.tm mc.yandex.ua mc.yandex.uz mc.webvisor.com mc.webvisor.org 'unsafe-inline' googletagmanager.com https://tagmanager.google.com https://www.google.com; style-src 'self' 'unsafe-inline' yastatic.net; report-uri https://csp.yandex.net/csp?env=production&project=market_affiliate&uid=6806765941662121897&login=&from=market.affiliate.node&ext=true&reqId=1662121897856%2Ff2772d9341092807298f4be9b0e70500&page=affiliate-widgets%3Aservice;
content-type: text/html; charset=utf-8
date: Fri, 02 Sep 2022 12:31:37 GMT
device_type: affiliate
last-modified: Fri, 02 Sep 2022 12:31:37 GMT
referrer-policy: no-referrer-when-downgrade
set-cookie: yandexuid=6806765941662121897; Domain=.yandex.ru; Path=/; Expires=Thu, 02 Sep 2032 12:31:37 GMT; Secure
skid=593786141662121897; Domain=.yandex.ru; Path=/; Expires=Thu, 02 Sep 2032 12:31:37 GMT; Secure
_yasc=NR0+lvb22cE7KWLysb32lN02w+c1CI/9QHJyejjF2Sa/zk2G; domain=.yandex.ru; path=/; expires=Sun, 02-Oct-2022 12:31:37 GMT; secure
i=9gTrM6biYAxe1Ggo78qeyzFvDREs6hSBlAxG/2FcFuA48hmL++IXEsOe2HcMarMstuY1H9oxJLMmGXhPOb4Urzz6fCo=; Expires=Sun, 01-Sep-2024 12:31:37 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
x-market-buckets: 639453,0,34;637449,0,98
x-market-req-id: 1662121897856/f2772d9341092807298f4be9b0e70500
x-page-id: affiliate-widgets:service
x-page-type: node
x-powered-by: Stout
x-yandexuid: 6806765941662121897
xscript_parent_reqid_seq: 1662121897856/f2772d9341092807298f4be9b0e70500
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash 18c752686392d4dffa7dd848c10b7c4b
f93aa0f9cad101dc5edbfd2473f565d96a9e5160
7574bf01c731e4af75a334ae306a49e529a1e816c3989bf47743243d80e136fc
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 12:31:38 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Tue, 06 Sep 2022 08:34:47 GMT
ETag: "f93aa0f9cad101dc5edbfd2473f565d96a9e5160"
Last-Modified: Fri, 02 Sep 2022 08:34:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3530
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74464386c8800b31-OSL
yastatic.net/s3/market-static/affiliate/6f4b7a13e8053c2b9af6.js
178.154.131.215200 OK 23 kB URL HTTP/2 yastatic.net/s3/market-static/affiliate/6f4b7a13e8053c2b9af6.js
IP 178.154.131.215:0
File type Unicode text, UTF-8 text, with very long lines (55894)
Hash 844783c9f8f9c487668afca97e172398
cd5daa7499bdde9f9d7eed5c52643730791ce75d
f6d8246fa04b225e3e6dfe320094ab3c36c5269e79d0de452362791ebabbc04b
GET /s3/market-static/affiliate/6f4b7a13e8053c2b9af6.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aflt.market.yandex.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 02 Sep 2022 12:31:38 GMT
content-type: application/javascript
content-length: 23104
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
etag: "844783c9f8f9c487668afca97e172398"
expires: Fri, 02 Sep 2022 13:29:07 GMT
last-modified: Thu, 01 Sep 2022 09:28:13 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
rotarb.bid/23qsm.json
46.4.104.244200 OK 159 B IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Hash 06dedcb067529e068084bad31bbda35c
418c91acf3b62e2a683df5911c086f07d42f1f22
eadfbb97416d2eadfc1fc149a3be2e877d07a7a17eea5f09bf186584e210764a
Analyzer Verdict Alert quad9 Sinkholed
POST /23qsm.json HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 211
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:37 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220831&st=env
142.250.74.98200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20220831&st=env
IP 142.250.74.98:0
File type JSON data\012- , ASCII text, with very long lines (14366), with no line terminators
Hash 0cba0caa6db04119cf8ef1c02deb9346
73b7870d56618e8cf6fc4781da9f7041a021cf19
989ffdf763cbfd274ba6334eddc5a785a3706571328945498e9a15df59a60d94
GET /getconfig/sodar?sv=200&tid=gda&tv=r20220831&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 02 Sep 2022 12:31:38 GMT
server: cafe
cache-control: private
content-length: 10909
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
yastatic.net/s3/market-static/affiliate/b08913d2be922c2ac870.chunk.js
178.154.131.215200 OK 2.9 kB URL HTTP/2 yastatic.net/s3/market-static/affiliate/b08913d2be922c2ac870.chunk.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (8510), with no line terminators
Hash 7f6abcda77e425f29d122b2193f54f18
9aac702650402a2b4c25fff8fea9ec20c0d735b7
75dcd324025e03c2c5ee3a04d902e260e7ef9006cabf7992c825b5d939eb5d00
GET /s3/market-static/affiliate/b08913d2be922c2ac870.chunk.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 02 Sep 2022 12:31:38 GMT
content-type: application/javascript
content-length: 2925
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
etag: "7f6abcda77e425f29d122b2193f54f18"
expires: Fri, 02 Sep 2022 13:27:38 GMT
last-modified: Thu, 01 Sep 2022 09:28:42 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/s3/market-static/affiliate/d8bccaceb0ee259ec273.chunk.js
178.154.131.215200 OK 2.4 kB URL HTTP/2 yastatic.net/s3/market-static/affiliate/d8bccaceb0ee259ec273.chunk.js
IP 178.154.131.215:0
File type ASCII text, with very long lines (7134), with no line terminators
Hash cb16ce74e35ec8c857c61a417afc51dc
b7b06130a461c01adbd6f8dbfc29fa0bc90ec352
13d77ae008d6b4bed0c949fe9eed010a70ce50328d899409b84203479471f67b
GET /s3/market-static/affiliate/d8bccaceb0ee259ec273.chunk.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Fri, 02 Sep 2022 12:31:38 GMT
content-type: application/javascript
content-length: 2428
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
etag: "cb16ce74e35ec8c857c61a417afc51dc"
expires: Fri, 02 Sep 2022 13:27:38 GMT
last-modified: Thu, 01 Sep 2022 09:28:42 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
rotarb.bid/23qsm.json
46.4.104.244200 OK 6.5 kB IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , Unicode text, UTF-8 text, with no line terminators
Hash 1c410613eab252b3fb2d15808fd6b5c0
d393f46b6f74fc5c224a83a4a28767cec5055900
ebff9507464f5a3683fbe0d57dfa6151e6bfaa1cd10f7b44e2e48db22602f549
Analyzer Verdict Alert quad9 Sinkholed
POST /23qsm.json HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 396
