8.8.8.8:53

194.226.27.11:80

GET /1xd3o7I3 HTTP/1.1
Host: upload.advgroup.ru
Connection: keep-alive
Upgrade-Insecure-Requests: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

HTTP/1.1 301 Moved Permanently
Server: nginx/1.22.0
Date: Tue, 25 Jun 2024 11:40:02 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://upload.advgroup.ru/1xd3o7I3

194.226.27.11:443

GET /1xd3o7I3 HTTP/2.0
host: upload.advgroup.ru
upgrade-insecure-requests: 1
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: none
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:03 GMT
content-type: text/html; charset=UTF-8
set-cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm; expires=Tue, 25-Jun-2024 13:40:03 GMT; Max-Age=7200; path=/; HttpOnly; SameSite=Lax
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip

194.226.27.11:443

GET /assets/css/bootstrap.min.css HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:03 GMT
content-type: text/css
content-length: 120876
last-modified: Thu, 13 Apr 2023 15:55:22 GMT
etag: "643825ea-1d82c"
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes

194.226.27.11:443

GET /assets/themes/default/css/droppy.css?v=2.5.0.1 HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:03 GMT
content-type: text/css
content-length: 7346
last-modified: Mon, 17 Oct 2022 18:35:24 GMT
etag: "634da06c-1cb2"
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes

194.226.27.11:443

GET /assets/css/vegas.min.css HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:03 GMT
content-type: text/css
content-length: 6862
last-modified: Thu, 13 Apr 2023 15:55:22 GMT
etag: "643825ea-1ace"
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes

194.226.27.11:443

GET /assets/js/jquery-3.6.0.min.js HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:03 GMT
content-type: application/javascript
content-length: 89501
last-modified: Thu, 13 Apr 2023 15:55:22 GMT
etag: "643825ea-15d9d"
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes

194.226.27.11:443

GET /assets/themes/default/css/animate.css HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://upload.advgroup.ru/assets/themes/default/css/droppy.css?v=2.5.0.1
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:04 GMT
content-type: text/css
content-length: 59683
last-modified: Mon, 17 Oct 2022 18:35:24 GMT
etag: "634da06c-e923"
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes

194.226.27.11:443

GET /assets/css/social_icons.css HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: text/css,*/*;q=0.1
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://upload.advgroup.ru/assets/themes/default/css/droppy.css?v=2.5.0.1
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:04 GMT
content-type: text/css
content-length: 12774
last-modified: Thu, 13 Apr 2023 15:55:22 GMT
etag: "643825ea-31e6"
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes

194.226.27.11:443

GET /assets/js/jquery-ui.min.js HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:05 GMT
content-type: application/javascript
content-length: 228509
last-modified: Thu, 13 Apr 2023 15:55:22 GMT
etag: "643825ea-37c9d"
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes

194.226.27.11:443

GET /assets/js/jquery.knob.min.js HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:05 GMT
content-type: application/javascript
content-length: 10661
last-modified: Thu, 13 Apr 2023 15:55:22 GMT
etag: "643825ea-29a5"
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes

194.226.27.11:443

GET /assets/js/vegas.js HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:06 GMT
content-type: application/javascript
content-length: 19834
last-modified: Thu, 13 Apr 2023 15:55:22 GMT
etag: "643825ea-4d7a"
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes

194.226.27.11:443

GET /assets/js/jquery.fileupload.js HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

194.226.27.11:443

GET /assets/js/bootstrap.min.js HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

194.226.27.11:443

GET /assets/themes/default/js/droppy.js?v=2.5.0.1 HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

194.226.27.11:443

GET /assets/img/logo.png HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

8.8.8.8:53

8.8.8.8:53

104.18.10.207:443

GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/2.0
host: maxcdn.bootstrapcdn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://upload.advgroup.ru/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Tue, 25 Jun 2024 11:40:03 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: FR
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: gzip
etag: W/"4fbd15cb6047af93373f4f895639c8bf"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 11/26/2023 18:55:32
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1187
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: f72c912a91eac1cb82014249d0b7d811
cdn-cache: HIT
cf-cache-status: HIT
age: 8237795
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8994ae3a1b8993d9-LHR
alt-svc: h3=":443"; ma=86400

