{"report_id":"0255c659-263f-4c6d-b14f-7198d34a4429","version":6,"status":"done","tags":[],"date":"2023-12-05T11:48:27Z","url":{"schema":"http","addr":"edo.vchasno.ua/app/documents/8d635158-2dfd-4a8f-8110-21abfad59ab0?utm_source=document_info\u0026utm_campaign=sign_request_to_colleague\u0026utm_medium=email\u0026folder_id=6006\u0026cid=143f56e8-045c-498f-9486-07fdb045b35b","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.10.78","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"edo.vchasno.ua/auth/check-email","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"title":"Вітаємо у Вчасно - Вчасно | edo.vchasno.ua"},"submit":{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"","port":0,"asn":0,"as":"","country":"","country_code":""},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-10-26T09:01:19Z","useragent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","referer":"","cookies":null,"exit_node":"default"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"zerossl.ocsp.sectigo.com","ip":{"addr":"172.64.149.23","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2018-08-16","domain_rank":4049,"first_seen":"2020-05-09 21:05:29","last_seen":"2023-12-04 05:13:54","alert_count":0,"request_count":1,"received_data":1220,"sent_data":348,"comment":"","tags":null,"fingerprints":null},{"fqdn":"widget.asky.guru","ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"domain_registered":"2018-07-10","domain_rank":0,"first_seen":"2019-08-09 12:36:15","last_seen":"2023-09-17 22:57:06","alert_count":0,"request_count":1,"received_data":27900,"sent_data":442,"comment":"","tags":null,"fingerprints":null},{"fqdn":"region1.analytics.google.com","ip":{"addr":"216.239.32.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":0,"first_seen":"2022-03-17 12:26:33","last_seen":"2023-12-05 05:10:23","alert_count":0,"request_count":2,"received_data":870,"sent_data":1559,"comment":"","tags":null,"fingerprints":null},{"fqdn":"fonts.gstatic.com","ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-09-09 02:40:21","last_seen":"2023-12-05 06:14:20","alert_count":0,"request_count":2,"received_data":72477,"sent_data":1028,"comment":"","tags":null,"fingerprints":null},{"fqdn":"play.google.com","ip":{"addr":"142.250.74.14","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":34,"first_seen":"2013-05-31 01:24:35","last_seen":"2023-12-04 11:07:26","alert_count":0,"request_count":2,"received_data":1599,"sent_data":1085,"comment":"","tags":null,"fingerprints":null},{"fqdn":"accounts.google.com","ip":{"addr":"64.233.161.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"1997-09-15","domain_rank":81,"first_seen":"2016-03-20 13:44:49","last_seen":"2023-12-05 09:21:53","alert_count":0,"request_count":3,"received_data":330206,"sent_data":1587,"comment":"","tags":null,"fingerprints":null},{"fqdn":"edo.vchasno.ua","ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"domain_registered":"2018-10-01","domain_rank":0,"first_seen":"2022-04-13 10:52:38","last_seen":"2023-10-18 16:09:42","alert_count":0,"request_count":14,"received_data":5706724,"sent_data":13095,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.googletagmanager.com","ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2011-11-11","domain_rank":75,"first_seen":"2013-05-22 04:07:37","last_seen":"2023-12-05 06:24:59","alert_count":0,"request_count":7,"received_data":638194,"sent_data":3153,"comment":"","tags":null,"fingerprints":null},{"fqdn":"gotcha.c.prom.st","ip":{"addr":"193.34.169.9","port":443,"asn":43896,"as":"Evo Cloud LLC","country":"Ukraine","country_code":"UA"},"domain_registered":"2013-08-27","domain_rank":0,"first_seen":"2019-08-23 13:13:53","last_seen":"2023-10-24 09:14:50","alert_count":0,"request_count":1,"received_data":2198,"sent_data":415,"comment":"","tags":null,"fingerprints":null},{"fqdn":"www.google.no","ip":{"addr":"142.250.74.163","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2001-02-26","domain_rank":25607,"first_seen":"2016-04-05 21:50:59","last_seen":"2023-12-05 05:55:22","alert_count":0,"request_count":1,"received_data":578,"sent_data":589,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":[{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:12Z","timestamp":1701776892,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":42841,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:48:12.696113+0000\",\"flow_id\":2010740713889585,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.17\",\"src_port\":42841,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":36892,\"rrname\":\"edo.vchasno.ua\",\"rrtype\":\"A\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":85,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:48:12.696113+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:12Z","timestamp":1701776892,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":34308,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:48:12.696261+0000\",\"flow_id\":1110324442603461,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.17\",\"src_port\":34308,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":9218,\"rrname\":\"edo.vchasno.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":85,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:48:12.696261+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:12Z","timestamp":1701776892,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":39767,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:48:12.723888+0000\",\"flow_id\":2064702682958768,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.17\",\"src_port\":39767,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":59124,\"rrname\":\"edo.vchasno.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":85,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:48:12.723888+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:12Z","timestamp":1701776892,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":33898,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:48:12.931598+0000\",\"flow_id\":509177197508366,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.17\",\"src_port\":33898,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":45278,\"rrname\":\"edo.vchasno.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":85,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:48:12.931598+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:13Z","timestamp":1701776893,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":40470,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:48:13.402882+0000\",\"flow_id\":1261056319890882,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.17\",\"src_port\":40470,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":1798,\"rrname\":\"edo.vchasno.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":85,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:48:13.402882+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:13Z","timestamp":1701776893,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":56509,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:48:13.404907+0000\",\"flow_id\":415435241369003,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.17\",\"src_port\":56509,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":38572,\"rrname\":\"edo.vchasno.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":85,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:48:13.404907+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:13Z","timestamp":1701776893,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":57260,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:48:13.407974+0000\",\"flow_id\":353048693914022,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.17\",\"src_port\":57260,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":54325,\"rrname\":\"edo.vchasno.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":85,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:48:13.407974+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:13Z","timestamp":1701776893,"ip_dst":{"addr":"Client IP","port":57638,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"193.34.169.9","port":443,"asn":43896,"as":"Evo Cloud LLC","country":"Ukraine","country_code":"UA"},"severity":"low","alert":"ET INFO Observed ZeroSSL SSL/TLS Certificate","source":"{\"timestamp\":\"2023-12-05T11:48:13.594463+0000\",\"flow_id\":1263010530061094,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"193.34.169.9\",\"src_port\":443,\"dest_ip\":\"10.70.215.17\",\"dest_port\":57638,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2031231,\"rev\":3,\"signature\":\"ET INFO Observed ZeroSSL SSL/TLS Certificate\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2020_11_23\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2020_11_23\"]}},\"tls\":{\"subject\":\"CN=c.prom.st\",\"issuerdn\":\"C=AT, O=ZeroSSL, CN=ZeroSSL RSA Domain Secure Site CA\",\"serial\":\"00:FF:62:6F:FF:35:2E:87:70:D3:A5:BB:80:8F:57:2F:85\",\"fingerprint\":\"58:10:bc:20:4a:8c:83:1d:55:58:83:87:47:45:a5:66:e6:7c:ea:8b\",\"sni\":\"gotcha.c.prom.st\",\"version\":\"TLS 1.2\",\"notbefore\":\"2023-11-10T00:00:00\",\"notafter\":\"2024-02-08T23:59:59\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"263c859c5391203d774bc0599793d915\",\"string\":\"771,49200,65281-0-11-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":8,\"pkts_toclient\":7,\"bytes_toserver\":1211,\"bytes_toclient\":5847,\"start\":\"2023-12-05T11:48:13.453414+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:14Z","timestamp":1701776894,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":36313,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:48:14.762028+0000\",\"flow_id\":785721551921324,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.17\",\"src_port\":36313,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":55253,\"rrname\":\"edo.vchasno.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":85,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:48:14.762028+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:14Z","timestamp":1701776894,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":45590,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:48:14.783733+0000\",\"flow_id\":1731492677875061,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.17\",\"src_port\":45590,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":36647,\"rrname\":\"edo.vchasno.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":85,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:48:14.783733+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:14Z","timestamp":1701776894,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":58937,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:48:14.830290+0000\",\"flow_id\":1939235950996306,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.17\",\"src_port\":58937,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":16423,\"rrname\":\"edo.vchasno.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":85,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:48:14.830290+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:14Z","timestamp":1701776894,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":34572,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:48:14.896952+0000\",\"flow_id\":1938679752732600,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.17\",\"src_port\":34572,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":50837,\"rrname\":\"edo.vchasno.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":85,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:48:14.896952+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:14Z","timestamp":1701776894,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":37742,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:48:14.935318+0000\",\"flow_id\":2029206925886870,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.17\",\"src_port\":37742,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":40969,\"rrname\":\"edo.vchasno.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":85,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:48:14.935318+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:14Z","timestamp":1701776894,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":42718,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:48:14.936946+0000\",\"flow_id\":1789184826035186,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.17\",\"src_port\":42718,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":20199,\"rrname\":\"edo.vchasno.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":85,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:48:14.936946+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:14Z","timestamp":1701776894,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":42780,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:48:14.949959+0000\",\"flow_id\":1482930035523271,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.17\",\"src_port\":42780,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":48156,\"rrname\":\"edo.vchasno.