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:38 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/tag.js
87.250.251.119200 OK 72 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 87.250.251.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (681)
Hash 034d4604beaddff5783b9878fadfaee6
64d5e1e0dbbbd62d6a64349dd964763b7ab4cbea
f8a957ee3468693f465da61d899438a2b674369b80c9d5c9ffff1111a7091290
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aflt.market.yandex.ru/widgets/service?appVersion=1dad8d1eebba8a596fb21bcecddeec89eff41580
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-length: 71985
date: Fri, 02 Sep 2022 12:31:38 GMT
access-control-allow-origin: *
etag: "630f3113-11931"
expires: Fri, 02 Sep 2022 13:31:38 GMT
last-modified: Wed, 31 Aug 2022 12:59:47 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=migadget.ru
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=migadget.ru
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=migadget.ru HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 02 Sep 2022 12:31:38 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/watch/3/1?wmode=7&page-url=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&page-ref=https%3A%2F%2Fmigadget.ru%2F&charset=utf-8&ut=noindex&browser-info=pv%3A1%3Agdpr%3A%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A1178919851523%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123137%3Aet%3A1662121898%3Arn%3A815784435%3Au%3A1662121898524680711%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C416%2C0%2C524%2C524%2C0%2C524%3Awv%3A2%3Aco%3A0%3Ast%3A1662121898&t=clc%280-0-0%29aw%281%29rqnt%281%29ti%282%29
87.250.251.119200 OK 236 B URL HTTP/2 mc.yandex.ru/watch/3/1?wmode=7&page-url=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&page-ref=https%3A%2F%2Fmigadget.ru%2F&charset=utf-8&ut=noindex&browser-info=pv%3A1%3Agdpr%3A%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A1178919851523%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123137%3Aet%3A1662121898%3Arn%3A815784435%3Au%3A1662121898524680711%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C416%2C0%2C524%2C524%2C0%2C524%3Awv%3A2%3Aco%3A0%3Ast%3A1662121898&t=clc%280-0-0%29aw%281%29rqnt%281%29ti%282%29
IP 87.250.251.119:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7be3fc5e91f7509cd3aa3e86332758a6
f46c83b01b389b90d2ad64c2ceba704224186559
002216b388dd0e94f931578a45d99fbb8a339f067c011ca503186b0a864c14d1
GET /watch/3/1?wmode=7&page-url=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&page-ref=https%3A%2F%2Fmigadget.ru%2F&charset=utf-8&ut=noindex&browser-info=pv%3A1%3Agdpr%3A%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A1178919851523%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123137%3Aet%3A1662121898%3Arn%3A815784435%3Au%3A1662121898524680711%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C416%2C0%2C524%2C524%2C0%2C524%3Awv%3A2%3Aco%3A0%3Ast%3A1662121898&t=clc%280-0-0%29aw%281%29rqnt%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aflt.market.yandex.ru
Referer: https://aflt.market.yandex.ru/widgets/service?appVersion=1dad8d1eebba8a596fb21bcecddeec89eff41580
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-length: 236
date: Fri, 02 Sep 2022 12:31:39 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://aflt.market.yandex.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:39 GMT
last-modified: Fri, 02-Sep-2022 12:31:39 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ea728d491041b7257ced4cdb4af3a4c4
ba1b6c1c722dddd8b222a3698172e7cd3898e1b2
55afeb77829d82ecc44b302a899aab0e999c76e03dd25ae7af9d0555093b19bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ea728d491041b7257ced4cdb4af3a4c4
ba1b6c1c722dddd8b222a3698172e7cd3898e1b2
55afeb77829d82ecc44b302a899aab0e999c76e03dd25ae7af9d0555093b19bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ea728d491041b7257ced4cdb4af3a4c4
ba1b6c1c722dddd8b222a3698172e7cd3898e1b2
55afeb77829d82ecc44b302a899aab0e999c76e03dd25ae7af9d0555093b19bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ea728d491041b7257ced4cdb4af3a4c4
ba1b6c1c722dddd8b222a3698172e7cd3898e1b2
55afeb77829d82ecc44b302a899aab0e999c76e03dd25ae7af9d0555093b19bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ea728d491041b7257ced4cdb4af3a4c4
ba1b6c1c722dddd8b222a3698172e7cd3898e1b2
55afeb77829d82ecc44b302a899aab0e999c76e03dd25ae7af9d0555093b19bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/dynamic/5/380885354/11230856223491943074_10239615476231474722.png
216.58.207.230200 OK 30 kB URL HTTP/2 static.doubleclick.net/dynamic/5/380885354/11230856223491943074_10239615476231474722.png
IP 216.58.207.230:0
File type PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Hash ab4a158754462dc926797eaab82f560b
38aba9ab8bbcc0ccee8fdf5c4e4d2c0d6fd48317
6fef9d91d856cfaea36bfb7e3945d9a069b633ed0feb7957b8608cb08fa0f679
GET /dynamic/5/380885354/11230856223491943074_10239615476231474722.png HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 29792
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 28 Aug 2022 06:47:05 GMT
expires: Mon, 28 Aug 2023 06:47:05 GMT
cache-control: public, max-age=31536000
age: 452674
last-modified: Sat, 21 May 2022 11:32:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.doubleclick.net/dynamic/5/380885354/12162989379008464226_3950740259598717420.png
216.58.207.230200 OK 19 kB URL HTTP/2 static.doubleclick.net/dynamic/5/380885354/12162989379008464226_3950740259598717420.png
IP 216.58.207.230:0
File type PNG image data, 512 x 512, 8-bit/color RGB, non-interlaced\012- data
Hash ea21495fac4b9931de5f0989627b39f0
87e9a5fe448eca6243b61bc2092da2bb28f176c0
0b8c341a214c81574df4992caf092b60b3b0f08f541f7bf2f7fc3b7ec106ece6
GET /dynamic/5/380885354/12162989379008464226_3950740259598717420.png HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 18952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Aug 2022 20:38:47 GMT
expires: Sat, 26 Aug 2023 20:38:47 GMT
cache-control: public, max-age=31536000
age: 575572