104.18.10.207:443

GET /font-awesome/4.0.3/css/font-awesome.css HTTP/2.0
host: netdna.bootstrapcdn.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: text/css,*/*;q=0.1
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: style
referer: https://upload.advgroup.ru/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Tue, 25 Jun 2024 11:40:05 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: US
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"1f9e9d1a5a1d347d945ef4b7727f2ea0"
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 03/03/2024 23:05:38
cdn-edgestorageid: 1070
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: c952235c26eb2a4e5129de4ccfc34adb
cdn-cache: HIT
content-encoding: gzip
cf-cache-status: HIT
age: 8533506
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8994ae488ecd93d9-LHR
alt-svc: h3=":443"; ma=86400

104.17.24.14:443

GET /ajax/libs/clipboard.js/2.0.8/clipboard.min.js HTTP/2.0
host: cdnjs.cloudflare.com
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://upload.advgroup.ru/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

HTTP/2.0 200
date: Tue, 25 Jun 2024 11:40:04 GMT
content-type: application/javascript; charset=utf-8
content-length: 3000
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6049431e-29b4"
last-modified: Wed, 10 Mar 2021 22:07:26 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 6852
expires: Sun, 15 Jun 2025 11:40:04 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1Aivzy60%2Fy4%2BXkm5%2BlPeuwaIz2HMYHZkpvpo99v3XxKJ27UK6Xw2JBOwY8h4U20yPLgSOu%2FCd5Arw%2FUFLjSWpC1Ze5Lws0%2BXZiym7ihhS6sSw2pM77Acj5x2IJS422le2ZgS5Nn6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 8994ae4189484165-LHR
alt-svc: h3=":443"; ma=86400

8.8.8.8:53

8.8.8.8:53

23.63.101.153:80

GET /roots/dstrootcax3.p7c HTTP/1.1
Connection: Keep-Alive
Accept: */*
User-Agent: Microsoft-CryptoAPI/10.0
Host: apps.identrust.com

HTTP/1.1 200 OK
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex
Referrer-Policy: same-origin
Last-Modified: Fri, 13 Oct 2023 16:28:31 GMT
ETag: "37d-6079b8c0929c0"
Accept-Ranges: bytes
Content-Length: 893
X-Content-Type-Options: nosniff
X-Frame-Options: sameorigin
Content-Type: application/pkcs7-mime
Cache-Control: max-age=3600
Expires: Tue, 25 Jun 2024 12:40:03 GMT
Date: Tue, 25 Jun 2024 11:40:03 GMT
Connection: keep-alive

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

194.226.27.11:443

GET /assets/js/jquery.fileupload.js HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:06 GMT
content-type: application/javascript
content-length: 56680
last-modified: Thu, 13 Apr 2023 15:55:22 GMT
etag: "643825ea-dd68"
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes

194.226.27.11:443

GET /assets/img/logo.png HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:06 GMT
content-type: image/png
content-length: 7684
last-modified: Thu, 26 Mar 2020 11:54:03 GMT
etag: "5e7c97db-1e04"
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes

194.226.27.11:443

GET /assets/js/bootstrap.min.js HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:06 GMT
content-type: application/javascript
content-length: 35601
last-modified: Thu, 13 Apr 2023 15:55:22 GMT
etag: "643825ea-8b11"
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes

194.226.27.11:443

GET /assets/themes/default/js/droppy.js?v=2.5.0.1 HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:06 GMT
content-type: application/javascript
content-length: 28428
last-modified: Mon, 17 Oct 2022 18:35:24 GMT
etag: "634da06c-6f0c"
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes

194.226.27.11:443

GET /handler/getjstranslation?_=1719315605065 HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept: application/json, text/javascript, */*; q=0.01
x-requested-with: XMLHttpRequest
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
sec-fetch-site: same-origin
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm

HTTP/2.0 206
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:07 GMT
content-type: video/mp4
content-length: 4959419
last-modified: Thu, 26 Mar 2020 11:57:47 GMT
etag: "5e7c98bb-4bacbb"
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
content-range: bytes 0-4959418/4959419

194.226.27.11:443

GET /assets/backgrounds/about_top_video.mp4 HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
accept-encoding: identity;q=1, *;q=0
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: video
referer: https://upload.advgroup.ru/1xd3o7I3
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm
range: bytes=0-

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:07 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm; expires=Tue, 25-Jun-2024 13:40:07 GMT; Max-Age=7200; path=/; HttpOnly; SameSite=Lax
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
content-encoding: gzip

194.226.27.11:443

GET /assets/img/icon.png HTTP/2.0
host: upload.advgroup.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
sec-fetch-site: same-origin
sec-fetch-mode: no-cors
sec-fetch-dest: image
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm
cookie: _ym_uid=1719315607925339662
cookie: _ym_d=1719315607
cookie: _ym_isad=2