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":85,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:48:14.949959+0000\"}}"},{"sensor_name":"suricata","title":"","description":"","date":"2023-12-05T11:48:15Z","timestamp":1701776895,"ip_dst":{"addr":"Internal IP","port":53,"asn":0,"as":"","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":54077,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)","source":"{\"timestamp\":\"2023-12-05T11:48:15.080324+0000\",\"flow_id\":9425540561348,\"in_iface\":\"lxdbr0\",\"event_type\":\"alert\",\"src_ip\":\"10.70.215.17\",\"src_port\":54077,\"dest_ip\":\"10.70.215.1\",\"dest_port\":53,\"proto\":\"UDP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2851162,\"rev\":4,\"signature\":\"ETPRO INFO Observed DNS Query for Ukraine Domain (.ua)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"created_at\":[\"2022_02_24\"],\"former_category\":[\"INFO\"],\"signature_severity\":[\"Informational\"],\"updated_at\":[\"2022_02_24\"]}},\"dns\":{\"query\":[{\"type\":\"query\",\"id\":34904,\"rrname\":\"edo.vchasno.ua\",\"rrtype\":\"AAAA\",\"tx_id\":0}]},\"app_proto\":\"dns\",\"flow\":{\"pkts_toserver\":1,\"pkts_toclient\":0,\"bytes_toserver\":85,\"bytes_toclient\":0,\"start\":\"2023-12-05T11:48:15.080324+0000\"}}"}]}],"analyzer":[{"sensor_name":"infosec_yara","type":"yara","description":"Public InfoSec YARA rules","link":"","alerts":null},{"sensor_name":"openphish","type":"url","description":"OpenPhish","link":"","alerts":null},{"sensor_name":"phishtank","type":"url","description":"PhishTank","link":"","alerts":null},{"sensor_name":"mnemonic_dns","type":"domain","description":"mnemonic secure dns","link":"","alerts":null},{"sensor_name":"quad9","type":"domain","description":"Quad9 DNS","link":"","alerts":null},{"sensor_name":"threatfox","type":"url","description":"ThreatFox","link":"","alerts":null}],"urlquery":null},"javascript":{"script":[{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"6249816c9da19294ef22b3596fb160e1","sha1":"85d83c97e75781e17430765103fa7ef38bfacbca","sha256":"113d6c1927f961f1c5d869565e9f38b360e8e002d88665e9a6b7c3b76debe476","sha512":"337d5d80c6df6a5ca4d627558e8bcc5c0761f62eec83ad623c5a9d63a7f290f45b9b911807637e3f62f8a08939d026aa4b825966f7350195d7b27ebf79ad5884","ssdeep":"","tlshash":"d3e0ab1e2c1eb4722bbc1da8f2b7891934d9130225462aa5cb87d8643970cca68c6f4c","size":423,"data":"","first_seen":"2023-04-19T11:57:26Z","last_seen":"2024-08-21T03:38:51.556889Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=UA-88652144-25\u0026l=dataLayer\u0026cx=c","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"c5acce7f2ff1062b1deac3d1f7d11d35","sha1":"338b45bb794e4eae1859656eb14739051d46c4eb","sha256":"a532d805abf5191b3b6eff348e75aa8d188cd8b7199a2d7fa119a7a394dfe514","sha512":"0ac66cbb20428a49e17b1854c37cdcd2d469ba3750e0ce8c55c113cb6b69b4e2b9d833b0e82b57ace566c5c87a5e7de0fc9893ae61a362da3dd95c7823390544","ssdeep":"3072:LJdZAlCIWYb1jbYxypDWMxMT6/hA9DfFWkWp9I4A:tfIHJ0PT6/hA9DfYLC","tlshash":"8204e6d8b393b06682a7b474503f110bf17b6d92f84ccc94e189c5d52eb86a9427bf6c","size":188384,"data":"","first_seen":"2023-12-05T12:48:29Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtm.js?id=GTM-KDBP5SJ","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"93553159e4ee2984ea290725ce3d1be0","sha1":"9fc71cef6c704b3811dd6e716c398319265e463a","sha256":"237098fa093385e7e30f336b8a73e623196d5b5f766c60e4d9de7520426e8748","sha512":"6ae1b53da12745f2e32196b06114b3c8b4f12829cb8cfb082bc4f4770420c96e0adbc0f2b280e3984f9d6ba5ab32042f05bda402ee62f5094a12375af361ef42","ssdeep":"3072:h3janjdZAlCUWY1UyO1j8YypDDMvmM7XdXwhA9DfFWk/p9pRUbFWt4X:h3jajfUH1Uy4Xd7tghA9DfYmnOP","tlshash":"9e84f9ccf252b47ac6566664c03f190aa67d18f3b54cac50e48ac8d82e745f93273f9e","size":374487,"data":"","first_seen":"2023-12-05T12:48:29Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/_/gsi/_/js/k=gsi.gsi.uk.k9yfcHvoVQ4.O/am=AFCA/d=1/rs=AF0KOtXkoNfSi-7B7m2Sh27bDBZ2bH4XXA/m=credential_button_library","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"7653a568223da3f3701068e7c184fd74","sha1":"3cf1adc8139ca094fddf2d7721694ccca3d2c400","sha256":"bbc25510d9c7ac4cb98f7e9a3a3f11c1d2ba7b4f1ee344745e1cf606c5b99fc7","sha512":"947f702038456d8937457ff38bb08fd7ae2dff041816c99d6d6c5544312a18e3657ab9877442708ba9da915c17a18405d2b4436f7152d0fa80b497d1ea4e3549","ssdeep":"1536:TqAauSjQ9J6h1oW0g8RLxI5tKgc77c+1QWCFW77qxJbEoP8Sxt9BlK+nizfWqy:TwjQWhiWwRLxI5Nc7jwHhtZiTs","tlshash":"21b3d8c8b3a270668363f4a5813f000fb17b68a9f4489dacf185d9e2adf45894167f7d","size":107844,"data":"","first_seen":"2024-08-20T16:42:10.899499Z","last_seen":"2024-08-20T16:42:10.899499Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google-analytics.com/analytics.js","fqdn":"www.google-analytics.com","domain":"google-analytics.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"f24128d0c9cba7be2916c693427a3483","sha1":"1b6397d496ea896ebc2018b01b995cee4f166029","sha256":"58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8","sha512":"c4950733b44e258bbc817ce6396f002caec1e11a6413fd0038c9baef2d5f1d992b1fd0ec52515aba52faedb52c28b996a7fc063f28a0f45f3aab5e2f91bf5be5","ssdeep":"96:gr5xyIhZ6pQ/d/bTQcFeqZVxNnR36Hc9lDJlQC8dA9Sa5fLtUB5roNiEP:gr58IhZ6pg/bTXVx9t689fN8INtEONig","tlshash":"7ea1cd9b39e650310332bfe91bfaa559b22937605220c161be0c915b7399233d3e1bec","size":4691,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-05-20T06:11:07.663299Z","times_seen":890363,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/cloud-cgi/static/vchasno-static/js/auth.becdbb233ed513b1500d.js","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"d921608362b340ccc5180a9554f2312d","sha1":"fc9753928b3f848f806ce0de06a02f010e231963","sha256":"9c3cd0d8fdcdd7d8de43deb2c4b6f4cb2df205a851545db81df8fce09441df1c","sha512":"9cd1dbbf130b8d196d4c1a52a0f41b0543c51c8786841339ee4e69c1d685de99b08503590b2c663d79c1a79925662e313460ddc33852a6cc4052981f706ad694","ssdeep":"49152:aDFtKASaqhOaolyk2KXRVIj7yQOFihalQUJ0LTzC0KSB1DkCXWz1Z4m/UJDiLsg+:AXRVIj7yQOFihalNSB1DkCXWn/jzM","tlshash":"9b164bc9b2c2b09a0353617a943f3507b57a19be785d8200b269e9de39f5c44833bb7d","size":4074076,"data":"","first_seen":"2024-08-20T16:42:10.902161Z","last_seen":"2024-08-20T16:42:10.902161Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"widget.asky.guru/askyguru.js","fqdn":"widget.asky.guru","domain":"asky.guru","tld":"guru"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"introduction_type":"scriptElement","is_inline":false,"md5":"33fb4b865e97e991dbf5b8449171c10a","sha1":"18082082834812164be5541418cec0167cc6e2b8","sha256":"4fe4d1da510bc5eb8f34a416d4f2d04e4204279c59ff3a990d613f8cc7f8ea0b","sha512":"1d3b0e8b044a1eb6e50df887e06a5290be4952980a1a5b814dc599e7e37c02e69f860ddb7306fb3cf40d10fa22deb0128799e533de1e7a3746d1a2d4fe0e0c5a","ssdeep":"1536:u5EHtlJCVp1n185+mT8Y2wF7sglgnlg7r:0fpd+8mTL2bglIg7r","tlshash":"a18307c933d1747597a711b144af000af33aa718e84c88a8f166e8e16db9a6c5327f3d","size":83813,"data":"","first_seen":"2023-05-20T11:53:36Z","last_seen":"2023-12-05T12:48:30Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-5EE52G3WCQ\u0026l=dataLayer\u0026cx=c","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"0d2960c0ccb6bee8058ca0cf056c05e3","sha1":"921b4ca6a1578cf31c8fb1cbdac7ce0932c06467","sha256":"d8ec3fe2ff194bb1e922d794b9c3f27e4e5e63ed9779ef61cfd7f1773fe13715","sha512":"0a344b6f0008332f270ea42bcd23b488a4f2bd72db6b823421c09076552206b4f44dfbba8ffce67c287535606ea20a76a6dffecc4f0e7cff4e4d8e17f4933a6c","ssdeep":"3072:3E4l+bZdZAlCIWYMuUyO1j4kypDDMv0M7XdXzhoO7DfFWkbwV8reAcEW5qj4w:U4+fIHMuUy4R37tDhoO7DfYyw+reAce","tlshash":"6674099a738674678696f468543f028b99bb18e3b45ccc96f1c8cce02e7468a4177f7c","size":342579,"data":"","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/auth/login","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"8a8e73a0270f7f1bdfbc1aacc055e901","sha1":"232b4e9ca52e7fd568fba27e41d470bd74ee4786","sha256":"ff8269d4aa9ed845a4ad1b1b3ecfb7887bb809efb24a06e4301a94b68bcb08d9","sha512":"ff71dfba8c00598d52df7626830a286713c393b3354496e8817d620904131bf6c2c3f5fc4c041e284fca6c9e230be5b7822d2d1970006f0a2793e03d0c511e44","ssdeep":"","tlshash":"0db012b3020f4551082109950ec3323cf181a063164c70043b0d4e0f77c1df7f75a685","size":105,"data":"","first_seen":"2024-08-20T16:42:10.903296Z","last_seen":"2024-08-20T16:42:10.903296Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-HF2XZD4ZQP\u0026l=dataLayer\u0026cx=c","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"f96fe177190ca5466c98fbfd80da9893","sha1":"432b569ed107a5ccb72ba0346bbbff123c8fa836","sha256":"7433378f87ed7e6bcf1adcc517a667eec8eccf52fd09b817211e1407d848d9e1","sha512":"94d7c8f961b2cca72285edc5da3ebbfdd6f9750a4bbf32fa33f0aabe9886ccb62fde0cfbbdddddda37648045a15c524d07126efe2bdae0c4376ceff0d995a0f8","ssdeep":"3072:Me4l+6dZAlCIWYMuUyO1jvwypDDMlM66OhoO7DfFWkrw28rIx7EWRqj4w:f4hfIHMuUy4cA66OhoO7DfYUwXrIx72","tlshash":"494408da73c3706682a6f479503f024ba5bb28a2b45ccc95f1c9c9d02e74a9a4177f7c","size":265457,"data":"","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/auth/sandbox%20eval%20code","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"","is_inline":false,"md5":"92b651082ce234f66bb544e678befda3","sha1":"14c21c55ddce43b6f677caadf51d4ab98c6a3df8","sha256":"25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded","sha512":"b4fcbc037e0a3d91db2a624921e96b878e9e18dd998ad5649d77d7d053faf28b09c8725a0542aef702310bf85f3037b70985c274db8acabd021efb171d41f361","ssdeep":"","tlshash":"69c02be3f74421ae2f1156f2b810e043a2c62b015ae7c402f00e003f2440fea4eee1e8","size":147,"data":"","first_seen":"2023-04-11T21:07:53Z","last_seen":"2026-05-20T06:11:07.649603Z","times_seen":892032,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gotcha.c.prom.st/gotcha-min.js","fqdn":"gotcha.c.prom.st","domain":"prom.st","tld":"st"},"ip":{"addr":"193.34.169.9","port":443,"asn":43896,"as":"Evo Cloud LLC","country":"Ukraine","country_code":"UA"},"introduction_type":"scriptElement","is_inline":false,"md5":"3cc8c96df23f3af7bef99624151ae9be","sha1":"36a441231ca6ea354c853a21edc3e1d2722b27f3","sha256":"64b797a0ce98432b9720aa97a2a7a6e7f7d86348832f7f06d985d0b0e403debf","sha512":"4917035d30d30817c9d48b9e1c6863e7de693736f566661cdebead23d5a626a07b07a24516e8e1bcd386bcf52762ab1c0a92a013ae07c5cb537417afff151438","ssdeep":"","tlshash":"7a51838a76c5f8920be3a5a2660f320db26b485b646df051d31ac4e07c3944fe632bc9","size":2989,"data":"","first_seen":"2023-04-12T08:18:19Z","last_seen":"2026-05-13T06:30:18.77881Z","times_seen":119,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/gsi/button?theme=outline\u0026size=large\u0026type=standard\u0026shape=undefined\u0026width=195\u0026client_id=799386704302-dp3auqv5520cjp4udbgpfg8eoq45p2tr.apps.googleusercontent.com\u0026iframe_id=gsi_895017_970699\u0026as=nZ143NBmBvhWSE1b7%2Bfq7A\u0026hl=uk","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"64.233.161.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"1146f108bdd1c43bc2c73dbdb567151c","sha1":"023635ed13c43c62e56e3a784f4090b41adfa321","sha256":"fe18bd12bd33d71944bf4a2c6280c44daa88dd13e880c0571f2d9f519ba9e0cf","sha512":"d0a2d8b5764d152099fe15d05944f004a13b8ba669a90dce24b542061471d8fa0c6dea5a234e7c08024d34fb4fb6e77371fc50f111eef8793ca8ecc78415bb20","ssdeep":"1536:7qAauSjQ9J6h1oW0g8RLxI5tKgc77c+1QWCFW77qxJbEoP8Sxt9BlK+nizfWqy:7wjQWhiWwRLxI5Nc7jwHhtZiTs","tlshash":"63b3d8c8b3a270668363f4a5813f000fb17b68a9f4489dacf185d9e2adf45894167f7d","size":107843,"data":"","first_seen":"2024-08-20T16:42:10.905182Z","last_seen":"2024-08-20T16:42:10.905182Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-HF2XZD4ZQP","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"a3b02909b9d47ea3a5919eccdb3a7934","sha1":"7143470c14600382041f39a3ecffe1b54b50d37b","sha256":"0899d7f3c70b283f09ad6b86f35c3a8ca82be7c5aa5a518ad70c0ea1ab898364","sha512":"a65a75882e2f8690ca32ab67d716ebb3dd9627211418c23047985715ed01fdbb3bf9bc9d4e8fa09aa846a368e2786657f555bb548211717e75f8060c95ecbbbf","ssdeep":"3072:Me4l+6dZAlCIWYMuUyO1jvoypDDMlM66OhoO7DfFWkiw28rIx7EWRqj4X:f4hfIHMuUy4EA66OhoO7DfYXwXrIx7N","tlshash":"0b4408da73c3706682a6f479503f024ba5bb28a2b45ccc95f1c9c9d02e74a9a4177f7c","size":265431,"data":"","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/gsi/client","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"64.233.161.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"2dac4c28fbe1c91c8c9238396e8783db","sha1":"cd248444b9109bd11fbcdc9346187b11f5aaba88","sha256":"0401b1138e2dbac185c52dedb3b6804474a6b2ffc5486e68a3fa861e9dd275f1","sha512":"310171c01cab1ce8fd366f9f6288db8c05f2b9148bc3b3c29b7427ac86c5a6b01ef48b4b475ac6b04d5234df501a331df656702fa29fdf8922d012b1277e7f3f","ssdeep":"3072:7LjQGh5WhRLxI5kPFgdJryyum8XDy/UWXMiVGXaG2O6AuCioy0cfqmCk:GRLxI5Ppyyum80fciQXaG2cuCly0cCvk","tlshash":"a6243bddb6e270354513b8b6d53f420bb07696b8f14988acf6c4c5f9acb48890127f7a","size":209992,"data":"","first_seen":"2023-12-04T23:13:28Z","last_seen":"2023-12-09T00:04:24Z","times_seen":136,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtm.js?id=GTM-PRJ9TST","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"7108aa397ba86f9a2132f06b1c7647f6","sha1":"76036321dc2969a5e3725fb629c72cce4ab4c956","sha256":"0ab932fc81d2cbd9486e9f74e5e13e7d74a674438d971659d46a01a99f07a2cb","sha512":"127baf89dbc4e7e81ad288913e00c462180642a0ea1a06a381c45b926cc1b2309aad324e334f0ac35a450cf1270ef062dd676168f90e1212a1dee778dc9bec8d","ssdeep":"3072:0zdZAlCXWY61jxyypDWMpM5/hA9DfFWk9p9/a494n:MfXH0Al5/hA9DfYi17s","tlshash":"d63418d8b383b46683a37574903f050bb27e2de2b84cec94e18ac4d42e746a95177f6d","size":240531,"data":"","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/auth/login","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"b605d76ef6f04f5b1ba6a855240b67d9","sha1":"3ef3bc99ac1eb1d93fad7362fa9bee2590b901fb","sha256":"24f6762746030a67a69ce7182728b148a13074ec0c151db7b93e5670ebe219d6","sha512":"cbec91cc5afaff2432fed63626b9629fdc9a8d9f096f55b48687a4d3e0018ee85dc1589be40178ce7495fb9f955ae2cadc585c724c33d8e5e5c5895b4176790c","ssdeep":"","tlshash":"11f054ce341458f58517ebf727b3451ce55b365c9561b922bf1c44491314451405e7ac","size":513,"data":"","first_seen":"2024-08-20T16:42:10.906332Z","last_seen":"2024-08-20T16:42:10.906332Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"","addr":"","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"ad7cb7b287040fce60c3a8bc7ab43a64","sha1":"819194d166a0a2878f1897cbcbcda62b5e076f6e","sha256":"46c120bf65aad2c0c4fb51b5aa68dc923fbef6dea46f2b56335b8c99390f712a","sha512":"2baad3ffa4794e0df584eee91c220353d2b3d0618a1355724c8a4de989df49cd8c5a340dfb7a3f859757c9002693c5bc40592ec20641897f211e57949a359b1b","ssdeep":"","tlshash":"32e0e5925032d83904a708e71bb442c8c8ee8a8fa902f2ca24b90ea80574941c7b1fed","size":402,"data":"","first_seen":"2024-08-20T16:42:10.907878Z","last_seen":"2024-08-20T16:42:10.907878Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/auth/login","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"33d57e44385066f7a47be97d4d382cec","sha1":"da072eb3dafe9fe1bfe8cf5caaf6f5021ac0e896","sha256":"d0a972e84d247087406063c8f46e1d2e4cfb7b2bfebb136bba204fea37f55082","sha512":"d641bd8325d3b999a175e7093ed344c0cb8400e48367bfb780404526efd05794f6e8f225091dd1e5cdabf6fb8ecb540dfdfa75348a1cf7509a0f62fd847cb3fb","ssdeep":"","tlshash":"d5e0c0cb70110871659e4df537b4b124b153320ca4191822fdfdc8242b5968b485269c","size":377,"data":"","first_seen":"2024-08-20T16:42:10.909502Z","last_seen":"2024-08-20T16:42:10.909502Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/auth/login","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"1ab4b48cc34548cee6ed914518215f65","sha1":"6b137f5e1e0ced2d44b2e2eeee348c28caf93d9d","sha256":"c3d0568eb8499cc4c65536eeefe1b24fa29ef426400cac545a103b73886376fd","sha512":"00b32db66a57efd56685bdbd0b55b6f3d07c27cdb6fef7b02da16b62e31dea3091bc187db606d7d68cb93e5fe62bbeb50f9f7001adadfda91c781fcf5383a58a","ssdeep":"","tlshash":"06e01df915c638b2cd777f91cfbf5551a02f3318946254313d9db1471725a13d094978","size":421,"data":"","first_seen":"2024-08-20T16:42:10.910465Z","last_seen":"2024-08-20T16:42:10.910465Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-YT5V9MV99B\u0026l=dataLayer\u0026cx=c","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"33253dd171b4962b229ce703ea1dfcd1","sha1":"2830273d12c773c6371f3ac40b8f440fbeb4f4b6","sha256":"d9fc6571f30c6015dadeccfa9f14ca38b643645b5560bfab7877212aa603a688","sha512":"3172e3fac63d06c1df5a4b68de9b801aa57b1c1b453b141d0045f3f36ca0f5cf221d528f3db7bb35387b98bd60b0522b1207729d0846eb31092ef17cc96d5d8e","ssdeep":"3072:tf4a+badZAlCIWYMuUyO1j2IypDDMlM66OhoO7DfFWkStp8rIxSEWRq94w:l4qfIHMuUy45A66OhoO7DfYNtSrIxSs","tlshash":"f05409da73c370669296f479503f028ba5bb28a2b45dcc95f1c9c8e01e74a9a4137f7c","size":282971,"data":"","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/auth/login","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"217923c0112343a4f78fdd9131724a42","sha1":"019027acf01068e946174fb2fae08ad28d3632c6","sha256":"ba7f295eb448990421fa2da5b9341c22ee2f4813b51b2be16877eb2b2961e607","sha512":"3bd914b9b4da27788b8498a83f3028aed21ad888a080e98f4f8a01f785d490167d90bb00e689f706597ed5220e043ae1a7e7d0ade964ea67ff915fbd0939859d","ssdeep":"","tlshash":"30e0c0cb74121875a59e49f527b4b1247153320ca41a1c22fdfdc8242b59687485619c","size":377,"data":"","first_seen":"2024-08-20T16:42:10.911389Z","last_seen":"2024-08-20T16:42:10.911389Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/auth/login","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"207f138677fb912117dd4a1625d9d512","sha1":"6e8c1e997dc0a8c3f8ef021e4b2c2794f8d28231","sha256":"f0edca00c9b87f19afc1f3cc6ffc95f4cc03cd01767c656e741aa55b9cc2ab65","sha512":"95e9186df6b16687865390d988c52dee3ae7c6fc76100ad330a28b4966a5633df73586e307c067a648e18b710732bd63aaaf2df046381ec1a4072cefc7f06afa","ssdeep":"","tlshash":"3401025f1c05a0fa3bfb3e38c3f7911a372637007012c040be4e80461769552984bdcd","size":831,"data":"","first_seen":"2024-08-20T16:42:10.91236Z","last_seen":"2024-08-20T16:42:10.91236Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/auth/login","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"20f04d24666b3965ec75d17f6bb2a1b4","sha1":"c22446b8ab2b16b1a09b9f257be04cd3d783c9ca","sha256":"08057d9ad08e4e1cb2268ae7646725d95693a8904585c1a27a467ba75e372ce7","sha512":"e0dc4bac5863530e3c5a4612fdb8b30126238ebb27b52afe3f17fb2a8718866cfb2d5cf65d3bbe76a733d49b5038812ff5bf98173efd09615ffc87094a992b10","ssdeep":"","tlshash":"6ee07d4d3411016c00773ee126b3b90414937b0864b45c983c9cc59f1726db6845782c","size":347,"data":"","first_seen":"2024-08-20T16:42:10.914165Z","last_seen":"2024-08-20T16:42:10.914165Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":[{"md5":"0371d1002020e1620580f23ca9b70f67","sha1":"33d5d96f3474f601cb7c9179cdb0d5869ff8b6a1","sha256":"54dfbce47cb17041b3584fc205a44715652458ea9f5f9cc0ce3db684b23e81c6","sha512":"943d41067e04b0b534a9246fd666a5cc71ede20a89cfdabd0dad93d6f297863e508d3e8760eceed7e8050611a47aca1b6f812ec3c0e74fddd629fa7acbb2bd5a","ssdeep":"","tlshash":"b6a01208b4b170708423245b23b94286701000c61e004101c408008139505a5115abd5","size":84,"data":"","first_seen":"2023-06-09T15:33:46Z","last_seen":"2025-10-16T10:05:03.062992Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"2c0b34ea78e4c57b26b2d8f42b455501","sha1":"ebbe3c1d08f7264f1f90e4b23e1acfb152c905bd","sha256":"e56f4a91e1a15be3fa6314c95ff32197ec1e474e57cb80d9f1f306e6a1b259aa","sha512":"2ec5f0a407aaf54281c530ef602dd2083b345ee3e06b4cb3b0f53d3b1d9caf3418f2cf39f6406b3d5a7e902360bfd7d1d814de529651ab12e201ac2cc09d2a13","ssdeep":"","tlshash":"4ac0024af38e11763dcbb00624258229942b0afb0f84a7c477354de54a8b3474094bba","size":162,"data":"","first_seen":"2024-08-20T16:42:10.915989Z","last_seen":"2024-08-20T16:42:10.915989Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"a8a2baaed93fecc1413768c65e58de2b","sha1":"42fe347c7e4882d8b7eead189c9a8af107d87069","sha256":"7d173fcb4250b91aa5a44cbb8ec0fafcf5b1e33ba5e5a748703ae2e018d89256","sha512":"1ea87a7543dbe840a483a2531ae9f742e6508be97d833f100b3be023ae96f1ceb00dd0d7ba2bf69c395114239bb464593d73c463fc1a5f4f72d1c2b43f42760f","ssdeep":"","tlshash":"d2c0024bf38e10663dcbb00624258219942b0afb0a94a7c877344de54a8b3470094bfa","size":162,"data":"","first_seen":"2024-08-20T16:42:10.91719Z","last_seen":"2024-08-20T16:42:10.91719Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"edo.vchasno.ua/app/documents/8d635158-2dfd-4a8f-8110-21abfad59ab0?utm_source=document_info\u0026utm_campaign=sign_request_to_colleague\u0026utm_medium=email\u0026folder_id=6006\u0026cid=143f56e8-045c-498f-9486-07fdb045b35b","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-12-05T11:48:12.734Z","timestamp":1701776892734,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vchasno.ua","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 31 Oct 2023 18:01:28 GMT","end":"Mon, 29 Jan 2024 18:01:27 GMT"},"fingerprint":{"sha1":"E1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E","sha256":"BC:8A:DE:94:5F:8A:6C:8D:61:9B:7D:CA:DF:C2:24:6F:DC:86:4F:1E:89:2F:25:96:A9:35:53:11:18:42:AB:D4"}}},"request":{"raw":"GET /app/documents/8d635158-2dfd-4a8f-8110-21abfad59ab0?utm_source=document_info\u0026utm_campaign=sign_request_to_colleague\u0026utm_medium=email\u0026folder_id=6006\u0026cid=143f56e8-045c-498f-9486-07fdb045b35b HTTP/1.1\r\nHost: edo.vchasno.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 Found\r\ndate: Tue, 05 Dec 2023 11:48:07 GMT\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 10\r\nlocation: /auth/login\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nfeature-policy: accelerometer 'none', camera 'none', battery 'none', gyroscope 'none', midi 'none', payment 'none', usb *\r\nx-request-id: 097c7f14-6dc4-45a5-bd07-6cc336df4f06\r\nset-cookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; expires=Thu, 04-Jan-2024 11:48:07 GMT; HttpOnly; Max-Age=2592000; Path=/; Secure\nvchasno_auth=w653991b584044308b8c820f1c87e427a; Domain=.vchasno.ua; HttpOnly; Max-Age=2592000; Path=/; SameSite=None; Secure\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=%2BY40fndi7hys%2F5yNEtz3lF0Z9fQowByRey8loedAR21XsoM9v%2BOpXAGYHyTTcq1s5oB5RZ1Nv0lXL7ad4z%2FAA3jNrxZPxDmybdWBME6xEzB0z0M9vMj8PFz5r40KTxpo\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830c0ee71e9eb529-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"Found","fingerprints":null,"data":{"size":10,"size_decoded":0,"mime_type":"text/html","magic":"ASCII text, with no line terminators","md5":"a8e03540dce77ac5043211d114328eb8","sha1":"d7ddfe518c491af3a0dc594fa6890ae3dbd45a7b","sha256":"2df1e0cd7190e6485b41ba12f0a445a2422a720cc97e6419160206383a481c5c","sha512":"3aabd5039beb950dbc702510fcc51dd618d040ed90284a47edd0179f413995d0afdc007a929dec91cc5ee282a81b6d59773b80683efec244528699b4cef01db1","ssdeep":"","tlshash":"a250000c000303fc00003030000000000000033030c000cc0000000c000030000c0000","first_seen":"2023-04-11T09:18:30Z","last_seen":"2025-02-26T10:39:21.37615Z","times_seen":2350,"resource_available":false,"data":null}},"time_used":210,"timings":{"blocked":10,"dns":1,"connect":1,"send":0,"wait":179,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtm.js?id=GTM-PRJ9TST","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:13.508Z","timestamp":1701776893508,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:18:19 GMT","end":"Mon, 15 Jan 2024 11:18:18 GMT"},"fingerprint":{"sha1":"37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34","sha256":"11:4C:25:F9:AD:55:F4:E8:94:2E:64:99:7D:15:71:51:3E:11:44:0E:06:0D:EC:15:C3:6D:41:81:4B:0C:30:3D"}}},"request":{"raw":"GET /gtm.js?id=GTM-PRJ9TST HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Tue, 05 Dec 2023 11:48:07 GMT\r\nexpires: Tue, 05 Dec 2023 11:48:07 GMT\r\ncache-control: private, max-age=900\r\nlast-modified: Tue, 05 Dec 2023 09:00:00 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 80269\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":80269,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Unicode text, UTF-8 text, with very long lines (21796)","md5":"7108aa397ba86f9a2132f06b1c7647f6","sha1":"76036321dc2969a5e3725fb629c72cce4ab4c956","sha256":"0ab932fc81d2cbd9486e9f74e5e13e7d74a674438d971659d46a01a99f07a2cb","sha512":"127baf89dbc4e7e81ad288913e00c462180642a0ea1a06a381c45b926cc1b2309aad324e334f0ac35a450cf1270ef062dd676168f90e1212a1dee778dc9bec8d","ssdeep":"3072:0zdZAlCXWY61jxyypDWMpM5/hA9DfFWk9p9/a494n:MfXH0Al5/hA9DfYi17s","tlshash":"d63418d8b383b46683a37574903f050bb27e2de2b84cec94e18ac4d42e746a95177f6d","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"resource_available":true,"data":null}},"time_used":207,"timings":{"blocked":75,"dns":8,"connect":8,"send":0,"wait":32,"receive":17,"ssl":64},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtm.js?id=GTM-KDBP5SJ","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:13.512Z","timestamp":1701776893512,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:18:19 GMT","end":"Mon, 15 Jan 2024 11:18:18 GMT"},"fingerprint":{"sha1":"37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34","sha256":"11:4C:25:F9:AD:55:F4:E8:94:2E:64:99:7D:15:71:51:3E:11:44:0E:06:0D:EC:15:C3:6D:41:81:4B:0C:30:3D"}}},"request":{"raw":"GET /gtm.js?id=GTM-KDBP5SJ HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Tue, 05 Dec 2023 11:48:07 GMT\r\nexpires: Tue, 05 Dec 2023 11:48:07 GMT\r\ncache-control: private, max-age=900\r\nlast-modified: Tue, 05 Dec 2023 09:00:00 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 105178\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":105178,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Unicode text, UTF-8 text, with very long lines (59254)","md5":"93553159e4ee2984ea290725ce3d1be0","sha1":"9fc71cef6c704b3811dd6e716c398319265e463a","sha256":"237098fa093385e7e30f336b8a73e623196d5b5f766c60e4d9de7520426e8748","sha512":"6ae1b53da12745f2e32196b06114b3c8b4f12829cb8cfb082bc4f4770420c96e0adbc0f2b280e3984f9d6ba5ab32042f05bda402ee62f5094a12375af361ef42","ssdeep":"3072:h3janjdZAlCUWY1UyO1j8YypDDMvmM7XdXwhA9DfFWk/p9pRUbFWt4X:h3jajfUH1Uy4Xd7tghA9DfYmnOP","tlshash":"9e84f9ccf252b47ac6566664c03f190aa67d18f3b54cac50e48ac8d82e745f93273f9e","first_seen":"2023-12-05T12:48:29Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"resource_available":true,"data":null}},"time_used":243,"timings":{"blocked":70,"dns":7,"connect":8,"send":0,"wait":50,"receive":46,"ssl":59},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/cloud-cgi/static/vchasno-static/css/auth.408708b43e34af3f9f87.css","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:13.429Z","timestamp":1701776893429,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vchasno.ua","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 31 Oct 2023 18:01:28 GMT","end":"Mon, 29 Jan 2024 18:01:27 GMT"},"fingerprint":{"sha1":"E1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E","sha256":"BC:8A:DE:94:5F:8A:6C:8D:61:9B:7D:CA:DF:C2:24:6F:DC:86:4F:1E:89:2F:25:96:A9:35:53:11:18:42:AB:D4"}}},"request":{"raw":"GET /cloud-cgi/static/vchasno-static/css/auth.408708b43e34af3f9f87.css HTTP/1.1\r\nHost: edo.vchasno.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/auth/login\r\nCookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash=\"059fc00eb80c26532d17e0e19486dd6d84add384  -\"; xsrf=vw5fyrxKQSKB5BVlAaxBYw:cdfb0cae1d0692c9d11c5cac9c6214d096787ed91231dc571d118e32b68bbbe196074ede05850dbbad23367147cbbabbbac8b0bca0eba01121a50569de7fb93b\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 11:48:07 GMT\r\ncontent-type: text/css\r\nx-amz-id-2: UYPdNcXQckh2czlkvzbehGKNR9xPaJXUkaF5YawEaE0n8NTI6QA90EJu8MPFLT3qDbyGoiWIsL4=\r\nx-amz-request-id: 2ZJBG5A2JYXRYC8E\r\nlast-modified: Wed, 29 Nov 2023 14:54:04 GMT\r\netag: W/\"373f4240a4ca507d79897cb5cf9d0bd5\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-s3cmd-attrs: atime:1701269603/ctime:1701269608/gid:0/gname:root/md5:373f4240a4ca507d79897cb5cf9d0bd5/mode:33188/mtime:1701269603/uid:0/uname:root\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nx-cache-status: HIT\r\nx-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/css/auth.408708b43e34af3f9f87.css\r\nx-servant: i-0620f5cb1b5f4b5d0\r\ncf-cache-status: HIT\r\nage: 506045\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=82%2FyecqOqKDPlSr2Ry1%2FT76%2FYige9bibOS9aWYK60wPFqiJztwwaPNH2UsAMUiCNShz%2FCFOVYrxvH3qFrCzVFKdu2SbSh53PCLw9gfDgx02bT4Dif%2FWePQHEMXenI1HO\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830c0eeb3e3756ba-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":29491,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (938)","md5":"628cfbb1340864520dd780c96260c6ed","sha1":"ac1ccafe3b6beea107acd164c6792db17513c753","sha256":"9fa3fbf07172065a3d06c7010e62bef8959b8d412c4a1b97889b0fc8de58cb9f","sha512":"2832845505344087b0f3dbbabd2208bd36c49bdc37b02378bf08b3e7179c0cc052ec789b9b6bdb92748480f349e753448d465c93c77cd71d7ae27673307a9692","ssdeep":"3072:M2gcDX9+OvfJ2f+sDCVo05+P62gGtT0MghVWZ:icDX9+OvfJ2f+sDCVo05+PcMghVWZ","tlshash":"63e36456dab30da7741ba15c1fdac745332d5083450aef6dbf8c52488f852e896a3f8c","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"resource_available":false,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-HF2XZD4ZQP","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:13.427Z","timestamp":1701776893427,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:18:19 GMT","end":"Mon, 15 Jan 2024 11:18:18 GMT"},"fingerprint":{"sha1":"37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34","sha256":"11:4C:25:F9:AD:55:F4:E8:94:2E:64:99:7D:15:71:51:3E:11:44:0E:06:0D:EC:15:C3:6D:41:81:4B:0C:30:3D"}}},"request":{"raw":"GET /gtag/js?id=G-HF2XZD4ZQP HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Tue, 05 Dec 2023 11:48:07 GMT\r\nexpires: Tue, 05 Dec 2023 11:48:07 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 89684\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":89684,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (5955)","md5":"a3b02909b9d47ea3a5919eccdb3a7934","sha1":"7143470c14600382041f39a3ecffe1b54b50d37b","sha256":"0899d7f3c70b283f09ad6b86f35c3a8ca82be7c5aa5a518ad70c0ea1ab898364","sha512":"a65a75882e2f8690ca32ab67d716ebb3dd9627211418c23047985715ed01fdbb3bf9bc9d4e8fa09aa846a368e2786657f555bb548211717e75f8060c95ecbbbf","ssdeep":"3072:Me4l+6dZAlCIWYMuUyO1jvoypDDMlM66OhoO7DfFWkiw28rIx7EWRqj4X:f4hfIHMuUy4EA66OhoO7DfYXwXrIx7N","tlshash":"0b4408da73c3706682a6f479503f024ba5bb28a2b45ccc95f1c9c9d02e74a9a4177f7c","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"resource_available":true,"data":null}},"time_used":668,"timings":{"blocked":303,"dns":1,"connect":8,"send":0,"wait":26,"receive":13,"ssl":314},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"http","addr":"zerossl.ocsp.sectigo.com/","fqdn":"zerossl.ocsp.sectigo.com","domain":"sectigo.com","tld":"com"},"ip":{"addr":"172.64.149.23","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"","requested_by":"","date":"2023-12-05T11:48:13.844468592Z","timestamp":1701776893844,"http_version":"","security_state":"","security_info":null,"request":{"raw":"POST / HTTP/1.1\r\nHost: zerossl.ocsp.sectigo.