base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
301 Moved Permanently 113 B URL HTTP/1.1 base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash a538151abf3c20704faeaee365321629
461344deb2bce5e25cf9c7d6d95457440acd8b64
ab42be95b09a817c90cac87b497f4bbda67ee18770e38ac85ac0fa55b9bf5136
GET /10900200/11e2106fa4ec328ea2d88df540010b52/ HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: ddos-guard
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: __ddg1_=T1aLKQcn7Pno31rxrBJe; Domain=.garant.ru; HttpOnly; Path=/; Expires=Wed, 07-Feb-2024 04:49:39 GMT
Date: Tue, 07 Feb 2023 04:49:39 GMT
Content-Type: text/html
Location: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
X-Request-ID: cb3590a9d77a34b9c63289b7a7726471
Content-Encoding: gzip
Vary: Accept-Encoding
Transfer-Encoding: chunked
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16259
Expires: Tue, 07 Feb 2023 09:20:38 GMT
Date: Tue, 07 Feb 2023 04:49:39 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19304
Expires: Tue, 07 Feb 2023 10:11:23 GMT
Date: Tue, 07 Feb 2023 04:49:39 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7596
Expires: Tue, 07 Feb 2023 06:56:15 GMT
Date: Tue, 07 Feb 2023 04:49:39 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 07 Feb 2023 04:34:07 GMT
content-type: application/json
age: 932
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 9/SobqEtvJfbt8MsiOwhgMoqsuf/6kotpJ8E3dF7EYWDgwTW8He1UUAiTrimQwF4+/YuG+N1gTM=
x-amz-request-id: 3CZ8JMQC9EWNN45E
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 07 Feb 2023 04:35:23 GMT
age: 856
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/alphasslcasha256g4
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/alphasslcasha256g4
IP
Hash 9568450a4db42b06f6a245c2e9c0a662
68c4f4a6ac77d600bd45645016260fe20f15ef84
bc5503bf517a084672af7c21b732fc831a707ef2593341610f241df3dea2c4ee
POST /alphasslcasha256g4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1437
Connection: keep-alive
Expires: Sat, 11 Feb 2023 02:43:22 GMT
ETag: "68c4f4a6ac77d600bd45645016260fe20f15ef84"
Last-Modified: Tue, 07 Feb 2023 02:43:23 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7959801018f5b512-OSL
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:39 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
base.garant.ru/images/js/jquery-1.8.3.min.js
200 OK 34 kB URL HTTP/2 base.garant.ru/images/js/jquery-1.8.3.min.js
IP
File type ASCII text, with very long lines (65483)
Hash f356e92eb3a5ef220961e2fb7adbf04b
5b7b1ce36dc9f7eae42df5ef587fbbcd0bdc6dd7
c0983c3c6fc237225b611b317d5302563e23b86eec0610a30bdb30478491ba94
GET /images/js/jquery-1.8.3.min.js HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 03 Feb 2023 04:44:22 GMT
content-type: application/javascript; charset=windows-1251
last-modified: Mon, 20 Jun 2016 14:22:24 GMT
cache-control: max-age=604800
content-encoding: gzip
content-length: 33772
ddg-cache-status: HIT,HIT
vary: Accept-Encoding
etag: "5767fc20-16dc4"
expires: Wed, 08 Feb 2023 13:38:31 GMT
age: 345918
X-Firefox-Spdy: h2
base.garant.ru/static/base/css/normalize.css?734
200 OK 2.6 kB URL HTTP/2 base.garant.ru/static/base/css/normalize.css?734
IP
File type ASCII text, with CRLF line terminators
Hash 6a6fda53729b8e226ff919c8ab21588d
11f74817768bd4e6f91b5097b636b74d26074b35
9e279b7c9dd292e99e57a1013832207fd41da91e60b074f1ff39724c612c5ad6
GET /static/base/css/normalize.css?734 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Mon, 06 Feb 2023 06:21:14 GMT
content-type: text/css
last-modified: Mon, 20 Jun 2016 14:22:20 GMT
etag: W/"5767fc1c-2005"
expires: Mon, 13 Feb 2023 06:21:14 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
age: 80906
content-length: 2605
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/static/base/css/base.css?734
200 OK 5.7 kB URL HTTP/2 base.garant.ru/static/base/css/base.css?734
IP
File type ASCII text, with very long lines (677), with CRLF line terminators
Hash fddd19fa80ee8d71e6b224df4575c3fa
bd722da2fca1badf31f9adb1bff18d80efc5eb12
ef672601e23119fe22d55cd554153fd3b892ea608cc826a3a184662fb162869f
GET /static/base/css/base.css?734 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Mon, 06 Feb 2023 06:21:15 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 08:41:01 GMT
etag: W/"63297c9d-61d8"
expires: Mon, 13 Feb 2023 06:21:15 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
age: 80905
content-length: 5655
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/static/base/css/font-awesome.min.css?734
200 OK 7.0 kB URL HTTP/2 base.garant.ru/static/base/css/font-awesome.min.css?734
IP
File type ASCII text, with very long lines (30837)
Hash fb7f76f5b37db97d1106b7a55cd1d981
a36266535f831215b17b55f199473a3e3da014f2
be1d7eefcd7d661245019713be9c83fca57e1258d25a7a1060e33f46bda6c3bc
GET /static/base/css/font-awesome.min.css?734 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Mon, 06 Feb 2023 06:21:14 GMT
content-type: text/css
last-modified: Mon, 18 Sep 2017 14:11:57 GMT
etag: W/"59bfd42d-7918"
expires: Mon, 13 Feb 2023 06:21:14 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
age: 80906
content-length: 7013
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/static/custom/pravovest/base/css/base.css?734
200 OK 1.5 kB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/css/base.css?734
IP
File type assembler source, ISO-8859 text, with CRLF line terminators
Hash c703052510efff14f8eee5e5667ad4ea
8003af58410bfaecec1176d924fd2ed370e549e7
9bf5a43c43e173727b6bb1b628c65961969abad81b7ea8490a8f6a0d9567642a
GET /static/custom/pravovest/base/css/base.css?734 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Mon, 06 Feb 2023 10:28:54 GMT
content-type: text/css
last-modified: Tue, 27 Sep 2022 11:49:44 GMT
etag: W/"6332e358-1893"
expires: Mon, 13 Feb 2023 10:28:54 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
age: 66046
content-length: 1483
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/images/js/base/resolver.js?734
200 OK 1.8 kB URL HTTP/2 base.garant.ru/images/js/base/resolver.js?734
IP
File type HTML document text\012- C source, ISO-8859 text, with CRLF line terminators
Hash fcd0389f078cf60b9ca6d3e2d354904e
e394b86c703c83bd0c51c2a8f93baa3613b4d09f
9fbff98dd052196971d7d472868da1b99c5406e6d85cef18f522803a8817a23b
GET /images/js/base/resolver.js?734 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Mon, 06 Feb 2023 06:21:15 GMT
content-type: application/javascript; charset=windows-1251
last-modified: Mon, 20 Jun 2016 14:22:24 GMT
etag: W/"5767fc20-192a"
expires: Mon, 13 Feb 2023 06:21:15 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
age: 80905
content-length: 1826
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/static/garant/js/user/login.js?734
200 OK 3.1 kB URL HTTP/2 base.garant.ru/static/garant/js/user/login.js?734
IP
File type ISO-8859 text, with CRLF line terminators
Hash 76acac0a094bc5fea39e05d44f536269
6f9c6c17143439cd268d409b2ebefa8ad9d29549
c60e6698a652b263c320e0e8bd1ed3a8f1891c01b508742273c5c81eddf4aaed
GET /static/garant/js/user/login.js?734 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Mon, 06 Feb 2023 06:21:15 GMT
content-type: application/javascript; charset=windows-1251
last-modified: Thu, 27 Oct 2022 08:23:56 GMT
etag: W/"635a401c-2508"
expires: Mon, 13 Feb 2023 06:21:15 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
age: 80905
content-length: 3104
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/images/js/form.js?734
200 OK 2.5 kB URL HTTP/2 base.garant.ru/images/js/form.js?734
IP
File type ISO-8859 text, with very long lines (310), with CRLF line terminators
Hash e98acf111f03cd7b81db349af953fe74
3b9df7f625235e2924c811a27df0da2e492ac6a5
cd0be4585bd8fdb361cf3fe1af2040018ac6140949e74671da5f9fe11997995f
GET /images/js/form.js?734 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Sat, 04 Feb 2023 20:46:12 GMT
content-type: application/javascript; charset=windows-1251
last-modified: Mon, 29 Jan 2018 14:11:24 GMT
etag: W/"5a6f2b8c-1b22"
expires: Sat, 11 Feb 2023 20:46:12 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
age: 201808
content-length: 2533
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/static/base/img/saveToFile.png
200 OK 1.0 kB URL HTTP/2 base.garant.ru/static/base/img/saveToFile.png
IP
File type PNG image data, 18 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 74cbe2c4e55bdbbd66d3407978748b86
20ca02a60b532a49c6067236fc8e5613744100ba
df5cf80056f5920a862272093920b956082a5f4c7aaf69656f0b3fe28042a875
GET /static/base/img/saveToFile.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:05:08 GMT
content-type: image/png
content-length: 1037
last-modified: Mon, 20 Jun 2016 14:22:20 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5767fc1c-40d"
expires: Wed, 01 Feb 2023 12:05:28 GMT
age: 492272
X-Firefox-Spdy: h2
base.garant.ru/static/base/img/save-file.png?1
200 OK 1.1 kB URL HTTP/2 base.garant.ru/static/base/img/save-file.png?1
IP
File type PNG image data, 17 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash f1351cd668febb375da01807602360ed
8c865d7bc4bde4c19dbb5b01129c52f598525bab
3cee6a8e96eec362db922b272e1ba4b63fd7b6d58d4ed8108f4b3832d9754372
GET /static/base/img/save-file.png?1 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:05:33 GMT
content-type: image/png
content-length: 1148
last-modified: Mon, 25 Jun 2018 14:07:24 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5b30f71c-47c"
expires: Wed, 01 Feb 2023 14:32:36 GMT
age: 492247
X-Firefox-Spdy: h2
base.garant.ru/static/base/js/save-button.js?734
200 OK 111 B URL HTTP/2 base.garant.ru/static/base/js/save-button.js?734
IP
File type ASCII text, with CRLF line terminators
Hash 7b4ab18469840bfb0d102fa28081eab8
d8195f15f0f2924781dafcbcaba2c86ab24bbf1e
28e2c54402f704ddd7cb47f8fbf5d9e4009a986becedf3eeb94539b473b353a8
GET /static/base/js/save-button.js?734 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Mon, 06 Feb 2023 06:21:15 GMT
content-type: application/javascript; charset=windows-1251
last-modified: Fri, 07 Feb 2020 16:06:05 GMT
etag: W/"5e3d8aed-de"
expires: Mon, 13 Feb 2023 06:21:15 GMT
cache-control: max-age=604800
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
age: 80905
content-length: 111
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/static/garant/images/layout/close-banner.png
200 OK 1.0 kB URL HTTP/2 base.garant.ru/static/garant/images/layout/close-banner.png
IP
File type PNG image data, 10 x 11, 8-bit/color RGBA, non-interlaced\012- data
Hash b124d70f15b4c5db5f70d86d38b99efe
19e45c6992b39220b7504dd85bd7a0f6aa772b53
fb48cc0e64935bfc8be3a63ac27e42ab6b2cb7e8476d123fc94a5695fb886ded
GET /static/garant/images/layout/close-banner.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:05:31 GMT
content-type: image/png
content-length: 1035
last-modified: Mon, 20 Jun 2016 14:22:20 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5767fc1c-40b"
expires: Fri, 03 Feb 2023 12:45:48 GMT
age: 492249
X-Firefox-Spdy: h2
base.garant.ru/static/custom/pravovest/base/img/icon-logo.png
200 OK 6.7 kB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/img/icon-logo.png
IP
File type PNG image data, 253 x 51, 8-bit/color RGBA, non-interlaced\012- data
Hash 5c4338dab1f12a02ca2361d393087c48
aed99361f6490ebd96485bd2f56858db83f0dfab
54d535479ee945f75f6a6e32ff451682ce61eb80bb84e42a6494b9c1736cb79b
GET /static/custom/pravovest/base/img/icon-logo.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Fri, 03 Feb 2023 04:54:49 GMT
content-type: image/png
content-length: 6680
last-modified: Thu, 15 Jul 2021 14:00:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
etag: "60f03f72-1a18"
expires: Fri, 10 Feb 2023 04:54:49 GMT
age: 345291
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/static/custom/pravovest/base/img/icon-laurel-1.png
200 OK 1.8 kB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/img/icon-laurel-1.png
IP
File type PNG image data, 79 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 0812bdbfb47a8327f0b62aaf37ab3c78
6c53005e036862d77a4aaa9ae93e250950ef44b9
39ec1a9e34c463920686cede59135a21b2c1de5b8ab596e524599ebd6b3a3dd6
GET /static/custom/pravovest/base/img/icon-laurel-1.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:21:04 GMT
content-type: image/png
content-length: 1783
last-modified: Thu, 15 Jul 2021 14:00:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "60f03f72-6f7"
expires: Wed, 08 Feb 2023 12:12:58 GMT
age: 491316
X-Firefox-Spdy: h2
base.garant.ru/static/custom/pravovest/base/img/icon-laurel-2.png
200 OK 2.3 kB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/img/icon-laurel-2.png
IP
File type PNG image data, 80 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 2522eb5d98149eb9c0e544171a31b89f
9cf76a799d56ce1f57e70b22ee4f194655106123
adef5dea9e63462c495f806f74e28ee0368414909f89cd85614460543da47abb
GET /static/custom/pravovest/base/img/icon-laurel-2.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:21:04 GMT
content-type: image/png
content-length: 2323
last-modified: Thu, 15 Jul 2021 14:00:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "60f03f72-913"
expires: Wed, 01 Feb 2023 14:17:00 GMT
age: 491316
X-Firefox-Spdy: h2
base.garant.ru/static/custom/pravovest/base/img/icon-laurel-3.png
200 OK 3.3 kB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/img/icon-laurel-3.png
IP
File type PNG image data, 80 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash c83721410a6379fef3ee7423cda1648a
95c74ad4534e1221bae075accd4af0ab20aaadb5
ddb47ec3e499144636e497dbc9a66c349a0807f3cf00ad5636b175d0ffdf8d83
GET /static/custom/pravovest/base/img/icon-laurel-3.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:21:04 GMT
content-type: image/png
content-length: 3293
last-modified: Thu, 15 Jul 2021 14:00:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "60f03f72-cdd"
expires: Wed, 08 Feb 2023 12:12:58 GMT
age: 491316
X-Firefox-Spdy: h2
base.garant.ru/static/custom/pravovest/base/img/drujinina.png
200 OK 34 kB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/img/drujinina.png
IP
File type PNG image data, 187 x 164, 8-bit/color RGBA, non-interlaced\012- data
Hash 109bcf074dba5d6f5c3aa5cb39809c39
13271f242580f772e1ba14186b5deb3eb4ac654c
de3cb9a5a3bd58c2c046c4d9e8d929100c2a097392a1ee51eea68640bb795865
GET /static/custom/pravovest/base/img/drujinina.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 01:05:42 GMT
content-type: image/png
content-length: 33537
last-modified: Thu, 15 Jul 2021 14:00:18 GMT
etag: "60f03f72-8301"
expires: Wed, 08 Feb 2023 01:05:42 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 531838
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/static/garant/css/fancybox/jquery.fancybox.css
200 OK 1.4 kB URL HTTP/2 base.garant.ru/static/garant/css/fancybox/jquery.fancybox.css
IP
Hash ae785039495f3cf1db364c7edef1d277
7d61df99d66240e80361b206deddd48aab8684b1
c2e5bcb08f5a84d7b57878d3a3087cecc4dd6621b4487e8fcf4822e897ef8ae0
GET /static/garant/css/fancybox/jquery.fancybox.css HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:05:31 GMT
content-type: text/css
last-modified: Mon, 20 Jun 2016 14:22:20 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
content-length: 1366
ddg-cache-status: HIT,HIT
etag: "5767fc1c-1461"
expires: Fri, 03 Feb 2023 10:11:26 GMT
age: 492249
X-Firefox-Spdy: h2
base.garant.ru/static/garant/css/user/login.css
200 OK 1.5 kB URL HTTP/2 base.garant.ru/static/garant/css/user/login.css
IP
File type ASCII text, with CRLF line terminators
Hash b04d165ea08c91b87ac242b357b0c0e2
b59aff23e1ee00403a16d5d77b7943a439046896
66a4f604fc6febd2d1b57d933b79c3f893aa395ac9e39085827ac2a502b1805f
GET /static/garant/css/user/login.css HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:04:33 GMT
content-type: text/css
last-modified: Fri, 12 Jul 2019 13:09:15 GMT
cache-control: max-age=604800
content-encoding: br
vary: Accept-Encoding
content-length: 1515
ddg-cache-status: HIT,HIT
etag: "5d28867b-1bf7"
expires: Wed, 08 Feb 2023 12:04:28 GMT
age: 492307
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 07 Feb 2023 04:07:20 GMT
age: 2540
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14238
Expires: Tue, 07 Feb 2023 08:46:58 GMT
Date: Tue, 07 Feb 2023 04:49:40 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 70d7e4cd91d9f630c160410d22c1cede
82f5d0fbb11bcde09c107b6c1cbc6e014bb08b85
b8679be6c92167c51793ca4a8774caf0a50949737a99652243208fcfda917faf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:49:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleoptimize.com/optimize.js?id=OPT-PMNNFCX
200 OK 43 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-PMNNFCX
IP
File type ASCII text, with very long lines (1759)
Hash c5d9134f69d1c73090aeea02ffecb483
72e93bf310579ff4c5727e28d14ac09d50ddecc6
8e42c3d10a9a359686caf616de3fe37a137d2544b5e93409b910034f37851e4d
GET /optimize.js?id=OPT-PMNNFCX HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 Feb 2023 04:49:40 GMT
expires: Tue, 07 Feb 2023 04:49:40 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43189
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ad2d72821808ee5f77c0598fed0f8bd1
adcd92881d1c5ac3cca4687dc6347369240f4726
c7ce86611bf0b0063c0bcb2c6a6a4b85fe6be2d89e382b8907e8bbb2e1e5962d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:49:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 70d7e4cd91d9f630c160410d22c1cede
82f5d0fbb11bcde09c107b6c1cbc6e014bb08b85
b8679be6c92167c51793ca4a8774caf0a50949737a99652243208fcfda917faf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:49:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
200 OK 41 kB URL HTTP/2 base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
IP
Hash c8afe98bc9a026f8f5d68dbd05c51256
ac7308b412d5006f66d1972ef39313481208aca6
a142662901d2c5c26d45ae4a4260662dca931c9dcda048c396831b9f50b817c1
GET /10900200/11e2106fa4ec328ea2d88df540010b52/ HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: ddos-guard
date: Tue, 07 Feb 2023 04:49:40 GMT
content-type: text/html; charset=windows-1251
expires: Mon, 26 Jul 1997 05:00:00 GMT
last-modified: Tue, 07 Feb 2023 04:49:39 GMT
pragma: no-cache
set-cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; Domain=.garant.ru; HttpOnly; Path=/; Expires=Wed, 07-Feb-2024 04:49:39 GMT
garantId=d497bbdea6a211ed9cd9b88303828b09; expires=Sun, 06-Feb-2028 04:49:39 GMT; Max-Age=157680000; path=/; domain=.garant.ru
attnq=URsnIDEwc3V8dgBKdHUlJTYgd3YCS3R3cXM%3D; path=/10900200/; HttpOnly
cache-control: private, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ad2d72821808ee5f77c0598fed0f8bd1
adcd92881d1c5ac3cca4687dc6347369240f4726
c7ce86611bf0b0063c0bcb2c6a6a4b85fe6be2d89e382b8907e8bbb2e1e5962d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:49:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
base.garant.ru/static/base/img/top-panel-link.png?v=2
200 OK 3.0 kB URL HTTP/2 base.garant.ru/static/base/img/top-panel-link.png?v=2
IP
File type PNG image data, 340 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 77a3a9126f4207485ca027aa71a9d851
f11b7c356cb5ea4a7198f9cf8e037cd02fd5fbbe
46684be6bee1bd575e4ea3db399e3f8812c8100a5809617c05bb450b65bb68f9
GET /static/base/img/top-panel-link.png?v=2 HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/static/base/css/base.css?734
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:05:32 GMT
content-type: image/png
content-length: 2999
last-modified: Tue, 18 Apr 2017 13:51:29 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "58f619e1-bb7"
expires: Wed, 08 Feb 2023 12:05:28 GMT
age: 492248
X-Firefox-Spdy: h2
base.garant.ru/static/base/img/logo.png
200 OK 7.3 kB URL HTTP/2 base.garant.ru/static/base/img/logo.png
IP
File type PNG image data, 131 x 52, 8-bit/color RGBA, non-interlaced\012- data
Hash ff93398ce419c2fdc03ba0385ac64ad3
a97b25cc313e5ae94ac261c133c5bee8deef550a
ca60da02cf2431987f60846ea5fba713baacf5f4c2a68df57f667c3dc18b0c3b
GET /static/base/img/logo.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/static/base/css/base.css?734
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 17:29:46 GMT
content-type: image/png
content-length: 7281
last-modified: Fri, 22 Jan 2021 10:51:21 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "600aae29-1c71"
expires: Thu, 02 Feb 2023 18:11:02 GMT
age: 472794
X-Firefox-Spdy: h2
base.garant.ru/images/nalog/close.jpg
200 OK 1.5 kB URL HTTP/2 base.garant.ru/images/nalog/close.jpg
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 24x24, components 3\012- data
Hash cc2c61893269efdf34fbd5b4ac574b07
9b564e80d6a9068469c351592de2cc7b1c11e690
55d6e8f237db3c9a118cb99ffce32737dddab5540a8591af6016bb499fa168a1
GET /images/nalog/close.jpg HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:06:42 GMT