last-modified: Sat, 21 May 2022 11:04:31 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.doubleclick.net/dynamic/5/380885354/761705089464143969_2548522502601538106.jpeg
216.58.207.230200 OK 46 kB URL HTTP/2 static.doubleclick.net/dynamic/5/380885354/761705089464143969_2548522502601538106.jpeg
IP 216.58.207.230:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 512x512, components 3\012- data
Hash 34a72560ba64ebcd6fbe58386a2679a5
bd40e3c6e2bbcde6bb61719cd61b07a40f65dda2
96af616d7bab116b077116323e40418505c865eb214ce8be9e167aaaedf7e0ea
GET /dynamic/5/380885354/761705089464143969_2548522502601538106.jpeg HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 23:39:47 GMT
expires: Thu, 31 Aug 2023 23:39:47 GMT
cache-control: public, max-age=31536000
age: 132712
last-modified: Sat, 21 May 2022 11:31:53 GMT
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.doubleclick.net/dynamic/5/380885354/13926170052232445966_2754985154193208693.jpeg
216.58.207.230200 OK 9.4 kB URL HTTP/2 static.doubleclick.net/dynamic/5/380885354/13926170052232445966_2754985154193208693.jpeg
IP 216.58.207.230:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, progressive, precision 8, 512x512, components 3\012- data
Hash a7dbe54a4f563a976be40ce097cee18b
5375898e636a149fa0e5c61ef02c1e1876b66108
960d9f7e485a7c3280f94273d7388305fb337332758fc3fc0857de89df9fbd82
GET /dynamic/5/380885354/13926170052232445966_2754985154193208693.jpeg HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 9446
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 11:49:50 GMT
expires: Wed, 30 Aug 2023 11:49:50 GMT
cache-control: public, max-age=31536000
age: 261709
last-modified: Sat, 21 May 2022 11:04:28 GMT
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.doubleclick.net/dynamic/5/380885354/2874992988015719728_14989150988348239197.png
216.58.207.230200 OK 338 kB URL HTTP/2 static.doubleclick.net/dynamic/5/380885354/2874992988015719728_14989150988348239197.png
IP 216.58.207.230:0
File type gzip compressed data, max compression\012- data
Size 338 kB (337642 bytes)
Hash ba1c3af0280d4ea5ce54ed624cce729c
caae14defbccdd29eef908698a7783fcdf9d9ea6
1a2a9def4dd19eef4b9600c30404f119b2d1785c7fe3d324f8e100096f351921
GET /dynamic/5/380885354/2874992988015719728_14989150988348239197.png HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 336777
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 11:56:35 GMT
expires: Sat, 02 Sep 2023 11:56:35 GMT
cache-control: public, max-age=31536000
age: 2104
last-modified: Sat, 21 May 2022 11:04:30 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.doubleclick.net/dynamic/5/380885354/10106580928537306206_17027967711834640124.png
216.58.207.230200 OK 132 kB URL HTTP/2 static.doubleclick.net/dynamic/5/380885354/10106580928537306206_17027967711834640124.png
IP 216.58.207.230:0
File type PNG image data, 512 x 512, 8-bit/color RGB, non-interlaced\012- data
Size 132 kB (132064 bytes)
Hash 9ded2579ae7f7c5244579ca582591d55
0220b52a169aa95abefa32ec13790174549b9f13
456ea3855a8d38866035523ac9ccb3d903f4169ee9288dbd839d1e0f7742ac4a
GET /dynamic/5/380885354/10106580928537306206_17027967711834640124.png HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 132064
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 08:01:01 GMT
expires: Sat, 02 Sep 2023 08:01:01 GMT
cache-control: public, max-age=31536000
age: 16238
last-modified: Sat, 21 May 2022 11:04:31 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ea728d491041b7257ced4cdb4af3a4c4
ba1b6c1c722dddd8b222a3698172e7cd3898e1b2
55afeb77829d82ecc44b302a899aab0e999c76e03dd25ae7af9d0555093b19bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 12:31:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/dynamic/5/380885354/6055994627496195910_14644025638578457733.png
216.58.207.230200 OK 344 kB URL HTTP/2 static.doubleclick.net/dynamic/5/380885354/6055994627496195910_14644025638578457733.png
IP 216.58.207.230:0
File type PNG image data, 512 x 512, 8-bit/color RGB, non-interlaced\012- data
Size 344 kB (343824 bytes)
Hash 6b838113314be0371c7ee3db752c7be0
a6bb8a2865f1f051f1e9d530092c723b675100f4
f1404b99b95d87bbc95024b2260ea2d3d562b1fdb92ba72f5e0632a9fffda0b2
GET /dynamic/5/380885354/6055994627496195910_14644025638578457733.png HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-programmable
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-programmable"
report-to: {"group":"ads-programmable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-programmable"}]}
content-length: 343824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 28 Aug 2022 12:19:57 GMT
expires: Mon, 28 Aug 2023 12:19:57 GMT
cache-control: public, max-age=31536000
age: 432702
last-modified: Sat, 21 May 2022 11:04:30 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/watch/45411513?wmode=7&page-url=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&page-ref=https%3A%2F%2Fmigadget.ru%2F&charset=utf-8&ut=noindex&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123138%3Aet%3A1662121899%3Arn%3A1048411221%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C416%2C0%2C524%2C524%2C0%2C524%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121899%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0!&t=gdpr(6)mc(g-2)clc(0-0-0)aw(1)rqnt(1)rqnl(1)ti(2)
87.250.251.119302 Found 454 B URL HTTP/2 mc.yandex.ru/watch/45411513?wmode=7&page-url=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&page-ref=https%3A%2F%2Fmigadget.ru%2F&charset=utf-8&ut=noindex&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123138%3Aet%3A1662121899%3Arn%3A1048411221%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C416%2C0%2C524%2C524%2C0%2C524%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121899%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0!&t=gdpr(6)mc(g-2)clc(0-0-0)aw(1)rqnt(1)rqnl(1)ti(2)
IP 87.250.251.119:0
File type JSON data\012- , ASCII text, with very long lines (454), with no line terminators
Hash 310da389684abf2ede7e21fd23b28ee6
8e2ffd52103a2bdb92bf7952b1afc5c864fd4c20