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate\r\nContent-Type: application/ocsp-request\r\nContent-Length: 84\r\nConnection: keep-alive\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":""},"response":{"raw":"HTTP/1.1 200 OK\r\nDate: Tue, 05 Dec 2023 11:48:07 GMT\r\nContent-Type: application/ocsp-response\r\nContent-Length: 728\r\nConnection: keep-alive\r\nLast-Modified: Sat, 02 Dec 2023 23:02:03 GMT\r\nExpires: Sat, 09 Dec 2023 23:02:02 GMT\r\nEtag: \"867d5c9d964414e913d3a64f4df378d7eb33a5da\"\r\nCache-Control: max-age=386931,s-maxage=1800,public,no-transform,must-revalidate\r\nX-CCACDN-Proxy-ID: mcdpinlb6\r\nX-Frame-Options: SAMEORIGIN\r\nCF-Cache-Status: DYNAMIC\r\nServer: cloudflare\r\nCF-RAY: 830c0eec5ecf5687-OSL\r\n","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":728,"size_decoded":0,"mime_type":"application/octet-stream","magic":"data","md5":"aa17f2b244d61e4b8f842695caa655ab","sha1":"867d5c9d964414e913d3a64f4df378d7eb33a5da","sha256":"c54cf7b7ba138d6013512a47ac72f15d6995be9ec8b107532a02b55ac6af311e","sha512":"0f757eea507eb12ee16145deca8c2c7a1ea3880c33dd1962aae26d8a740c183cac2b6d424c8c28fe36c85197940f2af3fc5d9511b833e626112bc496b3541552","ssdeep":"","tlshash":"830194592d55b70ede1019f42ddfec3425a080f8a6f570333eaa24c73e8882e468072a","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"resource_available":false,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-HF2XZD4ZQP\u0026l=dataLayer\u0026cx=c","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:13.830Z","timestamp":1701776893830,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:18:19 GMT","end":"Mon, 15 Jan 2024 11:18:18 GMT"},"fingerprint":{"sha1":"37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34","sha256":"11:4C:25:F9:AD:55:F4:E8:94:2E:64:99:7D:15:71:51:3E:11:44:0E:06:0D:EC:15:C3:6D:41:81:4B:0C:30:3D"}}},"request":{"raw":"GET /gtag/js?id=G-HF2XZD4ZQP\u0026l=dataLayer\u0026cx=c HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Tue, 05 Dec 2023 11:48:07 GMT\r\nexpires: Tue, 05 Dec 2023 11:48:07 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 89685\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":89685,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (5955)","md5":"f96fe177190ca5466c98fbfd80da9893","sha1":"432b569ed107a5ccb72ba0346bbbff123c8fa836","sha256":"7433378f87ed7e6bcf1adcc517a667eec8eccf52fd09b817211e1407d848d9e1","sha512":"94d7c8f961b2cca72285edc5da3ebbfdd6f9750a4bbf32fa33f0aabe9886ccb62fde0cfbbdddddda37648045a15c524d07126efe2bdae0c4376ceff0d995a0f8","ssdeep":"3072:Me4l+6dZAlCIWYMuUyO1jvwypDDMlM66OhoO7DfFWkrw28rIx7EWRqj4w:f4hfIHMuUy4cA66OhoO7DfYUwXrIx72","tlshash":"494408da73c3706682a6f479503f024ba5bb28a2b45ccc95f1c9c9d02e74a9a4177f7c","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"resource_available":true,"data":null}},"time_used":47,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":29,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=UA-88652144-25\u0026l=dataLayer\u0026cx=c","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:13.844Z","timestamp":1701776893844,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:18:19 GMT","end":"Mon, 15 Jan 2024 11:18:18 GMT"},"fingerprint":{"sha1":"37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34","sha256":"11:4C:25:F9:AD:55:F4:E8:94:2E:64:99:7D:15:71:51:3E:11:44:0E:06:0D:EC:15:C3:6D:41:81:4B:0C:30:3D"}}},"request":{"raw":"GET /gtag/js?id=UA-88652144-25\u0026l=dataLayer\u0026cx=c HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Tue, 05 Dec 2023 11:48:07 GMT\r\nexpires: Tue, 05 Dec 2023 11:48:07 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 68325\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":68325,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (4179)","md5":"c5acce7f2ff1062b1deac3d1f7d11d35","sha1":"338b45bb794e4eae1859656eb14739051d46c4eb","sha256":"a532d805abf5191b3b6eff348e75aa8d188cd8b7199a2d7fa119a7a394dfe514","sha512":"0ac66cbb20428a49e17b1854c37cdcd2d469ba3750e0ce8c55c113cb6b69b4e2b9d833b0e82b57ace566c5c87a5e7de0fc9893ae61a362da3dd95c7823390544","ssdeep":"3072:LJdZAlCIWYb1jbYxypDWMxMT6/hA9DfFWkWp9I4A:tfIHJ0PT6/hA9DfYLC","tlshash":"8204e6d8b393b06682a7b474503f110bf17b6d92f84ccc94e189c5d52eb86a9427bf6c","first_seen":"2023-12-05T12:48:29Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"resource_available":true,"data":null}},"time_used":55,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":25,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"gotcha.c.prom.st/gotcha-min.js","fqdn":"gotcha.c.prom.st","domain":"prom.st","tld":"st"},"ip":{"addr":"193.34.169.9","port":443,"asn":43896,"as":"Evo Cloud LLC","country":"Ukraine","country_code":"UA"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:13.411Z","timestamp":1701776893411,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384","key_group_name":"P384","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"c.prom.st","organization":""},"issuer":{"commonName":"ZeroSSL RSA Domain Secure Site CA","organization":"ZeroSSL"},"validity":{"start":"Fri, 10 Nov 2023 00:00:00 GMT","end":"Thu, 08 Feb 2024 23:59:59 GMT"},"fingerprint":{"sha1":"58:10:BC:20:4A:8C:83:1D:55:58:83:87:47:45:A5:66:E6:7C:EA:8B","sha256":"99:11:AB:0E:23:11:6A:A4:BE:99:D4:4E:FF:0A:4B:6E:8F:B7:6F:40:2E:53:D6:DE:F9:CC:7B:64:78:DE:22:7A"}}},"request":{"raw":"GET /gotcha-min.js HTTP/1.1\r\nHost: gotcha.c.prom.st\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nserver: nginx\r\ndate: Tue, 05 Dec 2023 11:48:08 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 1321\r\nlast-modified: Fri, 24 Mar 2023 12:03:13 GMT\r\nx-rgw-object-type: Normal\r\ncache-control: public,max-age=259200\r\ncontent-encoding: gzip\r\nx-amz-storage-class: STANDARD\r\nx-amz-request-id: tx00000000000005283e235-00656c94c5-4a1be2c6-openstack-1\r\nx-trouble: IAMHERE\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET, OPTIONS\r\naccess-control-allow-headers: X-CSRFToken, X-PromUserID, Content-Type, X-Requested-With, X-Image-Hashes, X-LANGUAGE, X-Test-Mode, X-Cache-Status, X-Cache-Key\r\nx-cache-key: cdngotcha.c.prom.st/gotcha-min.js\r\nx-cache-status: HIT, HIT\r\nx-cache-source: local\r\nx-servant: sidewinder\r\nx-cache-type: main\r\naccept-ranges: bytes\r\nx-lb-name: sidewinder\r\nx-cdn-ruri: /gotcha-min.js\r\nx-lb-fallback: true\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1321,"size_decoded":0,"mime_type":"application/javascript","magic":"ASCII text, with very long lines (2989), with no line terminators","md5":"3cc8c96df23f3af7bef99624151ae9be","sha1":"36a441231ca6ea354c853a21edc3e1d2722b27f3","sha256":"64b797a0ce98432b9720aa97a2a7a6e7f7d86348832f7f06d985d0b0e403debf","sha512":"4917035d30d30817c9d48b9e1c6863e7de693736f566661cdebead23d5a626a07b07a24516e8e1bcd386bcf52762ab1c0a92a013ae07c5cb537417afff151438","ssdeep":"","tlshash":"7a51838a76c5f8920be3a5a2660f320db26b485b646df051d31ac4e07c3944fe632bc9","first_seen":"2023-04-12T08:18:19Z","last_seen":"2026-05-13T06:30:18.77881Z","times_seen":119,"resource_available":true,"data":null}},"time_used":994,"timings":{"blocked":471,"dns":51,"connect":41,"send":0,"wait":42,"receive":1,"ssl":383},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"widget.asky.guru/askyguru.js","fqdn":"widget.asky.guru","domain":"asky.guru","tld":"guru"},"ip":{"addr":"188.114.97.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"Colombia","country_code":"CO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:13.910Z","timestamp":1701776893910,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"asky.guru","organization":""},"issuer":{"commonName":"E1","organization":"Let's Encrypt"},"validity":{"start":"Sun, 03 Dec 2023 13:10:14 GMT","end":"Sat, 02 Mar 2024 13:10:13 GMT"},"fingerprint":{"sha1":"38:B3:F3:A8:D6:B4:18:A7:03:47:E5:29:41:EF:15:F1:A7:99:36:37","sha256":"A7:1E:63:FD:9B:23:B1:CA:82:F8:F2:BF:62:01:63:FF:AD:FE:0C:10:2C:8B:3C:EB:8C:7E:CF:C6:AF:D8:0D:35"}}},"request":{"raw":"GET /askyguru.js HTTP/1.1\r\nHost: widget.asky.guru\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://edo.vchasno.ua\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 05 Dec 2023 11:48:08 GMT\r\ncontent-type: application/javascript\r\ncontent-length: 26579\r\nx-guploader-uploadid: ABPtcPo8c9LOj1_og2MMSXjHzL4gVwvI2jgyIS08HYxYO5p3ULZgSq0e1bsyn82Skez24JeJ1nE\r\nx-goog-generation: 1609935317322885\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: gzip\r\nx-goog-stored-content-length: 26579\r\ncontent-encoding: gzip\r\nx-goog-hash: crc32c=pNdJkQ==, md5=MHD5b7u6XKYUyoXtbjuaAg==\r\nx-goog-storage-class: MULTI_REGIONAL\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nexpires: Fri, 29 Nov 2024 06:15:10 GMT\r\ncache-control: max-age=86400, no-transform\r\nlast-modified: Wed, 06 Jan 2021 12:15:17 GMT\r\netag: \"3070f96fbbba5ca614ca85ed6e3b9a02\"\r\nage: 451978\r\nalt-svc: h3=\":443\"; ma=86400\r\ncf-cache-status: HIT\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=w2ae3I8P%2F%2BoLxBDta%2FUg2d4gPaIC2qxIB5EcLQb1DU0xczDi%2BoIlUWPKY%2Fx78Vrlt2XwhexlR3f1fxklPH5L6LVIVZfPXSveQKgc45n%2BP6V%2FB8o%2B22xfdlSkHP1MHT2CINbf\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nvary: Accept-Encoding\r\nserver: cloudflare\r\ncf-ray: 830c0eeead2db52d-OSL\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":26579,"size_decoded":0,"mime_type":"application/javascript","magic":"Unicode text, UTF-8 text, with very long lines (65520), with no line terminators","md5":"33fb4b865e97e991dbf5b8449171c10a","sha1":"18082082834812164be5541418cec0167cc6e2b8","sha256":"4fe4d1da510bc5eb8f34a416d4f2d04e4204279c59ff3a990d613f8cc7f8ea0b","sha512":"1d3b0e8b044a1eb6e50df887e06a5290be4952980a1a5b814dc599e7e37c02e69f860ddb7306fb3cf40d10fa22deb0128799e533de1e7a3746d1a2d4fe0e0c5a","ssdeep":"1536:u5EHtlJCVp1n185+mT8Y2wF7sglgnlg7r:0fpd+8mTL2bglIg7r","tlshash":"a18307c933d1747597a711b144af000af33aa718e84c88a8f166e8e16db9a6c5327f3d","first_seen":"2023-05-20T11:53:36Z","last_seen":"2023-12-05T12:48:30Z","times_seen":4,"resource_available":true,"data":null}},"time_used":113,"timings":{"blocked":51,"dns":31,"connect":1,"send":0,"wait":9,"receive":2,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-5EE52G3WCQ\u0026l=dataLayer\u0026cx=c","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:14.006Z","timestamp":1701776894006,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:18:19 GMT","end":"Mon, 15 Jan 2024 11:18:18 GMT"},"fingerprint":{"sha1":"37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34","sha256":"11:4C:25:F9:AD:55:F4:E8:94:2E:64:99:7D:15:71:51:3E:11:44:0E:06:0D:EC:15:C3:6D:41:81:4B:0C:30:3D"}}},"request":{"raw":"GET /gtag/js?id=G-5EE52G3WCQ\u0026l=dataLayer\u0026cx=c HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Tue, 05 Dec 2023 11:48:08 GMT\r\nexpires: Tue, 05 Dec 2023 11:48:08 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 107321\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":107321,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Unicode text, UTF-8 text, with very long lines (25695)","md5":"0d2960c0ccb6bee8058ca0cf056c05e3","sha1":"921b4ca6a1578cf31c8fb1cbdac7ce0932c06467","sha256":"d8ec3fe2ff194bb1e922d794b9c3f27e4e5e63ed9779ef61cfd7f1773fe13715","sha512":"0a344b6f0008332f270ea42bcd23b488a4f2bd72db6b823421c09076552206b4f44dfbba8ffce67c287535606ea20a76a6dffecc4f0e7cff4e4d8e17f4933a6c","ssdeep":"3072:3E4l+bZdZAlCIWYMuUyO1j4kypDDMv0M7XdXzhoO7DfFWkbwV8reAcEW5qj4w:U4+fIHMuUy4R37tDhoO7DfYyw+reAce","tlshash":"6674099a738674678696f468543f028b99bb18e3b45ccc96f1c8cce02e7468a4177f7c","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"resource_available":true,"data":null}},"time_used":65,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":34,"receive":31,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.googletagmanager.com/gtag/js?id=G-YT5V9MV99B\u0026l=dataLayer\u0026cx=c","fqdn":"www.googletagmanager.com","domain":"googletagmanager.com","tld":"com"},"ip":{"addr":"142.250.74.168","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:14.026Z","timestamp":1701776894026,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:18:19 GMT","end":"Mon, 15 Jan 2024 11:18:18 GMT"},"fingerprint":{"sha1":"37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34","sha256":"11:4C:25:F9:AD:55:F4:E8:94:2E:64:99:7D:15:71:51:3E:11:44:0E:06:0D:EC:15:C3:6D:41:81:4B:0C:30:3D"}}},"request":{"raw":"GET /gtag/js?id=G-YT5V9MV99B\u0026l=dataLayer\u0026cx=c HTTP/1.1\r\nHost: www.googletagmanager.