content-type: image/jpeg
content-length: 1480
last-modified: Mon, 20 Jun 2016 14:22:27 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5767fc23-5c8"
expires: Wed, 01 Feb 2023 13:38:32 GMT
age: 492178
X-Firefox-Spdy: h2
base.garant.ru/static/base/img/tabBg.png
200 OK 1.0 kB URL HTTP/2 base.garant.ru/static/base/img/tabBg.png
IP
File type PNG image data, 4 x 36, 8-bit/color RGB, non-interlaced\012- data
Hash c8c73dd430377d31f6e49cad7506699f
f56adb98bf2d4b6ff6a1f6c8d0aa8e98bfe65922
2f57e157a993d0719c5576ad99e2159a7e7d29f530cfaa441d25af9890e17142
GET /static/base/img/tabBg.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/static/base/css/base.css?734
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:09:55 GMT
content-type: image/png
content-length: 1004
last-modified: Mon, 20 Jun 2016 14:22:20 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5767fc1c-3ec"
expires: Wed, 01 Feb 2023 14:15:33 GMT
age: 491986
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0a8ea253ef61b5c330b3285f9a94e6ae
0cf9a1c66c83f505c7195774996b107c145f5884
8b6bca0cd9c9adcb16bba03349e8fcbfcd645719c82c95f0111095b731842402
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:49:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
base.garant.ru/static/custom/pravovest/base/img/icon-idea.png
200 OK 5.1 kB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/img/icon-idea.png
IP
File type PNG image data, 96 x 91, 8-bit/color RGBA, non-interlaced\012- data
Hash 23ce04d42991d76cd4458b68564f2a9d
5c48ff10b8dc966abbe6ad8fc02188105df52da7
bc92d8bccfca4bad45a3f8887ab6925829a9bf63eddfc9292b8e2ce0f906e2f8
GET /static/custom/pravovest/base/img/icon-idea.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/static/custom/pravovest/base/css/base.css?734
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 10:25:48 GMT
content-type: image/png
content-length: 5083
last-modified: Thu, 15 Jul 2021 14:00:18 GMT
etag: "60f03f72-13db"
expires: Wed, 08 Feb 2023 10:25:48 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 498233
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
base.garant.ru/static/custom/pravovest/base/img/bg.png
200 OK 1.6 MB URL HTTP/2 base.garant.ru/static/custom/pravovest/base/img/bg.png
IP
File type PNG image data, 2560 x 1440, 8-bit/color RGBA, non-interlaced\012- data
Size 1.6 MB (1571388 bytes)
Hash a9fd5b44c1b6466c0aef145db11709d4
136422454532e60e1ec6be95d80b057c2c0a55d1
b9ab0333786ee1745b7aa10ff499bdd7691821e8577e9bb6fc96a5c08d39016a
GET /static/custom/pravovest/base/img/bg.png HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/static/custom/pravovest/base/css/base.css?734
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:21:05 GMT
content-type: image/png
content-length: 1571388
last-modified: Thu, 15 Jul 2021 14:00:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "60f03f72-17fa3c"
expires: Tue, 07 Feb 2023 19:54:44 GMT
age: 491315
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: edM3qxo7VovE3eUlv8+VEw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Mr4/DkBZsmtEoKbkTKC3TI5m5Xg=
api.mindbox.ru/scripts/v1/tracker.js
200 OK 20 kB URL HTTP/1.1 api.mindbox.ru/scripts/v1/tracker.js
IP
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (50002)
Hash 0785d52bf81361cb68cfad788e972cd6
d32bed57bbf1069a8f4a0a5d15a669e254f927b9
feeb4fc92be73b0dc42ec153276dd1720444e0bc14176ebe7bff0c57d916f6bc
GET /scripts/v1/tracker.js HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: public,max-age=604800
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Tue, 07 Feb 2023 04:49:40 GMT
etag: W/"955b21457f057e8014f21aee64e44d54"
feature-policy: vibrate 'self'
last-modified: Fri, 03 Feb 2023 10:29:40 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 8d0bb4dcb860a1e3
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0a8ea253ef61b5c330b3285f9a94e6ae
0cf9a1c66c83f505c7195774996b107c145f5884
8b6bca0cd9c9adcb16bba03349e8fcbfcd645719c82c95f0111095b731842402
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:49:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 04:40:14 GMT
expires: Wed, 07 Feb 2024 04:40:14 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 566
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data
Hash d9ac47c7e500fb7083b8d595eaf6fe12
112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933
495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 12:24:15 GMT
expires: Thu, 01 Feb 2024 12:24:15 GMT
cache-control: public, max-age=31536000
age: 491125
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 6d34fbda78c465a3f0cdc76143684b4f
c5bc8459fc7a381104f0f5855d2461f46968f2d0
24b117e390340542581c5901c1c54716d7e9bc1fb1922eb4292d2042af7e5967
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2635
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:49:40 GMT
Last-Modified: Tue, 07 Feb 2023 04:05:45 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0a8ea253ef61b5c330b3285f9a94e6ae
0cf9a1c66c83f505c7195774996b107c145f5884
8b6bca0cd9c9adcb16bba03349e8fcbfcd645719c82c95f0111095b731842402
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:49:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.mindbox.ru/v1.1/customer/track-visit?version=1.0.418&transport=XmlHttpRequest
200 OK 134 B URL HTTP/1.1 api.mindbox.ru/v1.1/customer/track-visit?version=1.0.418&transport=XmlHttpRequest
IP
ASN #200350 Yandex.Cloud LLC
File type JSON data\012- , ASCII text, with no line terminators
Hash e936344e89b6f7721536003db6aa3c09
3ffa6fe92e62c5da9018f21b95d5bc591349edfe
05f81de9fd028fdfbfff49d59ffc86e99a461c08066188722dc1ea5b92cc2961
POST /v1.1/customer/track-visit?version=1.0.418&transport=XmlHttpRequest HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 173
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://base.garant.ru
cache-control: no-cache, no-store, must-revalidate
content-length: 134
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/json; charset=utf-8
date: Tue, 07 Feb 2023 04:49:40 GMT
expires: -1
feature-policy: vibrate 'self'
pragma: no-cache
referrer-policy: same-origin
server: Kestrel
set-cookie: deviceUUID=d35bffe1-aa99-4011-a14e-2f823dbb3f9a; expires=Tue, 19 Jan 2038 00:00:00 GMT; path=/; secure; samesite=none; httponly
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
api.mindbox.ru/js/bydomain/base.garant.ru.js?_=465484
322 status code 322 0 B URL HTTP/1.1 api.mindbox.ru/js/bydomain/base.garant.ru.js?_=465484
IP
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/bydomain/base.garant.ru.js?_=465484 HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://base.garant.ru/
Origin: https://base.garant.ru
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 322 status code 322
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-length: 0
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Tue, 07 Feb 2023 04:49:41 GMT
feature-policy: vibrate 'self'
location: https://personalization-web-stable.mindbox.ru/init/unknown?_=465484
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method,Origin
x-amz-request-id: 8f115b73ed13e723
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
api.mindbox.ru/js/bydomain/*.garant.ru.js?_=465484
200 OK 1.1 kB URL HTTP/1.1 api.mindbox.ru/js/bydomain/*.garant.ru.js?_=465484
IP
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (2266)
Hash a6e334c891e1ce81e12475122e173dd3
bc5ae1ee78a6474cd4f3fbaa22e5a4ff657b8368
db155abde77b267a5714a6387bf6a7bca989582a71b179576c5f160813ee1a82
GET /js/bydomain/*.garant.ru.js?_=465484 HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://base.garant.ru/
Origin: https://base.garant.ru
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Tue, 07 Feb 2023 04:49:41 GMT
etag: W/"fa301896e4a52e396b5c1b8d8cbe6988"
feature-policy: vibrate 'self'
last-modified: Mon, 06 Feb 2023 22:20:31 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method,Origin
x-amz-request-id: 1210fc532db38fe7
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash a69f9cfc6ce6ae7612ac4985a5734d86
12a1484b007cc5b911c6076602d8c96766520bdf
153bc67d504f0a053a8c32f6af61a9a259a2d90fa6e126000caa33adde6b40c5
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sat, 11 Feb 2023 03:08:25 GMT
ETag: "12a1484b007cc5b911c6076602d8c96766520bdf"
Last-Modified: Tue, 07 Feb 2023 03:08:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3495
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79598017bdcdb512-OSL
kraken.rambler.ru/userip
200 OK 12 B IP
ASN #24638 Rambler Internet Holding LLC
File type ASCII text, with no line terminators
Hash 35b0bce9d250429df012c0426f88d0bd
f81d80af9cbeb0011316fbba3da8002b32251f7a
da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d
GET /userip HTTP/1.1
Host: kraken.rambler.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.4
date: Tue, 07 Feb 2023 04:49:41 GMT
content-type: application/octet-stream
content-length: 12
access-control-allow-origin: https://base.garant.ru
x-srv: 1kraken-prod0003.ad.rambler.tech
set-cookie: ruid=1CIAAGXY4WOimwqpAZjDbgB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
proto_uid=1CIAAGXY4WOimwqpAZjDbgB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 07 Feb 2023 03:45:20 GMT
expires: Tue, 07 Feb 2023 05:45:20 GMT
cache-control: public, max-age=7200
age: 3861
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash e54b65524bd3d472c81af132f49e8915
809a47295a081960eb24c20a58bcc006850127f1
4e96ac5ff0e027e43c4a5563038f62dcd93074cb0caee383c499844afc80f694
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:41 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 11 Feb 2023 02:10:37 GMT
ETag: "809a47295a081960eb24c20a58bcc006850127f1"
Last-Modified: Tue, 07 Feb 2023 02:10:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 629
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 795980189ea1b512-OSL
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash f4450f8cffedac796b59da718238ea73
fb19794c91735a3666e0b72822ffe4f8814bb14e
0d450a0759e3c9081a417b6d78208889d9dbc7add1f1004fc6f1938f2e8babcd
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 11 Feb 2023 00:46:56 GMT
ETag: "fb19794c91735a3666e0b72822ffe4f8814bb14e"
Last-Modified: Tue, 07 Feb 2023 00:46:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2169
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 795980189fcbb4ff-OSL
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash f4450f8cffedac796b59da718238ea73
fb19794c91735a3666e0b72822ffe4f8814bb14e
0d450a0759e3c9081a417b6d78208889d9dbc7add1f1004fc6f1938f2e8babcd
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 11 Feb 2023 00:46:56 GMT
ETag: "fb19794c91735a3666e0b72822ffe4f8814bb14e"
Last-Modified: Tue, 07 Feb 2023 00:46:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2169
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7959801899400b41-OSL
ocsp.globalsign.com/gseccovsslca2018
200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash b9426408ee042c702c4c4c75c776d0c4
31f9b41410de140f0236193a5e5ccf82c3bdf76b
b5ac0adb7a45db8ab75c3471284506a8b6eeb18ce6655025addbc070b3621a25
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:41 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 11 Feb 2023 03:24:17 GMT
ETag: "31f9b41410de140f0236193a5e5ccf82c3bdf76b"
Last-Modified: Tue, 07 Feb 2023 03:24:18 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1926
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 795980189eb1b512-OSL
ocsp.globalsign.com/gseccovsslca2018
200 OK 939 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 3a7709f985eb3cf97369f395d0acb035
c0d43ebdfa908951f0c0ea43a4fc261cc0e5f58c
6c3af5743ee88b1c9fe79aa7c77a69d99ceede473ad63fd5f923637bd5879329
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:41 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Sat, 11 Feb 2023 01:15:48 GMT
ETag: "c0d43ebdfa908951f0c0ea43a4fc261cc0e5f58c"
Last-Modified: Tue, 07 Feb 2023 01:15:49 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1561
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79598018cee0b512-OSL
mc.yandex.ru/metrika/watch.js
200 OK 58 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (554)
Hash ed81fe3b115748a0dc0e2dd577438754
c44dde49d7e41ebe6d180c6b6199a14a6d08abba
828879505bdf468df9f805eca1f6b4be9f2c90cde925c5cd890a4dda31408c74
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 58066
date: Tue, 07 Feb 2023 04:49:41 GMT
access-control-allow-origin: *
etag: "63c93a4b-e2d2"
expires: Tue, 07 Feb 2023 05:49:41 GMT
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
yandex.ru/ads/system/context.js
200 Ok 83 kB URL HTTP/1.1 yandex.ru/ads/system/context.js
IP
File type ASCII text, with very long lines (65492)
Hash 8ea65178bf6f88337536c078d71c8ca7
e29e6ee2520ed85c37173e03aef29281ae83f4e9
720b132e6c2e464ec6c6832f9850624008cb87678a77d2720ebcbad11ded980f
GET /ads/system/context.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=3600
Content-Encoding: br
Content-Type: text/javascript; charset=utf-8
Expires: Tue, 07 Feb 2023 05:49:41 GMT
Keep-Alive: timeout=600
NEL: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
Report-To: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
Set-Cookie: i=4MKcwSn4spcE3P/DEACYLr6lr/jmCCsONM8C+A5VR7gO7AcoNh7cRfMYKhRcfVgRYXcJr8P2IISD4eBr1EENlKtKVJI=; Expires=Thu, 06-Feb-2025 04:49:41 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=4221552601675745381; Path=/; Domain=.yandex.ru; Expires=Wed, 07 Feb 2024 04:49:41 GMT; SameSite=None; Secure; HttpOnly
Timing-Allow-Origin: *
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex, noarchive, nofollow
X-Yandex-Req-Id: 1675745381242760-6637840115495693234-balancer-l7leveler-kubr-yp-vla-9-BAL-7786
personalization-web-stable.mindbox.ru/js/service/styles.css?v=4.23.6
200 OK 1.0 kB URL HTTP/1.1 personalization-web-stable.mindbox.ru/js/service/styles.css?v=4.23.6
IP
ASN #200350 Yandex.Cloud LLC
Hash 6bae61ea5c2d3e70d94e8adaf73c51e0
7d56056c6385791e04693e3395ee9613f7129dd0
da32ccad4223720806394ed9b8370711ee572a8af82e97cd6a1682b6e42cbfdd
GET /js/service/styles.css?v=4.23.6 HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: text/css
date: Tue, 07 Feb 2023 04:49:41 GMT
etag: W/"91c1a275fc417269d08f8b40cd0e859d"
feature-policy: vibrate 'self'
last-modified: Thu, 19 Jan 2023 18:28:34 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 9102dff28dd02788
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
counter.yadro.ru/logo;garant-ru?42.11
200 OK 443 B URL HTTP/1.1 counter.yadro.ru/logo;garant-ru?42.11
IP
ASN #39134 United Network LLC
File type GIF image data, version 87a, 31 x 31\012- data
Hash 862df0eb2c34a66554c9402380e2e79d
f319d2a886e8c4e225ee8b21aa488da69c4f4fa5
f27a468a3c194582146fea73acb94b2adaf526259ebaf6a9ba00cc48707f8d09
GET /logo;garant-ru?42.11 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 07 Feb 2023 04:49:41 GMT
Content-Type: image/gif
Content-Length: 443
Connection: keep-alive
Last-Modified: Sun, 09 Sep 2001 01:46:40 GMT
Expires: Tue, 06 Feb 2024 21:00:00 GMT
Strict-Transport-Security: max-age=86400
counter.yadro.ru/hit;garant-ru?r;s1280*1024*24;uhttps%3A//base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/;0.9298088404863559
200 OK 43 B URL HTTP/1.1 counter.yadro.ru/hit;garant-ru?r;s1280*1024*24;uhttps%3A//base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/;0.9298088404863559
IP
ASN #39134 United Network LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit;garant-ru?r;s1280*1024*24;uhttps%3A//base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/;0.9298088404863559 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 07 Feb 2023 04:49:41 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Sun, 06 Feb 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
personalization-web-stable.mindbox.ru/js/service/forms.js?v=4.23.6
200 OK 126 kB URL HTTP/1.1 personalization-web-stable.mindbox.ru/js/service/forms.js?v=4.23.6
IP
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (48464)
Size 126 kB (126139 bytes)
Hash b4a1bc64cd6b100e62d05996e3937525
7d553987767f2c149300bb8dcdbcd95f2ba80920
e3beee08dc758f34bcb2a34932feaabe53197c437157724796e101bea3bccfc7
GET /js/service/forms.js?v=4.23.6 HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Tue, 07 Feb 2023 04:49:41 GMT
etag: W/"202d017f5746dd99976a55fd5e57b8b8"
feature-policy: vibrate 'self'
last-modified: Thu, 19 Jan 2023 18:28:34 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 31bca32db24d47f8
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 4e38899465309e67e9971bb4c5c5ac93
dd81f48f22f6b37e8c860f789272575a64f23846
4a95b09511af2f306245077aa91b320613fdc3868e105318654268da14ea4e5e
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:41 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sat, 11 Feb 2023 02:55:47 GMT
ETag: "dd81f48f22f6b37e8c860f789272575a64f23846"
Last-Modified: Tue, 07 Feb 2023 02:55:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1386
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7959801ab835b512-OSL
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 4e38899465309e67e9971bb4c5c5ac93
dd81f48f22f6b37e8c860f789272575a64f23846
4a95b09511af2f306245077aa91b320613fdc3868e105318654268da14ea4e5e
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:41 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sat, 11 Feb 2023 02:55:47 GMT
ETag: "dd81f48f22f6b37e8c860f789272575a64f23846"
Last-Modified: Tue, 07 Feb 2023 02:55:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1386
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7959801abe73fac0-OSL
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 4e38899465309e67e9971bb4c5c5ac93
dd81f48f22f6b37e8c860f789272575a64f23846
4a95b09511af2f306245077aa91b320613fdc3868e105318654268da14ea4e5e
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:41 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sat, 11 Feb 2023 02:55:47 GMT
ETag: "dd81f48f22f6b37e8c860f789272575a64f23846"
Last-Modified: Tue, 07 Feb 2023 02:55:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1386
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7959801ac839b512-OSL
ocsp.globalsign.com/gseccovsslca2018
200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP
Hash 4e38899465309e67e9971bb4c5c5ac93
dd81f48f22f6b37e8c860f789272575a64f23846
4a95b09511af2f306245077aa91b320613fdc3868e105318654268da14ea4e5e
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:41 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Sat, 11 Feb 2023 02:55:47 GMT
ETag: "dd81f48f22f6b37e8c860f789272575a64f23846"
Last-Modified: Tue, 07 Feb 2023 02:55:48 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1386
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7959801ace76fac0-OSL
kraken.rambler.ru/cnt/?et=pv&v=3.13.7&pid=44507&tid=t1.44507.1521833750.1675745429101&rid=1675745429.101-482255124&fid=pA8AAENKs1e4GYz8AQlryQA%3D&fip=pA8AAENKs1cnnUv2AauVQAA%3D&eid=113154293334506&aduid=9e8ddd3f-2f09-4b81-b179-b3f871bd23d1&aduidsc=garant.ru&stid=1720373762_1675745429104&sn=1&sen=1&ce=1&bs=1268x927&rf&en=windows-1251&pt=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&sr=1280x1024&cd=24-bit&la=en-US&ja=0&acn=Mozilla&an=Netscape&pl=Linux%20x86_64&tz=0&ct=web&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&lv&exp=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&rn=1693946715
200 OK 43 B URL HTTP/2 kraken.rambler.ru/cnt/?et=pv&v=3.13.7&pid=44507&tid=t1.44507.1521833750.1675745429101&rid=1675745429.101-482255124&fid=pA8AAENKs1e4GYz8AQlryQA%3D&fip=pA8AAENKs1cnnUv2AauVQAA%3D&eid=113154293334506&aduid=9e8ddd3f-2f09-4b81-b179-b3f871bd23d1&aduidsc=garant.ru&stid=1720373762_1675745429104&sn=1&sen=1&ce=1&bs=1268x927&rf&en=windows-1251&pt=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&sr=1280x1024&cd=24-bit&la=en-US&ja=0&acn=Mozilla&an=Netscape&pl=Linux%20x86_64&tz=0&ct=web&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&lv&exp=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&rn=1693946715
IP
ASN #24638 Rambler Internet Holding LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cnt/?et=pv&v=3.13.7&pid=44507&tid=t1.44507.1521833750.1675745429101&rid=1675745429.101-482255124&fid=pA8AAENKs1e4GYz8AQlryQA%3D&fip=pA8AAENKs1cnnUv2AauVQAA%3D&eid=113154293334506&aduid=9e8ddd3f-2f09-4b81-b179-b3f871bd23d1&aduidsc=garant.ru&stid=1720373762_1675745429104&sn=1&sen=1&ce=1&bs=1268x927&rf&en=windows-1251&pt=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&sr=1280x1024&cd=24-bit&la=en-US&ja=0&acn=Mozilla&an=Netscape&pl=Linux%20x86_64&tz=0&ct=web&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&lv&exp=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&rn=1693946715 HTTP/1.1
Host: kraken.rambler.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.4
date: Tue, 07 Feb 2023 04:49:41 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