9f2d46fbb780c882365550923580f88f78a4c8fe349702aa8bce32b04dcabc5a
GET /watch/45411513?wmode=7&page-url=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&page-ref=https%3A%2F%2Fmigadget.ru%2F&charset=utf-8&ut=noindex&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123138%3Aet%3A1662121899%3Arn%3A1048411221%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C416%2C0%2C524%2C524%2C0%2C524%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121899%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0!&t=gdpr(6)mc(g-2)clc(0-0-0)aw(1)rqnt(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aflt.market.yandex.ru/widgets/service?appVersion=1dad8d1eebba8a596fb21bcecddeec89eff41580
Origin: https://aflt.market.yandex.ru
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
location: /watch/45411513/1?wmode=7&page-url=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&page-ref=https%3A%2F%2Fmigadget.ru%2F&charset=utf-8&ut=noindex&browser-info=pv%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123138%3Aet%3A1662121899%3Arn%3A1048411221%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C416%2C0%2C524%2C524%2C0%2C524%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121899%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0%21&t=gdpr%286%29mc%28g-2%29clc%280-0-0%29aw%281%29rqnt%281%29rqnl%281%29ti%282%29
date: Fri, 02 Sep 2022 12:31:40 GMT
access-control-allow-origin: https://aflt.market.yandex.ru
set-cookie: yandexuid=1244136361662121900; Expires=Sat, 02-Sep-2023 12:31:40 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=1244136361662121900; Expires=Sat, 02-Sep-2023 12:31:40 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=1522868431662121900; Path=/; SameSite=None; Secure
i=QPp5KNumpPE08gzHCR+CdEJ+BsMXui5rGK+hqZcYWH8j3GLIKMksiQ33Kuinz0Ado4h/yroFoSZN2qsmeq+gzCD2Hls=; Expires=Mon, 30-Aug-2032 12:31:36 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1693657900.yrts.1662121900#1693657900.yrtsi.1662121900; Expires=Sat, 02-Sep-2023 12:31:40 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:40 GMT
last-modified: Fri, 02-Sep-2022 12:31:40 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/45411513/1?page-url=goal%3A%2F%2Faflt.market.yandex.ru%2FWIDGETS_SERVICE_CLIENT_INFO&page-ref=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&charset=utf-8&ut=noindex&browser-info=ar%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123138%3Aet%3A1662121899%3Arn%3A314964556%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121899%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0!&t=gdpr(6)mc(g-2)clc(0-0-0)aw(1)rqnt(2)rqnl(1)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/45411513/1?page-url=goal%3A%2F%2Faflt.market.yandex.ru%2FWIDGETS_SERVICE_CLIENT_INFO&page-ref=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&charset=utf-8&ut=noindex&browser-info=ar%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123138%3Aet%3A1662121899%3Arn%3A314964556%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121899%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0!&t=gdpr(6)mc(g-2)clc(0-0-0)aw(1)rqnt(2)rqnl(1)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/45411513/1?page-url=goal%3A%2F%2Faflt.market.yandex.ru%2FWIDGETS_SERVICE_CLIENT_INFO&page-ref=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&charset=utf-8&ut=noindex&browser-info=ar%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123138%3Aet%3A1662121899%3Arn%3A314964556%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121899%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0!&t=gdpr(6)mc(g-2)clc(0-0-0)aw(1)rqnt(2)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aflt.market.yandex.ru/widgets/service?appVersion=1dad8d1eebba8a596fb21bcecddeec89eff41580
Content-Type: application/x-www-form-urlencoded
Content-Length: 91
Origin: https://aflt.market.yandex.ru
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Sep 2022 12:31:40 GMT
access-control-allow-origin: https://aflt.market.yandex.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:40 GMT
last-modified: Fri, 02-Sep-2022 12:31:40 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/45411513/1?page-url=goal%3A%2F%2Faflt.market.yandex.ru%2FTIMERS&page-ref=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&charset=utf-8&ut=noindex&browser-info=ar%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123138%3Aet%3A1662121899%3Arn%3A603697434%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121899%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0!&t=gdpr(6)mc(g-2)clc(0-0-0)aw(1)rqnt(3)rqnl(1)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/45411513/1?page-url=goal%3A%2F%2Faflt.market.yandex.ru%2FTIMERS&page-ref=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&charset=utf-8&ut=noindex&browser-info=ar%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123138%3Aet%3A1662121899%3Arn%3A603697434%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121899%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0!&t=gdpr(6)mc(g-2)clc(0-0-0)aw(1)rqnt(3)rqnl(1)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/45411513/1?page-url=goal%3A%2F%2Faflt.market.yandex.ru%2FTIMERS&page-ref=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&charset=utf-8&ut=noindex&browser-info=ar%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123138%3Aet%3A1662121899%3Arn%3A603697434%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121899%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0!&t=gdpr(6)mc(g-2)clc(0-0-0)aw(1)rqnt(3)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aflt.market.yandex.ru/widgets/service?appVersion=1dad8d1eebba8a596fb21bcecddeec89eff41580
Content-Type: application/x-www-form-urlencoded
Content-Length: 488
Origin: https://aflt.market.yandex.ru
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Sep 2022 12:31:40 GMT
access-control-allow-origin: https://aflt.market.yandex.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:40 GMT