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:08 GMT
content-type: image/png
content-length: 1450
last-modified: Thu, 26 Mar 2020 11:54:00 GMT
etag: "5e7c97d8-5aa"
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff
accept-ranges: bytes

194.226.27.11:443

POST /handler/download HTTP/2.0
host: upload.advgroup.ru
content-length: 49
cache-control: max-age=0
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
sec-ch-ua-platform: "Windows"
upgrade-insecure-requests: 1
origin: https://upload.advgroup.ru
content-type: application/x-www-form-urlencoded
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
sec-fetch-site: same-origin
sec-fetch-mode: navigate
sec-fetch-user: ?1
sec-fetch-dest: document
referer: https://upload.advgroup.ru/1xd3o7I3
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: droppy_session=vambr9dh8deqocf130qqr7mpih0n82gm
cookie: _ym_uid=1719315607925339662
cookie: _ym_d=1719315607
cookie: _ym_isad=2
cookie: _ym_visorc=w

HTTP/2.0 200
server: nginx/1.22.0
date: Tue, 25 Jun 2024 11:40:09 GMT
content-type: "application/x-rar"
content-length: 114788142
cache-control: no-store, no-cache, must-revalidate
content-disposition: attachment; filename*=UTF-8''Melonity_Installer%20v3.6.rar; filename="Melonity_Installer v3.6.rar"
content-transfer-encoding: binary
expires: 0
pragma: no-cache
strict-transport-security: max-age=63072000; includeSubdomains
x-frame-options: DENY
x-content-type-options: nosniff

8.8.8.8:53

8.8.8.8:53

77.88.21.119:443

GET /metrika/tag.js HTTP/2.0
host: mc.yandex.ru
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
sec-ch-ua-platform: "Windows"
accept: */*
sec-fetch-site: cross-site
sec-fetch-mode: no-cors
sec-fetch-dest: script
referer: https://upload.advgroup.ru/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

142.250.200.10:443

GET /v1/pages/ChVDaHJvbWUvMTA2LjAuNTI0OS4xMTkSHgnd6IPMDoYBvxIFDV060fQSBQ3BdwBpEgUN3sjTrg==?alt=proto HTTP/2.0
host: content-autofill.googleapis.com
x-goog-encode-response-if-executable: base64
x-goog-api-key: AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
x-client-data: COiBywE=
sec-fetch-site: none
sec-fetch-mode: no-cors
sec-fetch-dest: empty
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

77.88.21.119:443

POST /webvisor/61452100?wv-part=9&wv-type=7&wmode=0&wv-hit=357426299&page-url=https%3A%2F%2Fupload.advgroup.ru%2F1xd3o7I3&rn=40144776&browser-info=we%3A1%3Aet%3A1719316050%3Aw%3A1280x552%3Av%3A1370%3Az%3A0%3Ai%3A20240625114730%3Au%3A1719315607925339662%3Avf%3A2zmls2rp8z74v4amwvwsqnn6xn%3Ast%3A1719316050&t=gdpr(14)ti(1) HTTP/2.0
host: mc.yandex.com
content-length: 52
sec-ch-ua: "Chromium";v="106", "Google Chrome";v="106", "Not;A=Brand";v="99"
sec-ch-ua-platform: "Windows"
sec-ch-ua-mobile: ?0
user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36
content-type: text/plain
accept: */*
origin: https://upload.advgroup.ru
sec-fetch-site: cross-site
sec-fetch-mode: cors
sec-fetch-dest: empty
referer: https://upload.advgroup.ru/
accept-encoding: gzip, deflate, br
accept-language: en-US,en;q=0.9
cookie: sync_cookie_csrf=1677337972fake
cookie: bh=EkEiQ2hyb21pdW0iO3Y9IjEwNiIsICJHb29nbGUgQ2hyb21lIjt2PSIxMDYiLCAiTm90O0E9QnJhbmQiO3Y9Ijk5IioCPzA6CSJXaW5kb3dzIg==
cookie: yashr=8212814931719315608
cookie: i=8BqklPYzRYnI3jcwqPK8w8DDmjivrWXyVJi5AfM5h9cw0cUMOO/bg3H7SuMBIUb6wOjjxCWlBwv9A9LytgX7dUitei8=
cookie: yp=1719402008.yu.300483421719315608
cookie: sync_cookie_ok=synced
cookie: yandexuid=7402515061719315607
cookie: yuidss=7402515061719315607
cookie: yabs-sid=508883281719315608
cookie: ymex=1721907608.oyu.300483421719315608#1750851608.yrts.1719315608
cookie: receive-cookie-deprecation=1
cookie: bh=Ej8iQ2hyb21pdW0iO3Y9IjEwNiIsIkdvb2dsZSBDaHJvbWUiO3Y9IjEwNiIsIk5vdDtBPUJyYW5kIjt2PSI5OSIaBSJ4ODYiIhAiMTA2LjAuNTI0OS4xMTkiKgI/MDoJIldpbmRvd3MiQgciNC4wLjAiSgQiNjQiUlwiQ2hyb21pdW0iO3Y9IjEwNi4wLjUyNDkuMTE5IiwiR29vZ2xlIENocm9tZSI7dj0iMTA2LjAuNTI0OS4xMTkiLCJOb3Q7QT1CcmFuZCI7dj0iOTkuMC4wLjAiIg==