pragma: no-cache
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: content-type
access-control-allow-credentials: true
x-srv: 1kraken-prod0003.ad.rambler.tech
set-cookie: ruid=1CIAAGXY4WPPm66zAUC1bgB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
proto_uid=1CIAAGXY4WPPm66zAUC1bgB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
X-Firefox-Spdy: h2
yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
200 OK 26 kB URL HTTP/2 yastatic.net/s3/home/fonts/ys/3/text-variable-full.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 26004, version 1.0\012- data
Hash 7f0cdaf91230f9789ca4162aedff612e
965de571aa794dab64076c3cc64dc8894b843f23
033696b7f1ac04d1dcc102be84550e146236ceffc25a6cabc12aa51a6ee410b9
GET /s3/home/fonts/ys/3/text-variable-full.woff2 HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 07 Feb 2023 04:49:41 GMT
content-type: font/woff2
content-length: 26004
access-control-allow-origin: *
cache-control: public, max-age=31556952
etag: "7f0cdaf91230f9789ca4162aedff612e"
expires: Wed, 07 Feb 2024 10:36:37 GMT
last-modified: Mon, 25 Apr 2022 14:02:39 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-amz-meta-owner: {"role":"admin","login":"4eb0da"}
x-nginx-request-id: 15d2b830f4631129
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/716043/0ff0b6319a1aadb8b00d.js
200 OK 24 kB URL HTTP/2 yastatic.net/partner-code-bundles/716043/0ff0b6319a1aadb8b00d.js
IP
File type ASCII text, with very long lines (65494)
Hash 5d29968bb46055943c2db2d4205797bf
51cb5c66e80cf6a1f135a4922d5fd120bf145974
d3bec2a3bb2d81a15e8b431c184c5d07e7b176efbb2ddbcab0b75b8b472d9451
GET /partner-code-bundles/716043/0ff0b6319a1aadb8b00d.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 07 Feb 2023 04:49:41 GMT
content-type: text/javascript; charset=utf-8
content-length: 23531
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "5d29968bb46055943c2db2d4205797bf"
expires: Thu, 06 Feb 2053 11:23:34 GMT
last-modified: Thu, 02 Feb 2023 14:36:26 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/safeframe-bundles/0.83/host.js
200 OK 8.9 kB URL HTTP/2 yastatic.net/safeframe-bundles/0.83/host.js
IP
File type ASCII text, with very long lines (33703), with no line terminators
Hash f80882bf67cf261aa08d636da095149a
3e5bf3fbdb45c9696f9b925d3e71b2e9777c82cd
4794febaad77bf94edba1c860dbcf9612722ad0a18b95831dad359b0bba4bed6
GET /safeframe-bundles/0.83/host.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 07 Feb 2023 04:49:41 GMT
content-type: text/javascript; charset=utf-8
content-length: 8878
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "f80882bf67cf261aa08d636da095149a"
expires: Thu, 06 Feb 2053 11:23:33 GMT
last-modified: Wed, 03 Nov 2021 13:42:58 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/716043/07cea2bf8567304efc16.js
200 OK 7.9 kB URL HTTP/2 yastatic.net/partner-code-bundles/716043/07cea2bf8567304efc16.js
IP
File type ASCII text, with very long lines (23593)
Hash 9e20c0213c1a25dded304a55c581b154
893a64811863a2d63ad12abf6c04d0c3b8a60a5b
27d7cdda3b34100a6bcabc26195471e0eac866e08111321b4fe8f63c66a0ec8a
GET /partner-code-bundles/716043/07cea2bf8567304efc16.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 07 Feb 2023 04:49:41 GMT
content-type: text/javascript; charset=utf-8
content-length: 7930
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "9e20c0213c1a25dded304a55c581b154"
expires: Thu, 06 Feb 2053 11:23:33 GMT
last-modified: Thu, 02 Feb 2023 14:36:26 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/716043/2ec9a88e40a26b53acde.js
200 OK 2.1 kB URL HTTP/2 yastatic.net/partner-code-bundles/716043/2ec9a88e40a26b53acde.js
IP
File type ASCII text, with very long lines (6989)
Hash 09997d8f01e586ad7fa18f4ef6592dcc
82ff24812894f0230f8c1e691a4cf98d02d28aa1
630f3c92319e83e4284a13a67789e26c788f741ce0d6c131fe68e180712bf570
GET /partner-code-bundles/716043/2ec9a88e40a26b53acde.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 07 Feb 2023 04:49:41 GMT
content-type: text/javascript; charset=utf-8
content-length: 2065
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "09997d8f01e586ad7fa18f4ef6592dcc"
expires: Thu, 06 Feb 2053 11:23:25 GMT
last-modified: Thu, 02 Feb 2023 14:36:26 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/716043/de9c4be8e88d42b2efb9.js
200 OK 113 kB URL HTTP/2 yastatic.net/partner-code-bundles/716043/de9c4be8e88d42b2efb9.js
IP
File type ASCII text, with very long lines (65497)
Size 113 kB (113366 bytes)
Hash 0736127f132f9c5d09ad0fb5d789a73a
f9203cd3a945aad6f790f8d2e286052c40d2fa50
9a14aedcb1039ca82f4ddfa1b338a50fd48ebe92a20c82c37dc2b85d0c6ac377
GET /partner-code-bundles/716043/de9c4be8e88d42b2efb9.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 07 Feb 2023 04:49:41 GMT
content-type: text/javascript; charset=utf-8
content-length: 113366
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "0736127f132f9c5d09ad0fb5d789a73a"
expires: Thu, 06 Feb 2053 11:23:25 GMT
last-modified: Thu, 02 Feb 2023 14:36:26 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
top-fwz1.mail.ru/counter?js=13;id=84008;u=https%3A//base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/;st=1675745428746;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=7efc8ec51f721d48;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675745429776%3A1675745429778%3A1%3Afedfd8e04d1eb11964cab7c8e461aa4d;opts=dl%2Cjst-gtag-ga-ym;visible=true;_=0.4213990411393952
302 Found 0 B URL HTTP/2 top-fwz1.mail.ru/counter?js=13;id=84008;u=https%3A//base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/;st=1675745428746;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=7efc8ec51f721d48;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675745429776%3A1675745429778%3A1%3Afedfd8e04d1eb11964cab7c8e461aa4d;opts=dl%2Cjst-gtag-ga-ym;visible=true;_=0.4213990411393952
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /counter?js=13;id=84008;u=https%3A//base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/;st=1675745428746;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=7efc8ec51f721d48;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675745429776%3A1675745429778%3A1%3Afedfd8e04d1eb11964cab7c8e461aa4d;opts=dl%2Cjst-gtag-ga-ym;visible=true;_=0.4213990411393952 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 07 Feb 2023 04:49:41 GMT
content-length: 0
location: https://top-fwz1.mail.ru/counter2?js=13;id=84008;u=https%3A//base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/;st=1675745428746;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=7efc8ec51f721d48;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1675745429776%3A1675745429778%3A1%3Afedfd8e04d1eb11964cab7c8e461aa4d;opts=dl%2Cjst-gtag-ga-ym;visible=true;_=0.4213990411393952
set-cookie: FTID=1RMYgQ0tkIIF:1675745381:84008:::; path=/; expires=Thu, 08-Feb-24 04:49:41 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
yandex.ru/ads/adfox/285002/getBulk/v2?dl=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&date=2023-02-07T04%3A50%3A29.667%2B00%3A00&pd=7&pdh=1024&pdw=1280&pr1=286715687&pr=4286165530&prr=&pv=4&pw=2&extid_loader=MTY3NTc0NTQzMDY3NDI4Njk4MQ%3D%3D&extid_tag_loader=base.garant.ru&ylv=0.716043&ybv=0.716043&ytt=146786413051909&is-turbo=0&skip-token=&ad-session-id=5897431675745429672&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A736%2C%22h%22%3A0%2C%22width%22%3A736%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A271%2C%22top%22%3A372%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%2C%22ad_no%22%3A0%7D&enable-flat-highlight=1&pcode-version=716043&available-width=736&yaru=true&pp=g&ps=flvx&p2=hmni&slotNumber=1&bids=W10%3D&utf8=%E2%9C%93&duid=MTY3NTc0NTQzMDY3NDI4Njk4MQ%3D%3D&pcode-test-ids=657518%2C0%2C24%3B706837%2C0%2C49%3B711102%2C0%2C33%3B716614%2C0%2C88%3B716710%2C0%2C2%3B717980%2C0%2C61%3B709005%2C0%2C87%3B715192%2C0%2C2%3B716043%2C0%2C61%3B681848%2C0%2C60%3B715858%2C0%2C79&pcode-flags-map=eJytWNtu2zgQ%2FZWFn4uu7pe%2BURJlE5ZELUnZdYuCcFs38SKXRZp0syn67zsUZVuSHbrpLlCkjuI5HM6cOTOj7xMyrSjDsiSc40xmSCBZI4ZKLnPK5IJkmEpSyZSWCZ28ef998m199bCZvJlsHv%2BavJrcb77ek8%2Fwqx9bnu9Pfnx4NVkgLhn%2Bo8FcyEWJapkzWkqU8YG9YA3uAwR26ERWC4ArlBR4dDh8yElFBAb%2F0jmfUSGXRMxoIyQC3wU3eRf4fhC5Lwb%2FP5BRUcia0axJBT8%2B5mXQGCBfmJceiMoLnLmEVMgCJbhooQAkQVWFmTk7get6Yd%2BXCi8ln4M1%2FFOAFGWYybpAqxHU2KHId%2BJ47xCpajTFkguSzlcyI1yBZ23UEpXaLKdv4THDqZAcF8UAGr%2Bth9Ch7RygGz70skJV3ZhvGduh5e0BxIxBtDBjKky55A1b4BWEHJI4lYTLCmiyQAXJzoA6gR%2FtQVGmor9SvO2QBNVl0tWMESy0Qi8KD2BFAR7SqljJukkKkkpUkzatkBIuoLLNaLZt%2BXavaEu6wJIWYEve4b0QqPL9eQ9tN%2FKsA%2BGELgrMOKHVwBK%2B6UTx0BZkxGltm4p0lGpvU9Z90%2Fu7h03PzHMiN9ZHqpxz3rJ6ZDPmYc9IxQrjStKEY0jxiL43649Xm4GlGzixzkFO3oJ0VnKGyXQmZCXMR3q%2BG%2Btwr1CV4beSNTKjJSKVUVqt0HGD%2FXkJo3NwFs6SUzbi3tjSDv0oOHmgKjXBSGI0d2wr0OXwDleOzBuoyiXJQBhJCVVrtPVsr5Pz1rarbJlQppLKUEYa%2FttPIqyQ8ls7DJxfopVRk33PDbs4Z7liLa9pBcQQpMRQdwNTx7Ksoa1nufrOdUozrIqU48oo1L7nA0xHJaVXDCvu7s6TSqaM5l4YOsfmIDnwc6mKCNj5Kwg7B0CkmkG2XOu0dYERq2SpJoIFYgSN7u0MDvUtq4tyzQhlRKxksoLWhJc1ZeaABWHQ1d6OF53Ep9zYPHwQ6KjHSBDhFIE%2BQ6NIU8gSN6iEH7u%2BbQ9sWxbz%2FRxRgzaTamoG8fxO3VLaVAKoLFY1lq7Za9Bsv5eekqUQJ04SUkDUzMfFYfCsJSi%2FTEH152dO32GUTSGI7vYSBDYn0GmJukSOUnM1x5EThj0%2FOhA9h0ADA7Kp1p%2FAWKMqRjBaFGfmAMvxXM26KUOJY%2F4uUNQ6fLdtT30D33Ys0%2FdPVL7tP2OxI8cMt%2B2H4QxzmJKN%2Ftm%2BE2hrNXAwnIPmzGAmmpLUbBe5ncC2swArVQUxXO36Xs1wYpb4ADTasQelBD2QAa8rqKYZhnwo2eYpUx2Oc6MSBXZse9qfnhGqa3WVKZSG2dixY3%2FgyYyI9ho9MAjmXFCzF27oOIO5N61LWeKMIAkgSJBF2%2BTNGLE73CbSOv3PGKPRPsM5gop64VTv%2BVYQDMLES8SEhNGqwQr8XJL8IAgOm5YeUkee6ZmVqrG3HVAlL854FdphV42pmr1p1bEQ5UrjSA6TINZDvpmOYRQH8X4UyxkBGJhOtT1pyfQC%2B2R%2BVOpHFkHsdpztWbx0fQ3C2LPCPQr0wUwhlOaTIy%2BwxydrkpnPcpxuyu0Vhprlfqo6osCz3Z1mwEgEiyVcFUgjXcfSM1rbE%2FS4dbzaHeGFkXt8CzE13wHSFB2sDpLPZQ3tBDor7LwLXI578uTLV3l%2F%2B%2FDpcrR2WZEzXi617J7IY7ean0kObF1d8erygi2wloK1Depcywzi2HO7HWZ4dF5QvVxpR8%2BARF1JPQfSMnUYnu2jvF4%2FysvN9uLy%2Fhk4UilJnuMEJRI2ApMTsM5G4aCutTQsZ0C5HvvUKqvX0QYaXrt6wzyGQSWN5R7altdNNoxJ3ftEAyOklo020K1CNdPZ2U3U03VfoHerVmlkO4D3zb5PvmzuP12W67uL7U3Xwq9vP26vNvzT%2Bmp7czF54%2FwY7pMwt%2FRIoDUW5nGZFIoJBRlus%2B8n1%2Bvt1eu7B%2FDtn%2FXN580jfP59e72%2B2HwdPLpYX7dPPj9tbvTX19%2B297f64%2FXr3i%2Bfb7bdU4W8R4AHd%2Bunq9uny%2B7PT3f6%2F4e79eubzd9fj77w5%2Fr2etuafjh9xX75HlJrTl%2Bw4%2FnAWPETnUk8WNq7xMOYslDzhp6fdwNMQSpIPiKFmjEpLBSjNwedaAzpGkTu4DVT%2B8pr%2F%2F5M5UvV0fgdm1kLgFy2tVuPeDYfr%2FhwmcD2RtdTT%2FpNOucdnTMMg27fHna%2FoSlUxUnTMwHdmfVlPaVczdUS2DvHAj6m0NoSUZ1czzKsos2HsGEcPQ%2B7JEWWgCIQbFyoeyhq5FjUiBiWSxtW6kFErNiyDgNLtzP8orXiKQK1mqnNi5SKbvvFo31fhYVqQgctM6vjL2C%2FADBp8hywcFnDrlYA4on7%2BobLdvZtT%2F%2BVgKmhQL%2FSkgKcKJAwdizQEjt2Du8%2BTtSJ5bkj1qonPz78%2BBfleSER&use-server-side-rendering=1&pcode-icookie=XOLOXyWrvVIDoCzhfLs2g4Z5j04FdxySnYBR7Cgz1%2BQiFYxFiFfslIA1dJ5cQsxiLrbwgu8Cj%2FIdHjI8XRQNvaX7a0E%3D&top-ancestor=https%3A%2F%2Fbase.garant.ru&top-ancestor-undetermined=0&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjoxOTN9ChLCtJDjuIUIAuriYcc_b53wtq6jNkUbS2jC2Th_bUdun0G_LkSm3_iN11ITWrLR7dDt507S2PQb65_H8I2Zxyz7A_SZAa4VhCpcVFVYmLe1TVJ8mrHAVVRBBSFQxecCz1Fw5RwFBzQOpm1RU9DZXJC4INtcSFxA2lwQuShcMQevIgAsV8QVqWwujyu2KzqTK-GicsVc9IoU9IpU_IjlFa3JlVYATS7GAYJe4eZxRRwsm4FrcnC5skP8KCQVFjGXz8F-qEyOQgcCTLUNUDYXILiAriwFdGUggADVsv3sAH9ZBFS4MPBJSOHAhUFGDhMOXHzo-KRkcIBlX4GLcJkAl4QMn9wmJichA5sRJhk0WATQCfGhExEz2rCIiPHJiPHBZgR2U5ARYUxpsMgAB3giApjQ3PRWPbVVXgb4WaFizwiV7WAEe4gwnyUI92JhE8EEHBy4MKEDwYZFSg4NGtiMgCcgJyQkI2CM0cEiJ4BpwyYnJvYip3_OKxoYVHDgksfIgQgmKSk9KXRisCoiaITkxI0Mnwyg8ekJCaCTkBNU6LggVEaicnA4kCsjFf8GfmWDoNJRdICickDj8ioSrH3sA0Pj4MBF-NzBGZKVc3Dq_x8KuU1v37srjBww_umVo_roCk39Rv1mhdlMoQdEuAjJ_-WVDQgrPRuglHL4RIT0FaxkpIwJBYlIKspnAsiVW5TnlgOa_Yw50D-54xiPgNwHRUyHyntlaoWGa9JXwI9Jz4MTGgDmoj2xDEiemvfMhRA0J6QAVj8GtcKL9x-64zMr17x6xsL_orwCF-iySPLnegd07BFUYPz6_b8gAUcRQQaNjAQ6MTkBtAoV8EdP0bEHj4O9jzD85E_NcJvQyMgJYMGoKIFIREBSIR4AeojUyz8-OezKfrhgkqbo6WGDiY9PRPwoSKE3CnJY-NCBQFYZBUrdLZDrhwCUC6glQ1LoFaRgkiZ8wyaoYIVFACYJ4fJdqQKnEgdq_Z_s6Ia5tHvEgwikdNVk-xDB_evfiPsT8knx70BYAXqkFXZAVkSSZJ7XSdozTx2CHYAqrLhLzrK_94MyYDakymy0Aw-qDfBABjKQ6WIQzzJiR-Orgud5oauTk6auJg01ggAMTQG5rbRulgw0x7G9V3zwo97M3UUJrigCrUUJPwIteNJP0pNObgsaGaxvjXlZr7vbP8aschUwiAjwGeHY4AX9YFi3n_FqRssIm5QIFlh-tDY0gFUqKwrCQpsFUo_Ye391kKB9y7_pWgfzX_6yTam0n8oVNkxbSUtLBRwkrpTOBhJwkCyLgr5yCuB1__dM93FY_7ij5V4kB7O-VPy0s-tWlN370_oNElfAxM_6CurKev5RYd6vsp9Fsh4xlTusfoPsmv-Pi2NW3RXL5mBWKGU3Co9VCOzKLLgICevvjyLAc_l09vVywfOWsqVuY-Xu2mj9cv24pC70M0VoL9rra3fwu-CEfZPphywqYweqaGkZg-Ut7Qo8Psujr-EwAYacgJwYHxCISEjqBgNcraijk6VgnHf9lwCwEt_TXXD8oNw356dLdk9XtArSnVM_a-oLwKjooTzJ49w8le0tViSSSno4P_YqAx6S7YJ35PczvOajDoqE5MR7hD1KUoING2gvckJ-t-EW3fIDkoHQRWwf5yb4ykzcSgpa16Gvb-rXPD_u9uWHjHc_lTxtvlNvLSpLEX25-63_EdS_4V1Bae4vtTTBo0V9x23-g0BoX7G-fRzvSuiZ49IDtlR6CvIfNtTn_MElPVS_JMdL3S1-PYufyoKh1LHw9yjzJtPEsFmQmOy2KEz-9CDEGObL7dlE2ZK8e6qi1PvjfWF60N8P9wAx6-wd4rrZu7VabQIcKJWiPzGPFsnIKoRah_-D90HDf4jMv_UKbI-7AvqdJTM-fEgzR3pocI4fvOGtEgjO3DLvPnZ3bA9hT5lemTUFGMqTcSXzP1rB_eNZ_SAEY8hDZCQmDVcssif7z3D9XngvnivUufmHsn4G1EPF93yb7_n3Z5iV1H_rMkHfgwVPovZxe0VGHgP1fVfjKmZp5fYRBfoj3XrlSGxOS9LV2fH77GY4spJ-jVkeVxdMreVibiKCcGjFl6_yNkH37eD_2E8NlTYS-_ro9krtJuUrZXaILzjdiz9_--bBdmk_Yymz8dcds8y3mtT6Cu3Myj3_-sFLsG5LZlMPmdC-U1j2i6bShrpPcxHcHlr0VeEumewGIO4i--q8ZtaiAxXuTKl0Z6BuOlp5O6hYHKCuFouYpSL15j-Cn3OloC1VopLWKlViJkJbGVWz4HVhSHkMuQrW3OJ1tlv8gHWo_ebVECPkvOx3-T2olkAwr7U_wdl33JjHQvNJ58hSXs7xoDXvvRg3lAVliIo259t2gNbzsiEOybSRZxKV65dRUYtFRhnFCEdJB2HL4WOa_H5YyvvKlbzHCvqyVdxU_qakuvqtjP6ZTDelBfcSeZezksukb9swutPnIVZTnWeNGhkVLVC6fGFufyYgnLfSMm72n4GSYqcSZtkmpbXbRG87x78wvdY0WXRxCySbBr7ylsBwgYbj3HB9fJwcLL3jtNRX0E5fuu14oudPI_i_8UpN35X_jZXpmLdHCcn1Km9Berk8xp1RQXwxt_vaH5ekFLU38DfP7qbEWxaovnDdWhMvZ60_wr5QAeFeJMttOG3-rB61sZoqBdbPt47XPgT09tbc3y0rsGeN6PhAre_b-v6ig_B85-e8SMO8fp5ydSP-f2S2_98yyz8znSdFx1RfZUVjNmjoegfuPvsjwqvp__317vwVgq_1RsWAp4o-NPlIDLnoBvp5QcSu1Nq7_dLt0oVszPTENkWaIKRsxuYwJKBOn0umTG5w2JOdDje7MDJf3n6M-GoaZe7p7gtQlW-8G2_5uo51oObi_nJ7cYKs8sDB-repOk9ELmVKqWKghzgiFXEtWZAD4og_x0O2tfCuQTf3DAEcOwt_7EK5A6_o1cgmYjapnbZZDc8_q29CXtr5PD0VTforGhQ5uFwIJVhL1a8QdoXj46i_9vxl3-3t7rus21OGQrrpfF7egQZlHNBQtxy7ola-sH3s-F7Gz3MzpHb-Rcyayrq8RpcGlykn30RAtlnc5M2Twm7y_l9XhRTlYKviPHgPuRLWN3q7sgF7IwEl736_ZheCVyClAyZOr8tLl6ih3srKb6b9x0WbG8qm4pV0PrjIyyL-pDxgN6U6G4mhm6Cl89bNyk7BvOEo99T4zcTLjeYuiKHZ03CKu2arV5SXcrYf9ZiOtnegFbqF0OzZGkOmmW1a2AcPqTPTsLRU-kvLMMG2KJirLamC5NKC35UlNQUN4laWlVelelnurjJxNhLKleZqpIJR1rEYd634XdoV7bsIiOiCZKIbcJ9XpHlT2luma_DWkzIL2rxfzPur_5leqNcTQG9QeObFkTdmslbr4lQdQduGenSDxXuMuJfMKaJRe5NXXIb1BuQnGf9BMPndhk1-1NQGhHJ7tG4kM40oiv2fONeqdHIjUWaryhf9O0DEhuJWNLlOXD6aF2Tq9OUHZDsNZpLlkPJ2KB_Nrm8wSbMHTaHZk1ccqL4lyH7yer8_cbAqf-jHcHn9M0DaVz89QUAJCj2hvTHG7yjXiX2HlTBevtFXxZw65tLAWzxE7Igio52KpTnTp-N3uPHG-gMA_4veVJSNx2NUlGi5ot868jNsb4H8yEv9CiWNr2PB00z1cEPK0RZ6rmUzyvbHb17S3EUrBGKVsx3eXT_fpRTFugu8iSe7RTyfys67tlm_5tQxY_MedyX7lN7mGbd_Lo4NwTJDtj9aRlYgGNdFK-HiBI_6Nrnpjy6RzxuSmIv8_PPMDZ4YzNonGMrUp6CfyfvXovx6XThL9AfadAaWUtqM59x-ean1S8Tug_uFSW18dyBMmcnqzcDTSy_sD-xMNu7LN5Ak45AnoHOnIUrkpiHBod0kRa8o8NrPqp_DomzMY4nrieKOBmWmv3j9nWPU2Rmu5g3fBH_SEPp1m07JEDdzJgYnxmRz_DJf6oJcoP5u4VxmG6cpvmH0-_LAozKUIesCs-dKBL7myE9__nxrcp55nNTh1Tu7SImFJ2GqyW0CR1HtO1jXKSTGBnNp-EWrRS5fq6tubN-tu3L89hLmoHXSduE4DFh_1PqZbwzkAs9cG8eNdOhmIczbPVOs3TNvy46ze95M4kyeEdCuN5uRC6LbJ7st3Ndd7DNjl7efdvpc6sju1DB2Y587dEtsSZf9eyjuQH0jufbzHU5j12RkP-8Oli1ysSHqtMsgQ8JZBxE8jxb8xEbVsrL7kYZq3I9Gmto0bOmq0dn4V1sG9ITGbjb63bgeB6N4LzB2MAKDXZAzOmIqW_Qbi4N8F_KN8SqwdrI2z8-gOJoTN7YrgyXvIXwGonQMDnXDs6wZkOk598KFR2q3Ho06TaendsK5RP3scC-fiTtkyRLi1raG3cviOR-8m60N-X_j0-LjJjamajA-aA-MSUPnd0xOEpcIazOub4085dGef5oVbK3jsm9He6PKiU-YHCjlpidCGtvQb7813s4GgS9iqij261H6nxqWe43bt4aBfB9sWonSYuc_TM8ONPAgoN192quos4kWFU1qfW8cftRIPPyQxtA-GRvU7I2wEHXFqIMV27o028n-aomCZZKMj5A_vlBffndBUldwclMQjPHOrgcpl-G6YckZ3KHR_zZ3J3elYjMn5MkfU9Oa0AqijDzkuYnH99Jz2vbWPkvQpnpRjImvPWc8vtgx4-VdMSGeQuv-ZniV4KKn6OcDh_Lu6Q6nXECVwehBz571q1muhFR35jJqyiWpAbaX0FTgSmhwJTSEK6ErSKnGR7578cmloB1vKBtRKS3k_7iR89Q311sR2WiLc6R_PW0dRZd1rc1-cIqcHmlnFS6KB1rHOTYDmYn8lCz2rsUmzjkojMaoiPdhRwhuPwu6xzI4BgGb_xuocNGuiKDZmlWwH1PRkSLwlzm4YamHpQq1BpNgQ0dJAi_NInpXHZRr-eY5RNwOyAxnezCD4q7foRvyYfX_lN4afOaz7PS_BRtRkV8sXn7WedeS&tga-with-creatives=1
200 Ok 1.3 kB URL HTTP/1.1 yandex.ru/ads/adfox/285002/getBulk/v2?dl=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&date=2023-02-07T04%3A50%3A29.667%2B00%3A00&pd=7&pdh=1024&pdw=1280&pr1=286715687&pr=4286165530&prr=&pv=4&pw=2&extid_loader=MTY3NTc0NTQzMDY3NDI4Njk4MQ%3D%3D&extid_tag_loader=base.garant.ru&ylv=0.716043&ybv=0.716043&ytt=146786413051909&is-turbo=0&skip-token=&ad-session-id=5897431675745429672&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A736%2C%22h%22%3A0%2C%22width%22%3A736%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A271%2C%22top%22%3A372%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%2C%22ad_no%22%3A0%7D&enable-flat-highlight=1&pcode-version=716043&available-width=736&yaru=true&pp=g&ps=flvx&p2=hmni&slotNumber=1&bids=W10%3D&utf8=%E2%9C%93&duid=MTY3NTc0NTQzMDY3NDI4Njk4MQ%3D%3D&pcode-test-ids=657518%2C0%2C24%3B706837%2C0%2C49%3B711102%2C0%2C33%3B716614%2C0%2C88%3B716710%2C0%2C2%3B717980%2C0%2C61%3B709005%2C0%2C87%3B715192%2C0%2C2%3B716043%2C0%2C61%3B681848%2C0%2C60%3B715858%2C0%2C79&pcode-flags-map=eJytWNtu2zgQ%2FZWFn4uu7pe%2BURJlE5ZELUnZdYuCcFs38SKXRZp0syn67zsUZVuSHbrpLlCkjuI5HM6cOTOj7xMyrSjDsiSc40xmSCBZI4ZKLnPK5IJkmEpSyZSWCZ28ef998m199bCZvJlsHv%2BavJrcb77ek8%2Fwqx9bnu9Pfnx4NVkgLhn%2Bo8FcyEWJapkzWkqU8YG9YA3uAwR26ERWC4ArlBR4dDh8yElFBAb%2F0jmfUSGXRMxoIyQC3wU3eRf4fhC5Lwb%2FP5BRUcia0axJBT8%2B5mXQGCBfmJceiMoLnLmEVMgCJbhooQAkQVWFmTk7get6Yd%2BXCi8ln4M1%2FFOAFGWYybpAqxHU2KHId%2BJ47xCpajTFkguSzlcyI1yBZ23UEpXaLKdv4THDqZAcF8UAGr%2Bth9Ch7RygGz70skJV3ZhvGduh5e0BxIxBtDBjKky55A1b4BWEHJI4lYTLCmiyQAXJzoA6gR%2FtQVGmor9SvO2QBNVl0tWMESy0Qi8KD2BFAR7SqljJukkKkkpUkzatkBIuoLLNaLZt%2BXavaEu6wJIWYEve4b0QqPL9eQ9tN%2FKsA%2BGELgrMOKHVwBK%2B6UTx0BZkxGltm4p0lGpvU9Z90%2Fu7h03PzHMiN9ZHqpxz3rJ6ZDPmYc9IxQrjStKEY0jxiL43649Xm4GlGzixzkFO3oJ0VnKGyXQmZCXMR3q%2BG%2Btwr1CV4beSNTKjJSKVUVqt0HGD%2FXkJo3NwFs6SUzbi3tjSDv0oOHmgKjXBSGI0d2wr0OXwDleOzBuoyiXJQBhJCVVrtPVsr5Pz1rarbJlQppLKUEYa%2FttPIqyQ8ls7DJxfopVRk33PDbs4Z7liLa9pBcQQpMRQdwNTx7Ksoa1nufrOdUozrIqU48oo1L7nA0xHJaVXDCvu7s6TSqaM5l4YOsfmIDnwc6mKCNj5Kwg7B0CkmkG2XOu0dYERq2SpJoIFYgSN7u0MDvUtq4tyzQhlRKxksoLWhJc1ZeaABWHQ1d6OF53Ep9zYPHwQ6KjHSBDhFIE%2BQ6NIU8gSN6iEH7u%2BbQ9sWxbz%2FRxRgzaTamoG8fxO3VLaVAKoLFY1lq7Za9Bsv5eekqUQJ04SUkDUzMfFYfCsJSi%2FTEH152dO32GUTSGI7vYSBDYn0GmJukSOUnM1x5EThj0%2FOhA9h0ADA7Kp1p%2FAWKMqRjBaFGfmAMvxXM26KUOJY%2F4uUNQ6fLdtT30D33Ys0%2FdPVL7tP2OxI8cMt%2B2H4QxzmJKN%2Ftm%2BE2hrNXAwnIPmzGAmmpLUbBe5ncC2swArVQUxXO36Xs1wYpb4ADTasQelBD2QAa8rqKYZhnwo2eYpUx2Oc6MSBXZse9qfnhGqa3WVKZSG2dixY3%2FgyYyI9ho9MAjmXFCzF27oOIO5N61LWeKMIAkgSJBF2%2BTNGLE73CbSOv3PGKPRPsM5gop64VTv%2BVYQDMLES8SEhNGqwQr8XJL8IAgOm5YeUkee6ZmVqrG3HVAlL854FdphV42pmr1p1bEQ5UrjSA6TINZDvpmOYRQH8X4UyxkBGJhOtT1pyfQC%2B2R%2BVOpHFkHsdpztWbx0fQ3C2LPCPQr0wUwhlOaTIy%2BwxydrkpnPcpxuyu0Vhprlfqo6osCz3Z1mwEgEiyVcFUgjXcfSM1rbE%2FS4dbzaHeGFkXt8CzE13wHSFB2sDpLPZQ3tBDor7LwLXI578uTLV3l%2F%2B%2FDpcrR2WZEzXi617J7IY7ean0kObF1d8erygi2wloK1Depcywzi2HO7HWZ4dF5QvVxpR8%2BARF1JPQfSMnUYnu2jvF4%2FysvN9uLy%2Fhk4UilJnuMEJRI2ApMTsM5G4aCutTQsZ0C5HvvUKqvX0QYaXrt6wzyGQSWN5R7altdNNoxJ3ftEAyOklo020K1CNdPZ2U3U03VfoHerVmlkO4D3zb5PvmzuP12W67uL7U3Xwq9vP26vNvzT%2Bmp7czF54%2FwY7pMwt%2FRIoDUW5nGZFIoJBRlus%2B8n1%2Bvt1eu7B%2FDtn%2FXN580jfP59e72%2B2HwdPLpYX7dPPj9tbvTX19%2B297f64%2FXr3i%2Bfb7bdU4W8R4AHd%2Bunq9uny%2B7PT3f6%2F4e79eubzd9fj77w5%2Fr2etuafjh9xX75HlJrTl%2Bw4%2FnAWPETnUk8WNq7xMOYslDzhp6fdwNMQSpIPiKFmjEpLBSjNwedaAzpGkTu4DVT%2B8pr%2F%2F5M5UvV0fgdm1kLgFy2tVuPeDYfr%2FhwmcD2RtdTT%2FpNOucdnTMMg27fHna%2FoSlUxUnTMwHdmfVlPaVczdUS2DvHAj6m0NoSUZ1czzKsos2HsGEcPQ%2B7JEWWgCIQbFyoeyhq5FjUiBiWSxtW6kFErNiyDgNLtzP8orXiKQK1mqnNi5SKbvvFo31fhYVqQgctM6vjL2C%2FADBp8hywcFnDrlYA4on7%2BobLdvZtT%2F%2BVgKmhQL%2FSkgKcKJAwdizQEjt2Du8%2BTtSJ5bkj1qonPz78%2BBfleSER&use-server-side-rendering=1&pcode-icookie=XOLOXyWrvVIDoCzhfLs2g4Z5j04FdxySnYBR7Cgz1%2BQiFYxFiFfslIA1dJ5cQsxiLrbwgu8Cj%2FIdHjI8XRQNvaX7a0E%3D&top-ancestor=https%3A%2F%2Fbase.garant.ru&top-ancestor-undetermined=0&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjoxOTN9ChLCtJDjuIUIAuriYcc_b53wtq6jNkUbS2jC2Th_bUdun0G_LkSm3_iN11ITWrLR7dDt507S2PQb65_H8I2Zxyz7A_SZAa4VhCpcVFVYmLe1TVJ8mrHAVVRBBSFQxecCz1Fw5RwFBzQOpm1RU9DZXJC4INtcSFxA2lwQuShcMQevIgAsV8QVqWwujyu2KzqTK-GicsVc9IoU9IpU_IjlFa3JlVYATS7GAYJe4eZxRRwsm4FrcnC5skP8KCQVFjGXz8F-qEyOQgcCTLUNUDYXILiAriwFdGUggADVsv3sAH9ZBFS4MPBJSOHAhUFGDhMOXHzo-KRkcIBlX4GLcJkAl4QMn9wmJichA5sRJhk0WATQCfGhExEz2rCIiPHJiPHBZgR2U5ARYUxpsMgAB3giApjQ3PRWPbVVXgb4WaFizwiV7WAEe4gwnyUI92JhE8EEHBy4MKEDwYZFSg4NGtiMgCcgJyQkI2CM0cEiJ4BpwyYnJvYip3_OKxoYVHDgksfIgQgmKSk9KXRisCoiaITkxI0Mnwyg8ekJCaCTkBNU6LggVEaicnA4kCsjFf8GfmWDoNJRdICickDj8ioSrH3sA0Pj4MBF-NzBGZKVc3Dq_x8KuU1v37srjBww_umVo_roCk39Rv1mhdlMoQdEuAjJ_-WVDQgrPRuglHL4RIT0FaxkpIwJBYlIKspnAsiVW5TnlgOa_Yw50D-54xiPgNwHRUyHyntlaoWGa9JXwI9Jz4MTGgDmoj2xDEiemvfMhRA0J6QAVj8GtcKL9x-64zMr17x6xsL_orwCF