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: application/javascript; charset=UTF-8\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: Cache-Control\r\ncontent-encoding: br\r\nvary: Accept-Encoding\r\ndate: Tue, 05 Dec 2023 11:48:08 GMT\r\nexpires: Tue, 05 Dec 2023 11:48:08 GMT\r\ncache-control: private, max-age=900\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncross-origin-resource-policy: cross-origin\r\nserver: Google Tag Manager\r\ncontent-length: 93511\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":93511,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (5955)","md5":"33253dd171b4962b229ce703ea1dfcd1","sha1":"2830273d12c773c6371f3ac40b8f440fbeb4f4b6","sha256":"d9fc6571f30c6015dadeccfa9f14ca38b643645b5560bfab7877212aa603a688","sha512":"3172e3fac63d06c1df5a4b68de9b801aa57b1c1b453b141d0045f3f36ca0f5cf221d528f3db7bb35387b98bd60b0522b1207729d0846eb31092ef17cc96d5d8e","ssdeep":"3072:tf4a+badZAlCIWYMuUyO1j2IypDDMlM66OhoO7DfFWkStp8rIxSEWRq94w:l4qfIHMuUy45A66OhoO7DfYNtSrIxSs","tlshash":"f05409da73c370669296f479503f028ba5bb28a2b45dcc95f1c9c8e01e74a9a4137f7c","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"resource_available":true,"data":null}},"time_used":69,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":30,"receive":39,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/cloud-cgi/static/vchasno-static/fonts/RobotoRegular.woff","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:14.762Z","timestamp":1701776894762,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vchasno.ua","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 31 Oct 2023 18:01:28 GMT","end":"Mon, 29 Jan 2024 18:01:27 GMT"},"fingerprint":{"sha1":"E1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E","sha256":"BC:8A:DE:94:5F:8A:6C:8D:61:9B:7D:CA:DF:C2:24:6F:DC:86:4F:1E:89:2F:25:96:A9:35:53:11:18:42:AB:D4"}}},"request":{"raw":"GET /cloud-cgi/static/vchasno-static/fonts/RobotoRegular.woff HTTP/1.1\r\nHost: edo.vchasno.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/auth/login\r\nCookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash=\"059fc00eb80c26532d17e0e19486dd6d84add384  -\"; xsrf=vw5fyrxKQSKB5BVlAaxBYw:cdfb0cae1d0692c9d11c5cac9c6214d096787ed91231dc571d118e32b68bbbe196074ede05850dbbad23367147cbbabbbac8b0bca0eba01121a50569de7fb93b; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 11:48:08 GMT\r\ncontent-type: binary/octet-stream\r\ncontent-length: 68496\r\nx-amz-id-2: N4XGPBqfz7yE3E4+LLq+drUixgpN+jofDyEcnK+nbXGZ5a3X+7wJnQa4VBxjmnkwbG9aE9e8Zl4=\r\nx-amz-request-id: E1Y9PF867QZ5N66Y\r\nlast-modified: Tue, 12 Apr 2022 09:16:26 GMT\r\netag: \"516136f7d9610c2f842b5d8179386b95\"\r\nx-amz-meta-s3cmd-attrs: atime:1649754958/ctime:1649754958/gid:0/gname:root/md5:516136f7d9610c2f842b5d8179386b95/mode:33188/mtime:1649754958/uid:0/uname:root\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nx-cache-status: HIT\r\nx-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/fonts/RobotoRegular.woff\r\nx-servant: i-0620f5cb1b5f4b5d0\r\ncf-cache-status: HIT\r\nage: 938908\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=WpFfR9J1NhnRHfBkVzeLtpjeVa9dAxavi61bh4xQ7uU2lEG9ywZMFnx4MZQRT66gWU%2Bv1xpjeCAgBhcdiY6X1yMKlqlTfPzBNLxIEawW7A%2FtbH6isrTuLZ%2FJdAspYAG%2B\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830c0ef3af3856ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":68496,"size_decoded":0,"mime_type":"binary/octet-stream","magic":"Web Open Font Format, TrueType, length 68496, version 1.0\\012- data","md5":"516136f7d9610c2f842b5d8179386b95","sha1":"b6ddc47558c96e9c29e14cb708668dbf4fe65a74","sha256":"97ad2ddb8514fa6b4ea2ca959b701a04b635309c7a9acd3f44af653505ae9e0b","sha512":"9bfff026d8bf15ed7a89b5493ff747507d1aeff7cfc2a5c02b20e8f30ff616615d47541ccd660dfdaeeeaaf55b866bee75ad5860d2f852e22494394141c086eb","ssdeep":"1536:0sw/i0JWgYdhUxCHHGNsgKZ+Uzsid7Z4q9BcSrAw3Ga:3w/PWgYdhM0Hm/Wd7+u7Aw","tlshash":"7a63022c471269f7db69c03971e41eeca9d032e1d22f7de41491f296c822e04d56f8af","first_seen":"2023-06-09T15:33:47Z","last_seen":"2025-10-16T10:05:03.031196Z","times_seen":5,"resource_available":false,"data":null}},"time_used":15,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":13,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/cloud-cgi/static/vchasno-static/favicons/apple-touch-icon.png","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:14.831Z","timestamp":1701776894831,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vchasno.ua","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 31 Oct 2023 18:01:28 GMT","end":"Mon, 29 Jan 2024 18:01:27 GMT"},"fingerprint":{"sha1":"E1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E","sha256":"BC:8A:DE:94:5F:8A:6C:8D:61:9B:7D:CA:DF:C2:24:6F:DC:86:4F:1E:89:2F:25:96:A9:35:53:11:18:42:AB:D4"}}},"request":{"raw":"GET /cloud-cgi/static/vchasno-static/favicons/apple-touch-icon.png HTTP/1.1\r\nHost: edo.vchasno.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/auth/login\r\nCookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash=\"059fc00eb80c26532d17e0e19486dd6d84add384  -\"; xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 11:48:08 GMT\r\ncontent-type: image/png\r\ncontent-length: 1264\r\nx-amz-id-2: p1tOiPgrP9NilKG/KkKr5poqLDwYSAyo3gfVER9Wm3Qv7cnB29kGs65nwhGZ8UNLceEyMwZD4ZM=\r\nx-amz-request-id: 4SG0Z9177VPVX239\r\nlast-modified: Tue, 12 Apr 2022 09:16:24 GMT\r\netag: \"2b94f103e59cc8b28383a18f90e64d91\"\r\nx-amz-meta-s3cmd-attrs: atime:1649754958/ctime:1649754958/gid:0/gname:root/md5:2b94f103e59cc8b28383a18f90e64d91/mode:33188/mtime:1649754958/uid:0/uname:root\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nx-cache-status: HIT\r\nx-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/favicons/apple-touch-icon.png\r\nx-servant: i-0ac88be10a6549c75\r\ncf-cache-status: HIT\r\nage: 445779\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=Rde3Oe7gwZnGrXqbmIAerpuBi4SlVFvH6YoImjEH2RQfPg1VW%2B4C6nsIP35Dyqp%2F1n3bt3efwEHEnJ346B%2Fu%2B4kWNzWklKt1q9UiW8rmxPmIPRbmn9e3ptTvcCgRG2qE\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830c0ef41f8c56ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1264,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 4-bit colormap, non-interlaced\\012- data","md5":"2b94f103e59cc8b28383a18f90e64d91","sha1":"434775c98e99bb7f923650296307178aec8d4537","sha256":"f736949312f88b56c251cf403b7109652b3645d9607a7cd8257f815993b3ad24","sha512":"35c64c7fb12b2efd720e5d3f267f3fd00ccc1b1fe1bcc957b0149f3b9ef35ea363d252a1e827401965635af6d998b47628ed9c38587ea18622b9f14a15f51440","ssdeep":"","tlshash":"","first_seen":"2023-06-09T15:33:47Z","last_seen":"2025-10-16T10:05:02.58908Z","times_seen":4,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/cloud-cgi/static/vchasno-static/favicons/favicon-16x16.png","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:14.835Z","timestamp":1701776894835,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vchasno.ua","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 31 Oct 2023 18:01:28 GMT","end":"Mon, 29 Jan 2024 18:01:27 GMT"},"fingerprint":{"sha1":"E1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E","sha256":"BC:8A:DE:94:5F:8A:6C:8D:61:9B:7D:CA:DF:C2:24:6F:DC:86:4F:1E:89:2F:25:96:A9:35:53:11:18:42:AB:D4"}}},"request":{"raw":"GET /cloud-cgi/static/vchasno-static/favicons/favicon-16x16.png HTTP/1.1\r\nHost: edo.vchasno.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/auth/login\r\nCookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash=\"059fc00eb80c26532d17e0e19486dd6d84add384  -\"; xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 11:48:08 GMT\r\ncontent-type: image/png\r\ncontent-length: 454\r\nx-amz-id-2: I1d+ltibszlPc6iMTRwxwlD7qBlDRoDyq3eoOvD5tGQmp0JiunC/zeHJlDhoKWBfOcb9czOP5Gs=\r\nx-amz-request-id: SNK3EMPH4ZP4VXZH\r\nlast-modified: Tue, 12 Apr 2022 09:16:24 GMT\r\netag: \"a4891a3cd64fd2f33c5b45a07afa251e\"\r\nx-amz-meta-s3cmd-attrs: atime:1649754958/ctime:1649754958/gid:0/gname:root/md5:a4891a3cd64fd2f33c5b45a07afa251e/mode:33188/mtime:1649754958/uid:0/uname:root\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nx-cache-status: HIT\r\nx-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/favicons/favicon-16x16.png\r\nx-servant: i-0ac88be10a6549c75\r\ncf-cache-status: HIT\r\nage: 871020\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=jcz7%2Fb6f2bvvid%2By89CWCd41fMhJfmahk4BiXlvxyG7VTLXY36lYZBySOF5uyGj77UcbEZImTHK7Pyp6Knj3%2F7mOKaFaEXUFNULir%2FPf78tQagMRzFNL%2Fjpjiy8FA0Sj\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830c0ef41f8d56ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":454,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 16 x 16, 8-bit colormap, non-interlaced\\012- data","md5":"a4891a3cd64fd2f33c5b45a07afa251e","sha1":"d0c8f87cdf633d4e3a757d6cb8795c314de6f1e9","sha256":"d1473bbb266448ff0741e19108bf0ae1d4bd773eab35634127e5820e3c8f91f2","sha512":"a3736cab9f83ec9cb2982fe23a7f5bfafde7797165f34d07b66204dcf5aea893685486aad71afbf9033f2b3fcfdee022ed923eef0ab0f67824df5af0b87a03d6","ssdeep":"","tlshash":"","first_seen":"2023-06-09T15:33:46Z","last_seen":"2025-10-16T10:05:02.415063Z","times_seen":4,"resource_available":false,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.google.no/ads/ga-audiences?v=1\u0026t=sr\u0026slf_rd=1\u0026_r=4\u0026tid=G-5EE52G3WCQ\u0026cid=982842145.1701776894\u0026gtm=45je3bt0v871839712z8835681296\u0026aip=1\u0026dma=1\u0026dma_cps=sypham\u0026gcd=11l1l1l1l1\u0026z=232545768","fqdn":"www.google.no","domain":"google.no","tld":"no"},"ip":{"addr":"142.250.74.163","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:14.828Z","timestamp":1701776894828,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.no","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:27:27 GMT","end":"Mon, 15 Jan 2024 11:27:26 GMT"},"fingerprint":{"sha1":"6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32","sha256":"6C:19:7E:D8:B6:4C:33:23:BE:69:B4:D7:78:7F:28:0F:20:6A:60:11:77:95:4F:1A:79:F9:9A:62:80:70:DD:13"}}},"request":{"raw":"GET /ads/ga-audiences?v=1\u0026t=sr\u0026slf_rd=1\u0026_r=4\u0026tid=G-5EE52G3WCQ\u0026cid=982842145.1701776894\u0026gtm=45je3bt0v871839712z8835681296\u0026aip=1\u0026dma=1\u0026dma_cps=sypham\u0026gcd=11l1l1l1l1\u0026z=232545768 HTTP/1.1\r\nHost: www.google.no\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\np3p: policyref=\"https://www.googleadservices.com/pagead/p3p.xml\", CP=\"NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC\"\r\ntiming-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ndate: Tue, 05 Dec 2023 11:48:09 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, no-store, must-revalidate\r\ncontent-type: image/gif\r\nx-content-type-options: nosniff\r\nserver: cafe\r\ncontent-length: 42\r\nx-xss-protection: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":42,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 1 x 1\\012- data","md5":"d89746888da2d9510b64a9f031eaecd5","sha1":"d5fceb6532643d0d84ffe09c40c481ecdf59e15a","sha256":"ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629","sha512":"d5da26b5d496edb0221df1a4057a8b0285d15592a8f8dc7016a294df37ed335f3fde6a2252962e0df38b62847f8b771463a0124ef3f84299f262ed9d9d3cee4c","ssdeep":"","tlshash":"c4900023fa808000c3a8c2300a0b238a2b8c80200a28030b80ae208cec3a3a22c03020","first_seen":"2023-04-05T02:54:03Z","last_seen":"2026-05-20T06:12:13.864125Z","times_seen":900963,"resource_available":true,"data":null}},"time_used":124,"timings":{"blocked":49,"dns":2,"connect":8,"send":0,"wait":23,"receive":0,"ssl":38},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/internal-api/flags","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:14.783Z","timestamp":1701776894783,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vchasno.ua","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 31 Oct 2023 18:01:28 GMT","end":"Mon, 29 Jan 2024 18:01:27 GMT"},"fingerprint":{"sha1":"E1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E","sha256":"BC:8A:DE:94:5F:8A:6C:8D:61:9B:7D:CA:DF:C2:24:6F:DC:86:4F:1E:89:2F:25:96:A9:35:53:11:18:42:AB:D4"}}},"request":{"raw":"GET /internal-api/flags HTTP/1.1\r\nHost: edo.vchasno.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://edo.vchasno.ua/auth/login\r\nX-XSRF-Token: vw5fyrxKQSKB5BVlAaxBYw:cdfb0cae1d0692c9d11c5cac9c6214d096787ed91231dc571d118e32b68bbbe196074ede05850dbbad23367147cbbabbbac8b0bca0eba01121a50569de7fb93b\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash=\"059fc00eb80c26532d17e0e19486dd6d84add384  -\"; xsrf=vw5fyrxKQSKB5BVlAaxBYw:cdfb0cae1d0692c9d11c5cac9c6214d096787ed91231dc571d118e32b68bbbe196074ede05850dbbad23367147cbbabbbac8b0bca0eba01121a50569de7fb93b; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 11:48:08 GMT\r\ncontent-type: application/json; charset=utf-8\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nfeature-policy: accelerometer 'none', camera 'none', battery 'none', gyroscope 'none', midi 'none', payment 'none', usb *\r\nx-request-id: 25d01ef9-0948-4ca7-9e90-a4f1ced00842\r\nset-cookie: xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; Path=/; Secure\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=w9deg5KaS5OuYeHYnS1XLQ%2BepEJJZy3OBAyxAcPNiYg6a2KMGWDdkdKIfpqSZRQE%2B4CcLa8ba21wz4etGAvBxD3cb6S5kwr%2BWXGJyaVED4LGlIxmgeN4iLSiF%2Fof9wg2\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830c0ef3cf5c56ba-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":160197,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON data\\012- , ASCII text, with very long lines (698), with no line terminators","md5":"1de04d2dcec9d1123c3a28676ff7cb26","sha1":"7b8b459ce13d4fb8b45ecd0bef01e67186f2de17","sha256":"f0f16d028a1fabaf423f2e7f5f52d056f657fea02e08cec8ea4b06add876af25","sha512":"faecba172a910eaeb2c807bcd28f23a46f0439345502c6f28afe91acc173353343005a5c5f05a18207299de769a94ed106e928f9b6299fbfc3aaf03393520e92","ssdeep":"","tlshash":"5b01d110f58a4bb98b7ea0e99811f5010c34c2cb814c9ef8ca71b4b4788a3533b24bb3","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"resource_available":false,"data":null}},"time_used":40,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":40,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/cloud-cgi/static/vchasno-static/images/auth/vchasno_partners_logos.png","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:14.939Z","timestamp":1701776894939,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vchasno.ua","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 31 Oct 2023 18:01:28 GMT","end":"Mon, 29 Jan 2024 18:01:27 GMT"},"fingerprint":{"sha1":"E1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E","sha256":"BC:8A:DE:94:5F:8A:6C:8D:61:9B:7D:CA:DF:C2:24:6F:DC:86:4F:1E:89:2F:25:96:A9:35:53:11:18:42:AB:D4"}}},"request":{"raw":"GET /cloud-cgi/static/vchasno-static/images/auth/vchasno_partners_logos.png HTTP/1.1\r\nHost: edo.vchasno.