last-modified: Fri, 02-Sep-2022 12:31:40 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/45411513/1?page-url=goal%3A%2F%2Faflt.market.yandex.ru%2FTIMERS&page-ref=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&charset=utf-8&ut=noindex&hittoken=1662121900_f4e599bc13e9ce84e658b51c2ee679aac40d800d3bbbf32a6ef2f5d62ed57c8a&browser-info=ar%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123139%3Aet%3A1662121899%3Arn%3A724205980%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Aeu%3A1%3Ans%3A1662121896567%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121899%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0!&t=gdpr(6)mc(g-3)clc(0-0-0)aw(1)rqnt(4)rqnl(1)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/45411513/1?page-url=goal%3A%2F%2Faflt.market.yandex.ru%2FTIMERS&page-ref=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&charset=utf-8&ut=noindex&hittoken=1662121900_f4e599bc13e9ce84e658b51c2ee679aac40d800d3bbbf32a6ef2f5d62ed57c8a&browser-info=ar%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123139%3Aet%3A1662121899%3Arn%3A724205980%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Aeu%3A1%3Ans%3A1662121896567%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121899%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0!&t=gdpr(6)mc(g-3)clc(0-0-0)aw(1)rqnt(4)rqnl(1)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/45411513/1?page-url=goal%3A%2F%2Faflt.market.yandex.ru%2FTIMERS&page-ref=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&charset=utf-8&ut=noindex&hittoken=1662121900_f4e599bc13e9ce84e658b51c2ee679aac40d800d3bbbf32a6ef2f5d62ed57c8a&browser-info=ar%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123139%3Aet%3A1662121899%3Arn%3A724205980%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Aeu%3A1%3Ans%3A1662121896567%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121899%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0!&t=gdpr(6)mc(g-3)clc(0-0-0)aw(1)rqnt(4)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aflt.market.yandex.ru/widgets/service?appVersion=1dad8d1eebba8a596fb21bcecddeec89eff41580
Content-Type: application/x-www-form-urlencoded
Content-Length: 441
Origin: https://aflt.market.yandex.ru
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Sep 2022 12:31:40 GMT
access-control-allow-origin: https://aflt.market.yandex.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:40 GMT
last-modified: Fri, 02-Sep-2022 12:31:40 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsv1d3tFOksd6JzI2OGXB9GYPTl6_KT7LQIgBJvZI3tU_MqeWK4FIaBEq3QxN2hJQ1fJ8VwzfHcc7z0ETJhndbIErU1xR4SIJNgm8qvEzUzBOkb1aG6XMHpFWr4WH1oG0ksvQtQG2jg&sai=AMfl-YQiXKydh5tLd5YM3H_ApFrv7AbXMKCg_KHnefpHHqczdTYNqekCcTYb37O6Ei91IpnweKpZqjz3PF8gNgSZVcq4q_3VCYWiez96PeoYfHAjx8xAv5IR8IZkIXkspj8&sig=Cg0ArKJSzBXYwqC2AH4jEAE&id=lidar2&mcvt=1007&p=0,0,124,1005&mtos=550,1007,1007,1007,1007&tos=550,457,0,0,0&v=20220831&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1662121897423&rpt=1076&met=mue&wmsd=0
142.250.74.98200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsv1d3tFOksd6JzI2OGXB9GYPTl6_KT7LQIgBJvZI3tU_MqeWK4FIaBEq3QxN2hJQ1fJ8VwzfHcc7z0ETJhndbIErU1xR4SIJNgm8qvEzUzBOkb1aG6XMHpFWr4WH1oG0ksvQtQG2jg&sai=AMfl-YQiXKydh5tLd5YM3H_ApFrv7AbXMKCg_KHnefpHHqczdTYNqekCcTYb37O6Ei91IpnweKpZqjz3PF8gNgSZVcq4q_3VCYWiez96PeoYfHAjx8xAv5IR8IZkIXkspj8&sig=Cg0ArKJSzBXYwqC2AH4jEAE&id=lidar2&mcvt=1007&p=0,0,124,1005&mtos=550,1007,1007,1007,1007&tos=550,457,0,0,0&v=20220831&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1662121897423&rpt=1076&met=mue&wmsd=0
IP 142.250.74.98:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsv1d3tFOksd6JzI2OGXB9GYPTl6_KT7LQIgBJvZI3tU_MqeWK4FIaBEq3QxN2hJQ1fJ8VwzfHcc7z0ETJhndbIErU1xR4SIJNgm8qvEzUzBOkb1aG6XMHpFWr4WH1oG0ksvQtQG2jg&sai=AMfl-YQiXKydh5tLd5YM3H_ApFrv7AbXMKCg_KHnefpHHqczdTYNqekCcTYb37O6Ei91IpnweKpZqjz3PF8gNgSZVcq4q_3VCYWiez96PeoYfHAjx8xAv5IR8IZkIXkspj8&sig=Cg0ArKJSzBXYwqC2AH4jEAE&id=lidar2&mcvt=1007&p=0,0,124,1005&mtos=550,1007,1007,1007,1007&tos=550,457,0,0,0&v=20220831&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=22&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1662121897423&rpt=1076&met=mue&wmsd=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Fri, 02 Sep 2022 12:31:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/68034574?wmode=0&wv-part=1&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=1027963130&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1662121899%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123139%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121899&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/68034574?wmode=0&wv-part=1&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=1027963130&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1662121899%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123139%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121899&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/68034574?wmode=0&wv-part=1&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=1027963130&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1662121899%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123139%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121899&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 273090
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Sep 2022 12:31:40 GMT
access-control-allow-origin: https://migadget.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:40 GMT
last-modified: Fri, 02-Sep-2022 12:31:40 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/68034574?wmode=0&wv-part=1&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=239553939&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1662121900%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123139%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121900&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/68034574?wmode=0&wv-part=1&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=239553939&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1662121900%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123139%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121900&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/68034574?wmode=0&wv-part=1&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=239553939&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1662121900%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123139%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121900&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 55