-iySPLnegd07BFUYPz6_b8gAUcRQQaNjAQ6MTkBtAoV8EdP0bEHj4O9jzD85E_NcJvQyMgJYMGoKIFIREBSIR4AeojUyz8-OezKfrhgkqbo6WGDiY9PRPwoSKE3CnJY-NCBQFYZBUrdLZDrhwCUC6glQ1LoFaRgkiZ8wyaoYIVFACYJ4fJdqQKnEgdq_Z_s6Ia5tHvEgwikdNVk-xDB_evfiPsT8knx70BYAXqkFXZAVkSSZJ7XSdozTx2CHYAqrLhLzrK_94MyYDakymy0Aw-qDfBABjKQ6WIQzzJiR-Orgud5oauTk6auJg01ggAMTQG5rbRulgw0x7G9V3zwo97M3UUJrigCrUUJPwIteNJP0pNObgsaGaxvjXlZr7vbP8aschUwiAjwGeHY4AX9YFi3n_FqRssIm5QIFlh-tDY0gFUqKwrCQpsFUo_Ye391kKB9y7_pWgfzX_6yTam0n8oVNkxbSUtLBRwkrpTOBhJwkCyLgr5yCuB1__dM93FY_7ij5V4kB7O-VPy0s-tWlN370_oNElfAxM_6CurKev5RYd6vsp9Fsh4xlTusfoPsmv-Pi2NW3RXL5mBWKGU3Co9VCOzKLLgICevvjyLAc_l09vVywfOWsqVuY-Xu2mj9cv24pC70M0VoL9rra3fwu-CEfZPphywqYweqaGkZg-Ut7Qo8Psujr-EwAYacgJwYHxCISEjqBgNcraijk6VgnHf9lwCwEt_TXXD8oNw356dLdk9XtArSnVM_a-oLwKjooTzJ49w8le0tViSSSno4P_YqAx6S7YJ35PczvOajDoqE5MR7hD1KUoING2gvckJ-t-EW3fIDkoHQRWwf5yb4ykzcSgpa16Gvb-rXPD_u9uWHjHc_lTxtvlNvLSpLEX25-63_EdS_4V1Bae4vtTTBo0V9x23-g0BoX7G-fRzvSuiZ49IDtlR6CvIfNtTn_MElPVS_JMdL3S1-PYufyoKh1LHw9yjzJtPEsFmQmOy2KEz-9CDEGObL7dlE2ZK8e6qi1PvjfWF60N8P9wAx6-wd4rrZu7VabQIcKJWiPzGPFsnIKoRah_-D90HDf4jMv_UKbI-7AvqdJTM-fEgzR3pocI4fvOGtEgjO3DLvPnZ3bA9hT5lemTUFGMqTcSXzP1rB_eNZ_SAEY8hDZCQmDVcssif7z3D9XngvnivUufmHsn4G1EPF93yb7_n3Z5iV1H_rMkHfgwVPovZxe0VGHgP1fVfjKmZp5fYRBfoj3XrlSGxOS9LV2fH77GY4spJ-jVkeVxdMreVibiKCcGjFl6_yNkH37eD_2E8NlTYS-_ro9krtJuUrZXaILzjdiz9_--bBdmk_Yymz8dcds8y3mtT6Cu3Myj3_-sFLsG5LZlMPmdC-U1j2i6bShrpPcxHcHlr0VeEumewGIO4i--q8ZtaiAxXuTKl0Z6BuOlp5O6hYHKCuFouYpSL15j-Cn3OloC1VopLWKlViJkJbGVWz4HVhSHkMuQrW3OJ1tlv8gHWo_ebVECPkvOx3-T2olkAwr7U_wdl33JjHQvNJ58hSXs7xoDXvvRg3lAVliIo259t2gNbzsiEOybSRZxKV65dRUYtFRhnFCEdJB2HL4WOa_H5YyvvKlbzHCvqyVdxU_qakuvqtjP6ZTDelBfcSeZezksukb9swutPnIVZTnWeNGhkVLVC6fGFufyYgnLfSMm72n4GSYqcSZtkmpbXbRG87x78wvdY0WXRxCySbBr7ylsBwgYbj3HB9fJwcLL3jtNRX0E5fuu14oudPI_i_8UpN35X_jZXpmLdHCcn1Km9Berk8xp1RQXwxt_vaH5ekFLU38DfP7qbEWxaovnDdWhMvZ60_wr5QAeFeJMttOG3-rB61sZoqBdbPt47XPgT09tbc3y0rsGeN6PhAre_b-v6ig_B85-e8SMO8fp5ydSP-f2S2_98yyz8znSdFx1RfZUVjNmjoegfuPvsjwqvp__317vwVgq_1RsWAp4o-NPlIDLnoBvp5QcSu1Nq7_dLt0oVszPTENkWaIKRsxuYwJKBOn0umTG5w2JOdDje7MDJf3n6M-GoaZe7p7gtQlW-8G2_5uo51oObi_nJ7cYKs8sDB-repOk9ELmVKqWKghzgiFXEtWZAD4og_x0O2tfCuQTf3DAEcOwt_7EK5A6_o1cgmYjapnbZZDc8_q29CXtr5PD0VTforGhQ5uFwIJVhL1a8QdoXj46i_9vxl3-3t7rus21OGQrrpfF7egQZlHNBQtxy7ola-sH3s-F7Gz3MzpHb-Rcyayrq8RpcGlykn30RAtlnc5M2Twm7y_l9XhRTlYKviPHgPuRLWN3q7sgF7IwEl736_ZheCVyClAyZOr8tLl6ih3srKb6b9x0WbG8qm4pV0PrjIyyL-pDxgN6U6G4mhm6Cl89bNyk7BvOEo99T4zcTLjeYuiKHZ03CKu2arV5SXcrYf9ZiOtnegFbqF0OzZGkOmmW1a2AcPqTPTsLRU-kvLMMG2KJirLamC5NKC35UlNQUN4laWlVelelnurjJxNhLKleZqpIJR1rEYd634XdoV7bsIiOiCZKIbcJ9XpHlT2luma_DWkzIL2rxfzPur_5leqNcTQG9QeObFkTdmslbr4lQdQduGenSDxXuMuJfMKaJRe5NXXIb1BuQnGf9BMPndhk1-1NQGhHJ7tG4kM40oiv2fONeqdHIjUWaryhf9O0DEhuJWNLlOXD6aF2Tq9OUHZDsNZpLlkPJ2KB_Nrm8wSbMHTaHZk1ccqL4lyH7yer8_cbAqf-jHcHn9M0DaVz89QUAJCj2hvTHG7yjXiX2HlTBevtFXxZw65tLAWzxE7Igio52KpTnTp-N3uPHG-gMA_4veVJSNx2NUlGi5ot868jNsb4H8yEv9CiWNr2PB00z1cEPK0RZ6rmUzyvbHb17S3EUrBGKVsx3eXT_fpRTFugu8iSe7RTyfys67tlm_5tQxY_MedyX7lN7mGbd_Lo4NwTJDtj9aRlYgGNdFK-HiBI_6Nrnpjy6RzxuSmIv8_PPMDZ4YzNonGMrUp6CfyfvXovx6XThL9AfadAaWUtqM59x-ean1S8Tug_uFSW18dyBMmcnqzcDTSy_sD-xMNu7LN5Ak45AnoHOnIUrkpiHBod0kRa8o8NrPqp_DomzMY4nrieKOBmWmv3j9nWPU2Rmu5g3fBH_SEPp1m07JEDdzJgYnxmRz_DJf6oJcoP5u4VxmG6cpvmH0-_LAozKUIesCs-dKBL7myE9__nxrcp55nNTh1Tu7SImFJ2GqyW0CR1HtO1jXKSTGBnNp-EWrRS5fq6tubN-tu3L89hLmoHXSduE4DFh_1PqZbwzkAs9cG8eNdOhmIczbPVOs3TNvy46ze95M4kyeEdCuN5uRC6LbJ7st3Ndd7DNjl7efdvpc6sju1DB2Y587dEtsSZf9eyjuQH0jufbzHU5j12RkP-8Oli1ysSHqtMsgQ8JZBxE8jxb8xEbVsrL7kYZq3I9Gmto0bOmq0dn4V1sG9ITGbjb63bgeB6N4LzB2MAKDXZAzOmIqW_Qbi4N8F_KN8SqwdrI2z8-gOJoTN7YrgyXvIXwGonQMDnXDs6wZkOk598KFR2q3Ho06TaendsK5RP3scC-fiTtkyRLi1raG3cviOR-8m60N-X_j0-LjJjamajA-aA-MSUPnd0xOEpcIazOub4085dGef5oVbK3jsm9He6PKiU-YHCjlpidCGtvQb7813s4GgS9iqij261H6nxqWe43bt4aBfB9sWonSYuc_TM8ONPAgoN192quos4kWFU1qfW8cftRIPPyQxtA-GRvU7I2wEHXFqIMV27o028n-aomCZZKMj5A_vlBffndBUldwclMQjPHOrgcpl-G6YckZ3KHR_zZ3J3elYjMn5MkfU9Oa0AqijDzkuYnH99Jz2vbWPkvQpnpRjImvPWc8vtgx4-VdMSGeQuv-ZniV4KKn6OcDh_Lu6Q6nXECVwehBz571q1muhFR35jJqyiWpAbaX0FTgSmhwJTSEK6ErSKnGR7578cmloB1vKBtRKS3k_7iR89Q311sR2WiLc6R_PW0dRZd1rc1-cIqcHmlnFS6KB1rHOTYDmYn8lCz2rsUmzjkojMaoiPdhRwhuPwu6xzI4BgGb_xuocNGuiKDZmlWwH1PRkSLwlzm4YamHpQq1BpNgQ0dJAi_NInpXHZRr-eY5RNwOyAxnezCD4q7foRvyYfX_lN4afOaz7PS_BRtRkV8sXn7WedeS&tga-with-creatives=1
IP
File type JSON data\012- , ASCII text, with very long lines (3028), with no line terminators
Hash 4e67b493f3994b2dcba0b025f64936d3
71d5e731907f18be0c52d3d743e391e8c6796742
1099567504da96df396b1e0519adf0040a7f76261b3f0f8386ec1ad8c60f7a94
GET /ads/adfox/285002/getBulk/v2?dl=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&date=2023-02-07T04%3A50%3A29.667%2B00%3A00&pd=7&pdh=1024&pdw=1280&pr1=286715687&pr=4286165530&prr=&pv=4&pw=2&extid_loader=MTY3NTc0NTQzMDY3NDI4Njk4MQ%3D%3D&extid_tag_loader=base.garant.ru&ylv=0.716043&ybv=0.716043&ytt=146786413051909&is-turbo=0&skip-token=&ad-session-id=5897431675745429672&layout-config=%7B%22win_width%22%3A1280%2C%22win_height%22%3A939%2C%22pixel_ratio%22%3A1%2C%22bandwidth%22%3A-1%2C%22isInIframe%22%3Afalse%2C%22w%22%3A736%2C%22h%22%3A0%2C%22width%22%3A736%2C%22height%22%3A0%2C%22visible%22%3A1%2C%22fullscreenHeaderHeight%22%3A80%2C%22left%22%3A271%2C%22top%22%3A372%2C%22darkTheme%22%3Afalse%2C%22req_no%22%3A0%2C%22ad_no%22%3A0%7D&enable-flat-highlight=1&pcode-version=716043&available-width=736&yaru=true&pp=g&ps=flvx&p2=hmni&slotNumber=1&bids=W10%3D&utf8=%E2%9C%93&duid=MTY3NTc0NTQzMDY3NDI4Njk4MQ%3D%3D&pcode-test-ids=657518%2C0%2C24%3B706837%2C0%2C49%3B711102%2C0%2C33%3B716614%2C0%2C88%3B716710%2C0%2C2%3B717980%2C0%2C61%3B709005%2C0%2C87%3B715192%2C0%2C2%3B716043%2C0%2C61%3B681848%2C0%2C60%3B715858%2C0%2C79&pcode-flags-map=eJytWNtu2zgQ%2FZWFn4uu7pe%2BURJlE5ZELUnZdYuCcFs38SKXRZp0syn67zsUZVuSHbrpLlCkjuI5HM6cOTOj7xMyrSjDsiSc40xmSCBZI4ZKLnPK5IJkmEpSyZSWCZ28ef998m199bCZvJlsHv%2BavJrcb77ek8%2Fwqx9bnu9Pfnx4NVkgLhn%2Bo8FcyEWJapkzWkqU8YG9YA3uAwR26ERWC4ArlBR4dDh8yElFBAb%2F0jmfUSGXRMxoIyQC3wU3eRf4fhC5Lwb%2FP5BRUcia0axJBT8%2B5mXQGCBfmJceiMoLnLmEVMgCJbhooQAkQVWFmTk7get6Yd%2BXCi8ln4M1%2FFOAFGWYybpAqxHU2KHId%2BJ47xCpajTFkguSzlcyI1yBZ23UEpXaLKdv4THDqZAcF8UAGr%2Bth9Ch7RygGz70skJV3ZhvGduh5e0BxIxBtDBjKky55A1b4BWEHJI4lYTLCmiyQAXJzoA6gR%2FtQVGmor9SvO2QBNVl0tWMESy0Qi8KD2BFAR7SqljJukkKkkpUkzatkBIuoLLNaLZt%2BXavaEu6wJIWYEve4b0QqPL9eQ9tN%2FKsA%2BGELgrMOKHVwBK%2B6UTx0BZkxGltm4p0lGpvU9Z90%2Fu7h03PzHMiN9ZHqpxz3rJ6ZDPmYc9IxQrjStKEY0jxiL43649Xm4GlGzixzkFO3oJ0VnKGyXQmZCXMR3q%2BG%2Btwr1CV4beSNTKjJSKVUVqt0HGD%2FXkJo3NwFs6SUzbi3tjSDv0oOHmgKjXBSGI0d2wr0OXwDleOzBuoyiXJQBhJCVVrtPVsr5Pz1rarbJlQppLKUEYa%2FttPIqyQ8ls7DJxfopVRk33PDbs4Z7liLa9pBcQQpMRQdwNTx7Ksoa1nufrOdUozrIqU48oo1L7nA0xHJaVXDCvu7s6TSqaM5l4YOsfmIDnwc6mKCNj5Kwg7B0CkmkG2XOu0dYERq2SpJoIFYgSN7u0MDvUtq4tyzQhlRKxksoLWhJc1ZeaABWHQ1d6OF53Ep9zYPHwQ6KjHSBDhFIE%2BQ6NIU8gSN6iEH7u%2BbQ9sWxbz%2FRxRgzaTamoG8fxO3VLaVAKoLFY1lq7Za9Bsv5eekqUQJ04SUkDUzMfFYfCsJSi%2FTEH152dO32GUTSGI7vYSBDYn0GmJukSOUnM1x5EThj0%2FOhA9h0ADA7Kp1p%2FAWKMqRjBaFGfmAMvxXM26KUOJY%2F4uUNQ6fLdtT30D33Ys0%2FdPVL7tP2OxI8cMt%2B2H4QxzmJKN%2Ftm%2BE2hrNXAwnIPmzGAmmpLUbBe5ncC2swArVQUxXO36Xs1wYpb4ADTasQelBD2QAa8rqKYZhnwo2eYpUx2Oc6MSBXZse9qfnhGqa3WVKZSG2dixY3%2FgyYyI9ho9MAjmXFCzF27oOIO5N61LWeKMIAkgSJBF2%2BTNGLE73CbSOv3PGKPRPsM5gop64VTv%2BVYQDMLES8SEhNGqwQr8XJL8IAgOm5YeUkee6ZmVqrG3HVAlL854FdphV42pmr1p1bEQ5UrjSA6TINZDvpmOYRQH8X4UyxkBGJhOtT1pyfQC%2B2R%2BVOpHFkHsdpztWbx0fQ3C2LPCPQr0wUwhlOaTIy%2BwxydrkpnPcpxuyu0Vhprlfqo6osCz3Z1mwEgEiyVcFUgjXcfSM1rbE%2FS4dbzaHeGFkXt8CzE13wHSFB2sDpLPZQ3tBDor7LwLXI578uTLV3l%2F%2B%2FDpcrR2WZEzXi617J7IY7ean0kObF1d8erygi2wloK1Depcywzi2HO7HWZ4dF5QvVxpR8%2BARF1JPQfSMnUYnu2jvF4%2FysvN9uLy%2Fhk4UilJnuMEJRI2ApMTsM5G4aCutTQsZ0C5HvvUKqvX0QYaXrt6wzyGQSWN5R7altdNNoxJ3ftEAyOklo020K1CNdPZ2U3U03VfoHerVmlkO4D3zb5PvmzuP12W67uL7U3Xwq9vP26vNvzT%2Bmp7czF54%2FwY7pMwt%2FRIoDUW5nGZFIoJBRlus%2B8n1%2Bvt1eu7B%2FDtn%2FXN580jfP59e72%2B2HwdPLpYX7dPPj9tbvTX19%2B297f64%2FXr3i%2Bfb7bdU4W8R4AHd%2Bunq9uny%2B7PT3f6%2F4e79eubzd9fj77w5%2Fr2etuafjh9xX75HlJrTl%2Bw4%2FnAWPETnUk8WNq7xMOYslDzhp6fdwNMQSpIPiKFmjEpLBSjNwedaAzpGkTu4DVT%2B8pr%2F%2F5M5UvV0fgdm1kLgFy2tVuPeDYfr%2FhwmcD2RtdTT%2FpNOucdnTMMg27fHna%2FoSlUxUnTMwHdmfVlPaVczdUS2DvHAj6m0NoSUZ1czzKsos2HsGEcPQ%2B7JEWWgCIQbFyoeyhq5FjUiBiWSxtW6kFErNiyDgNLtzP8orXiKQK1mqnNi5SKbvvFo31fhYVqQgctM6vjL2C%2FADBp8hywcFnDrlYA4on7%2BobLdvZtT%2F%2BVgKmhQL%2FSkgKcKJAwdizQEjt2Du8%2BTtSJ5bkj1qonPz78%2BBfleSER&use-server-side-rendering=1&pcode-icookie=XOLOXyWrvVIDoCzhfLs2g4Z5j04FdxySnYBR7Cgz1%2BQiFYxFiFfslIA1dJ5cQsxiLrbwgu8Cj%2FIdHjI8XRQNvaX7a0E%3D&top-ancestor=https%3A%2F%2Fbase.garant.ru&top-ancestor-undetermined=0&grab-orig-len=5120&grab=eyJncmFiX3ZlcnNpb24iOjIsImlzX2FzeW5jIjoxLCJvbGRfZ3JhYl9zaXplIjoxOTN9ChLCtJDjuIUIAuriYcc_b53wtq6jNkUbS2jC2Th_bUdun0G_LkSm3_iN11ITWrLR7dDt507S2PQb65_H8I2Zxyz7A_SZAa4VhCpcVFVYmLe1TVJ8mrHAVVRBBSFQxecCz1Fw5RwFBzQOpm1RU9DZXJC4INtcSFxA2lwQuShcMQevIgAsV8QVqWwujyu2KzqTK-GicsVc9IoU9IpU_IjlFa3JlVYATS7GAYJe4eZxRRwsm4FrcnC5skP8KCQVFjGXz8F-qEyOQgcCTLUNUDYXILiAriwFdGUggADVsv3sAH9ZBFS4MPBJSOHAhUFGDhMOXHzo-KRkcIBlX4GLcJkAl4QMn9wmJichA5sRJhk0WATQCfGhExEz2rCIiPHJiPHBZgR2U5ARYUxpsMgAB3giApjQ3PRWPbVVXgb4WaFizwiV7WAEe4gwnyUI92JhE8EEHBy4MKEDwYZFSg4NGtiMgCcgJyQkI2CM0cEiJ4BpwyYnJvYip3_OKxoYVHDgksfIgQgmKSk9KXRisCoiaITkxI0Mnwyg8ekJCaCTkBNU6LggVEaicnA4kCsjFf8GfmWDoNJRdICickDj8ioSrH3sA0Pj4MBF-NzBGZKVc3Dq_x8KuU1v37srjBww_umVo_roCk39Rv1mhdlMoQdEuAjJ_-WVDQgrPRuglHL4RIT0FaxkpIwJBYlIKspnAsiVW5TnlgOa_Yw50D-54xiPgNwHRUyHyntlaoWGa9JXwI9Jz4MTGgDmoj2xDEiemvfMhRA0J6QAVj8GtcKL9x-64zMr17x6xsL_orwCF-iySPLnegd07BFUYPz6_b8gAUcRQQaNjAQ6MTkBtAoV8EdP0bEHj4O9jzD85E_NcJvQyMgJYMGoKIFIREBSIR4AeojUyz8-OezKfrhgkqbo6WGDiY9PRPwoSKE3CnJY-NCBQFYZBUrdLZDrhwCUC6glQ1LoFaRgkiZ8wyaoYIVFACYJ4fJdqQKnEgdq_Z_s6Ia5tHvEgwikdNVk-xDB_evfiPsT8knx70BYAXqkFXZAVkSSZJ7XSdozTx2CHYAqrLhLzrK_94MyYDakymy0Aw-qDfBABjKQ6WIQzzJiR-Orgud5oauTk6auJg01ggAMTQG5rbRulgw0x7G9V3zwo97M3UUJrigCrUUJPwIteNJP0pNObgsaGaxvjXlZr7vbP8aschUwiAjwGeHY4AX9YFi3n_FqRssIm5QIFlh-tDY0gFUqKwrCQpsFUo_Ye391kKB9y7_pWgfzX_6yTam0n8oVNkxbSUtLBRwkrpTOBhJwkCyLgr5yCuB1__dM93FY_7ij5V4kB7O-VPy0s-tWlN370_oNElfAxM_6CurKev5RYd6vsp9Fsh4xlTusfoPsmv-Pi2NW3RXL5mBWKGU3Co9VCOzKLLgICevvjyLAc_l09vVywfOWsqVuY-Xu2mj9cv24pC70M0VoL9rra3fwu-CEfZPphywqYweqaGkZg-Ut7Qo8Psujr-EwAYacgJwYHxCISEjqBgNcraijk6VgnHf9lwCwEt_TXXD8oNw356dLdk9XtArSnVM_a-oLwKjooTzJ49w8le0tViSSSno4P_YqAx6S7YJ35PczvOajDoqE5MR7hD1KUoING2gvckJ-t-EW3fIDkoHQRWwf5yb4ykzcSgpa16Gvb-rXPD_u9uWHjHc_lTxtvlNvLSpLEX25-63_EdS_4V1Bae4vtTTBo0V9x23-g0BoX7G-fRzvSuiZ49IDtlR6CvIfNtTn_MElPVS_JMdL3S1-PYufyoKh1LHw9yjzJtPEsFmQmOy2KEz-9CDEGObL7dlE2ZK8e6qi1PvjfWF60N8P9wAx6-wd4rrZu7VabQIcKJWiPzGPFsnIKoRah_-D90HDf4jMv_UKbI-7AvqdJTM-fEgzR3pocI4fvOGtEgjO3DLvPnZ3bA9hT5lemTUFGMqTcSXzP1rB_eNZ_SAEY8hDZCQmDVcssif7z3D9XngvnivUufmHsn4G1EPF93yb7_n3Z5iV1H_rMkHfgwVPovZxe0VGHgP1fVfjKmZp5fYRBfoj3XrlSGxOS9LV2fH77GY4spJ-jVkeVxdMreVibiKCcGjFl6_yNkH37eD_2E8NlTYS-_ro9krtJuUrZXaILzjdiz9_--bBdmk_Yymz8dcds8y3mtT6Cu3Myj3_-sFLsG5LZlMPmdC-U1j2i6bShrpPcxHcHlr0VeEumewGIO4i--q8ZtaiAxXuTKl0Z6BuOlp5O6hYHKCuFouYpSL15j-Cn3OloC1VopLWKlViJkJbGVWz4HVhSHkMuQrW3OJ1tlv8gHWo_ebVECPkvOx3-T2olkAwr7U_wdl33JjHQvNJ58hSXs7xoDXvvRg3lAVliIo259t2gNbzsiEOybSRZxKV65dRUYtFRhnFCEdJB2HL4WOa_H5YyvvKlbzHCvqyVdxU_qakuvqtjP6ZTDelBfcSeZezksukb9swutPnIVZTnWeNGhkVLVC6fGFufyYgnLfSMm72n4GSYqcSZtkmpbXbRG87x78wvdY0WXRxCySbBr7ylsBwgYbj3HB9fJwcLL3jtNRX0E5fuu14oudPI_i_8UpN35X_jZXpmLdHCcn1Km9Berk8xp1RQXwxt_vaH5ekFLU38DfP7qbEWxaovnDdWhMvZ60_wr5QAeFeJMttOG3-rB61sZoqBdbPt47XPgT09tbc3y0rsGeN6PhAre_b-v6ig_B85-e8SMO8fp5ydSP-f2S2_98yyz8znSdFx1RfZUVjNmjoegfuPvsjwqvp__317vwVgq_1RsWAp4o-NPlIDLnoBvp5QcSu1Nq7_dLt0oVszPTENkWaIKRsxuYwJKBOn0umTG5w2JOdDje7MDJf3n6M-GoaZe7p7gtQlW-8G2_5uo51oObi_nJ7cYKs8sDB-repOk9ELmVKqWKghzgiFXEtWZAD4og_x0O2tfCuQTf3DAEcOwt_7EK5A6_o1cgmYjapnbZZDc8_q29CXtr5PD0VTforGhQ5uFwIJVhL1a8QdoXj46i_9vxl3-3t7rus21OGQrrpfF7egQZlHNBQtxy7ola-sH3s-F7Gz3MzpHb-Rcyayrq8RpcGlykn30RAtlnc5M2Twm7y_l9XhRTlYKviPHgPuRLWN3q7sgF7IwEl736_ZheCVyClAyZOr8tLl6ih3srKb6b9x0WbG8qm4pV0PrjIyyL-pDxgN6U6G4mhm6Cl89bNyk7BvOEo99T4zcTLjeYuiKHZ03CKu2arV5SXcrYf9ZiOtnegFbqF0OzZGkOmmW1a2AcPqTPTsLRU-kvLMMG2KJirLamC5NKC35UlNQUN4laWlVelelnurjJxNhLKleZqpIJR1rEYd634XdoV7bsIiOiCZKIbcJ9XpHlT2luma_DWkzIL2rxfzPur_5leqNcTQG9QeObFkTdmslbr4lQdQduGenSDxXuMuJfMKaJRe5NXXIb1BuQnGf9BMPndhk1-1NQGhHJ7tG4kM40oiv2fONeqdHIjUWaryhf9O0DEhuJWNLlOXD6aF2Tq9OUHZDsNZpLlkPJ2KB_Nrm8wSbMHTaHZk1ccqL4lyH7yer8_cbAqf-jHcHn9M0DaVz89QUAJCj2hvTHG7yjXiX2HlTBevtFXxZw65tLAWzxE7Igio52KpTnTp-N3uPHG-gMA_4veVJSNx2NUlGi5ot868jNsb4H8yEv9CiWNr2PB00z1cEPK0RZ6rmUzyvbHb17S3EUrBGKVsx3eXT_fpRTFugu8iSe7RTyfys67tlm_5tQxY_MedyX7lN7mGbd_Lo4NwTJDtj9aRlYgGNdFK-HiBI_6Nrnpjy6RzxuSmIv8_PPMDZ4YzNonGMrUp6CfyfvXovx6XThL9AfadAaWUtqM59x-ean1S8Tug_uFSW18dyBMmcnqzcDTSy_sD-xMNu7LN5Ak45AnoHOnIUrkpiHBod0kRa8o8NrPqp_DomzMY4nrieKOBmWmv3j9nWPU2Rmu5g3fBH_SEPp1m07JEDdzJgYnxmRz_DJf6oJcoP5u4VxmG6cpvmH0-_LAozKUIesCs-dKBL7myE9__nxrcp55nNTh1Tu7SImFJ2GqyW0CR1HtO1jXKSTGBnNp-EWrRS5fq6tubN-tu3L89hLmoHXSduE4DFh_1PqZbwzkAs9cG8eNdOhmIczbPVOs3TNvy46ze95M4kyeEdCuN5uRC6LbJ7st3Ndd7DNjl7efdvpc6sju1DB2Y587dEtsSZf9eyjuQH0jufbzHU5j12RkP-8Oli1ysSHqtMsgQ8JZBxE8jxb8xEbVsrL7kYZq3I9Gmto0bOmq0dn4V1sG9ITGbjb63bgeB6N4LzB2MAKDXZAzOmIqW_Qbi4N8F_KN8SqwdrI2z8-gOJoTN7YrgyXvIXwGonQMDnXDs6wZkOk598KFR2q3Ho06TaendsK5RP3scC-fiTtkyRLi1raG3cviOR-8m60N-X_j0-LjJjamajA-aA-MSUPnd0xOEpcIazOub4085dGef5oVbK3jsm9He6PKiU-YHCjlpidCGtvQb7813s4GgS9iqij261H6nxqWe43bt4aBfB9sWonSYuc_TM8ONPAgoN192quos4kWFU1qfW8cftRIPPyQxtA-GRvU7I2wEHXFqIMV27o028n-aomCZZKMj5A_vlBffndBUldwclMQjPHOrgcpl-G6YckZ3KHR_zZ3J3elYjMn5MkfU9Oa0AqijDzkuYnH99Jz2vbWPkvQpnpRjImvPWc8vtgx4-VdMSGeQuv-ZniV4KKn6OcDh_Lu6Q6nXECVwehBz571q1muhFR35jJqyiWpAbaX0FTgSmhwJTSEK6ErSKnGR7578cmloB1vKBtRKS3k_7iR89Q311sR2WiLc6R_PW0dRZd1rc1-cIqcHmlnFS6KB1rHOTYDmYn8lCz2rsUmzjkojMaoiPdhRwhuPwu6xzI4BgGb_xuocNGuiKDZmlWwH1PRkSLwlzm4YamHpQq1BpNgQ0dJAi_NInpXHZRr-eY5RNwOyAxnezCD4q7foRvyYfX_lN4afOaz7PS_BRtRkV8sXn7WedeS&tga-with-creatives=1 HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Content-Encoding: gzip
NEL: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
Report-To: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-Yandex-Req-Id: 1675745381672300-1047755913352865624-balancer-l7leveler-kubr-yp-vla-9-BAL-2116
access-control-allow-credentials: true
access-control-allow-origin: https://base.garant.ru
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json
date: Tue, 07 Feb 2023 04:49:41 GMT
expires: Tue, 07 Feb 2023 04:49:41 GMT
last-modified: Tue, 07 Feb 2023 04:49:41 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
pragma: no-cache
set-cookie: yandexuid=1528656241675745381; Path=/; Domain=.yandex.ru; Expires=Fri, 04-Feb-2033 04:49:41 GMT; SameSite=None; Secure
i=cOkGPJiYjqZ9E201rg6ZtwB+uGYXQrEIKbXXabzqxZp3Yv867kWC5AP5B+WzZWiPdqhGtQMeu9hvw4rX5AX7whnVcL8=; Expires=Thu, 06-Feb-2025 04:49:41 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=6416131251675745381; Path=/; Domain=.yandex.ru; Expires=Wed, 07 Feb 2024 04:49:41 GMT; SameSite=None; Secure; HttpOnly
timing-allow-origin: *
x-xss-protection: 1; mode=block
api.mindbox.ru/scripts/modules/personalization.js?version=1.0.418
200 OK 5.8 kB URL HTTP/1.1 api.mindbox.ru/scripts/modules/personalization.js?version=1.0.418
IP
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (14874)
Hash 6bb9e73d36c1c16b46066b51fa13fd0c
95c8461364abd483ddfc4866a062dc45e0531ebc
a644f4a3510344dde845a40f9fc1e9bac1b7e6dbecc52b3dfa36e0ddea7ac1c2
GET /scripts/modules/personalization.js?version=1.0.418 HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Cookie: deviceUUID=d35bffe1-aa99-4011-a14e-2f823dbb3f9a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: public,max-age=604800
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Tue, 07 Feb 2023 04:49:41 GMT
etag: W/"18586cd204136adc815d9eeb83fa964f"
feature-policy: vibrate 'self'
last-modified: Fri, 03 Feb 2023 10:29:40 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: f84916f4cdff5b59
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
personalization-web-stable.mindbox.ru/js/media/popmechanic/tns-2.9.2.js?2
200 OK 14 kB URL HTTP/1.1 personalization-web-stable.mindbox.ru/js/media/popmechanic/tns-2.9.2.js?2
IP
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (31925)
Hash ed701d300f0263b2e5944f2da1f65165
4e13af30e72aa45351fbae8e3a3e3bc86eab502a
f2b24fac1457da9d10f58d615c0e3bb2eaa65008964d6f22161876dc92a049bf
GET /js/media/popmechanic/tns-2.9.2.js?2 HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Tue, 07 Feb 2023 04:49:41 GMT
etag: W/"dab2e845b3e2188dc0391d3fdd1432ac"
feature-policy: vibrate 'self'
last-modified: Thu, 19 Jan 2023 18:28:34 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 86657402e8909ab2
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
api.mindbox.ru/scripts/modules/helpers.js?version=1.0.418
200 OK 2.4 kB URL HTTP/1.1 api.mindbox.ru/scripts/modules/helpers.js?version=1.0.418
IP
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (7455), with no line terminators
Hash 879eba1786b9531c7a96ba9f0c595ee5
a732a1a1a23228823476fdb0fb57d5cc03300076
5f36a4377832af744117beee5910c77a20d88badc1d510c1ba8ead11c604dfaa
GET /scripts/modules/helpers.js?version=1.0.418 HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Cookie: deviceUUID=d35bffe1-aa99-4011-a14e-2f823dbb3f9a
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: public,max-age=604800
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/javascript
date: Tue, 07 Feb 2023 04:49:41 GMT
etag: W/"48bebb0402525d5ff4527783895054de"
feature-policy: vibrate 'self'
last-modified: Fri, 03 Feb 2023 10:29:40 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: d88fc5c21f69914b
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
kraken.rambler.ru/cnt/v2/?event_type=base&event_name=page_view&project_id=44507&session_id=1720373762_1675745429104&session_number=1&session_event_number=1&version=3.13.7&counter_type=web&experiment=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&top100_id=t1.44507.1521833750.1675745429101&adtech_uid=9e8ddd3f-2f09-4b81-b179-b3f871bd23d1&adtech_uid_scope=garant.ru&fingerprint=pA8AAENKs1e4GYz8AQlryQA%3D&fingerprint_ip=pA8AAENKs1cnnUv2AauVQAA%3D&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&request_id=1675745429.101-482255124&event_id=113154293334506&meta=%7B%22title%22%3A%22%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2%22%2C%22referer%22%3A%22%22%2C%22screen_size%22%3A%221280x1024%22%2C%22browser_size%22%3A%221268x927%22%2C%22color_depth%22%3A%2224-bit%22%2C%22language%22%3A%22en-US%22%2C%22browser%22%3A%22Netscape%22%2C%22platform%22%3A%22Linux%20x86_64%22%2C%22timezone%22%3A%220%22%7D&rn=966254779
200 OK 43 B URL HTTP/2 kraken.rambler.ru/cnt/v2/?event_type=base&event_name=page_view&project_id=44507&session_id=1720373762_1675745429104&session_number=1&session_event_number=1&version=3.13.7&counter_type=web&experiment=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&top100_id=t1.44507.1521833750.1675745429101&adtech_uid=9e8ddd3f-2f09-4b81-b179-b3f871bd23d1&adtech_uid_scope=garant.ru&fingerprint=pA8AAENKs1e4GYz8AQlryQA%3D&fingerprint_ip=pA8AAENKs1cnnUv2AauVQAA%3D&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&request_id=1675745429.101-482255124&event_id=113154293334506&meta=%7B%22title%22%3A%22%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2%22%2C%22referer%22%3A%22%22%2C%22screen_size%22%3A%221280x1024%22%2C%22browser_size%22%3A%221268x927%22%2C%22color_depth%22%3A%2224-bit%22%2C%22language%22%3A%22en-US%22%2C%22browser%22%3A%22Netscape%22%2C%22platform%22%3A%22Linux%20x86_64%22%2C%22timezone%22%3A%220%22%7D&rn=966254779
IP
ASN #24638 Rambler Internet Holding LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /cnt/v2/?event_type=base&event_name=page_view&project_id=44507&session_id=1720373762_1675745429104&session_number=1&session_event_number=1&version=3.13.7&counter_type=web&experiment=%5B%5B%22exp_bot%22%2C%22split_b%22%5D%2C%5B%22exp_ping%22%2C%22no%22%5D%5D&top100_id=t1.44507.1521833750.1675745429101&adtech_uid=9e8ddd3f-2f09-4b81-b179-b3f871bd23d1&adtech_uid_scope=garant.ru&fingerprint=pA8AAENKs1e4GYz8AQlryQA%3D&fingerprint_ip=pA8AAENKs1cnnUv2AauVQAA%3D&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&request_id=1675745429.101-482255124&event_id=113154293334506&meta=%7B%22title%22%3A%22%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2%22%2C%22referer%22%3A%22%22%2C%22screen_size%22%3A%221280x1024%22%2C%22browser_size%22%3A%221268x927%22%2C%22color_depth%22%3A%2224-bit%22%2C%22language%22%3A%22en-US%22%2C%22browser%22%3A%22Netscape%22%2C%22platform%22%3A%22Linux%20x86_64%22%2C%22timezone%22%3A%220%22%7D&rn=966254779 HTTP/1.1
Host: kraken.rambler.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.4
date: Tue, 07 Feb 2023 04:49:41 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
pragma: no-cache
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: content-type