8.8.8.8:53

8.8.8.8:53

104.21.49.90:443

POST /api HTTP/1.1
Connection: Keep-Alive
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
Content-Length: 8
Host: composepayyersellew.shop

HTTP/1.1 200 OK
Date: Tue, 25 Jun 2024 11:48:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=626d8rnkqc5rvb8ngerj5d1078; expires=Sat, 19-Oct-2024 05:35:30 GMT; Max-Age=9999999; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EhTVbD5PWDFj4SopsHx2R61RkRp43pu8bThnzpKhzv9cs%2Fg3y1sf2M%2B0OX7mR2OBZjIXZ8rqhKPJhDiAJSYs5GCbpEtYI97jl0mTm0BzvwFKG14seFcvq0QgWvK3%2FoX%2B6tdNe7Ga8XBUeBg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8994bb1def0f419b-LHR
alt-svc: h3=":443"; ma=86400

8.8.8.8:53

8.8.8.8:53

104.21.94.85:443

POST /api HTTP/1.1
Connection: Keep-Alive
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
Content-Length: 8
Host: publicitycharetew.shop

HTTP/1.1 200 OK
Date: Tue, 25 Jun 2024 11:48:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=f6eosr6ddu6lj93fbt52lf82te; expires=Sat, 19-Oct-2024 05:35:31 GMT; Max-Age=9999999; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LFtviuyhDhuCCx%2BHVkmXrSaJSdTxHVXJlLpB4zDib4i0kydbOUEzcsBgdXcb%2FOz7JawFMq5XcgeHpS31fF6SS3C0vAA09i86zj1QxepQGzK%2BBlljmTkptDp5YMlXFNsVAwZKL8aZVTZO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8994bb209aa394bb-LHR
alt-svc: h3=":443"; ma=86400

8.8.8.8:53

172.67.214.194:443

POST /api HTTP/1.1
Connection: Keep-Alive
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
Content-Length: 8
Host: computerexcudesp.shop

HTTP/1.1 200 OK
Date: Tue, 25 Jun 2024 11:48:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=p2ivkui598de3n31km6ae54k92; expires=Sat, 19-Oct-2024 05:35:31 GMT; Max-Age=9999999; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FAfCfrDE%2ByjC%2FtW30LE90UNuNtHzCL1G%2FezstcGhX5ubzJrRuCAuQHrqPHNGNk0nW74zheORXvryiBgNaL2b%2B2xyd01to8WdtNJfslXncsNrk5ipL5%2B3iFKJZ0%2BPiweHXRxSgJCgUqA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8994bb22fb2272fd-LHR
alt-svc: h3=":443"; ma=86400

8.8.8.8:53

104.21.11.67:443

POST /api HTTP/1.1
Connection: Keep-Alive
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
Content-Length: 8
Host: leafcalfconflcitw.shop

HTTP/1.1 200 OK
Date: Tue, 25 Jun 2024 11:48:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=9em7gb3glolodlqe0is6jo29ve; expires=Sat, 19-Oct-2024 05:35:31 GMT; Max-Age=9999999; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ne9In83iQuZ9evCA4yVZOhnoAGp4gK5tuZ76sJdyKTZcl5T8YBr1s%2Fxg9OBHVJEOW23K02yXGyercQQQMYrGs3qeRoW7bMQLPS2npnX7SfmXzSLhyngVkSFYytyHhGEU4UQ2vvl6C1Pg"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8994bb254bfd6376-LHR
alt-svc: h3=":443"; ma=86400