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Sep 2022 12:31:40 GMT
access-control-allow-origin: https://migadget.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:40 GMT
last-modified: Fri, 02-Sep-2022 12:31:40 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/68034574?wmode=0&wv-part=2&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=1020201211&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1662121900%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123139%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121900&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/68034574?wmode=0&wv-part=2&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=1020201211&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1662121900%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123139%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121900&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/68034574?wmode=0&wv-part=2&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=1020201211&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1662121900%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123139%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121900&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 36823
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Sep 2022 12:31:41 GMT
access-control-allow-origin: https://migadget.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:41 GMT
last-modified: Fri, 02-Sep-2022 12:31:41 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/45411513/1?page-url=goal%3A%2F%2Faflt.market.yandex.ru%2FTIMERS&page-ref=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&charset=utf-8&ut=noindex&hittoken=1662121900_f4e599bc13e9ce84e658b51c2ee679aac40d800d3bbbf32a6ef2f5d62ed57c8a&browser-info=ar%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123140%3Aet%3A1662121900%3Arn%3A762940596%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Aeu%3A1%3Ans%3A1662121896567%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121900%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0!&t=gdpr(6)mc(g-3)clc(0-0-0)aw(1)rqnt(5)ecs(1)rqnl(1)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/45411513/1?page-url=goal%3A%2F%2Faflt.market.yandex.ru%2FTIMERS&page-ref=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&charset=utf-8&ut=noindex&hittoken=1662121900_f4e599bc13e9ce84e658b51c2ee679aac40d800d3bbbf32a6ef2f5d62ed57c8a&browser-info=ar%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123140%3Aet%3A1662121900%3Arn%3A762940596%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Aeu%3A1%3Ans%3A1662121896567%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121900%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0!&t=gdpr(6)mc(g-3)clc(0-0-0)aw(1)rqnt(5)ecs(1)rqnl(1)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/45411513/1?page-url=goal%3A%2F%2Faflt.market.yandex.ru%2FTIMERS&page-ref=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&charset=utf-8&ut=noindex&hittoken=1662121900_f4e599bc13e9ce84e658b51c2ee679aac40d800d3bbbf32a6ef2f5d62ed57c8a&browser-info=ar%3A1%3Agdpr%3A6%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A3%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A2%3Adp%3A0%3Als%3A780245092137%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123140%3Aet%3A1662121900%3Arn%3A762940596%3Au%3A1662121899363635510%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Aeu%3A1%3Ans%3A1662121896567%3Awv%3A2%3Aco%3A0%3Aadb%3A2%3Arqnl%3A1%3Ast%3A1662121900%3At%3A%D0%92%D0%B8%D0%B4%D0%B6%D0%B5%D1%82%D1%8B%2C%20%D1%81%D0%B5%D1%80%D0%B2%D0%B8%D1%81%D0%BD%D0%B0%D1%8F%20%D1%81%D1%82%D1%80%D0%B0%D0%BD%D0%B8%D1%86%D0%B0!&t=gdpr(6)mc(g-3)clc(0-0-0)aw(1)rqnt(5)ecs(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aflt.market.yandex.ru/widgets/service?appVersion=1dad8d1eebba8a596fb21bcecddeec89eff41580
Content-Type: application/x-www-form-urlencoded
Content-Length: 431
Origin: https://aflt.market.yandex.ru
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Sep 2022 12:31:41 GMT
access-control-allow-origin: https://aflt.market.yandex.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:41 GMT
last-modified: Fri, 02-Sep-2022 12:31:41 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/68034574?wmode=0&wv-part=3&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=572532714&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1662121901%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123141%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121901&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/68034574?wmode=0&wv-part=3&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=572532714&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1662121901%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123141%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121901&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/68034574?wmode=0&wv-part=3&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=572532714&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1662121901%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123141%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121901&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 26
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Sep 2022 12:31:42 GMT
access-control-allow-origin: https://migadget.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:42 GMT