access-control-allow-credentials: true
x-srv: 1kraken-prod0003.ad.rambler.tech
set-cookie: ruid=1CIAAGXY4WPPm66zAVC1bgB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
proto_uid=1CIAAGXY4WPPm66zAVC1bgB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 07 Feb 2023 04:49:41 GMT
access-control-allow-origin: *
etag: "63c93a4b-2b"
expires: Tue, 07 Feb 2023 05:49:41 GMT
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 15:40:43 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
yastatic.net/partner-code-bundles/716043/b887192c4a62fd372984.js
200 OK 3.5 kB URL HTTP/2 yastatic.net/partner-code-bundles/716043/b887192c4a62fd372984.js
IP
File type ASCII text, with very long lines (9149)
Hash 2e50dbda190111e20b06531c8df6dce2
2e37aeb104cb3f7e4564cd701702f803adc4f6b0
9a1f38cb09607578fe9cb9ebc2a0b3fc5d066ab26ae5b9269c13f5c2b121154d
GET /partner-code-bundles/716043/b887192c4a62fd372984.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 07 Feb 2023 04:49:41 GMT
content-type: text/javascript; charset=utf-8
content-length: 3549
access-control-allow-origin: *
cache-control: public, max-age=946708560
content-encoding: br
etag: "2e50dbda190111e20b06531c8df6dce2"
expires: Thu, 06 Feb 2053 11:23:39 GMT
last-modified: Thu, 02 Feb 2023 14:36:26 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=43200000; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
mc.yandex.ru/watch/66399/1?wmode=7&page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A1244%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A678127320483%3Ahid%3A955756849%3Az%3A0%3Ai%3A20230207045029%3Aet%3A1675745430%3Ac%3A1%3Arn%3A107455331%3Arqn%3A1%3Au%3A1675745430674286981%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A5%2C179%2C177%2C26%2C295%2C0%2C%2C460%2C28%2C%2C%2C%2C1255%3Aco%3A0%3Ans%3A1675745427585%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675745430%3At%3A%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20%28%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F%29%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
200 OK 400 B URL HTTP/2 mc.yandex.ru/watch/66399/1?wmode=7&page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A1244%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A678127320483%3Ahid%3A955756849%3Az%3A0%3Ai%3A20230207045029%3Aet%3A1675745430%3Ac%3A1%3Arn%3A107455331%3Arqn%3A1%3Au%3A1675745430674286981%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A5%2C179%2C177%2C26%2C295%2C0%2C%2C460%2C28%2C%2C%2C%2C1255%3Aco%3A0%3Ans%3A1675745427585%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675745430%3At%3A%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20%28%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F%29%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
IP
File type JSON data\012- , ASCII text, with very long lines (400), with no line terminators
Hash 4103333900f467067219b3e36f0ce60c
26545ff64f6bda5fd31f06c9f42588857e1b03cc
5bac58f6c56f40b2e86cb37b0fcce930570ce96bd6875f8bcb55908b7eae5cbd
GET /watch/66399/1?wmode=7&page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A1244%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A678127320483%3Ahid%3A955756849%3Az%3A0%3Ai%3A20230207045029%3Aet%3A1675745430%3Ac%3A1%3Arn%3A107455331%3Arqn%3A1%3Au%3A1675745430674286981%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A5%2C179%2C177%2C26%2C295%2C0%2C%2C460%2C28%2C%2C%2C%2C1255%3Aco%3A0%3Ans%3A1675745427585%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675745430%3At%3A%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20%28%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F%29%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Referer: https://base.garant.ru/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 400
date: Tue, 07 Feb 2023 04:49:41 GMT
x-content-type-options: nosniff
access-control-allow-origin: https://base.garant.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 07-Feb-2023 04:49:41 GMT
last-modified: Tue, 07-Feb-2023 04:49:41 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/66399?wmode=7&page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A1244%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A678127320483%3Ahid%3A955756849%3Az%3A0%3Ai%3A20230207045029%3Aet%3A1675745430%3Ac%3A1%3Arn%3A107455331%3Arqn%3A1%3Au%3A1675745430674286981%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A5%2C179%2C177%2C26%2C295%2C0%2C%2C460%2C28%2C%2C%2C%2C1255%3Aco%3A0%3Ans%3A1675745427585%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675745430%3At%3A%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
302 Found 43 B URL HTTP/2 mc.yandex.ru/watch/66399?wmode=7&page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A1244%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A678127320483%3Ahid%3A955756849%3Az%3A0%3Ai%3A20230207045029%3Aet%3A1675745430%3Ac%3A1%3Arn%3A107455331%3Arqn%3A1%3Au%3A1675745430674286981%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A5%2C179%2C177%2C26%2C295%2C0%2C%2C460%2C28%2C%2C%2C%2C1255%3Aco%3A0%3Ans%3A1675745427585%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675745430%3At%3A%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2)
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /watch/66399?wmode=7&page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A1244%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A678127320483%3Ahid%3A955756849%3Az%3A0%3Ai%3A20230207045029%3Aet%3A1675745430%3Ac%3A1%3Arn%3A107455331%3Arqn%3A1%3Au%3A1675745430674286981%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A5%2C179%2C177%2C26%2C295%2C0%2C%2C460%2C28%2C%2C%2C%2C1255%3Aco%3A0%3Ans%3A1675745427585%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675745430%3At%3A%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/66399/1?wmode=7&page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&charset=utf-8&browser-info=pv%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afp%3A1244%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A678127320483%3Ahid%3A955756849%3Az%3A0%3Ai%3A20230207045029%3Aet%3A1675745430%3Ac%3A1%3Arn%3A107455331%3Arqn%3A1%3Au%3A1675745430674286981%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A5%2C179%2C177%2C26%2C295%2C0%2C%2C460%2C28%2C%2C%2C%2C1255%3Aco%3A0%3Ans%3A1675745427585%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1675745430%3At%3A%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20%28%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F%29%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Tue, 07 Feb 2023 04:49:41 GMT
access-control-allow-origin: https://base.garant.ru
set-cookie: yabs-sid=2204250981675745381; Path=/; SameSite=None; Secure
i=UIF4HQIWv3Px+cBY5Q+mX/nSXFPE9OR+Hu2SzK3dulWQOu3ckxn+lTApXEGksBd75lL+IBDiVQc26O7iJK9ROBIbgRQ=; Expires=Fri, 04-Feb-2033 04:49:37 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=5622622061675745381; Expires=Wed, 07-Feb-2024 04:49:41 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=5622622061675745381; Expires=Wed, 07-Feb-2024 04:49:41 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1707281381.yc.1675745381#1707281381.yrts.1675745381#1707281381.yrtsi.1675745381; Expires=Wed, 07-Feb-2024 04:49:41 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 07-Feb-2023 04:49:41 GMT
last-modified: Tue, 07-Feb-2023 04:49:41 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash afe7db92a730b1a76bed3113f60da924
531e2ba6a5907332e9e77fdcc2d88da9adb5f703
04534a7ebb8a6583102a0a532496c38d09b744572f1d01a5da952ff4a2b9825f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:49:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-2538236-4&cid=1727868618.1675745429&jid=1599986216&gjid=433229457&_gid=1021582817.1675745429&_u=IEBAAEAAAAAAACAAI~&z=1722473047
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-2538236-4&cid=1727868618.1675745429&jid=1599986216&gjid=433229457&_gid=1021582817.1675745429&_u=IEBAAEAAAAAAACAAI~&z=1722473047
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-2538236-4&cid=1727868618.1675745429&jid=1599986216&gjid=433229457&_gid=1021582817.1675745429&_u=IEBAAEAAAAAAACAAI~&z=1722473047 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://base.garant.ru
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 07 Feb 2023 04:49:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
personalization-web-stable.mindbox.ru/init/35758/domain_and_endpoint/garant.ru:base.garant.ru
322 status code 322 0 B URL HTTP/1.1 personalization-web-stable.mindbox.ru/init/35758/domain_and_endpoint/garant.ru:base.garant.ru
IP
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /init/35758/domain_and_endpoint/garant.ru:base.garant.ru HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 322 status code 322
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/octet-stream
date: Tue, 07 Feb 2023 04:49:41 GMT
feature-policy: vibrate 'self'
location: https://personalization-web-stable.mindbox.ru/init/unknown
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: f1d9bb27a1c7a711
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
personalization-web-stable.mindbox.ru/init/35758/endpoint/garant.ru
200 OK 0 B URL HTTP/1.1 personalization-web-stable.mindbox.ru/init/35758/endpoint/garant.ru
IP
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /init/35758/endpoint/garant.ru HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-length: 3967852
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/octet-stream
date: Tue, 07 Feb 2023 04:49:41 GMT
etag: "8c360eea1bf879869d8049cec65dc636"
feature-policy: vibrate 'self'
last-modified: Tue, 07 Feb 2023 04:06:37 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: f5c1dc001555639c
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
personalization-web-stable.mindbox.ru/init/35758/domain_and_endpoint/garant.ru:*base.garant.ru
322 status code 322 0 B URL HTTP/1.1 personalization-web-stable.mindbox.ru/init/35758/domain_and_endpoint/garant.ru:*base.garant.ru
IP
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /init/35758/domain_and_endpoint/garant.ru:*base.garant.ru HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 322 status code 322
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/octet-stream
date: Tue, 07 Feb 2023 04:49:41 GMT
feature-policy: vibrate 'self'
location: https://personalization-web-stable.mindbox.ru/init/unknown
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 8f22177e4d18fead
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash afe7db92a730b1a76bed3113f60da924
531e2ba6a5907332e9e77fdcc2d88da9adb5f703
04534a7ebb8a6583102a0a532496c38d09b744572f1d01a5da952ff4a2b9825f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:49:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
st.top100.ru/top100/3.13.7/usability.js
200 OK 3.9 kB URL HTTP/2 st.top100.ru/top100/3.13.7/usability.js
IP
ASN #24638 Rambler Internet Holding LLC
File type ASCII text, with very long lines (14600), with no line terminators
Hash 4618b0d5dc825640fec77b5ba4a91fb6
1599cc0d8315cf3b1896c6a1512c5874f0b4db14
a57239bb4f62ddb35bf6f2052e0f54edf07e230c4499574002ae84168162742c
GET /top100/3.13.7/usability.js HTTP/1.1
Host: st.top100.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.4
date: Tue, 07 Feb 2023 04:49:40 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 06 Feb 2023 07:26:16 GMT
x-rgw-object-type: Normal
etag: W/"99710dbdb5ab5abc8052ba277efd0249"
x-amz-request-id: tx000000000000221df6ba7-0063e1d82b-f85be6-default
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
set-cookie: proto_uid=1CIAAGTY4WMAVHmfAT2LcAB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
content-encoding: gzip
X-Firefox-Spdy: h2
personalization-web-stable.mindbox.ru/init/35758/default
200 OK 0 B URL HTTP/1.1 personalization-web-stable.mindbox.ru/init/35758/default
IP
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /init/35758/default HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-length: 297
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/octet-stream
date: Tue, 07 Feb 2023 04:49:41 GMT
etag: "a8677fd4d5b7664146626acfcd7e3640"
feature-policy: vibrate 'self'
last-modified: Tue, 07 Feb 2023 04:06:25 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 8bb1618f1631ce69
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
personalization-web-stable.mindbox.ru/init/35758/no_endpoint
200 OK 0 B URL HTTP/1.1 personalization-web-stable.mindbox.ru/init/35758/no_endpoint
IP
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /init/35758/no_endpoint HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-length: 345920
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/octet-stream
date: Tue, 07 Feb 2023 04:49:41 GMT
etag: "d6cdb9459933bbead0e7617c09fefd68"
feature-policy: vibrate 'self'
last-modified: Tue, 07 Feb 2023 04:06:31 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: ad69f0409e569f97
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash 2066ba48b36f05c6ba68acbd232d8727
04cc0a83a31eba9f3f73c2e89ae1d8bd3364a2ea
5d8c98104211ba5846d7e528f2789fa5cb2ef9f8143dd0efbb9cf650991167ab
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 11 Feb 2023 01:01:42 GMT
ETag: "04cc0a83a31eba9f3f73c2e89ae1d8bd3364a2ea"
Last-Modified: Tue, 07 Feb 2023 01:01:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 629
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7959801d59c0b4ff-OSL
moevideo.biz/embed/js/mvpt.min.js
200 OK 53 kB URL HTTP/1.1 moevideo.biz/embed/js/mvpt.min.js
IP
ASN #199524 G-Core Labs S.A.
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 9171ebade1fda7b8b729c17178bf7df2
52c9483e1602970e031a8918ff38d67e9e3c3441
985fbc2c88f02a37ec6048c54c85e658614521e61ab8a27752142734ee5da117
GET /embed/js/mvpt.min.js HTTP/1.1
Host: moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 13:15:20 GMT
Vary: Accept-Encoding
ETag: W/"63d27ce8-2c0d4"
X-My-Name: s193
Content-Encoding: gzip
X-My-Reqtime: 0.006
personalization-web-stable.mindbox.ru/init/35758/endpoint/garant.ru?response-content-type=application%2Fjson&_=5585818
200 OK 485 kB URL HTTP/1.1 personalization-web-stable.mindbox.ru/init/35758/endpoint/garant.ru?response-content-type=application%2Fjson&_=5585818
IP
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (65536), with no line terminators
Size 485 kB (484551 bytes)
Hash 4f4fd050db62bc9221ce43d613fc6677
71d0ca47e31d03b10bd7f57408223c136bf15a29
2b9751d697372d800d38a14727ff74edd8c61469abbe0bc6da3d09dd711a7a2c
GET /init/35758/endpoint/garant.ru?response-content-type=application%2Fjson&_=5585818 HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: ETag
access-control-max-age: 3000
content-encoding: gzip
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: text/plain; charset=utf-8
date: Tue, 07 Feb 2023 04:49:42 GMT
etag: W/"8c360eea1bf879869d8049cec65dc636"
feature-policy: vibrate 'self'
last-modified: Tue, 07 Feb 2023 04:06:37 GMT
referrer-policy: same-origin
server: nginx
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
x-amz-request-id: 9f0d7ec74f2598bc
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
transfer-encoding: chunked
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 68273225f74fbf7493f395610d7a73fc
5a8779ef5656aeeba23b365aad60b7901c5dd7fc
c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3315
Expires: Tue, 07 Feb 2023 05:44:57 GMT
Date: Tue, 07 Feb 2023 04:49:42 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6154ab9-bb20-4d77-a86e-15f604bb237a.webp
200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6154ab9-bb20-4d77-a86e-15f604bb237a.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4dd67c975f1c1f91ca92f37c9e098231
b9096efb56b6e196b13722e767a9d2762737cbb9
39f21e5db4089d6cf94646b76cd9032e9831ed03f7c2f0d980fac09c893a52db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6154ab9-bb20-4d77-a86e-15f604bb237a.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8110
x-amzn-requestid: fdfa4af0-a6e4-4664-a86b-48fd6f374d96
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f77JCFyzoAMFtyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e17239-205cdd9d70f23cb358c65222;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:33:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zHo_IPM2j3t4prd4ZuLR7c-GPrWHxSxqSUprBxrT9n_DG8ySpkpb8g==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:46:30 GMT
age: 25392
etag: "b9096efb56b6e196b13722e767a9d2762737cbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98179745-5078-472e-9610-33edd9a43956.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98179745-5078-472e-9610-33edd9a43956.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da137941b3b3ec5187780ff2bfaef328
29a8a1274d93a71bb356026b15b76ab48096163d
8260b49fa8fb9fb477072575eeb5fefd0b595b04db7840bca29d9f097f37ae9e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98179745-5078-472e-9610-33edd9a43956.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10188
x-amzn-requestid: e13ea99d-1fac-47c6-9e50-6ada36f9d25b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f5ZxwG_NoAMFzhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0700b-61d7fbd866fef9920e5ae3d4;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 03:12:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7r26LMSbqyXBy95GzHYmP_jUA_W4i0rs5Q8Mf0YFUE4LJX-PNqkMaw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 04:21:55 GMT
age: 1667
etag: "29a8a1274d93a71bb356026b15b76ab48096163d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 75b0935816ca54d5d20a9fffa5531e0d
bd8374980c16b7d5a28e55b8bef2215713b1ebb2
4ab6f49d22d029681754b617001f93467d63035acdaf12905c2314cab77991af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3c48c35-4645-41c0-a6fa-b700208324c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13390
x-amzn-requestid: 0664e077-13a4-4a97-afc2-3969cee56958
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f2pu6Fb7oAMF_0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63df565f-057ee8fa26aa83d21f875d73;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 07:10:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cAwOWu-_JYTMa0l-1A07FxgOGtG7P59D7XlovXByRA9dQxfsS2An7w==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 18:44:40 GMT
age: 36302
etag: "bd8374980c16b7d5a28e55b8bef2215713b1ebb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c86a61b-07c3-45f6-b564-e556eb788d04.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c86a61b-07c3-45f6-b564-e556eb788d04.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59419fb1cf4689bed183d0e9a6aed782
47d4a4bb26fafff0c6aebfe3dc7ddfa4970f8e9a
e6009407bd61bee1ae16ec30ea5914be77c56ee65dfb30595b10a1cedc6798c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c86a61b-07c3-45f6-b564-e556eb788d04.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12682
x-amzn-requestid: d858d90a-b1ca-401c-8e00-8ccd9c0a7504
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f78mUEsfIAMFreg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1748e-2783de3e3de9c520246bf06e;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:43:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: eq8Kle9uYWJ3vmaJD50r-oaTb_O2ObQgLNlTcYn9XQoHCyAO3isqyQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:44:49 GMT
age: 25493
etag: "47d4a4bb26fafff0c6aebfe3dc7ddfa4970f8e9a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bJYqqLcSFAGcCVUbjfI8yrsb54Bj8uQKHBYp8tpZWUoUGE9C-iP76A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 07:12:46 GMT
age: 77816
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a62e65-5d07-4259-aa47-d2491847eee9.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a62e65-5d07-4259-aa47-d2491847eee9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d29e7077f69b88a0108efeb7a2efe7e9
1958f83edeb8c6b68f17cead3fb5714f44e619eb
371f02a5b36ac3e52cc6c4e78f0980107a0f92105e79ee53278089ae5ff6de93
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a62e65-5d07-4259-aa47-d2491847eee9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10788
x-amzn-requestid: 8e1c8026-1eea-4eb0-810e-7ea43ed11f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyymWEsSoAMFykg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ddcaf5-20fc23b535fa86f56a34fbae;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 03:03:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qMfsjm0A_Z0hDIwggPH5rWFTk0n-us4GSVN3XUN1XxNv2qUCHZckLg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 05:47:07 GMT
age: 82955
etag: "1958f83edeb8c6b68f17cead3fb5714f44e619eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
moevideo.biz/embed/core/version?jsonp=&jsonpCallback=jsonp_1675745430356_89578
200 OK 45 B URL HTTP/1.1 moevideo.biz/embed/core/version?jsonp=&jsonpCallback=jsonp_1675745430356_89578
IP
ASN #199524 G-Core Labs S.A.