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/auth/login\r\nCookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash=\"059fc00eb80c26532d17e0e19486dd6d84add384  -\"; xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 11:48:09 GMT\r\ncontent-type: image/png\r\ncontent-length: 743846\r\nx-amz-id-2: oPHw+UH4doATrjahOSG733x1Hv7tZ1WaGmA2xkJYjQypBVtGey6eVHmOlYMuHQUgCg+1jr2lKrY=\r\nx-amz-request-id: JJQKWZ9JGKTXGJXK\r\nlast-modified: Thu, 02 Nov 2023 15:35:08 GMT\r\netag: \"358f257f21d6b4b005f7acb6a9413409\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-s3cmd-attrs: atime:1698939258/ctime:1698939258/gid:0/gname:root/md5:358f257f21d6b4b005f7acb6a9413409/mode:33188/mtime:1698939258/uid:0/uname:root\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nx-cache-status: HIT\r\nx-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/images/auth/vchasno_partners_logos.png\r\nx-servant: i-0620f5cb1b5f4b5d0\r\ncf-cache-status: HIT\r\nage: 59985\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=618f%2B1k2%2Be%2FEfE34TY5QSwCg1r27zjGv3dlVs3daXT5zm7FIvgDIGr7bMhbq7OZGQMI6vt5yHnR4QIgAPI9wGgXsU%2FLXcN%2BGixAn5OcDN3zdtlp6h5MWo16bnD4U9bc0\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830c0ef4c81256ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":743846,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 820 x 816, 8-bit/color RGBA, non-interlaced\\012- data","md5":"358f257f21d6b4b005f7acb6a9413409","sha1":"f0a4a47fa1a8cd7e723e22d02ce934f5002cb6f4","sha256":"0437478dd3276b845712bfa726c41d65c096d5e2bf7cf4e18d013f22b348711d","sha512":"a95e9c657b2c19c5673013a1eba5e836fe6e16fca8339032abd1db272a1e3d34341d244340c62e4addd31d1ee1b7c770cdbddd8923940b994a3bfcf5af62a860","ssdeep":"","tlshash":"","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"resource_available":false,"data":null}},"time_used":70,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":58,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/cloud-cgi/static/vchasno-static/css/lib/phone-input.min.v1.css","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:13.414Z","timestamp":1701776893414,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vchasno.ua","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 31 Oct 2023 18:01:28 GMT","end":"Mon, 29 Jan 2024 18:01:27 GMT"},"fingerprint":{"sha1":"E1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E","sha256":"BC:8A:DE:94:5F:8A:6C:8D:61:9B:7D:CA:DF:C2:24:6F:DC:86:4F:1E:89:2F:25:96:A9:35:53:11:18:42:AB:D4"}}},"request":{"raw":"GET /cloud-cgi/static/vchasno-static/css/lib/phone-input.min.v1.css HTTP/1.1\r\nHost: edo.vchasno.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/auth/login\r\nCookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash=\"059fc00eb80c26532d17e0e19486dd6d84add384  -\"; xsrf=vw5fyrxKQSKB5BVlAaxBYw:cdfb0cae1d0692c9d11c5cac9c6214d096787ed91231dc571d118e32b68bbbe196074ede05850dbbad23367147cbbabbbac8b0bca0eba01121a50569de7fb93b\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 11:48:07 GMT\r\ncontent-type: text/css\r\nx-amz-id-2: JtVh4qIOJ3NUuwHZBn5dDFLo8yTf9FQdRxlwjxgphKEwnoJWJDFEKLo9y7HqGlO0kHMgOfC0aEw=\r\nx-amz-request-id: SEM6CNYPGN7HD7GZ\r\nlast-modified: Mon, 20 Nov 2023 17:05:22 GMT\r\netag: W/\"308e7c88c38bf3a29b88e847bf1f5559\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-s3cmd-attrs: atime:1700499882/ctime:1700499893/gid:0/gname:root/md5:308e7c88c38bf3a29b88e847bf1f5559/mode:33188/mtime:1700499882/uid:0/uname:root\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nx-cache-status: HIT\r\nx-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/css/lib/phone-input.min.v1.css\r\nx-servant: i-0620f5cb1b5f4b5d0\r\ncf-cache-status: HIT\r\nage: 962857\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=X6G2F9fvWmxlBtwpvfArZj%2FYDOQkCcUISaiQpfK8KTtc5dcspccaMXSgbfWv3UXuyOaTYjQwTdefXO9GTJ1Nuf2kTxv1XWP%2BeKCVMTBOS269u2Yb3w%2FhI%2FFqxeXpTI9t\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830c0eeb3e3256ba-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":119654,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (29558)","md5":"bc437fb418b15d7f760bda1c719e8c6a","sha1":"62e59f2e2b9f8e9f7fd5f653c172184461369849","sha256":"052a8272002a6ab52ef99cd30687e6b958f37126448170e0160d8525ac746446","sha512":"1736214719aaf91342fe2c6e27d96501c2c31e16006b55e2cec0f438a2b8f0136e7f74b090425338760913370f3a9e7a2791f2f64aa0ec22933532f5f977569a","ssdeep":"768:RVZBwLuxv5OkvQr8LU4O7H2TTZX+CA6pQTSTAS5OxFbF7FCqal:Rlfx7YrGe7G0ChphTA+OxJZo","tlshash":"3b23242587d129df7d0fd561a1fc2790633d3246f82e0eec6526f5adab854d8823bca0","first_seen":"2023-12-05T12:48:30Z","last_seen":"2025-10-16T10:05:02.739857Z","times_seen":3,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/cloud-cgi/static/vchasno-static/fonts/RobotoBold.woff","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:15.017Z","timestamp":1701776895017,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vchasno.ua","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 31 Oct 2023 18:01:28 GMT","end":"Mon, 29 Jan 2024 18:01:27 GMT"},"fingerprint":{"sha1":"E1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E","sha256":"BC:8A:DE:94:5F:8A:6C:8D:61:9B:7D:CA:DF:C2:24:6F:DC:86:4F:1E:89:2F:25:96:A9:35:53:11:18:42:AB:D4"}}},"request":{"raw":"GET /cloud-cgi/static/vchasno-static/fonts/RobotoBold.woff HTTP/1.1\r\nHost: edo.vchasno.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/auth/login\r\nCookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash=\"059fc00eb80c26532d17e0e19486dd6d84add384  -\"; xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 11:48:09 GMT\r\ncontent-type: binary/octet-stream\r\ncontent-length: 70548\r\nx-amz-id-2: Po8XkJ2Fc8pSvngGWvBPZQUob1/EGxCq1SUJgbXr2FI0LcDhflzsOOIvGAJzQCulXBaBsQ40CKg=\r\nx-amz-request-id: CY84CR0V6K36HQY9\r\nlast-modified: Tue, 12 Apr 2022 09:16:26 GMT\r\netag: \"157ee54b8c83d790e77381d46d112b5b\"\r\nx-amz-meta-s3cmd-attrs: atime:1649754958/ctime:1649754958/gid:0/gname:root/md5:157ee54b8c83d790e77381d46d112b5b/mode:33188/mtime:1649754958/uid:0/uname:root\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nx-cache-status: HIT\r\nx-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/fonts/RobotoBold.woff\r\nx-servant: i-0ac88be10a6549c75\r\ncf-cache-status: HIT\r\nage: 141752\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=7Vowy%2F1lvlm7EnPaj8v4j19aiOrCjR7Q00JLo%2FoXHluf4ZCQ4PGJqtu%2BUvL%2F85oqXkP8NoUzpQ36mfCVqsSFI6axr0vQ18qN2gcJ%2FaQA0iXxCOtclcpXTBJ3cFdWxwRa\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830c0ef4e83256ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":70548,"size_decoded":0,"mime_type":"binary/octet-stream","magic":"Web Open Font Format, TrueType, length 70548, version 1.0\\012- data","md5":"157ee54b8c83d790e77381d46d112b5b","sha1":"ebae5e958975136738d85e9223b296dfb3956b34","sha256":"725e396d8334647bfddcc6e889307241ec5179321633431cf37c3e019eaea28d","sha512":"dca8a52ba87b651d64d5f8e97ed622bea22b88f9345dc9b231b090953b921b2c128e732d33d8d9266d5e4c59600ad6ffc773ae6db15b5acbf484ee73dfc24c79","ssdeep":"1536:fF721Pm6T1w2Ct4tE9PjwM3i0xetRMecdFj1qBZB4q9BCg59PMXf:fZ2E8rWPsD0MM3jo3Wu1PMv","tlshash":"7b6312be6a03216fa9c4b179e36ddbc0f5ec20c91211586c9590d34b89e36d13dfe4a9","first_seen":"2023-06-09T15:33:47Z","last_seen":"2025-11-22T11:40:24.997928Z","times_seen":5,"resource_available":false,"data":null}},"time_used":93,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":74,"receive":19,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/cloud-cgi/static/vchasno-static/images/auth/vchasno_partners_logos_mobile.png","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:15.100Z","timestamp":1701776895100,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vchasno.ua","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 31 Oct 2023 18:01:28 GMT","end":"Mon, 29 Jan 2024 18:01:27 GMT"},"fingerprint":{"sha1":"E1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E","sha256":"BC:8A:DE:94:5F:8A:6C:8D:61:9B:7D:CA:DF:C2:24:6F:DC:86:4F:1E:89:2F:25:96:A9:35:53:11:18:42:AB:D4"}}},"request":{"raw":"GET /cloud-cgi/static/vchasno-static/images/auth/vchasno_partners_logos_mobile.png HTTP/1.1\r\nHost: edo.vchasno.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/auth/check-email\r\nCookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash=\"059fc00eb80c26532d17e0e19486dd6d84add384  -\"; xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 11:48:09 GMT\r\ncontent-type: image/png\r\ncontent-length: 159890\r\nx-amz-id-2: A5daB6VYLhDwn84VBLzOU+rAi9BQam7Y4sBCvAZzdEn8TsRQmRYI694j8SvXMW/Znq4qNQ3XTFc=\r\nx-amz-request-id: 0CSWW1J52V1QMHN7\r\nlast-modified: Thu, 02 Nov 2023 15:35:08 GMT\r\netag: \"e473201f81a41f01235cb2eaa43f75bf\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-s3cmd-attrs: atime:1698939258/ctime:1698939258/gid:0/gname:root/md5:e473201f81a41f01235cb2eaa43f75bf/mode:33188/mtime:1698939258/uid:0/uname:root\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nx-cache-status: HIT\r\nx-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/images/auth/vchasno_partners_logos_mobile.png\r\nx-servant: i-0ac88be10a6549c75\r\ncf-cache-status: HIT\r\nage: 1049237\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=3WicXXAQh4reWqsGlWFzCOP7CzdhKE%2FpxcZBnCFI6qILo3mXoG8jTATHWIzDuWAEcZOeUGar3UoY%2BcjNtg7RQuyHp0kKo02rLw3Mpr%2FOjkiUYYyz7yZy4LZJLor4uMr4\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830c0ef5a8da56ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":159890,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 350 x 310, 8-bit/color RGBA, non-interlaced\\012- data","md5":"e473201f81a41f01235cb2eaa43f75bf","sha1":"5ef673e3d5980fd525b736f50ec36f3ac4e1b3a9","sha256":"7d5bf1a6216bcc7ecf9f00615eb629370d97c8109f1fe01ab389b7ecb07794b4","sha512":"533504b51ca70a1a961a374e950f62f77d5c4ddd500ea98fb7e5a2262c668e9dab07f0213ec9d54cfa3d3209e9daee0b58f2597d059e782ac57bc9244bd1e41e","ssdeep":"","tlshash":"","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"resource_available":false,"data":null}},"time_used":28,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":14,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"region1.analytics.google.com/g/collect?v=2\u0026tid=G-5EE52G3WCQ\u0026gtm=45je3bt0v871839712z8835681296\u0026_p=1701776893456\u0026_gaz=1\u0026gcd=11l1l1l1l1\u0026dma_cps=sypham\u0026dma=1\u0026cid=982842145.1701776894\u0026ul=en-us\u0026sr=1280x1024\u0026_s=1\u0026sid=1701776894\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Fedo.vchasno.ua%2Fauth%2Flogin\u0026dt=%D0%92%D1%87%D0%B0%D1%81%D0%BD%D0%BE%20%7C%20edo.vchasno.ua\u0026en=page_view\u0026_fv=1\u0026_ss=1\u0026tfd=1664","fqdn":"region1.analytics.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"216.239.32.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:15.061Z","timestamp":1701776895061,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:18:19 GMT","end":"Mon, 15 Jan 2024 11:18:18 GMT"},"fingerprint":{"sha1":"37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34","sha256":"11:4C:25:F9:AD:55:F4:E8:94:2E:64:99:7D:15:71:51:3E:11:44:0E:06:0D:EC:15:C3:6D:41:81:4B:0C:30:3D"}}},"request":{"raw":"POST /g/collect?v=2\u0026tid=G-5EE52G3WCQ\u0026gtm=45je3bt0v871839712z8835681296\u0026_p=1701776893456\u0026_gaz=1\u0026gcd=11l1l1l1l1\u0026dma_cps=sypham\u0026dma=1\u0026cid=982842145.1701776894\u0026ul=en-us\u0026sr=1280x1024\u0026_s=1\u0026sid=1701776894\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Fedo.vchasno.ua%2Fauth%2Flogin\u0026dt=%D0%92%D1%87%D0%B0%D1%81%D0%BD%D0%BE%20%7C%20edo.vchasno.ua\u0026en=page_view\u0026_fv=1\u0026_ss=1\u0026tfd=1664 HTTP/1.1\r\nHost: region1.analytics.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://edo.vchasno.ua\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nContent-Length: 0\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 204 No Content\r\naccess-control-allow-origin: https://edo.vchasno.ua\r\ndate: Tue, 05 Dec 2023 11:48:09 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, no-store, must-revalidate\r\naccess-control-allow-credentials: true\r\ncontent-type: text/plain\r\ncross-origin-resource-policy: cross-origin\r\nserver: Golfe2\r\ncontent-length: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-20T06:12:39.446132Z","times_seen":15471872,"resource_available":true,"data":null}},"time_used":145,"timings":{"blocked":62,"dns":1,"connect":11,"send":0,"wait":18,"receive":0,"ssl":48},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94Yt3CwM.ttf","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://accounts.google.com/gsi/button?theme=outline\u0026size=large\u0026type=standard\u0026shape=undefined\u0026width=195\u0026client_id=799386704302-dp3auqv5520cjp4udbgpfg8eoq45p2tr.apps.googleusercontent.com\u0026iframe_id=gsi_895017_970699\u0026as=nZ143NBmBvhWSE1b7%2Bfq7A\u0026hl=uk","date":"2023-12-05T11:48:15.671Z","timestamp":1701776895671,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:24:07 GMT","end":"Mon, 15 Jan 2024 11:24:06 GMT"},"fingerprint":{"sha1":"E5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD","sha256":"EF:BD:DB:F8:2A:77:8C:C2:9E:F9:E0:B2:26:39:CB:EC:63:F1:80:36:F6:06:6E:F5:E1:6C:45:66:A4:D1:A6:C8"}}},"request":{"raw":"GET /s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94Yt3CwM.ttf HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://accounts.