last-modified: Fri, 02-Sep-2022 12:31:42 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/68034574?wmode=0&wv-part=2&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=956105958&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1662121901%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123141%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121901&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/68034574?wmode=0&wv-part=2&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=956105958&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1662121901%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123141%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121901&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/68034574?wmode=0&wv-part=2&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=956105958&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1662121901%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123141%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121901&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Sep 2022 12:31:42 GMT
access-control-allow-origin: https://migadget.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:42 GMT
last-modified: Fri, 02-Sep-2022 12:31:42 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/68034574?wmode=0&wv-part=4&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=56218562&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1662121901%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123141%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121901&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/68034574?wmode=0&wv-part=4&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=56218562&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1662121901%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123141%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121901&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/68034574?wmode=0&wv-part=4&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=56218562&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1662121901%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123141%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121901&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Sep 2022 12:31:42 GMT
access-control-allow-origin: https://migadget.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:42 GMT
last-modified: Fri, 02-Sep-2022 12:31:42 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/68034574?wv-check=32478&wv-type=0&wmode=0&wv-part=1&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=212266048&browser-info=gdpr%3A14%3Aet%3A1662121901%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123141%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121901&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/68034574?wv-check=32478&wv-type=0&wmode=0&wv-part=1&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=212266048&browser-info=gdpr%3A14%3Aet%3A1662121901%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123141%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121901&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/68034574?wv-check=32478&wv-type=0&wmode=0&wv-part=1&wv-hit=229973812&page-url=https%3A%2F%2Fmigadget.ru%2Ffaq%2Ftemy-na-xiaomi-miui.html&rn=212266048&browser-info=gdpr%3A14%3Aet%3A1662121901%3Aw%3A1268x939%3Av%3A780%3Az%3A0%3Ai%3A20220902123141%3Au%3A16621218941011640384%3Avf%3Aa8mjefddwss4ne717e2g%3Awe%3A1%3Ast%3A1662121901&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Fri, 02 Sep 2022 12:31:42 GMT
access-control-allow-origin: https://migadget.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:42 GMT
last-modified: Fri, 02-Sep-2022 12:31:42 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
rotarb.bid/23qsm.json
46.4.104.244200 OK 0 B IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert quad9 Sinkholed
POST /23qsm.json HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 363
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:35 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
rotarb.bid/23qsm.json
46.4.104.244200 OK 0 B IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert quad9 Sinkholed
POST /23qsm.json HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 375
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:36 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
rotarb.bid/23qsm.min.js
46.4.104.244200 OK 0 B IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert quad9 Sinkholed
GET /23qsm.min.js HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:34 GMT
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
cache-control: max-age=300
expires: Fri, 02-Sep-2022 15:36:34 EEST
duration: 1606002
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
rotarb.bid/23qsm.json
46.4.104.244200 OK 0 B IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert quad9 Sinkholed
POST /23qsm.json HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 305
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:35 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
rotarb.bid/23qsm.json
46.4.104.244200 OK 0 B IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert quad9 Sinkholed
POST /23qsm.json HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 433
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:36 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
mc.yandex.ru/watch/3?wmode=7&page-url=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&page-ref=https%3A%2F%2Fmigadget.ru%2F&charset=utf-8&ut=noindex&browser-info=pv%3A1%3Agdpr%3A%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A1178919851523%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123137%3Aet%3A1662121898%3Arn%3A815784435%3Au%3A1662121898524680711%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C416%2C0%2C524%2C524%2C0%2C524%3Awv%3A2%3Aco%3A0%3Ast%3A1662121898&t=clc(0-0-0)aw(1)rqnt(1)ti(2)