File type ASCII text, with no line terminators
Hash 5d05ba1394de5eaec0b7bc743fb5f0ef
91f0a525aa301f6eb272d77a5118afe870e77326
23778e284d9b406b67d832cfaecf2a9f9ae92e598a4c43649cefb003b2ddb133
GET /embed/core/version?jsonp=&jsonpCallback=jsonp_1675745430356_89578 HTTP/1.1
Host: moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:42 GMT
Content-Type: application/javascript
Content-Length: 45
Connection: keep-alive
X-My-Reqtime: 0.024
personalization-web-stable.mindbox.ru/web/visitor/?domain=base.garant.ru
200 OK 19 B URL HTTP/1.1 personalization-web-stable.mindbox.ru/web/visitor/?domain=base.garant.ru
IP
ASN #200350 Yandex.Cloud LLC
File type JSON data\012- , ASCII text, with no line terminators
Hash 45dd4614fd55b6dd4db8fee281d6dd1c
62ab03f7f78a8fb0484b03ab3380d2f5f377497f
dcb10d4e2abc4dea6d0e3dedd7962d6e1640ca2ff04ddffcf19be18fd5b32499
GET /web/visitor/?domain=base.garant.ru HTTP/1.1
Host: personalization-web-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-CSRFToken,Authorization
access-control-allow-methods: GET, POST, OPTIONS, PATCH, PUT, DELETE
access-control-allow-origin: https://base.garant.ru
allow: GET, OPTIONS
cache-control: max-age=315360000
content-length: 19
content-type: application/json
date: Tue, 07 Feb 2023 04:49:42 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
feature-policy: vibrate 'self'
referrer-policy: same-origin
server: nginx/1.23.3
set-cookie: vid=19147822670; expires=Sun, 06 Aug 2023 04:49:42 GMT; Path=/
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c0c18b789b296a2b3cc9adb04c94e6f7
a0fa241f813c414178f5dffd30d5c2b82d16669b
95ec61ae9d1384fdbcee256ec441d6db4e3243ed3f8e1801b3607ce3c2e1e3f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:49:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2e90fb4abc4adea51d5da8fca3895c90
9ea128cefd8a4e91bc93a306cdafdcf5c0b99a40
6de37bd6d8e446c4e3b2d739ad311f23c403bb59c6adbfade793b274da3b5f28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:49:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash e22fe168a1e325608e960ab0373073a9
f0ffb60728b1539f00e4aa67642d958e12f923a5
caea0e513c2593b76aa2a46b00ebe02793a9886cab719efb6461ffded08968c5
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 11 Feb 2023 01:15:29 GMT
ETag: "f0ffb60728b1539f00e4aa67642d958e12f923a5"
Last-Modified: Tue, 07 Feb 2023 01:15:30 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2116
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 795980207b54b512-OSL
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2538236-4&cid=1727868618.1675745429&jid=1599986216&_u=IEBAAEAAAAAAACAAI~&z=352705130
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2538236-4&cid=1727868618.1675745429&jid=1599986216&_u=IEBAAEAAAAAAACAAI~&z=352705130
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2538236-4&cid=1727868618.1675745429&jid=1599986216&_u=IEBAAEAAAAAAACAAI~&z=352705130 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 07 Feb 2023 04:49:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2538236-4&cid=1727868618.1675745429&jid=1599986216&_u=IEBAAEAAAAAAACAAI~&z=352705130
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2538236-4&cid=1727868618.1675745429&jid=1599986216&_u=IEBAAEAAAAAAACAAI~&z=352705130
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-2538236-4&cid=1727868618.1675745429&jid=1599986216&_u=IEBAAEAAAAAAACAAI~&z=352705130 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 07 Feb 2023 04:49:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2e90fb4abc4adea51d5da8fca3895c90
9ea128cefd8a4e91bc93a306cdafdcf5c0b99a40
6de37bd6d8e446c4e3b2d739ad311f23c403bb59c6adbfade793b274da3b5f28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:49:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ads.adfox.ru/285002/event?pm=cyz&hash=b3626ee9c2bd4690&duid=1675745430674286981&p5=kzvnf&rand=jetkdum&sj=yrn45JK7k8de3edl0hd8Y4WONxfOAZkqIJ_cWcZR-bmEz_en_2UWElt40iOG&ad-session-id=5897431675745429672<s=flbavhl&ytt=146786413051909&ybv=0.716043&ylv=0.716043&dl=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&pr=nwtkrok&p1=cskmi&rqs=AAAAAAAAAABl2OFjVMQCtUHkFt_6Tx5b&p2=hmni
204 No Content 0 B URL HTTP/2 ads.adfox.ru/285002/event?pm=cyz&hash=b3626ee9c2bd4690&duid=1675745430674286981&p5=kzvnf&rand=jetkdum&sj=yrn45JK7k8de3edl0hd8Y4WONxfOAZkqIJ_cWcZR-bmEz_en_2UWElt40iOG&ad-session-id=5897431675745429672<s=flbavhl&ytt=146786413051909&ybv=0.716043&ylv=0.716043&dl=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&pr=nwtkrok&p1=cskmi&rqs=AAAAAAAAAABl2OFjVMQCtUHkFt_6Tx5b&p2=hmni
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /285002/event?pm=cyz&hash=b3626ee9c2bd4690&duid=1675745430674286981&p5=kzvnf&rand=jetkdum&sj=yrn45JK7k8de3edl0hd8Y4WONxfOAZkqIJ_cWcZR-bmEz_en_2UWElt40iOG&ad-session-id=5897431675745429672<s=flbavhl&ytt=146786413051909&ybv=0.716043&ylv=0.716043&dl=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&pr=nwtkrok&p1=cskmi&rqs=AAAAAAAAAABl2OFjVMQCtUHkFt_6Tx5b&p2=hmni HTTP/1.1
Host: ads.adfox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
timing-allow-origin: *
date: Tue, 07 Feb 2023 04:49:42 GMT
x-content-type-options: nosniff
access-control-allow-origin: *
pragma: no-cache
expires: Mon, 04 Dec 1999 21:29:02 GMT
last-modified: Tue, 07 Feb 2023 04:49:42 GMT
cache-control: no-store, no-cache, must-revalidate, max-age=0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 45214010f2ef8a835d723fcd5b485977
346507b6da40928a8c600ef9c52fd6a7e0875344
4b4e5c2038d6fe241aedc738e0bd22052078bf365b6dade88cae752d0f06fa54
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 04:49:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mc.yandex.ru/watch/66399/1?page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&charset=utf-8&hittoken=1675745381_7f67e26370da2be0de6a5e3e37293a965e3eb6569735668e7cc0e8070e16ab07&browser-info=pa%3A1%3Aar%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A678127320483%3Ahid%3A955756849%3Az%3A0%3Ai%3A20230207045030%3Aet%3A1675745430%3Ac%3A1%3Arn%3A250807964%3Arqn%3A3%3Au%3A1675745430674286981%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675745427585%3Aadb%3A2%3Ast%3A1675745430&t=gdpr(14)mc(p-2-up-1)clc(0-0-0)rqnt(3)aw(1)ti(0)&force-urlencoded=1&site-info=%7B%22__ymu%22%3A%7B%22GarantID%22%3A%22d497bbdea6a211ed9cd9b88303828b09%22%7D%7D
200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/66399/1?page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&charset=utf-8&hittoken=1675745381_7f67e26370da2be0de6a5e3e37293a965e3eb6569735668e7cc0e8070e16ab07&browser-info=pa%3A1%3Aar%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A678127320483%3Ahid%3A955756849%3Az%3A0%3Ai%3A20230207045030%3Aet%3A1675745430%3Ac%3A1%3Arn%3A250807964%3Arqn%3A3%3Au%3A1675745430674286981%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675745427585%3Aadb%3A2%3Ast%3A1675745430&t=gdpr(14)mc(p-2-up-1)clc(0-0-0)rqnt(3)aw(1)ti(0)&force-urlencoded=1&site-info=%7B%22__ymu%22%3A%7B%22GarantID%22%3A%22d497bbdea6a211ed9cd9b88303828b09%22%7D%7D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/66399/1?page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&charset=utf-8&hittoken=1675745381_7f67e26370da2be0de6a5e3e37293a965e3eb6569735668e7cc0e8070e16ab07&browser-info=pa%3A1%3Aar%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A678127320483%3Ahid%3A955756849%3Az%3A0%3Ai%3A20230207045030%3Aet%3A1675745430%3Ac%3A1%3Arn%3A250807964%3Arqn%3A3%3Au%3A1675745430674286981%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675745427585%3Aadb%3A2%3Ast%3A1675745430&t=gdpr(14)mc(p-2-up-1)clc(0-0-0)rqnt(3)aw(1)ti(0)&force-urlencoded=1&site-info=%7B%22__ymu%22%3A%7B%22GarantID%22%3A%22d497bbdea6a211ed9cd9b88303828b09%22%7D%7D HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 07 Feb 2023 04:49:42 GMT
access-control-allow-origin: https://base.garant.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 07-Feb-2023 04:49:42 GMT
last-modified: Tue, 07-Feb-2023 04:49:42 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/66399/1?page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&charset=utf-8&hittoken=1675745381_7f67e26370da2be0de6a5e3e37293a965e3eb6569735668e7cc0e8070e16ab07&browser-info=pa%3A1%3Aar%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A678127320483%3Ahid%3A955756849%3Az%3A0%3Ai%3A20230207045030%3Aet%3A1675745430%3Ac%3A1%3Arn%3A392219777%3Arqn%3A2%3Au%3A1675745430674286981%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675745427585%3Aadb%3A2%3Ast%3A1675745430&t=gdpr(14)mc(p-2-up-1)clc(0-0-0)rqnt(2)aw(1)ti(0)&force-urlencoded=1&site-info=%7B%22__ym%22%3A%7B%22adSessionID%22%3A%225897431675745429672%22%7D%7D
200 OK 43 B URL HTTP/2 mc.yandex.ru/watch/66399/1?page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&charset=utf-8&hittoken=1675745381_7f67e26370da2be0de6a5e3e37293a965e3eb6569735668e7cc0e8070e16ab07&browser-info=pa%3A1%3Aar%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A678127320483%3Ahid%3A955756849%3Az%3A0%3Ai%3A20230207045030%3Aet%3A1675745430%3Ac%3A1%3Arn%3A392219777%3Arqn%3A2%3Au%3A1675745430674286981%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675745427585%3Aadb%3A2%3Ast%3A1675745430&t=gdpr(14)mc(p-2-up-1)clc(0-0-0)rqnt(2)aw(1)ti(0)&force-urlencoded=1&site-info=%7B%22__ym%22%3A%7B%22adSessionID%22%3A%225897431675745429672%22%7D%7D
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /watch/66399/1?page-url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&charset=utf-8&hittoken=1675745381_7f67e26370da2be0de6a5e3e37293a965e3eb6569735668e7cc0e8070e16ab07&browser-info=pa%3A1%3Aar%3A1%3Avf%3A3kqnly895ce05obhzcv6r%3Afu%3A0%3Aen%3Awindows-1251%3Ala%3Aen-US%3Av%3A960%3Acn%3A1%3Adp%3A0%3Als%3A678127320483%3Ahid%3A955756849%3Az%3A0%3Ai%3A20230207045030%3Aet%3A1675745430%3Ac%3A1%3Arn%3A392219777%3Arqn%3A2%3Au%3A1675745430674286981%3Aw%3A1268x927%3As%3A1280x1024x24%3Ask%3A1%3Aco%3A0%3Ans%3A1675745427585%3Aadb%3A2%3Ast%3A1675745430&t=gdpr(14)mc(p-2-up-1)clc(0-0-0)rqnt(2)aw(1)ti(0)&force-urlencoded=1&site-info=%7B%22__ym%22%3A%7B%22adSessionID%22%3A%225897431675745429672%22%7D%7D HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 07 Feb 2023 04:49:42 GMT
access-control-allow-origin: https://base.garant.ru
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 07-Feb-2023 04:49:42 GMT
last-modified: Tue, 07-Feb-2023 04:49:42 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
moevideo.biz/native?id=mv-content-roll-3409&slot=content&api=2.0&ref=base.garant.ru&frp=aHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-&instream=
200 OK 23 kB URL HTTP/1.1 moevideo.biz/native?id=mv-content-roll-3409&slot=content&api=2.0&ref=base.garant.ru&frp=aHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-&instream=
IP
ASN #199524 G-Core Labs S.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (55853)
Hash f3561d7982e7c1fc39ba72b9424f6844
dd08c59c3a1509674b7e13e4876f3c6588df253e
a19f182df42b009b9955670ac6655efdb1d253433462ef7fb4d3c4dd5f138169
GET /native?id=mv-content-roll-3409&slot=content&api=2.0&ref=base.garant.ru&frp=aHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-&instream= HTTP/1.1
Host: moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:42 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.5.38
Set-Cookie: mvuid=a76a73e1e3e9f09426d8;expires=Wed, 07-Feb-2024 07:49:42 GMT;Max-Age=31536000;path=/;SameSite=None
mvsid=8279dc0a-2ffe-4f7c-9e97-0f484f1528b0;path=/;SameSite=None
X-My-Adv-Time: 0.00356602668762
Expires: Thu, 19 Feb 1998 13:24:18 GMT
Last-Modified: Tue, 07 Feb 2023 04:49:42 GMT
Cache-Control: max-age=0
Pragma: no-cache
X-Mv-TryCache: 0
X-My-App-Time: 0.016
X-Mv-Embed-Version: 1414
X-My-Name: s147
Content-Encoding: gzip
X-My-Reqtime: 0.040
Access-Control-Allow-Origin: *
moevideo.biz/embed/player/1860/skins/gray/styles.css
200 OK 15 kB URL HTTP/1.1 moevideo.biz/embed/player/1860/skins/gray/styles.css
IP
ASN #199524 G-Core Labs S.A.
File type ASCII text, with very long lines (55711), with no line terminators
Hash 15f05cb8a429eab68ddf1978a3576c75
4089aa0da3d02c93fe296e403f86f60fdf12d426
cb55fcbae8d7718802f63db880c3f4b4cb1bd70cb7f1f476c3da7fe1fc8fdd28
GET /embed/player/1860/skins/gray/styles.css HTTP/1.1
Host: moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/native?id=mv-content-roll-3409&slot=content&api=2.0&ref=base.garant.ru&frp=aHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-&instream=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:42 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 13:03:25 GMT
Vary: Accept-Encoding
ETag: W/"63d27a1d-d99f"
X-My-Name: s153
Content-Encoding: gzip
X-My-Reqtime: 0.022
moevideo.biz/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%22a76a73e1e3e9f09426d8%22},{%22key%22:%22mvsid%22,%22value%22:%228279dc0a-2ffe-4f7c-9e97-0f484f1528b0%22}]
200 OK 0 B URL HTTP/1.1 moevideo.biz/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%22a76a73e1e3e9f09426d8%22},{%22key%22:%22mvsid%22,%22value%22:%228279dc0a-2ffe-4f7c-9e97-0f484f1528b0%22}]
IP
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%22a76a73e1e3e9f09426d8%22},{%22key%22:%22mvsid%22,%22value%22:%228279dc0a-2ffe-4f7c-9e97-0f484f1528b0%22}] HTTP/1.1
Host: moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/native?id=mv-content-roll-3409&slot=content&api=2.0&ref=base.garant.ru&frp=aHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-&instream=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:42 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: mvuid=a76a73e1e3e9f09426d8; Path=/; Expires=Wed, 07 Feb 2024 04:49:42 GMT; Secure; SameSite=None
mvsid=8279dc0a-2ffe-4f7c-9e97-0f484f1528b0; Path=/; Secure; SameSite=None
X-My-Reqtime: 0.000
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash a3818751396050f91cc4b3e04ade8552
5fbad0d495b786ea8e54069bd8bf14a2fd4714df
c26d52cd5c61a51b1945678532573b3743ed5aefd00ce2c9c597656df6412227
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 11 Feb 2023 02:27:24 GMT
ETag: "5fbad0d495b786ea8e54069bd8bf14a2fd4714df"
Last-Modified: Tue, 07 Feb 2023 02:27:25 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3533
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 795980225bc90b41-OSL
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash e61711353dcb081b303e9fc245e5d232
60887cf0759e31e9d9042fb7b5ce04d4f476c1f4
5ce9359e69cb55e988862867c789678ed1383ec45bd32c07b53459d39cc3f8ca
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 11 Feb 2023 01:53:03 GMT
ETag: "60887cf0759e31e9d9042fb7b5ce04d4f476c1f4"
Last-Modified: Tue, 07 Feb 2023 01:53:04 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 957
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 795980225b93b4ff-OSL
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash 17557069d7a8638a9d2ec7be3a22b1cf
4964dfe6cbc2897672d58ab74132249627ac0f6d
77f0e5698838857d7433c4084c3893cea01902a518d09218c0ec346c64a1a0c8
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 11 Feb 2023 01:00:53 GMT
ETag: "4964dfe6cbc2897672d58ab74132249627ac0f6d"
Last-Modified: Tue, 07 Feb 2023 01:00:54 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3533
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 795980227bd80b41-OSL
personalization-pixel-stable.mindbox.ru/web/pixel/stats/?type=pageview&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&v=4.23.6&vid=19147822670&client=35758&source=typein&device=pc&u_s=(direct)
200 OK 42 B URL HTTP/1.1 personalization-pixel-stable.mindbox.ru/web/pixel/stats/?type=pageview&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&v=4.23.6&vid=19147822670&client=35758&source=typein&device=pc&u_s=(direct)
IP
ASN #200350 Yandex.Cloud LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /web/pixel/stats/?type=pageview&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&v=4.23.6&vid=19147822670&client=35758&source=typein&device=pc&u_s=(direct) HTTP/1.1
Host: personalization-pixel-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
content-length: 42
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: image/gif
date: Tue, 07 Feb 2023 04:49:42 GMT
feature-policy: vibrate 'self'
referrer-policy: same-origin
server: Kestrel
strict-transport-security: max-age=315360000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
playreplay.net/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%22a76a73e1e3e9f09426d8%22},{%22key%22:%22mvsid%22,%22value%22:%228279dc0a-2ffe-4f7c-9e97-0f484f1528b0%22}]
200 OK 0 B URL HTTP/1.1 playreplay.net/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%22a76a73e1e3e9f09426d8%22},{%22key%22:%22mvsid%22,%22value%22:%228279dc0a-2ffe-4f7c-9e97-0f484f1528b0%22}]
IP
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%22a76a73e1e3e9f09426d8%22},{%22key%22:%22mvsid%22,%22value%22:%228279dc0a-2ffe-4f7c-9e97-0f484f1528b0%22}] HTTP/1.1
Host: playreplay.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:42 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: mvuid=a76a73e1e3e9f09426d8; Path=/; Expires=Wed, 07 Feb 2024 04:49:42 GMT; Secure; SameSite=None
mvsid=8279dc0a-2ffe-4f7c-9e97-0f484f1528b0; Path=/; Secure; SameSite=None
X-My-Reqtime: 0.000
playreplay.me/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%22a76a73e1e3e9f09426d8%22},{%22key%22:%22mvsid%22,%22value%22:%228279dc0a-2ffe-4f7c-9e97-0f484f1528b0%22}]
200 OK 0 B URL HTTP/1.1 playreplay.me/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%22a76a73e1e3e9f09426d8%22},{%22key%22:%22mvsid%22,%22value%22:%228279dc0a-2ffe-4f7c-9e97-0f484f1528b0%22}]
IP
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%22a76a73e1e3e9f09426d8%22},{%22key%22:%22mvsid%22,%22value%22:%228279dc0a-2ffe-4f7c-9e97-0f484f1528b0%22}] HTTP/1.1
Host: playreplay.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:42 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: mvuid=a76a73e1e3e9f09426d8; Path=/; Expires=Wed, 07 Feb 2024 04:49:42 GMT; Secure; SameSite=None
mvsid=8279dc0a-2ffe-4f7c-9e97-0f484f1528b0; Path=/; Secure; SameSite=None
X-My-Reqtime: 0.000
thesame.tv/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%22a76a73e1e3e9f09426d8%22},{%22key%22:%22mvsid%22,%22value%22:%228279dc0a-2ffe-4f7c-9e97-0f484f1528b0%22}]
200 OK 0 B URL HTTP/1.1 thesame.tv/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%22a76a73e1e3e9f09426d8%22},{%22key%22:%22mvsid%22,%22value%22:%228279dc0a-2ffe-4f7c-9e97-0f484f1528b0%22}]
IP
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%22a76a73e1e3e9f09426d8%22},{%22key%22:%22mvsid%22,%22value%22:%228279dc0a-2ffe-4f7c-9e97-0f484f1528b0%22}] HTTP/1.1
Host: thesame.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:42 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: mvuid=a76a73e1e3e9f09426d8; Path=/; Expires=Wed, 07 Feb 2024 04:49:42 GMT; Secure; SameSite=None
mvsid=8279dc0a-2ffe-4f7c-9e97-0f484f1528b0; Path=/; Secure; SameSite=None
X-My-Reqtime: 0.000
cs-0.moevideo.biz/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%22a76a73e1e3e9f09426d8%22},{%22key%22:%22mvsid%22,%22value%22:%228279dc0a-2ffe-4f7c-9e97-0f484f1528b0%22}]
200 OK 0 B URL HTTP/1.1 cs-0.moevideo.biz/api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%22a76a73e1e3e9f09426d8%22},{%22key%22:%22mvsid%22,%22value%22:%228279dc0a-2ffe-4f7c-9e97-0f484f1528b0%22}]
IP
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/cookie/set?cookies=[{%22key%22:%22mvuid%22,%22value%22:%22a76a73e1e3e9f09426d8%22},{%22key%22:%22mvsid%22,%22value%22:%228279dc0a-2ffe-4f7c-9e97-0f484f1528b0%22}] HTTP/1.1
Host: cs-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:42 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: mvuid=a76a73e1e3e9f09426d8; Path=/; Expires=Wed, 07 Feb 2024 04:49:42 GMT; Secure; SameSite=None
mvsid=8279dc0a-2ffe-4f7c-9e97-0f484f1528b0; Path=/; Secure; SameSite=None
X-My-Reqtime: 0.001
moevideo.biz/embed/player/1860/mvplayer.min.js
200 OK 155 kB URL HTTP/1.1 moevideo.biz/embed/player/1860/mvplayer.min.js
IP
ASN #199524 G-Core Labs S.A.
File type Unicode text, UTF-8 text, with very long lines (65489), with no line terminators
Size 155 kB (154785 bytes)
Hash b101f10bb9c69aa7c7b726234a4a2ee0
ad5a9031471d00375ceb47e76f35eaac26904f90
e6ef2f048c13d79e27a5c0cf0eb3a43fc63001ce098f0829d51c5abeb2b03017
GET /embed/player/1860/mvplayer.min.js HTTP/1.1
Host: moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/native?id=mv-content-roll-3409&slot=content&api=2.0&ref=base.garant.ru&frp=aHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-&instream=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 13:11:55 GMT
Vary: Accept-Encoding
ETag: W/"63d27c1b-954a5"
X-My-Name: s195
Content-Encoding: gzip
X-My-Reqtime: 0.008
api.mindbox.ru/v3/js/operations/sync?version=1.0.418&transport=XmlHttpRequest&operation=popmechanic-check-segment&originDomain=base.garant.ru
200 OK 123 B URL HTTP/1.1 api.mindbox.ru/v3/js/operations/sync?version=1.0.418&transport=XmlHttpRequest&operation=popmechanic-check-segment&originDomain=base.garant.ru
IP
ASN #200350 Yandex.Cloud LLC
File type JSON data\012- , ASCII text, with no line terminators
Hash 32a5c949a960ce72065c8030c4f17db7
cad5eacd77d6b19693d7746b940f946479bbbdc9
a97131cfa495eaab6625ade91026df0ba018dc7aa647a7b79ba98d5e039fdb24
POST /v3/js/operations/sync?version=1.0.418&transport=XmlHttpRequest&operation=popmechanic-check-segment&originDomain=base.garant.ru HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 408
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Cookie: deviceUUID=d35bffe1-aa99-4011-a14e-2f823dbb3f9a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://base.garant.ru
cache-control: no-cache, no-store, must-revalidate
content-length: 123
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: application/json; charset=utf-8
date: Tue, 07 Feb 2023 04:49:42 GMT
expires: -1
feature-policy: vibrate 'self'
pragma: no-cache
referrer-policy: same-origin
server: Kestrel
set-cookie: deviceUUID=d35bffe1-aa99-4011-a14e-2f823dbb3f9a; expires=Tue, 19-Jan-2038 00:00:00 GMT; path=/; Secure; HttpOnly; SameSite=None;
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
personalization-pixel-stable.mindbox.ru/web/pixel/stats/?type=bucket&form=49320&settings=&conditions=172931&v=4.23.6&vid=19147822670&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&u_s=(direct)
200 OK 42 B URL HTTP/1.1 personalization-pixel-stable.mindbox.ru/web/pixel/stats/?type=bucket&form=49320&settings=&conditions=172931&v=4.23.6&vid=19147822670&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&u_s=(direct)
IP
ASN #200350 Yandex.Cloud LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /web/pixel/stats/?type=bucket&form=49320&settings=&conditions=172931&v=4.23.6&vid=19147822670&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&u_s=(direct) HTTP/1.1
Host: personalization-pixel-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
content-length: 42
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: image/gif
date: Tue, 07 Feb 2023 04:49:42 GMT
feature-policy: vibrate 'self'
referrer-policy: same-origin
server: Kestrel
strict-transport-security: max-age=315360000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
api.mindbox.ru/v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-popup-49320-targeting&originDomain=base.garant.ru
200 OK 0 B URL HTTP/1.1 api.mindbox.ru/v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-popup-49320-targeting&originDomain=base.garant.ru
IP
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-popup-49320-targeting&originDomain=base.garant.ru HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 175
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Cookie: deviceUUID=d35bffe1-aa99-4011-a14e-2f823dbb3f9a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://base.garant.ru
cache-control: no-cache, no-store, must-revalidate
content-length: 0
content-security-policy: default-src 'self' 'unsafe-inline'
date: Tue, 07 Feb 2023 04:49:42 GMT
expires: -1
feature-policy: vibrate 'self'
pragma: no-cache
referrer-policy: same-origin
server: Kestrel
set-cookie: deviceUUID=d35bffe1-aa99-4011-a14e-2f823dbb3f9a; expires=Tue, 19-Jan-2038 00:00:00 GMT; path=/; Secure; HttpOnly; SameSite=None;
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type gzip compressed data, max compression\012- data
Hash de271d0a4df0f0edcab26debcf65e44a
d0582c599dc570bd4ec91cce7bd48b7bdee783e0
fc572d1b4891804029c831d11bab5daa9a151622abb7811d6cb525a5967b2644
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 13:09:06 GMT
expires: Wed, 31 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 574837
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2
200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 9644, version 1.0\012- data
Hash 6f112ec2b932ee12379442c42853244e
b2e73c8c70d6261e1d187f41693c43ac4fe0809d
6a84eeee6a25e7c9a8a03191007a6720566b5a2aa2384d36168fb07f49e97e9e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfABc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9644
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 12:24:15 GMT
expires: Thu, 01 Feb 2024 12:24:15 GMT
cache-control: public, max-age=31536000
age: 491128
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash d00a6548ebbe18ee48fdbe30cb2a2d67
6f1b1a17fa5101b4a1a9ef057a74c229136bc81c
f674137511500fa6318ced9c7f730d18bb7e4dedeaf6f4a9e256cf3b4ac8ac8f
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 11 Feb 2023 03:11:03 GMT
ETag: "6f1b1a17fa5101b4a1a9ef057a74c229136bc81c"
Last-Modified: Tue, 07 Feb 2023 03:11:04 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 958
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79598024fc78b4ff-OSL
moe.video/storage.html?v=08
200 OK 6.2 kB URL HTTP/1.1 moe.video/storage.html?v=08
IP
ASN #199524 G-Core Labs S.A.