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 35470\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Mon, 04 Dec 2023 19:09:13 GMT\r\nexpires: Tue, 03 Dec 2024 19:09:13 GMT\r\ncache-control: public, max-age=31536000\r\nlast-modified: Mon, 22 Apr 2019 23:43:09 GMT\r\ncontent-type: font/ttf\r\nvary: Accept-Encoding\r\nage: 59936\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35470,"size_decoded":0,"mime_type":"font/ttf","magic":"TrueType Font data, 17 tables, 1st \"GDEF\", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google Sans MediumRegularGoogle;GoogleSans-Medium\\012- data","md5":"9b3ee9d428af1431ba2eb09c27fbf645","sha1":"1487cd9cf3b19411b97c634e8f52c696383625c5","sha256":"cf14fae5e96ebf9d3e74ddc99d05745c72ffb71ba0d9427ed4d3acb4be658faf","sha512":"902a02f5a58cf6b6354099a0fed88e9e06ad3b9cd39db35481b59a7a14c70b6df9f6678731a756f6f67a9003ddc0bea9379a96f61f134b8d848ab0305177e9d9","ssdeep":"","tlshash":"","first_seen":"2023-06-09T15:33:47Z","last_seen":"2023-12-05T12:48:30Z","times_seen":2,"resource_available":false,"data":null}},"time_used":131,"timings":{"blocked":54,"dns":2,"connect":9,"send":0,"wait":12,"receive":10,"ssl":41},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Kwps.ttf","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"216.58.207.227","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://accounts.google.com/gsi/button?theme=outline\u0026size=large\u0026type=standard\u0026shape=undefined\u0026width=195\u0026client_id=799386704302-dp3auqv5520cjp4udbgpfg8eoq45p2tr.apps.googleusercontent.com\u0026iframe_id=gsi_895017_970699\u0026as=nZ143NBmBvhWSE1b7%2Bfq7A\u0026hl=uk","date":"2023-12-05T11:48:15.681Z","timestamp":1701776895681,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:24:07 GMT","end":"Mon, 15 Jan 2024 11:24:06 GMT"},"fingerprint":{"sha1":"E5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD","sha256":"EF:BD:DB:F8:2A:77:8C:C2:9E:F9:E0:B2:26:39:CB:EC:63:F1:80:36:F6:06:6E:F5:E1:6C:45:66:A4:D1:A6:C8"}}},"request":{"raw":"GET /s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Kwps.ttf HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://accounts.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\ncontent-encoding: gzip\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 35252\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Thu, 30 Nov 2023 23:22:01 GMT\r\nexpires: Fri, 29 Nov 2024 23:22:01 GMT\r\ncache-control: public, max-age=31536000\r\nage: 390368\r\nlast-modified: Mon, 22 Apr 2019 23:42:59 GMT\r\ncontent-type: font/ttf\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35252,"size_decoded":0,"mime_type":"font/ttf","magic":"TrueType Font data, 17 tables, 1st \"GDEF\", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google SansRegularGoogle;GoogleSans-RegularGoogle\\012- data","md5":"0d2de1ae7d1d5e4a9d5c9caeaa873056","sha1":"ad947e526f74ed6d7fc4b20c7abf1915274957fc","sha256":"38f6f3827e99590a5a1924d223b78cbbd6db8bc38d509661ae7a1c78a94b32bc","sha512":"5a730c8981e2d344e6cc09b8514a06ae2b262dd3dcf201866b7f8e2cf10ad40226ff41e0285f06cc1a9b64eb6bf007062e2d94f8853b2c06de65b01f703cb1b9","ssdeep":"","tlshash":"","first_seen":"2023-06-09T15:33:47Z","last_seen":"2025-11-07T04:02:29.16068Z","times_seen":3,"resource_available":false,"data":null}},"time_used":176,"timings":{"blocked":81,"dns":0,"connect":11,"send":0,"wait":10,"receive":4,"ssl":66},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"region1.analytics.google.com/g/collect?v=2\u0026tid=G-5EE52G3WCQ\u0026gtm=45je3bt0v871839712\u0026_p=1701776893456\u0026gcd=11l1l1l1l1\u0026dma_cps=sypham\u0026dma=1\u0026cid=982842145.1701776894\u0026ul=en-us\u0026sr=1280x1024\u0026_eu=AEA\u0026sid=1701776894\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Fedo.vchasno.ua%2Fauth%2Flogin\u0026dt=%D0%92%D1%87%D0%B0%D1%81%D0%BD%D0%BE%20%7C%20edo.vchasno.ua\u0026_s=2\u0026tfd=6752","fqdn":"region1.analytics.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"216.239.32.36","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"beacon","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:20.040Z","timestamp":1701776900040,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google-analytics.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:18:19 GMT","end":"Mon, 15 Jan 2024 11:18:18 GMT"},"fingerprint":{"sha1":"37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34","sha256":"11:4C:25:F9:AD:55:F4:E8:94:2E:64:99:7D:15:71:51:3E:11:44:0E:06:0D:EC:15:C3:6D:41:81:4B:0C:30:3D"}}},"request":{"raw":"POST /g/collect?v=2\u0026tid=G-5EE52G3WCQ\u0026gtm=45je3bt0v871839712\u0026_p=1701776893456\u0026gcd=11l1l1l1l1\u0026dma_cps=sypham\u0026dma=1\u0026cid=982842145.1701776894\u0026ul=en-us\u0026sr=1280x1024\u0026_eu=AEA\u0026sid=1701776894\u0026sct=1\u0026seg=0\u0026dl=https%3A%2F%2Fedo.vchasno.ua%2Fauth%2Flogin\u0026dt=%D0%92%D1%87%D0%B0%D1%81%D0%BD%D0%BE%20%7C%20edo.vchasno.ua\u0026_s=2\u0026tfd=6752 HTTP/1.1\r\nHost: region1.analytics.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 313\r\nOrigin: https://edo.vchasno.ua\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 204 No Content\r\naccess-control-allow-origin: https://edo.vchasno.ua\r\ndate: Tue, 05 Dec 2023 11:48:14 GMT\r\npragma: no-cache\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\ncache-control: no-cache, no-store, must-revalidate\r\naccess-control-allow-credentials: true\r\ncontent-type: text/plain\r\ncross-origin-resource-policy: cross-origin\r\nserver: Golfe2\r\ncontent-length: 0\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-20T06:12:39.446132Z","times_seen":15471872,"resource_available":true,"data":null}},"time_used":21,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":21,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"play.google.com/log?format=json\u0026hasfast=true\u0026authuser=0","fqdn":"play.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.14","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://accounts.google.com/gsi/button?theme=outline\u0026size=large\u0026type=standard\u0026shape=undefined\u0026width=195\u0026client_id=799386704302-dp3auqv5520cjp4udbgpfg8eoq45p2tr.apps.googleusercontent.com\u0026iframe_id=gsi_895017_970699\u0026as=nZ143NBmBvhWSE1b7%2Bfq7A\u0026hl=uk","date":"2023-12-05T11:48:25.911Z","timestamp":1701776905911,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:18:24 GMT","end":"Mon, 15 Jan 2024 11:18:23 GMT"},"fingerprint":{"sha1":"4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95","sha256":"15:CB:A2:CE:4B:FE:61:1E:1A:B7:EA:EF:89:4D:AC:02:D4:54:5E:C6:82:ED:66:53:FC:05:C1:2F:71:78:EA:AE"}}},"request":{"raw":"OPTIONS /log?format=json\u0026hasfast=true\u0026authuser=0 HTTP/1.1\r\nHost: play.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: x-goog-authuser\r\nOrigin: https://accounts.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: https://accounts.google.com\r\naccess-control-allow-methods: GET, POST, OPTIONS\r\naccess-control-max-age: 86400\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser\r\ncontent-type: text/plain; charset=UTF-8\r\ndate: Tue, 05 Dec 2023 11:48:19 GMT\r\nserver: Playlog\r\ncontent-length: 0\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nset-cookie: CONSENT=PENDING+222; expires=Thu, 04-Dec-2025 11:48:19 GMT; path=/; domain=.google.com; Secure\r\np3p: CP=\"This is not a P3P policy! See g.co/p3phelp for more info.\"\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nexpires: Tue, 05 Dec 2023 11:48:19 GMT\r\ncache-control: private\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-20T06:12:39.446132Z","times_seen":15471872,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"play.google.com/log?format=json\u0026hasfast=true\u0026authuser=0","fqdn":"play.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"142.250.74.14","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://accounts.google.com/gsi/button?theme=outline\u0026size=large\u0026type=standard\u0026shape=undefined\u0026width=195\u0026client_id=799386704302-dp3auqv5520cjp4udbgpfg8eoq45p2tr.apps.googleusercontent.com\u0026iframe_id=gsi_895017_970699\u0026as=nZ143NBmBvhWSE1b7%2Bfq7A\u0026hl=uk","date":"2023-12-05T11:48:25.911Z","timestamp":1701776905911,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 23 Oct 2023 11:18:24 GMT","end":"Mon, 15 Jan 2024 11:18:23 GMT"},"fingerprint":{"sha1":"4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95","sha256":"15:CB:A2:CE:4B:FE:61:1E:1A:B7:EA:EF:89:4D:AC:02:D4:54:5E:C6:82:ED:66:53:FC:05:C1:2F:71:78:EA:AE"}}},"request":{"raw":"POST /log?format=json\u0026hasfast=true\u0026authuser=0 HTTP/1.1\r\nHost: play.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nX-Goog-AuthUser: 0\r\nContent-Type: application/x-www-form-urlencoded;charset=utf-8\r\nContent-Length: 451\r\nOrigin: https://accounts.google.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nTE: trailers\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: https://accounts.google.com\r\ncross-origin-resource-policy: cross-origin\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: X-Playlog-Web\r\ncontent-type: text/plain; charset=UTF-8\r\ncontent-encoding: gzip\r\ndate: Tue, 05 Dec 2023 11:48:19 GMT\r\nserver: Playlog\r\ncache-control: private\r\ncontent-length: 131\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nset-cookie: CONSENT=PENDING+289; expires=Thu, 04-Dec-2025 11:48:19 GMT; path=/; domain=.google.com; Secure\r\np3p: CP=\"This is not a P3P policy! See g.co/p3phelp for more info.\"\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nexpires: Tue, 05 Dec 2023 11:48:19 GMT\r\nX-Firefox-Spdy: h2\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":131,"size_decoded":0,"mime_type":"text/plain; charset=UTF-8","magic":"JSON data\\012- , ASCII text, with no line terminators","md5":"ca0b7e866005f6774d284b9f438ebfd2","sha1":"53644f5ee3640189bdb223473ba6a2d46606c556","sha256":"502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358","sha512":"939c4526c623db033ad40bfdc6c8848a1dcd0ca797f17fbbd89fbec1b49dededc16e89084b3759e62fa0ffc8fe896980b10a1ff8daee22736a70b08f1ee13e2f","ssdeep":"","tlshash":"58c08c50330469e1080e82c8c0026858228c903b46708cf10bbd68125d3234a1004854","first_seen":"2023-04-05T03:14:56Z","last_seen":"2026-05-20T06:07:50.736107Z","times_seen":538957,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/cloud-cgi/static/vchasno-static/js/auth.becdbb233ed513b1500d.js","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:13.433Z","timestamp":1701776893433,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vchasno.ua","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 31 Oct 2023 18:01:28 GMT","end":"Mon, 29 Jan 2024 18:01:27 GMT"},"fingerprint":{"sha1":"E1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E","sha256":"BC:8A:DE:94:5F:8A:6C:8D:61:9B:7D:CA:DF:C2:24:6F:DC:86:4F:1E:89:2F:25:96:A9:35:53:11:18:42:AB:D4"}}},"request":{"raw":"GET /cloud-cgi/static/vchasno-static/js/auth.becdbb233ed513b1500d.js HTTP/1.1\r\nHost: edo.vchasno.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/auth/login\r\nCookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash=\"059fc00eb80c26532d17e0e19486dd6d84add384  -\"; xsrf=vw5fyrxKQSKB5BVlAaxBYw:cdfb0cae1d0692c9d11c5cac9c6214d096787ed91231dc571d118e32b68bbbe196074ede05850dbbad23367147cbbabbbac8b0bca0eba01121a50569de7fb93b\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 11:48:07 GMT\r\ncontent-type: application/javascript\r\nx-amz-id-2: 0RHgX3Lnv9fV6Gn0hACznjeuOsKv1AACjikODfOuEr1Ysw8ILksuVE7zaeJ4mbKntviaxrBThxM=\r\nx-amz-request-id: P2MSBATS004X8WB8\r\nlast-modified: Tue, 05 Dec 2023 11:40:52 GMT\r\netag: W/\"0e5e192aa79ae9a0befe6a66900f8657\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-s3cmd-attrs: atime:1701776410/ctime:1701776411/gid:0/gname:root/md5:0e5e192aa79ae9a0befe6a66900f8657/mode:33188/mtime:1701776410/uid:0/uname:root\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nx-cache-status: HIT\r\nx-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/js/auth.becdbb233ed513b1500d.js\r\nx-servant: i-0620f5cb1b5f4b5d0\r\ncf-cache-status: MISS\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=Cy0gpRV2b0oBHwXlP4pkInzBaqkxGNy61Tck9BGq3nbuAoRsVsRPqiX%2FKYt4LDL9VjuflgZBlgP00HDbaSEt5aA9TbMgkRHb2Y47ymc3ioDORT60joHNHPLdlUIsp%2BRA\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830c0eeb3e3c56ba-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":4074076,"size_decoded":0,"mime_type":"application/javascript","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-05-20T06:12:39.446132Z","times_seen":15471872,"resource_available":true,"data":null}},"time_used":399,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":271,"receive":128,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/cloud-cgi/static/vchasno-static/fonts/Roboto-Medium.woff","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:14.941Z","timestamp":1701776894941,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vchasno.ua","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 31 Oct 2023 18:01:28 GMT","end":"Mon, 29 Jan 2024 18:01:27 GMT"},"fingerprint":{"sha1":"E1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E","sha256":"BC:8A:DE:94:5F:8A:6C:8D:61:9B:7D:CA:DF:C2:24:6F:DC:86:4F:1E:89:2F:25:96:A9:35:53:11:18:42:AB:D4"}}},"request":{"raw":"GET /cloud-cgi/static/vchasno-static/fonts/Roboto-Medium.woff HTTP/1.1\r\nHost: edo.vchasno.