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

172.67.164.156:443

POST /api HTTP/1.1
Connection: Keep-Alive
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
Content-Length: 8
Host: injurypiggyoewirog.shop

HTTP/1.1 200 OK
Date: Tue, 25 Jun 2024 11:48:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=bn6m7v4unnf5l8qq0dgqbe443a; expires=Sat, 19-Oct-2024 05:35:32 GMT; Max-Age=9999999; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L86bn9ROEniNX65MwU94XBN8P52itdPH2vImKDAldpYCMXmPCAT5VPD%2FOaRclEAFU5ibGajxDx5uYPrGQerjhPRUDcupyB2gWIzlj8lvfmJJQGkefPirI2nWNMbpenNNgp33Woi99xNqmw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8994bb279fdb60e2-LHR
alt-svc: h3=":443"; ma=86400

8.8.8.8:53

104.21.0.91:443

POST /api HTTP/1.1
Connection: Keep-Alive
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
Content-Length: 8
Host: bargainnygroandjwk.shop

HTTP/1.1 200 OK
Date: Tue, 25 Jun 2024 11:48:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=b5krf69aqndrrhiac98k78p4pa; expires=Sat, 19-Oct-2024 05:35:32 GMT; Max-Age=9999999; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=43C5H40wCl5FQxGjA%2FEZE2Za7%2B%2BTJTBjk3plAPyPp%2B9bxyxvkqfzs4ntjDRqOqdDoDoU9mnwjRiIGsBHZSm4nwUaLVeeqJmHbiaZIucRUdyU1f18bmxkAXhZNRsnwi188Z9qry0hE4ri7A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8994bb2a1fbf23d1-LHR
alt-svc: h3=":443"; ma=86400

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

172.67.188.235:443

POST /api HTTP/1.1
Connection: Keep-Alive
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
Content-Length: 8
Host: disappointcredisotw.shop

HTTP/1.1 200 OK
Date: Tue, 25 Jun 2024 11:48:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=51r3sk0585dmm876140p5klb46; expires=Sat, 19-Oct-2024 05:35:32 GMT; Max-Age=9999999; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EzAjzXWKMOu3cHUvTcAM5zPBvjPqKzajiAWAo70T%2B0CedvMLxyOHJyYGkARdAgG6n9IplLlRbShxdDKstOtX4482P3uUV1JHpr%2FiTQx3MqsmhZCt%2Bu5eRbZCMIOI4DZ4J6w6pSFKmMah0rU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8994bb2c6c5271c0-LHR
alt-svc: h3=":443"; ma=86400

8.8.8.8:53

8.8.8.8:53

104.21.96.2:443

POST /api HTTP/1.1
Connection: Keep-Alive
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
Content-Length: 8
Host: doughtdrillyksow.shop

HTTP/1.1 200 OK
Date: Tue, 25 Jun 2024 11:48:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=9ae9maagu1q63hj90eqlipe2d0; expires=Sat, 19-Oct-2024 05:35:33 GMT; Max-Age=9999999; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VxZb%2FrFUDB%2Fp7KHx3iz0OZlc%2F4XLktuf3JjeVhxk8dC9oLUvtSNR%2BAupQpJKpJKehCk3IKBUQKV68rRScpO3aoVfExWYqyLv517lt198Tf6DKVYQcbEsk7bSyWG7qeAwDgDgNyICooo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8994bb2ead7c9515-LHR
alt-svc: h3=":443"; ma=86400

8.8.8.8:53

8.8.8.8:53

104.21.89.170:443

POST /api HTTP/1.1
Connection: Keep-Alive
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36
Content-Length: 8
Host: facilitycoursedw.shop

HTTP/1.1 200 OK
Date: Tue, 25 Jun 2024 11:48:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=u7ncb50viurccp8vmho36ipml0; expires=Sat, 19-Oct-2024 05:35:33 GMT; Max-Age=9999999; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=adUTSyPwlIQ854UofOf4CcnIpXaVUMoMAzNb4elJOaMVub3pkAMewATwZ0xbAaxn5BdCSeS2LX6psy6nPpfH3Ky1ThYf9vEwoA%2Fj0iBYkfh%2FBERIPo8SQZMo6t2ZtwHRTqrHBX6vbnI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8994bb313b6f951d-LHR
alt-svc: h3=":443"; ma=86400

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53

8.8.8.8:53