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (18280)
Hash c8463eda7aa61bb390914cb97c775acc
273c4ebc3be11427eef2ddeb8d006cc32ebc9cf3
f2546cd3d25f9c6a05a755ed6eab66b5e34129517937a58d99db1c64acf161ac
GET /storage.html?v=08 HTTP/1.1
Host: moe.video
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 13:14:57 GMT
Vary: Accept-Encoding
ETag: W/"63d27cd1-4783"
X-My-Name: s157
Content-Encoding: gzip
X-My-Reqtime: 0.024
X-B-Name: f48
top-fwz1.mail.ru/tracker?js=13;id=84008;u=https%3A//base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/;st=1675745428746;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=7efc8ec51f721d48;ver=60.3.0;tz=0%2FUTC;nt=0/0/1675745427585/////295/303/317/318/497/341/498/674/700/715/1161/1255/1283/3885/3885/;ni=;lvid=1675745429776%3A1675745431474%3A2%3Afedfd8e04d1eb11964cab7c8e461aa4d;opts=dl%2Cjst-gtag-ga-ym;visible=true;_=0.37514483751298755;e=RT/load;et=1675745431472
200 OK 43 B URL HTTP/2 top-fwz1.mail.ru/tracker?js=13;id=84008;u=https%3A//base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/;st=1675745428746;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=7efc8ec51f721d48;ver=60.3.0;tz=0%2FUTC;nt=0/0/1675745427585/////295/303/317/318/497/341/498/674/700/715/1161/1255/1283/3885/3885/;ni=;lvid=1675745429776%3A1675745431474%3A2%3Afedfd8e04d1eb11964cab7c8e461aa4d;opts=dl%2Cjst-gtag-ga-ym;visible=true;_=0.37514483751298755;e=RT/load;et=1675745431472
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
GET /tracker?js=13;id=84008;u=https%3A//base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/;st=1675745428746;title=%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F%20149.%20%D0%9D%D0%9A%20%D0%A0%D0%A4%20%D0%9E%D0%BF%D0%B5%D1%80%D0%B0%D1%86%D0%B8%D0%B8%2C%20%D0%BD%D0%B5%20%D0%BF%D0%BE%D0%B4%D0%BB%D0%B5%D0%B6%D0%B0%D1%89%D0%B8%D0%B5%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8E%20(%D0%BE%D1%81%D0%B2%D0%BE%D0%B1%D0%BE%D0%B6%D0%B4%D0%B0%D0%B5%D0%BC%D1%8B%D0%B5%20%D0%BE%D1%82%20%D0%BD%D0%B0%D0%BB%D0%BE%D0%B3%D0%BE%D0%BE%D0%B1%D0%BB%D0%BE%D0%B6%D0%B5%D0%BD%D0%B8%D1%8F)%20%7C%20%D0%93%D0%90%D0%A0%D0%90%D0%9D%D0%A2;s=1280*1024;vp=1268*927;touch=0;hds=1;frame=0;flash=;sid=7efc8ec51f721d48;ver=60.3.0;tz=0%2FUTC;nt=0/0/1675745427585/////295/303/317/318/497/341/498/674/700/715/1161/1255/1283/3885/3885/;ni=;lvid=1675745429776%3A1675745431474%3A2%3Afedfd8e04d1eb11964cab7c8e461aa4d;opts=dl%2Cjst-gtag-ga-ym;visible=true;_=0.37514483751298755;e=RT/load;et=1675745431472 HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:43 GMT
content-type: image/gif
content-length: 43
set-cookie: FTID=1RMYgQ0tkIIF:1675745383:84008:::; path=/; expires=Thu, 08-Feb-24 04:49:43 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: private, no-cache, no-store, max-age=0
pragma: no-cache
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
X-Firefox-Spdy: h2
personalization-pixel-stable.mindbox.ru/web/pixel/stats/?type=bucket&form=57005&settings=&conditions=&v=4.23.6&vid=19147822670&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&u_s=(direct)
200 OK 42 B URL HTTP/1.1 personalization-pixel-stable.mindbox.ru/web/pixel/stats/?type=bucket&form=57005&settings=&conditions=&v=4.23.6&vid=19147822670&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&u_s=(direct)
IP
ASN #200350 Yandex.Cloud LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /web/pixel/stats/?type=bucket&form=57005&settings=&conditions=&v=4.23.6&vid=19147822670&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&u_s=(direct) HTTP/1.1
Host: personalization-pixel-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
content-length: 42
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: image/gif
date: Tue, 07 Feb 2023 04:49:42 GMT
feature-policy: vibrate 'self'
referrer-policy: same-origin
server: Kestrel
strict-transport-security: max-age=315360000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
am-0.moevideo.biz/ssp/auction_multi
204 No Content 0 B URL HTTP/1.1 am-0.moevideo.biz/ssp/auction_multi
IP
ASN #199524 G-Core Labs S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /ssp/auction_multi HTTP/1.1
Host: am-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://moevideo.biz/
Origin: https://moevideo.biz
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
Server: nginx
Date: Tue, 07 Feb 2023 04:49:43 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET, POST, OPTIONS
dm-eu.hybrid.ai/match?id=117
302 Found 0 B URL HTTP/2 dm-eu.hybrid.ai/match?id=117
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?id=117 HTTP/1.1
Host: dm-eu.hybrid.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Tue, 07 Feb 2023 04:49:43 GMT
content-length: 0
cache-control: no-cache, no-store
pragma: no-cache
expires: -1
location: https://cs-0.moevideo.biz/ssp/cs?d=21&b=35cb909942946d85374c
set-cookie: vid=35cb909942946d85374c; Expires=Wed, 07 Feb 2024 04:49:42 GMT; Domain=.hybrid.ai; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR CUR ADMa DEVo TAIo PSAo PSDo IVAo IVDo OUR IND COM NAV INT STA OTC"
x-mode: 521
x-xss-protection: 1; mode=block
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
server: Hybrid Web Server
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c4d061833bb9a94fb38498cf5d1dff20
6ea5a0ee0510604da72546c2c40de8687c5d3ff6
655917601548e72470fdda9d909011edba3f98e11a6976a02ad2b7effce779cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "655917601548E72470FDDA9D909011EDBA3F98E11A6976A02AD2B7EFFCE779CD"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5607
Expires: Tue, 07 Feb 2023 06:23:10 GMT
Date: Tue, 07 Feb 2023 04:49:43 GMT
Connection: keep-alive
am-0.moevideo.biz/ssp/auction_multi
200 OK 2 B URL HTTP/1.1 am-0.moevideo.biz/ssp/auction_multi
IP
ASN #199524 G-Core Labs S.A.
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
POST /ssp/auction_multi HTTP/1.1
Host: am-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Content-Type: application/json
Origin: https://moevideo.biz
Content-Length: 4617
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 2
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://moevideo.biz
Cache-Control: no-cache, must-revalidate;post-check=0,pre-check=0;max-age=0
Expires: Thu, 19 Feb 1998 13:24:18 GMT
Last-Modified: Tue, 07 Feb 2023 04:49:43 GMT
Pragma: no-cache
X-Balancer-Name: f54
X-B-Name: f54
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash 9b240758f60991ead344ccccb2e9c9fc
9ab85daa3f64b7b64e549b657c6e4aaf773f36ca
3f66bc8b9c1f9749b84b200f46827352a9f6b6af59626651ab9653f3724b818c
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 11 Feb 2023 01:18:42 GMT
ETag: "9ab85daa3f64b7b64e549b657c6e4aaf773f36ca"
Last-Modified: Tue, 07 Feb 2023 01:18:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2092
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 795980287d7e0b41-OSL
sync.upravel.com/moevideo/sync
302 Found 0 B URL HTTP/2 sync.upravel.com/moevideo/sync
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /moevideo/sync HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 07 Feb 2023 04:49:43 GMT
content-type: image/png
content-length: 0
location: https://sync.upravel.com/moevideo/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly9tb2V2aWRlby5iaXovIl19fQ
set-cookie: session_tptc=1675745383756;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
session_tptc-legacy=1675745383756;Version=1;Domain=.upravel.com;Path=/;Max-Age=180
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
sync.bumlam.com/?src=moe2&uid=a76a73e1e3e9f09426d8
302 Moved Temporarily 0 B URL HTTP/1.1 sync.bumlam.com/?src=moe2&uid=a76a73e1e3e9f09426d8
IP
ASN #44066 diva-e Datacenters GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?src=moe2&uid=a76a73e1e3e9f09426d8 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: suuid3=IiRkNmQ1YzU1MC1hNmEyLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Mon, 02 Feb 2043 04:49:43 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Location: //sync.bumlam.com/?src=moe2&s_data=CAIQARjnsIefBmIUYTc2YTczZTFlM2U5ZjA5NDI2ZDiiARDW1cVQpqIR7aHEACWQyCQ3
ETag: d6d5c550-a6a2-11ed-a1c4-002590c82437
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
inv-nets.admixer.net/adxcm.aspx?ssp=03012A8F-9C5C-4F0A-B5C5-EF2E17D61EBD&id=a76a73e1e3e9f09426d8
302 Found 0 B URL HTTP/1.1 inv-nets.admixer.net/adxcm.aspx?ssp=03012A8F-9C5C-4F0A-B5C5-EF2E17D61EBD&id=a76a73e1e3e9f09426d8
IP
ASN #20773 Host Europe GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /adxcm.aspx?ssp=03012A8F-9C5C-4F0A-B5C5-EF2E17D61EBD&id=a76a73e1e3e9f09426d8 HTTP/1.1
Host: inv-nets.admixer.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
X-Xss-Protection: 0
P3p: CP="NID DSP ALL COR"
Location: https://m.trafmag.com/images/1px-matching-go2net.gif?id=61fb76b4a5fe45068beb798f64d12978
Set-Cookie: am-uid=61fb76b4a5fe45068beb798f64d12978; expires=Mon, 08 May 2023 04:49:43 GMT; domain=.admixer.net; secure; SameSite=None
Keep-Alive: timeout=25
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash 8592df43141a53e06e3a097add094543
29d8fb98eb2401f8ebaa5f65f856b8675d6127e4
264424b5025a7908b431b4138a812ca36a151749478e4be611741eacf698f47d
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 11 Feb 2023 03:34:37 GMT
ETag: "29d8fb98eb2401f8ebaa5f65f856b8675d6127e4"
Last-Modified: Tue, 07 Feb 2023 03:34:38 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2696
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79598028ada8b4ff-OSL
sync.bumlam.com/?src=moe2&s_data=CAIQARjnsIefBmIUYTc2YTczZTFlM2U5ZjA5NDI2ZDiiARDW1cVQpqIR7aHEACWQyCQ3
200 OK 43 B URL HTTP/1.1 sync.bumlam.com/?src=moe2&s_data=CAIQARjnsIefBmIUYTc2YTczZTFlM2U5ZjA5NDI2ZDiiARDW1cVQpqIR7aHEACWQyCQ3
IP
ASN #44066 diva-e Datacenters GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /?src=moe2&s_data=CAIQARjnsIefBmIUYTc2YTczZTFlM2U5ZjA5NDI2ZDiiARDW1cVQpqIR7aHEACWQyCQ3 HTTP/1.1
Host: sync.bumlam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Cookie: suuid3=IiRkNmQ1YzU1MC1hNmEyLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: suuid3=IiRkNmQ1YzU1MC1hNmEyLTExZWQtYTFjNC0wMDI1OTBjODI0Mzc*; Path=/; Expires=Mon, 02 Feb 2043 04:49:43 GMT; Domain=bumlam.com; SameSite=None; Secure
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0, no-cache=Set-Cookie, max-age=0, proxy-revalidate, s-maxage=0
sync.dsp.solta.io/match/moevideo_direct_ssp?id=a76a73e1e3e9f09426d8
200 OK 43 B URL HTTP/2 sync.dsp.solta.io/match/moevideo_direct_ssp?id=a76a73e1e3e9f09426d8
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /match/moevideo_direct_ssp?id=a76a73e1e3e9f09426d8 HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:43 GMT
content-type: image/gif
content-length: 43
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
cs-0.moevideo.biz/ssp/cs?d=21&b=35cb909942946d85374c
200 OK 36 B URL HTTP/1.1 cs-0.moevideo.biz/ssp/cs?d=21&b=35cb909942946d85374c
IP
ASN #199524 G-Core Labs S.A.
File type GIF image data, version 87a, 1 x 1\012- data
Hash 0f6772528490804eb3bda2a56b8a898d
1a16e6c73d2647b8adb100b0fe7ed2358c651f82
9b33810d308f761a076f7d2ddd720839b719bee12e8082e42b3d2042b5041090
GET /ssp/cs?d=21&b=35cb909942946d85374c HTTP/1.1
Host: cs-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Cookie: mvuid=a76a73e1e3e9f09426d8; mvsid=8279dc0a-2ffe-4f7c-9e97-0f484f1528b0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Type: image/gif
Content-Length: 36
Connection: keep-alive
Access-Control-Allow-Origin: *
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 40c46c9d7225058663c0b39f74f557e9
0b6a1cca751a3dfff9191f6031dc51a8d91ab783
c7f8481e90c5df9c64673e347f543add5c392ab7c72efd45e37d20a9b149c09d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C7F8481E90C5DF9C64673E347F543ADD5C392AB7C72EFD45E37D20A9B149C09D"
Last-Modified: Sun, 05 Feb 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7044
Expires: Tue, 07 Feb 2023 06:47:07 GMT
Date: Tue, 07 Feb 2023 04:49:43 GMT
Connection: keep-alive
sync.upravel.com/moevideo/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly9tb2V2aWRlby5iaXovIl19fQ
302 Found 0 B URL HTTP/2 sync.upravel.com/moevideo/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly9tb2V2aWRlby5iaXovIl19fQ
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /moevideo/sync?session_tpt=eyJoZWFkZXJzIjp7InJlZmVyZXIiOlsiaHR0cHM6Ly9tb2V2aWRlby5iaXovIl19fQ HTTP/1.1
Host: sync.upravel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Cookie: session_tptc=1675745383756
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 07 Feb 2023 04:49:43 GMT
content-type: image/png
content-length: 0
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: user_id=c2751d28-1fc4-422a-bbbb-12ba56b9d228;SameSite=None;Secure;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
user_id-legacy=c2751d28-1fc4-422a-bbbb-12ba56b9d228;Version=1;Domain=.upravel.com;Path=/;Max-Age=315360000
location: https://cs-0.moevideo.biz/ssp/cs?d=91&b=c2751d28-1fc4-422a-bbbb-12ba56b9d228
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
access-control-allow-credentials: false
X-Firefox-Spdy: h2
sync.dmp.otm-r.com/match/moevideo
204 No Content 0 B URL HTTP/2 sync.dmp.otm-r.com/match/moevideo
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/moevideo HTTP/1.1
Host: sync.dmp.otm-r.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.23.2
date: Tue, 07 Feb 2023 04:49:43 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP
Hash ea0c3bc013b0b08817c3a5ec5227554e
e5922fa554720a7599ff7efce45122f25a9ef3e7
2572b1b0860d88994ed7862595708f866abeaee73bcad2700ebbc792cd65a1e7
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 11 Feb 2023 03:50:51 GMT
ETag: "e5922fa554720a7599ff7efce45122f25a9ef3e7"
Last-Modified: Tue, 07 Feb 2023 03:50:52 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 956
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79598028fda20b41-OSL
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4590b169cafed2082c3d6a3f0c9f64e5
7a35def70640e1ae43bd94108bd8996a8f8acd19
ac998b116cb5fa737472301e0fbab02cb61f943d2ee7fdeb8065c3db0bc65092
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC998B116CB5FA737472301E0FBAB02CB61F943D2EE7FDEB8065C3DB0BC65092"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9001
Expires: Tue, 07 Feb 2023 07:19:44 GMT
Date: Tue, 07 Feb 2023 04:49:43 GMT
Connection: keep-alive
ocsp.sectigo.com/
200 OK 471 B IP
Hash dbb3fe4d8642c214cf6c1f4523abff84
595c46af4c12a911a209b5d4c6f12b5834b4cbc1
2193d8508d4538173a02bca99856f53dc4b1e4ad0c2bbd057b20d76349f25435
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 03:41:04 GMT
Expires: Sat, 11 Feb 2023 03:41:03 GMT
Etag: "595c46af4c12a911a209b5d4c6f12b5834b4cbc1"
Cache-Control: max-age=340879,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 795980281ad3b523-OSL
match.new-programmatic.com/userbind?src=moevideo&id=a76a73e1e3e9f09426d8
302 Found 0 B URL HTTP/1.1 match.new-programmatic.com/userbind?src=moevideo&id=a76a73e1e3e9f09426d8
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /userbind?src=moevideo&id=a76a73e1e3e9f09426d8 HTTP/1.1
Host: match.new-programmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.22.1
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Vary: Origin
Location: https://cs-0.moevideo.biz/ssp/cs?d=111&b==
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 4d5e1fbf39bdca5e800b54103675bbf9
e084a784d6823710c657dff0d0563944a9273a0f
c48e583954989764fe6e0224b5ab8670ec205ac4308efd5139c66215a8021ca4
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 11 Feb 2023 03:18:16 GMT
ETag: "e084a784d6823710c657dff0d0563944a9273a0f"
Last-Modified: Tue, 07 Feb 2023 03:18:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2093
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 795980295f89b512-OSL
exchange.buzzoola.com/cookiesync/redirect/moevideo?redirect_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D81%26b%3D%24%7BUUID%7D
301 Moved Permanently 115 B URL HTTP/2 exchange.buzzoola.com/cookiesync/redirect/moevideo?redirect_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D81%26b%3D%24%7BUUID%7D
IP
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text
Hash 2675293cdafce0aee7ae1aa3e29d2e75
ba1dd04dcd4f2699a0e6aac267dcb94bb315fce1
6b2a227a1a2a48836c23944e7fba161851a6ae3d71b42a0821418d5b64c310f2
GET /cookiesync/redirect/moevideo?redirect_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D81%26b%3D%24%7BUUID%7D HTTP/1.1
Host: exchange.buzzoola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 07 Feb 2023 04:49:43 GMT
content-type: text/html; charset=utf-8
content-length: 115
location: https://cs-0.moevideo.biz/ssp/cs?d=81&b=5526f1fa-b15e-4645-4857-1d1db889a02f
serverid: TODO
X-Firefox-Spdy: h2
kimberlite.io/rtb/sync/moevideo?u=a76a73e1e3e9f09426d8
307 Temporary Redirect 0 B URL HTTP/1.1 kimberlite.io/rtb/sync/moevideo?u=a76a73e1e3e9f09426d8
IP
ASN #197695 Domain names registrar REG.RU, Ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtb/sync/moevideo?u=a76a73e1e3e9f09426d8 HTTP/1.1
Host: kimberlite.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Length: 0
Connection: keep-alive
cache-control: no-store
access-control-allow-credentials: true
access-control-allow-origin: *
set-cookie: u=Y-HYZ-WHuU8~79uUNtXWoKMKHX3Q50Ct9MUs-So; path=/; max-age=7776000; samesite=none; httponly; secure
f=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D201%26b%3DY-HYZ-WHuU8; max-age=30; samesite=none; httponly; secure
n=1; max-age=30; samesite=none; httponly; secure
location: https://sync.dsp.solta.io/match/kimberlite?id=Y-HYZ-WHuU8
referrer-policy: no-referrer
server-timing: app;srv=2;dur=0.0002
rtb.com.ru/myvideo-sync?uid=a76a73e1e3e9f09426d8
204 No Content 0 B URL HTTP/1.1 rtb.com.ru/myvideo-sync?uid=a76a73e1e3e9f09426d8
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /myvideo-sync?uid=a76a73e1e3e9f09426d8 HTTP/1.1
Host: rtb.com.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.18.0
Date: Tue, 07 Feb 2023 04:49:43 GMT
Connection: keep-alive
Cache-Control: max-age=0, no-cache, no-store, must-revalidate, proxy-revalidate
P3p: CP="rtb.com.ru does not have a P3P policy"
cs-0.moevideo.biz/ssp/cs?d=91&b=c2751d28-1fc4-422a-bbbb-12ba56b9d228
200 OK 36 B URL HTTP/1.1 cs-0.moevideo.biz/ssp/cs?d=91&b=c2751d28-1fc4-422a-bbbb-12ba56b9d228
IP
ASN #199524 G-Core Labs S.A.
File type GIF image data, version 87a, 1 x 1\012- data
Hash 0f6772528490804eb3bda2a56b8a898d
1a16e6c73d2647b8adb100b0fe7ed2358c651f82
9b33810d308f761a076f7d2ddd720839b719bee12e8082e42b3d2042b5041090
GET /ssp/cs?d=91&b=c2751d28-1fc4-422a-bbbb-12ba56b9d228 HTTP/1.1
Host: cs-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Cookie: mvuid=a76a73e1e3e9f09426d8; mvsid=8279dc0a-2ffe-4f7c-9e97-0f484f1528b0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Type: image/gif
Content-Length: 36
Connection: keep-alive
Access-Control-Allow-Origin: *
sync.dsp.solta.io/match/kimberlite?id=Y-HYZ-WHuU8
302 Found 0 B URL HTTP/2 sync.dsp.solta.io/match/kimberlite?id=Y-HYZ-WHuU8
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/kimberlite?id=Y-HYZ-WHuU8 HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 07 Feb 2023 04:49:43 GMT
content-length: 0
location: https://sync.dsp.solta.io/match/kimberlite?id=Y-HYZ-WHuU8&chk=1
set-cookie: chk=1; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
sync.dsp.solta.io/match/kimberlite?id=Y-HYZ-WHuU8&chk=1
302 Found 0 B URL HTTP/2 sync.dsp.solta.io/match/kimberlite?id=Y-HYZ-WHuU8&chk=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/kimberlite?id=Y-HYZ-WHuU8&chk=1 HTTP/1.1
Host: sync.dsp.solta.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: chk=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 07 Feb 2023 04:49:44 GMT
content-length: 0
location: https://kimberlite.io/rtb/sync/iage?u=NTA0NmNiODRmYjEyNmIzYQ
set-cookie: pid=NTA0NmNiODRmYjEyNmIzYQ; expires=Wed, 07 Aug 2024 04:49:44 GMT; domain=.dsp.solta.io; path=/; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
cs-0.moevideo.biz/ssp/cs?d=81&b=5526f1fa-b15e-4645-4857-1d1db889a02f
200 OK 36 B URL HTTP/1.1 cs-0.moevideo.biz/ssp/cs?d=81&b=5526f1fa-b15e-4645-4857-1d1db889a02f
IP
ASN #199524 G-Core Labs S.A.