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/auth/login\r\nCookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash=\"059fc00eb80c26532d17e0e19486dd6d84add384  -\"; xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 11:48:09 GMT\r\ncontent-type: binary/octet-stream\r\ncontent-length: 94800\r\nx-amz-id-2: kMUMmzXVHGFf5+qtzBIbgurj4bYS0PoI1WnY7Zk3cDdUk6RXt+Pgnu+7POEQnoDakBZkcBfN8vU=\r\nx-amz-request-id: E379E4VWQV7FT8G8\r\nlast-modified: Thu, 29 Sep 2022 20:33:44 GMT\r\netag: \"3441f191799efbde825e0f8dba3355c8\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-s3cmd-attrs: atime:1664483606/ctime:1664483606/gid:0/gname:root/md5:3441f191799efbde825e0f8dba3355c8/mode:33188/mtime:1664483606/uid:0/uname:root\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nx-cache-status: HIT\r\nx-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/fonts/Roboto-Medium.woff\r\nx-servant: i-0ac88be10a6549c75\r\ncf-cache-status: HIT\r\nage: 869871\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=OPRxl2snZ9YYEWoi7OuOm%2FQDz2PooYq1IOVmY8dMO%2FdpbkwHCQymQTJrR9PSCl02JKGY66aZXW0f5p0CFAsaf%2FovnkdEWehjF9UMNtu3pOaif1ZdEIQgAf3qAkUfwsbR\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830c0ef4c81556ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":94800,"size_decoded":0,"mime_type":"binary/octet-stream","magic":"Web Open Font Format, TrueType, length 94800, version 2.137\\012- data","md5":"3441f191799efbde825e0f8dba3355c8","sha1":"f5e571d3e5a1fee3083e77fd94dc4d670f46850d","sha256":"70a6610b1ace14a1a128da9f7dd1d77bbfaaace7e99fa98e42a26a618d0106ce","sha512":"0fb12328d0b2ae575487203afbc3804b61c918f7ab88f5c88b18361be6be2a049c8e9a354bad1ad81c93c6f78b7b9686bfe93f6147e984393ba5621e151e9b7b","ssdeep":"1536:gKsw8UMyCm2i+DdPUueYUwzRTY8xIgvQeLZsgc3gQ7sxUd7RPsmQgzFU5A59qjoZ:gK0tDdsue5w9TY8se9fqjXQ35A59qjoZ","tlshash":"78931244be16bbd3984e3fb3c43a4bc8a8a86d34c13353519506265bc8e3b9749ac25b","first_seen":"2023-06-09T15:33:47Z","last_seen":"2026-05-19T00:37:31.42137Z","times_seen":198,"resource_available":false,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":68,"receive":29,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/auth/login","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2023-12-05T11:48:12.932Z","timestamp":1701776892932,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vchasno.ua","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 31 Oct 2023 18:01:28 GMT","end":"Mon, 29 Jan 2024 18:01:27 GMT"},"fingerprint":{"sha1":"E1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E","sha256":"BC:8A:DE:94:5F:8A:6C:8D:61:9B:7D:CA:DF:C2:24:6F:DC:86:4F:1E:89:2F:25:96:A9:35:53:11:18:42:AB:D4"}}},"request":{"raw":"GET /auth/login HTTP/1.1\r\nHost: edo.vchasno.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Tue, 05 Dec 2023 11:48:07 GMT\r\ncontent-type: text/html\r\ncache-control: no-cache, no-store, must-revalidate\r\nx-frame-options: DENY\r\nx-content-type-options: nosniff\r\nfeature-policy: accelerometer 'none', camera 'none', battery 'none', gyroscope 'none', midi 'none', payment 'none', usb *\r\nx-request-id: e0b3ae31-8215-4fb1-8d61-1b79fe1a5d52\r\nset-cookie: static-hash=\"059fc00eb80c26532d17e0e19486dd6d84add384  -\"; Path=/\nxsrf=vw5fyrxKQSKB5BVlAaxBYw:cdfb0cae1d0692c9d11c5cac9c6214d096787ed91231dc571d118e32b68bbbe196074ede05850dbbad23367147cbbabbbac8b0bca0eba01121a50569de7fb93b; Path=/; Secure\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=U%2BTF2vFjnHvjxjSErqFrBC3SShJcrxhwoGHTAfvKJZaI%2B8%2F8HJfSoke3WkFXu8HafPxzAjgTA5xs6LtSzrY6f6re969QsepnU6ImDVeAQNsKVE8nSwUVD2nMgcPd37RA\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830c0ee83fdab529-OSL\r\ncontent-encoding: br\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7864,"size_decoded":0,"mime_type":"text/html","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7997), with no line terminators","md5":"0e0fbe87c2441a08f52e8e44267d8652","sha1":"8e71443ecc4ed87ad63638a525e4d9213f2c834b","sha256":"75399459ec1fd5db4540ee9542418db9989310ca7fef4157a873a64ac6ecd1cb","sha512":"dbf91dfc1653f258327a1e4d780440ee2417f70d35b227ffed59f2fab2797728c33e7d50a0d76dad7df8b530746ab2fa90c7fb26930e9e72bcffd2c5a081cba0","ssdeep":"96:/BgUaSQFsMxG0tlOmh5lj4R4FwgiojNhvTIlj88YSstLMOAO1DlAO1+9h7BUhDCT:/CMJ2FW2yOJZlJA9h7BUhD6v7xIg5","tlshash":"f4f123eb5c94c7aa3e3255d672b2b12cd007b06c0e36e103fade644d57a6ae3c247d18","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"resource_available":false,"data":null}},"time_used":163,"timings":{"blocked":1,"dns":0,"connect":0,"send":0,"wait":162,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/gsi/client","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"64.233.161.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:13.431Z","timestamp":1701776893431,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"accounts.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 20 Nov 2023 08:09:49 GMT","end":"Mon, 12 Feb 2024 08:09:48 GMT"},"fingerprint":{"sha1":"F3:FB:54:1B:21:E9:69:01:41:02:BB:D0:97:A2:BA:45:72:5A:71:D8","sha256":"52:D6:51:A4:34:2E:B5:57:93:3C:CE:1B:94:0A:2B:6F:3B:BE:DF:41:C4:50:F4:5D:01:23:34:CC:BC:A5:9E:B1"}}},"request":{"raw":"GET /gsi/client HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: application/javascript; charset=utf-8\r\nexpires: Tue, 05 Dec 2023 11:48:07 GMT\r\ndate: Tue, 05 Dec 2023 11:48:07 GMT\r\ncache-control: private, max-age=1800\r\ncross-origin-resource-policy: cross-origin\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-m9IXiFgemvk7A5BHlCWhAg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"coop_dd7de8473bddc59c6b748810a67a39b1\"\r\nreport-to: {\"group\":\"coop_dd7de8473bddc59c6b748810a67a39b1\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1\"}]}\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":209992,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text, with very long lines (3006)","md5":"2dac4c28fbe1c91c8c9238396e8783db","sha1":"cd248444b9109bd11fbcdc9346187b11f5aaba88","sha256":"0401b1138e2dbac185c52dedb3b6804474a6b2ffc5486e68a3fa861e9dd275f1","sha512":"310171c01cab1ce8fd366f9f6288db8c05f2b9148bc3b3c29b7427ac86c5a6b01ef48b4b475ac6b04d5234df501a331df656702fa29fdf8922d012b1277e7f3f","ssdeep":"3072:7LjQGh5WhRLxI5kPFgdJryyum8XDy/UWXMiVGXaG2O6AuCioy0cfqmCk:GRLxI5Ppyyum80fciQXaG2cuCly0cCvk","tlshash":"a6243bddb6e270354513b8b6d53f420bb07696b8f14988acf6c4c5f9acb48890127f7a","first_seen":"2023-12-04T23:13:28Z","last_seen":"2023-12-09T00:04:24Z","times_seen":136,"resource_available":true,"data":null}},"time_used":697,"timings":{"blocked":299,"dns":18,"connect":15,"send":0,"wait":42,"receive":33,"ssl":286},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"edo.vchasno.ua/cloud-cgi/static/vchasno-static/assets/images/vchasno_partners_logos_mobilea758d0395f6839ff2506.png","fqdn":"edo.vchasno.ua","domain":"vchasno.ua","tld":"ua"},"ip":{"addr":"104.26.11.78","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:14.897Z","timestamp":1701776894897,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"vchasno.ua","organization":""},"issuer":{"commonName":"GTS CA 1P5","organization":"Google Trust Services LLC"},"validity":{"start":"Tue, 31 Oct 2023 18:01:28 GMT","end":"Mon, 29 Jan 2024 18:01:27 GMT"},"fingerprint":{"sha1":"E1:9C:70:32:1B:FB:CA:57:F9:B9:E1:2B:13:DA:41:E7:DE:B2:27:6E","sha256":"BC:8A:DE:94:5F:8A:6C:8D:61:9B:7D:CA:DF:C2:24:6F:DC:86:4F:1E:89:2F:25:96:A9:35:53:11:18:42:AB:D4"}}},"request":{"raw":"GET /cloud-cgi/static/vchasno-static/assets/images/vchasno_partners_logos_mobilea758d0395f6839ff2506.png HTTP/1.1\r\nHost: edo.vchasno.ua\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/auth/login\r\nCookie: vchasno_session=328915dfcc9a4bdb9d5e5b2ab0f0b841; vchasno_auth=w653991b584044308b8c820f1c87e427a; static-hash=\"059fc00eb80c26532d17e0e19486dd6d84add384  -\"; xsrf=mbpKoAopU204_cZLJc7PSw:e9f564f8cd0482ca5757a9d0150433cdf16155a93095cc201bc2fa238bd02a7c7a42a21d56c9404f7c61f29f98ee385cbe59b7150f8a55090edbc622658b28db; _gcl_au=1.1.1500828059.1701776894; _ga_YT5V9MV99B=GS1.1.1701776894.1.0.1701776894.0.0.0; _ga=GA1.1.982842145.1701776894; _ga_5EE52G3WCQ=GS1.1.1701776894.1.0.1701776894.60.0.0; __locale=uk\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Tue, 05 Dec 2023 11:48:09 GMT\r\ncontent-type: image/png\r\ncontent-length: 159890\r\nx-amz-id-2: R+8knEmcxTGJJwyzc+0SGEaJHpznn7L7OX76K5nYC2sACp8OzN1wYIQ35y1UV4GU4kkBJCgwohE=\r\nx-amz-request-id: T36H0F0T3M82Y24T\r\nlast-modified: Wed, 22 Nov 2023 09:54:48 GMT\r\netag: \"e473201f81a41f01235cb2eaa43f75bf\"\r\nx-amz-server-side-encryption: AES256\r\nx-amz-meta-s3cmd-attrs: atime:1698939258/ctime:1698939258/gid:0/gname:root/md5:e473201f81a41f01235cb2eaa43f75bf/mode:33188/mtime:1698939258/uid:0/uname:root\r\ncache-control: public, max-age=31536000, immutable\r\nvary: Accept-Encoding\r\nx-cache-status: HIT\r\nx-cache-key: edo.vchasno.ua/cloud-cgi/static/vchasno-static/assets/images/vchasno_partners_logos_mobilea758d0395f6839ff2506.png\r\nx-servant: i-0620f5cb1b5f4b5d0\r\ncf-cache-status: HIT\r\nage: 703312\r\naccept-ranges: bytes\r\nreport-to: {\"endpoints\":[{\"url\":\"https:\\/\\/a.nel.cloudflare.com\\/report\\/v3?s=8tQoDBmJ2mlB6LfafrSV4uqCLFFsxhYZXJLb6AJnBERf9RJnvK49b4l500gosU%2FdsH1O6NDe2L8F2zLesn32ycWmCSGgfMUPUDFS8hNuaMb62iuG4adbO9x6DrKDj6V3\"}],\"group\":\"cf-nel\",\"max_age\":604800}\r\nnel: {\"success_fraction\":0,\"report_to\":\"cf-nel\",\"max_age\":604800}\r\nserver: cloudflare\r\ncf-ray: 830c0ef48fdd56ba-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":159890,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 350 x 310, 8-bit/color RGBA, non-interlaced\\012- data","md5":"e473201f81a41f01235cb2eaa43f75bf","sha1":"5ef673e3d5980fd525b736f50ec36f3ac4e1b3a9","sha256":"7d5bf1a6216bcc7ecf9f00615eb629370d97c8109f1fe01ab389b7ecb07794b4","sha512":"533504b51ca70a1a961a374e950f62f77d5c4ddd500ea98fb7e5a2262c668e9dab07f0213ec9d54cfa3d3209e9daee0b58f2597d059e782ac57bc9244bd1e41e","ssdeep":"","tlshash":"","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"resource_available":false,"data":null}},"time_used":17,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":13,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/gsi/button?theme=outline\u0026size=large\u0026type=standard\u0026shape=undefined\u0026width=195\u0026client_id=799386704302-dp3auqv5520cjp4udbgpfg8eoq45p2tr.apps.googleusercontent.com\u0026iframe_id=gsi_895017_970699\u0026as=nZ143NBmBvhWSE1b7%2Bfq7A\u0026hl=uk","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"64.233.161.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:15.105Z","timestamp":1701776895105,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 20 Nov 2023 08:02:55 GMT","end":"Mon, 12 Feb 2024 08:02:54 GMT"},"fingerprint":{"sha1":"5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89","sha256":"6B:8C:96:D3:51:1A:FF:CB:54:1F:32:DB:0D:88:85:07:3E:EC:A3:45:E4:10:B4:AC:47:6E:DC:D2:40:6F:0F:80"}}},"request":{"raw":"GET /gsi/button?theme=outline\u0026size=large\u0026type=standard\u0026shape=undefined\u0026width=195\u0026client_id=799386704302-dp3auqv5520cjp4udbgpfg8eoq45p2tr.apps.googleusercontent.com\u0026iframe_id=gsi_895017_970699\u0026as=nZ143NBmBvhWSE1b7%2Bfq7A\u0026hl=uk HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/html; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\npragma: no-cache\r\nexpires: Mon, 01 Jan 1990 00:00:00 GMT\r\ndate: Tue, 05 Dec 2023 11:48:09 GMT\r\ncross-origin-embedder-policy: require-corp\r\ncross-origin-resource-policy: same-site\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"coop_dd7de8473bddc59c6b748810a67a39b1\"\r\nreport-to: {\"group\":\"coop_dd7de8473bddc59c6b748810a67a39b1\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1\"}]}\r\ncontent-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-igfwOycJgUWYRYJ1jiizCw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":116497,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- HTML document text\\012- exported SGML document, ASCII text, with very long lines (7754)","md5":"bd7bff809b9bfcad7f4541147a2f76a1","sha1":"c7e2b83c91801a9293cbd96ff384f7b54311a1b5","sha256":"c9d950da4ecb1426756b0bb430c57a36b2ee97101d370937c1284203187dd8b5","sha512":"7383480114afa1e6bc2d0cbf17e59f2b04ea40fb62acfde2119a4ad3c8bd8494e80a87b5509a5a32806f32fdb86587fe3cdb0c32cc110b7cba0c1c5974c3e589","ssdeep":"1536:I+GqAauSjQ9J6h1oW0g8RLxI5tKgc77c+1QWCFW77qxJbEoP8Sxt9BlK+nizfWqg:IXwjQWhiWwRLxI5Nc7jwHhtZiTG","tlshash":"c1b3d8c8b2a270669362f4b1413f000ff13b69aaf8589dacf185d9e2adf45494167f3d","first_seen":"2023-12-05T12:48:30Z","last_seen":"2023-12-05T12:48:30Z","times_seen":1,"resource_available":false,"data":null}},"time_used":89,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":88,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"accounts.google.com/gsi/style","fqdn":"accounts.google.com","domain":"google.com","tld":"com"},"ip":{"addr":"64.233.161.84","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://edo.vchasno.ua/auth/login","date":"2023-12-05T11:48:15.123Z","timestamp":1701776895123,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.google.com","organization":""},"issuer":{"commonName":"GTS CA 1C3","organization":"Google Trust Services LLC"},"validity":{"start":"Mon, 20 Nov 2023 08:02:55 GMT","end":"Mon, 12 Feb 2024 08:02:54 GMT"},"fingerprint":{"sha1":"5D:3A:D9:47:14:B0:78:30:A1:BF:B4:45:F6:F5:81:AD:0A:C7:76:89","sha256":"6B:8C:96:D3:51:1A:FF:CB:54:1F:32:DB:0D:88:85:07:3E:EC:A3:45:E4:10:B4:AC:47:6E:DC:D2:40:6F:0F:80"}}},"request":{"raw":"GET /gsi/style HTTP/1.1\r\nHost: accounts.google.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://edo.vchasno.ua/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nexpires: Tue, 05 Dec 2023 11:48:09 GMT\r\ndate: Tue, 05 Dec 2023 11:48:09 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy-report-only: same-origin; report-to=\"coop_dd7de8473bddc59c6b748810a67a39b1\"\r\nreport-to: {\"group\":\"coop_dd7de8473bddc59c6b748810a67a39b1\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1\"}]}\r\ncontent-security-policy: script-src 'nonce-J_k-5crgfMdZS4uR98A_mg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":530,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (530), with no line terminators","md5":"6ce3c682ce6b9e0b88670395a63345c8","sha1":"8cbfc0856a52320e3567792dfe2487748ac07458","sha256":"524f1ea2ac242c6fae3c1cc52c7ae7d05a8a7db466fe3c7b46e8efcfc2d95e53","sha512":"fe2e17e518e4d565a53877e981ca2387db7bff900d2ba2f49397976a8d2491b32ab11036a730eb19c6019cb0c60fe737b0bdd42587fad59068687407a55d13d1","ssdeep":"","tlshash":"74f0c0322d752039dcb3fb37b449dd8801367157edb705dcb19cea24c28e9786845045","first_seen":"2023-04-05T04:09:23Z","last_seen":"2025-05-28T16:51:11.59432Z","times_seen":16082,"resource_available":false,"data":null}},"time_used":57,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":56,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}