87.250.251.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/3?wmode=7&page-url=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&page-ref=https%3A%2F%2Fmigadget.ru%2F&charset=utf-8&ut=noindex&browser-info=pv%3A1%3Agdpr%3A%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A1178919851523%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123137%3Aet%3A1662121898%3Arn%3A815784435%3Au%3A1662121898524680711%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C416%2C0%2C524%2C524%2C0%2C524%3Awv%3A2%3Aco%3A0%3Ast%3A1662121898&t=clc(0-0-0)aw(1)rqnt(1)ti(2)
IP 87.250.251.119:0
GET /watch/3?wmode=7&page-url=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&page-ref=https%3A%2F%2Fmigadget.ru%2F&charset=utf-8&ut=noindex&browser-info=pv%3A1%3Agdpr%3A%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A1178919851523%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123137%3Aet%3A1662121898%3Arn%3A815784435%3Au%3A1662121898524680711%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C416%2C0%2C524%2C524%2C0%2C524%3Awv%3A2%3Aco%3A0%3Ast%3A1662121898&t=clc(0-0-0)aw(1)rqnt(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://aflt.market.yandex.ru/widgets/service?appVersion=1dad8d1eebba8a596fb21bcecddeec89eff41580
Origin: https://aflt.market.yandex.ru
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
location: /watch/3/1?wmode=7&page-url=https%3A%2F%2Faflt.market.yandex.ru%2Fwidgets%2Fservice%3FappVersion%3D1dad8d1eebba8a596fb21bcecddeec89eff41580&page-ref=https%3A%2F%2Fmigadget.ru%2F&charset=utf-8&ut=noindex&browser-info=pv%3A1%3Agdpr%3A%3Avf%3A2ofv6mafcjh9urjbdp7e2g%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A882%3Acn%3A1%3Adp%3A0%3Als%3A1178919851523%3Ahid%3A1048062179%3Az%3A0%3Ai%3A20220902123137%3Aet%3A1662121898%3Arn%3A815784435%3Au%3A1662121898524680711%3Aw%3A300x150%3As%3A1280x1024x24%3Ask%3A1%3Aifr%3A1%3Ans%3A1662121896567%3Ads%3A0%2C0%2C0%2C%2C%2C0%2C%2C416%2C0%2C524%2C524%2C0%2C524%3Awv%3A2%3Aco%3A0%3Ast%3A1662121898&t=clc%280-0-0%29aw%281%29rqnt%281%29ti%282%29
date: Fri, 02 Sep 2022 12:31:38 GMT
access-control-allow-origin: https://aflt.market.yandex.ru
set-cookie: yandexuid=1769485461662121898; Expires=Sat, 02-Sep-2023 12:31:38 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=1769485461662121898; Expires=Sat, 02-Sep-2023 12:31:38 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=2069269051662121898; Path=/; SameSite=None; Secure
i=2S3nBzBGkYDgDvhPHXgdBIAa+EeVTP1zQKznJjgGxt2uVKMmpxsToi+EsTXco2vQz8uJdYi1pLTMHJiCbsvJa48uW54=; Expires=Mon, 30-Aug-2032 12:31:38 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1693657898.yrts.1662121898#1693657898.yrtsi.1662121898; Expires=Sat, 02-Sep-2023 12:31:38 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Fri, 02-Sep-2022 12:31:38 GMT
last-modified: Fri, 02-Sep-2022 12:31:38 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
static.nativerent.ru/js/codes/nativerent.fr.js
178.176.128.128200 OK 0 B URL HTTP/2 static.nativerent.ru/js/codes/nativerent.fr.js
IP 178.176.128.128:0
GET /js/codes/nativerent.fr.js HTTP/1.1
Host: static.nativerent.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:36 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
etag: W/"7f7e8aef438e278a28b1e2ce02bd5425"
last-modified: Wed, 31 Aug 2022 23:45:15 GMT
x-amz-request-id: 3808b7da366e5302e6395b6ec1fcdcb7
x-amz-version-id: null
content-encoding: gzip
cache: HIT
x-cached-since: 2022-09-02T12:29:51+00:00
x-id: mgf-up-gc15
X-Firefox-Spdy: h2
rotarb.bid/23qsm.json
46.4.104.244200 OK 0 B IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert quad9 Sinkholed
POST /23qsm.json HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 357
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:36 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
rotarb.bid/23qsm.json
46.4.104.244200 OK 0 B IP 46.4.104.244:0
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert quad9 Sinkholed
POST /23qsm.json HTTP/1.1
Host: rotarb.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 354
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:38 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
strict-transport-security: max-age=63072000
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400italic%2C600italic%2C300%2C400%2C600&subset=latin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext&display=fallback
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300italic%2C400italic%2C600italic%2C300%2C400%2C600&subset=latin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext&display=fallback
IP 216.58.211.10:0
GET /css?family=Open+Sans%3A300italic%2C400italic%2C600italic%2C300%2C400%2C600&subset=latin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext&display=fallback HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 12:31:34 GMT
date: Fri, 02 Sep 2022 12:31:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.nativerent.ru/js/codes/nativerent.v2.js
178.176.128.128200 OK 0 B URL HTTP/2 static.nativerent.ru/js/codes/nativerent.v2.js
IP 178.176.128.128:0
GET /js/codes/nativerent.v2.js HTTP/1.1
Host: static.nativerent.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://migadget.ru
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:35 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 15 Aug 2022 09:43:02 GMT
etag: W/"62fa1526-3c8a"
expires: Fri, 19 Aug 2022 14:11:55 GMT
cache-control: max-age=3600
access-control-allow-origin: https://migadget.ru
vary: Accept-Encoding, Origin
content-encoding: gzip
cache: STALE
x-cached-since: 2022-09-02T10:56:24+00:00
x-id: mgf-up-gc9
X-Firefox-Spdy: h2
static.nativerent.ru/js/codes/nativerent.render.js
178.176.128.128200 OK 0 B URL HTTP/2 static.nativerent.ru/js/codes/nativerent.render.js
IP 178.176.128.128:0
GET /js/codes/nativerent.render.js HTTP/1.1
Host: static.nativerent.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://migadget.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 12:31:35 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Mon, 15 Aug 2022 09:43:04 GMT
etag: W/"62fa1528-8008"
expires: Mon, 15 Aug 2022 11:03:22 GMT
cache-control: max-age=3600
vary: Accept-Encoding, Origin
content-encoding: gzip
cache: HIT
x-cached-since: 2022-09-02T11:46:33+00:00
x-id: mgf-up-gc15
X-Firefox-Spdy: h2