File type GIF image data, version 87a, 1 x 1\012- data
Hash 0f6772528490804eb3bda2a56b8a898d
1a16e6c73d2647b8adb100b0fe7ed2358c651f82
9b33810d308f761a076f7d2ddd720839b719bee12e8082e42b3d2042b5041090
GET /ssp/cs?d=81&b=5526f1fa-b15e-4645-4857-1d1db889a02f HTTP/1.1
Host: cs-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Cookie: mvuid=a76a73e1e3e9f09426d8; mvsid=8279dc0a-2ffe-4f7c-9e97-0f484f1528b0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: image/gif
Content-Length: 36
Connection: keep-alive
Access-Control-Allow-Origin: *
cs-0.moevideo.biz/ssp/cs?d=111&b==
403 Forbidden 146 B URL HTTP/1.1 cs-0.moevideo.biz/ssp/cs?d=111&b==
IP
ASN #199524 G-Core Labs S.A.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 9fe3cb2b7313dc79bb477bc8fde184a7
4d7b3cb41e90618358d0ee066c45c76227a13747
32f2fa940d4b4fe19aca1e53a24e5aac29c57b7c5ee78588325b87f1b649c864
GET /ssp/cs?d=111&b== HTTP/1.1
Host: cs-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Cookie: mvuid=a76a73e1e3e9f09426d8; mvsid=8279dc0a-2ffe-4f7c-9e97-0f484f1528b0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Server: nginx
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
r.mradx.net/img/B4/8C21C3.js
200 OK 58 kB URL HTTP/1.1 r.mradx.net/img/B4/8C21C3.js
IP
File type Unicode text, UTF-8 text, with very long lines (33918), with NEL line terminators
Hash c998ba06b6d15d5d5976001a0f69695d
f9cce7423db11057eb42e22ee71fb615edd3f141
0598b376978e9cb9470e8a0d068e8b2ab29f314bc280f88cdf08ae83fa48e615
GET /img/B4/8C21C3.js HTTP/1.1
Host: r.mradx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 18 Jan 2023 14:45:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63c805ee-2f858"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Encoding: gzip
yandex.ru/ads/system/adsdk.js
200 Ok 22 kB URL HTTP/1.1 yandex.ru/ads/system/adsdk.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8e95ea85e1565c2faacfafdff21e3d0c
44fe43d14c3431c938903882a7200b0e2adfd60a
847545392219275c908b0770fd3f444cd92e4ffcfb8481a59ec9af581a46583c
GET /ads/system/adsdk.js HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=3600
Content-Encoding: br
Content-Type: text/javascript; charset=utf-8
Expires: Tue, 07 Feb 2023 05:49:44 GMT
Keep-Alive: timeout=600
NEL: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
Report-To: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
Set-Cookie: i=ftPqqa3qNajMyGR+IOOfaaeDzXH7Zu4XPYDU12Uv/qJ3TnBiJTT/LikWsmuz9Q9yN/tGur/iDSwOQ1QJrEl6l+VwnsI=; Expires=Thu, 06-Feb-2025 04:49:44 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=6494234771675745384; Path=/; Domain=.yandex.ru; Expires=Wed, 07 Feb 2024 04:49:44 GMT; SameSite=None; Secure; HttpOnly
Timing-Allow-Origin: *
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-Robots-Tag: noindex, noarchive, nofollow
X-Yandex-Req-Id: 1675745384114362-17449567310360866051-balancer-l7leveler-kubr-yp-vla-9-BAL-5763
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash e3c77b8514579485806dc7a4ebb84eda
2349f1f6b6afc1481ecd2b73f0ccccb4a5d81c58
fbba33947fc62e8d8a6ec0f62795a58bb9ce42f06e708a5b3de9a9ac8435fe29
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Sat, 11 Feb 2023 01:25:38 GMT
ETag: "2349f1f6b6afc1481ecd2b73f0ccccb4a5d81c58"
Last-Modified: Tue, 07 Feb 2023 01:25:39 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1930
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7959802af827b512-OSL
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=719570&bt=21&bn=719570
302 Moved Temporarily 0 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=719570&bt=21&bn=719570
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/rle.cgi?sid=1&ad=719570&bt=21&bn=719570 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-5747952898; expires=Thu, 06 Feb 2025 04:49:44 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/rle.cgi?sid=1&ad=719570&bt=21&bn=719570&tuid=-5747952898
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 824206673a14e4894b78d1a9571a89eb
838ae107f16ad59995febd479b8e1a6da47203aa
2a073f5ec3a754c4221a7a7b686eec1389511f8ab367160882cbf65681aed477
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 06 Feb 2023 21:54:44 GMT
Expires: Tue, 07 Feb 2023 21:54:44 GMT
ETag: "838ae107f16ad59995febd479b8e1a6da47203aa"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ad.mail.ru/dist/vkAuth.html
200 OK 523 B URL HTTP/2 ad.mail.ru/dist/vkAuth.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 230cf79591a418fd05597bbdfded6703
5c7b9904b1a7e338ede3ab0e8ee73decd05a2902
ed75109404e5ed7750f964bfe12245ad0d67cd4fb6d2d4138ee094d322477c82
GET /dist/vkAuth.html HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:44 GMT
content-type: text/html;charset=UTF-8
content-length: 523
expires: Tue, 07 Feb 2023 04:59:44 GMT
cache-control: max-age=600
access-control-allow-origin: *
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash d28ed3e080cbd1ec203a146092a4fbcb
9a6603e8c7baf71763e6580ed393eac576aea446
67055b2b4523563bf69bdfdd432a16bf6b9521ef296694c57bd4e8dce105e429
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 14:03:24 GMT
Expires: Sat, 11 Feb 2023 14:03:23 GMT
Etag: "9a6603e8c7baf71763e6580ed393eac576aea446"
Cache-Control: max-age=378218,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7959802b1c34b523-OSL
ocsp.usertrust.com/
200 OK 472 B IP
Hash d5dfe7a9b50e9aca3c95f2fbe89f8b1d
1a443dfe53fae80736043a72d7bd2b8d359439dc
f0b950fb23defbe9902b76f5074ece28cc622991a244f30a72bf8db71f5502b4
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 06 Feb 2023 04:18:21 GMT
Expires: Mon, 13 Feb 2023 04:18:20 GMT
Etag: "1a443dfe53fae80736043a72d7bd2b8d359439dc"
Cache-Control: max-age=604155,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1292
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7959802b580fb524-OSL
dx.frontend.weborama.com/collect?touchpoint=0&url=https%3A//moevideo.biz/native%3Fid%3Dmv-content-roll-3409%26slot%3Dcontent%26api%3D2.0%26ref%3Dbase.garant.ru%26frp%3DaHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-%26instream%3D
307 Temporary Redirect 0 B URL HTTP/2 dx.frontend.weborama.com/collect?touchpoint=0&url=https%3A//moevideo.biz/native%3Fid%3Dmv-content-roll-3409%26slot%3Dcontent%26api%3D2.0%26ref%3Dbase.garant.ru%26frp%3DaHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-%26instream%3D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?touchpoint=0&url=https%3A//moevideo.biz/native%3Fid%3Dmv-content-roll-3409%26slot%3Dcontent%26api%3D2.0%26ref%3Dbase.garant.ru%26frp%3DaHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-%26instream%3D HTTP/1.1
Host: dx.frontend.weborama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
server: Weborama Collect Frontend
date: Tue, 07 Feb 2023 04:49:43 GMT
content-length: 0
location: https://dx.frontend.weborama.com/collect?touchpoint=0&url=https%3A%2F%2Fmoevideo.biz%2Fnative%3Fid%3Dmv-content-roll-3409%26slot%3Dcontent%26api%3D2.0%26ref%3Dbase.garant.ru%26frp%3DaHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-%26instream%3D&bounce=1&random=4158154248
vary: Origin
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Tue, 07 Feb 2023 04:49:44 GMT
set-cookie: wui=BFFEA48A-9D93-471C-A30E-F49E22E2D440; expires=Wed, 06 Mar 2024 04:49:44 GMT; domain=.weborama.com; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 09c736cac4913bd056e22769e00af0be
b9e6dde7b5b5594203c364409024645eddd1bd08
61c34fe597e482d0f8beaa5c409edafd99349c0a80ddf6990408acc3f2b64bcf
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 07 Feb 2023 04:49:43 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 06 Feb 2023 22:36:56 GMT
Expires: Tue, 07 Feb 2023 22:36:56 GMT
ETag: "b9e6dde7b5b5594203c364409024645eddd1bd08"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 592ee94d33b881270074720550b8e9b2
466d7e02758b43af6ef785e6ea2257cbb567f1c5
ea1aab6193225562024c38a8b1557b83fb1dc15274e294d2052e03123642593d
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 11 Feb 2023 01:21:32 GMT
ETag: "466d7e02758b43af6ef785e6ea2257cbb567f1c5"
Last-Modified: Tue, 07 Feb 2023 01:21:33 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3533
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7959802b887db512-OSL
ads.betweendigital.com/match?bidder_id=42837&callback_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D161%26b%3D%24%7BUSER_ID%7D
302 Found 0 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=42837&callback_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D161%26b%3D%24%7BUSER_ID%7D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?bidder_id=42837&callback_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D161%26b%3D%24%7BUSER_ID%7D HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: /match?bidder_id=42837&callback_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D161%26b%3D%24%7BUSER_ID%7D&crf=1
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Wed, 07 Feb 2024 04:49:44 GMT; Path=/; Domain=.betweendigital.com
tuuid=2a23229a-9c2f-5226-81c4-2764e225ff0c; Max-Age=31536000; Expires=Wed, 07 Feb 2024 04:49:44 GMT; Path=/; Domain=.betweendigital.com
ut=Y-HYaAADobDKCeVErYx3wa0sgXzKSqJzhFc3qQ==; Max-Age=31536000; Expires=Wed, 07 Feb 2024 04:49:44 GMT; Path=/; Domain=.betweendigital.com
content-length: 0
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 01a705d09f944f512d4c902c3d3fee07
08095141e6088debc4fda451a3e4fe09f8e07ecc
0cfe1a28c8958b81d767fa9a215fb7f887d9d8749db28392a26dc5be779f42b1
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 11 Feb 2023 00:04:56 GMT
ETag: "08095141e6088debc4fda451a3e4fe09f8e07ecc"
Last-Modified: Tue, 07 Feb 2023 00:04:57 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2957
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7959802b98e5fac0-OSL
ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=719570&bt=21&bn=719570&tuid=-5747952898
200 OK 42 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/rle.cgi?sid=1&ad=719570&bt=21&bn=719570&tuid=-5747952898
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cgi-bin/rle.cgi?sid=1&ad=719570&bt=21&bn=719570&tuid=-5747952898 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="//adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Thu, 06 Feb 2025 04:49:44 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
moevideo-sync.rutarget.ru/sync
302 Moved Temporarily 0 B URL HTTP/1.1 moevideo-sync.rutarget.ru/sync
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync HTTP/1.1
Host: moevideo-sync.rutarget.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Length: 0
Connection: close
Location: https://cs-0.moevideo.biz/ssp/cs?d=1&b=nUH8wox69Wk_
P3P: CP="This is not a P3P policy. Please visit http://rutarget.ru/p3p/ to get more information."
Set-Cookie: userId=nUH8wox69Wk_; Path=/; Domain=.rutarget.ru; Expires=Sun, 06 Aug 2023 04:49:44 GMT; SameSite=None; Secure
ads.betweendigital.com/match?bidder_id=42837&callback_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D161%26b%3D%24%7BUSER_ID%7D&crf=1
200 OK 68 B URL HTTP/2 ads.betweendigital.com/match?bidder_id=42837&callback_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D161%26b%3D%24%7BUSER_ID%7D&crf=1
IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /match?bidder_id=42837&callback_url=https%3A%2F%2Fcs-0.moevideo.biz%2Fssp%2Fcs%3Fd%3D161%26b%3D%24%7BUSER_ID%7D&crf=1 HTTP/1.1
Host: ads.betweendigital.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
cache-control: no-cache, no-store, max-age=0, must-revalidate
set-cookie: dc=lux1; Max-Age=31536000; Expires=Wed, 07 Feb 2024 04:49:44 GMT; Path=/; Domain=.betweendigital.com
tuuid=796f93e5-9043-5226-9b03-c85bf8e21033; Max-Age=31536000; Expires=Wed, 07 Feb 2024 04:49:44 GMT; Path=/; Domain=.betweendigital.com
ut=Y-HYaAAEPfD9DA-H16nd2s_Ll62yp8SmT3HAWQ==; Max-Age=31536000; Expires=Wed, 07 Feb 2024 04:49:44 GMT; Path=/; Domain=.betweendigital.com
content-length: 68
X-Firefox-Spdy: h2
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fsync.dsp.solta.io%2Fmatch%2Fweborama%3Fid%3D%7BWEBO_CID%7D
307 Temporary Redirect 0 B URL HTTP/2 redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fsync.dsp.solta.io%2Fmatch%2Fweborama%3Fid%3D%7BWEBO_CID%7D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rd?url=https%3A%2F%2Fsync.dsp.solta.io%2Fmatch%2Fweborama%3Fid%3D%7BWEBO_CID%7D HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
server: Weborama Collect Frontend
date: Tue, 07 Feb 2023 04:49:43 GMT
content-length: 0
location: https://redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fsync.dsp.solta.io%2Fmatch%2Fweborama%3Fid%3D%7BWEBO_CID%7D&bounce=1&random=1972194298
vary: Origin
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Tue, 07 Feb 2023 04:49:44 GMT
set-cookie: AFFICHE_W=c7JF79q0IYVz18; expires=Wed, 06 Mar 2024 04:49:44 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dx.frontend.weborama.com/collect?touchpoint=0&url=https%3A%2F%2Fmoevideo.biz%2Fnative%3Fid%3Dmv-content-roll-3409%26slot%3Dcontent%26api%3D2.0%26ref%3Dbase.garant.ru%26frp%3DaHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-%26instream%3D&bounce=1&random=4158154248
204 No Content 0 B URL HTTP/2 dx.frontend.weborama.com/collect?touchpoint=0&url=https%3A%2F%2Fmoevideo.biz%2Fnative%3Fid%3Dmv-content-roll-3409%26slot%3Dcontent%26api%3D2.0%26ref%3Dbase.garant.ru%26frp%3DaHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-%26instream%3D&bounce=1&random=4158154248
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?touchpoint=0&url=https%3A%2F%2Fmoevideo.biz%2Fnative%3Fid%3Dmv-content-roll-3409%26slot%3Dcontent%26api%3D2.0%26ref%3Dbase.garant.ru%26frp%3DaHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-%26instream%3D&bounce=1&random=4158154248 HTTP/1.1
Host: dx.frontend.weborama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: Weborama Collect Frontend
date: Tue, 07 Feb 2023 04:49:43 GMT
vary: Origin
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Tue, 07 Feb 2023 04:49:44 GMT
set-cookie: wui=; expires=Tue, 10 Nov 2009 23:00:00 GMT; domain=.weborama.com; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
yastatic.net/vas-bundles/713289/bundles-es2017/loader.bundle.js
200 OK 166 kB URL HTTP/2 yastatic.net/vas-bundles/713289/bundles-es2017/loader.bundle.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 166 kB (165520 bytes)
Hash 26485e6f8941e1f2e690f0fa0d06259b
b0dcf5dca3a47522203364cf3af68e38aae2878c
e109a9c18a8c435d1b8657b567d24024c4e1a4d35c2f1bf7f9946301d6b255f2
GET /vas-bundles/713289/bundles-es2017/loader.bundle.js HTTP/1.1
Host: yastatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.9
date: Tue, 07 Feb 2023 04:49:44 GMT
content-type: text/javascript; charset=utf-8
content-length: 165520
access-control-allow-origin: *
cache-control: max-age=946708560
content-encoding: br
etag: "26485e6f8941e1f2e690f0fa0d06259b"
expires: Thu, 06 Feb 2053 11:24:01 GMT
last-modified: Fri, 27 Jan 2023 16:19:06 GMT
nel: {"report_to": "network-errors", "max_age": 7200, "success_fraction": 0.001, "failure_fraction": 0.01}
report-to: { "group": "network-errors", "max_age": 7200, "endpoints": [ { "url": "https://dr.yandex.net/nel"}]}
strict-transport-security: max-age=946708560; includeSubDomains;
timing-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, noarchive, nofollow
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 824206673a14e4894b78d1a9571a89eb
838ae107f16ad59995febd479b8e1a6da47203aa
2a073f5ec3a754c4221a7a7b686eec1389511f8ab367160882cbf65681aed477
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 06 Feb 2023 21:54:44 GMT
Expires: Tue, 07 Feb 2023 21:54:44 GMT
ETag: "838ae107f16ad59995febd479b8e1a6da47203aa"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
sm.rtb.mts.ru/p?ssp=moevideo&id=a76a73e1e3e9f09426d8
301 Moved Permanently 0 B URL HTTP/1.1 sm.rtb.mts.ru/p?ssp=moevideo&id=a76a73e1e3e9f09426d8
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p?ssp=moevideo&id=a76a73e1e3e9f09426d8 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://sm.rtb.mts.ru/match/second?ssp=22&exu=a76a73e1e3e9f09426d8
Set-Cookie: dspid=65ebfff2-376e-413f-afcf-a9b575af7fe1; expires=Mon, 29 Jan 2024 04:49:44 GMT; domain=.mts.ru; path=/; secure; SameSite=None
px.adhigh.net/p/cm/moevideo
302 Found 0 B URL HTTP/2 px.adhigh.net/p/cm/moevideo
IP
ASN #48061 Limited Liability Company GPM Digital Technologies
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/cm/moevideo HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 07 Feb 2023 04:49:44 GMT
content-length: 0
x-backend-id: f23-ru
access-control-allow-origin: *
access-control-allow-credentials: true
set-cookie: gi_u=u6RnAW9y6wf.AikABlGGKjVXng;Path=/;Domain=.adhigh.net;Expires=Wed, 07-Feb-2024 04:49:44 GMT;Secure;SameSite=None
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
location: https://px.adhigh.net/p/cm/moevideo?bounced=1
X-Firefox-Spdy: h2
redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fsync.dsp.solta.io%2Fmatch%2Fweborama%3Fid%3D%7BWEBO_CID%7D&bounce=1&random=1972194298
204 No Content 0 B URL HTTP/2 redirect.frontend.weborama.fr/rd?url=https%3A%2F%2Fsync.dsp.solta.io%2Fmatch%2Fweborama%3Fid%3D%7BWEBO_CID%7D&bounce=1&random=1972194298
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rd?url=https%3A%2F%2Fsync.dsp.solta.io%2Fmatch%2Fweborama%3Fid%3D%7BWEBO_CID%7D&bounce=1&random=1972194298 HTTP/1.1
Host: redirect.frontend.weborama.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: Weborama Collect Frontend
date: Tue, 07 Feb 2023 04:49:43 GMT
vary: Origin
access-control-allow-origin: *
p3p: CP="NOI DSP COR CURa DEVa PSAa OUR STP UNI DEM"
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
expires: Tue, 03 Jul 2001 06:00:00 GMT
last-modified: Tue, 07 Feb 2023 04:49:44 GMT
set-cookie: AFFICHE_W=; expires=Tue, 10 Nov 2009 23:00:00 GMT; domain=.weborama.fr; path=/; secure; SameSite=None
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.8 kB IP
Hash 09c736cac4913bd056e22769e00af0be
b9e6dde7b5b5594203c364409024645eddd1bd08
61c34fe597e482d0f8beaa5c409edafd99349c0a80ddf6990408acc3f2b64bcf
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 06 Feb 2023 22:36:56 GMT
Expires: Tue, 07 Feb 2023 22:36:56 GMT
ETag: "b9e6dde7b5b5594203c364409024645eddd1bd08"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp2.globalsign.com/gsorganizationvalsha2g2
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash 726a83ad30d042ac186740f4e9d53264
2c12896ab288680269502c6086d95469f3a05170
cff2b9c9d2f1afb45f4211c424e00b1ac7778e3beff2e6d6a0323031255f30b8
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 11 Feb 2023 03:43:33 GMT
ETag: "2c12896ab288680269502c6086d95469f3a05170"
Last-Modified: Tue, 07 Feb 2023 03:43:34 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 956
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7959802c8ee6b4ff-OSL
cs-0.moevideo.biz/ssp/cs?d=1&b=nUH8wox69Wk_
200 OK 36 B URL HTTP/1.1 cs-0.moevideo.biz/ssp/cs?d=1&b=nUH8wox69Wk_
IP
ASN #199524 G-Core Labs S.A.
File type GIF image data, version 87a, 1 x 1\012- data
Hash 0f6772528490804eb3bda2a56b8a898d
1a16e6c73d2647b8adb100b0fe7ed2358c651f82
9b33810d308f761a076f7d2ddd720839b719bee12e8082e42b3d2042b5041090
GET /ssp/cs?d=1&b=nUH8wox69Wk_ HTTP/1.1
Host: cs-0.moevideo.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Cookie: mvuid=a76a73e1e3e9f09426d8; mvsid=8279dc0a-2ffe-4f7c-9e97-0f484f1528b0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: image/gif
Content-Length: 36
Connection: keep-alive
Access-Control-Allow-Origin: *
sm.rtb.mts.ru/match/second?ssp=22&exu=a76a73e1e3e9f09426d8
200 OK 0 B URL HTTP/1.1 sm.rtb.mts.ru/match/second?ssp=22&exu=a76a73e1e3e9f09426d8
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match/second?ssp=22&exu=a76a73e1e3e9f09426d8 HTTP/1.1
Host: sm.rtb.mts.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Length: 0
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Origin
Access-Control-Allow-Methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
Access-Control-Allow-Origin: *
Vary: Origin
Cache-Control: no-store, no-cache, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
api.mindbox.ru/v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-block-57005-targeting&originDomain=base.garant.ru
200 OK 0 B URL HTTP/1.1 api.mindbox.ru/v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-block-57005-targeting&originDomain=base.garant.ru
IP
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-block-57005-targeting&originDomain=base.garant.ru HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 175
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Cookie: deviceUUID=d35bffe1-aa99-4011-a14e-2f823dbb3f9a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://base.garant.ru
cache-control: no-cache, no-store, must-revalidate
content-length: 0
content-security-policy: default-src 'self' 'unsafe-inline'
date: Tue, 07 Feb 2023 04:49:43 GMT
expires: -1
feature-policy: vibrate 'self'
pragma: no-cache
referrer-policy: same-origin
server: Kestrel
set-cookie: deviceUUID=d35bffe1-aa99-4011-a14e-2f823dbb3f9a; expires=Tue, 19-Jan-2038 00:00:00 GMT; path=/; Secure; HttpOnly; SameSite=None;
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
vk.com/js/api/openapi.js?169
200 OK 23 kB URL HTTP/2 vk.com/js/api/openapi.js?169
IP
File type ASCII text, with very long lines (3849)
Hash 6b56e2aa629cc5f334bba9e200af3bfe
1e99707868f45c499400d95e75348c3d7b7686f5
7cb4aa1277e9f29f5c6d21c642b7c08cfce199332e30395c20995847a0db3fab
GET /js/api/openapi.js?169 HTTP/1.1
Host: vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Tue, 07 Feb 2023 04:49:44 GMT
content-type: application/x-javascript
content-length: 23318
last-modified: Fri, 02 Dec 2022 07:14:40 GMT
etag: "6389a5e0-5b16"
content-encoding: br
expires: Sat, 11 Feb 2023 04:49:44 GMT
cache-control: max-age=345600
x-frontend: front226205
access-control-expose-headers: X-Frontend
X-Firefox-Spdy: h2
px.adhigh.net/p/cm/moevideo?bounced=1
200 OK 49 B URL HTTP/2 px.adhigh.net/p/cm/moevideo?bounced=1
IP
ASN #48061 Limited Liability Company GPM Digital Technologies
File type GIF image data, version 89a, 1 x 1\012- data
Hash 889bc1fffc025af4685839fb516a0b8b
7f105137a4eafe93213ecd8cc34dd907c340467c
d0409a1b73dab4e29dc40f92fb431fa9133baa23b4a1ffae4897f39068110e32
GET /p/cm/moevideo?bounced=1 HTTP/1.1
Host: px.adhigh.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:44 GMT
content-type: image/gif
content-length: 49
x-backend-id: f23-ru
access-control-allow-origin: *
access-control-allow-credentials: true
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
cache-control: no-cache, no-store
X-Firefox-Spdy: h2
api.mindbox.ru/v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-block-57005-show&originDomain=base.garant.ru
200 OK 0 B URL HTTP/1.1 api.mindbox.ru/v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-block-57005-show&originDomain=base.garant.ru
IP
ASN #200350 Yandex.Cloud LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v3/js/operations/async?version=1.0.418&transport=beacon&operation=popmechanic-block-57005-show&originDomain=base.garant.ru HTTP/1.1
Host: api.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 170
Origin: https://base.garant.ru
Connection: keep-alive
Referer: https://base.garant.ru/
Cookie: deviceUUID=d35bffe1-aa99-4011-a14e-2f823dbb3f9a
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://base.garant.ru
cache-control: no-cache, no-store, must-revalidate
content-length: 0
content-security-policy: default-src 'self' 'unsafe-inline'
date: Tue, 07 Feb 2023 04:49:43 GMT
expires: -1
feature-policy: vibrate 'self'
pragma: no-cache
referrer-policy: same-origin
server: Kestrel
set-cookie: deviceUUID=d35bffe1-aa99-4011-a14e-2f823dbb3f9a; expires=Tue, 19-Jan-2038 00:00:00 GMT; path=/; Secure; HttpOnly; SameSite=None;
strict-transport-security: max-age=315360000; includeSubDomains; preload
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
personalization-pixel-stable.mindbox.ru/web/pixel/stats/?form=57005&settings=&conditions=&type=show&v=4.23.6&vid=19147822670&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&u_s=(direct)
200 OK 42 B URL HTTP/1.1 personalization-pixel-stable.mindbox.ru/web/pixel/stats/?form=57005&settings=&conditions=&type=show&v=4.23.6&vid=19147822670&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&u_s=(direct)
IP
ASN #200350 Yandex.Cloud LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /web/pixel/stats/?form=57005&settings=&conditions=&type=show&v=4.23.6&vid=19147822670&client=35758&source=typein&device=pc&url=https%3A%2F%2Fbase.garant.ru%2F10900200%2F11e2106fa4ec328ea2d88df540010b52%2F&u_s=(direct) HTTP/1.1
Host: personalization-pixel-stable.mindbox.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-origin: *
content-length: 42
content-security-policy: default-src 'self' 'unsafe-inline'
content-type: image/gif
date: Tue, 07 Feb 2023 04:49:43 GMT
feature-policy: vibrate 'self'
referrer-policy: same-origin
server: Kestrel
strict-transport-security: max-age=315360000; includeSubDomains; preload
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
yandex.ru/ads/vmap/266507?video-content-id=0&ad-session-id=9989431675745432603&pcode-icookie=pG5tTAs%2BBtUZMBuG1iJMQd0nFwnGISUkHsmQdk4blqMAvvNBA4ayzsY7%2B%2FOz5skYEsK%2FtzRCCaWQctzKV2Mav%2B4NyyE%3D&pcode-test-ids=685676%2C0%2C7%3B711101%2C0%2C14&pcode-flags=%7B%22IGNORE_MISSED_DATA_PARAMS_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_REQUEST_VMAP_FROM_ADS%22%3A%22TRUE%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITHOUT_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITH_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_ALL_PRODUCTS_INFINITE_PACKSHOT%22%3A%22exp%22%2C%22ENABLE_ECOM_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_SHOW_AD_LABEL_FOR_IN_BANNER%22%3A%22TRUE%22%2C%22ENABLE_NEW_SKIN_IN_AD_LOADER_PLAYER%22%3A%22exp%22%2C%22VAS_INPAGE_STICKY_DISABLED_ALL_BUT_ADFOX_DIRECT_SELL%22%3A%22EXP%22%2C%22VAS_USE_NEW_SKIN_IN_NANPU%22%3A%22TRUE%22%2C%22VAS_THROW_ERROR_IF_SURVEY_CONFIG_IS_NOT_VALID%22%3A%22TRUE%22%2C%22VAS_ADD_LAYOUT_CONFIG_TO_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_ALLOW_ONLY_PUBLIC_API_FOR_AD_STORE%22%3A%22TRUE%22%2C%22VAS_REMOVE_OLD_SIZE_PARAMS_FROM_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_STABLE_VERSION%22%3A%22713289%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_REPORTS%22%3A%22TRUE%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_HEAVY_REPORT%22%3A%22TRUE%22%2C%22ENABLE_ECOM_PRODUCTS_LIST_IN_VIDEO_IN_COMBO_ARM%22%3A%22ctl%22%7D&uniformat=true&video-category-id=0&wtime-since-ad=0&client_type=html&adsdk-bundle-version=713289&adsdk-bundle-name=AdLoader&vsid=20ec6411ac54c3ecc50aa8f6c795b69048570ace6801xVASx3289x1675745432&top-ancestor=https%3A%2F%2Fbase.garant.ru&top-ancestor-undetermined=1&client-ts=1675745432657&client-timezone-offset=0&viewability-undetermined=0&video-volume=0&video-muted=1&document-has-focus=false&is-fullscreen=unknown&ad-pod-id=unknown&product-theme=unknown&layout-config=%7B%22win_width%22%3A0%2C%22win_height%22%3A0%2C%22pixel_ratio%22%3A0%2C%22bandwidth%22%3A0%2C%22width%22%3A0%2C%22height%22%3A0%2C%22w%22%3A0%2C%22h%22%3A0%2C%22left%22%3A0%2C%22top%22%3A0%2C%22visible%22%3A0%2C%22req_no%22%3A0%7D
200 Ok 882 B URL HTTP/1.1 yandex.ru/ads/vmap/266507?video-content-id=0&ad-session-id=9989431675745432603&pcode-icookie=pG5tTAs%2BBtUZMBuG1iJMQd0nFwnGISUkHsmQdk4blqMAvvNBA4ayzsY7%2B%2FOz5skYEsK%2FtzRCCaWQctzKV2Mav%2B4NyyE%3D&pcode-test-ids=685676%2C0%2C7%3B711101%2C0%2C14&pcode-flags=%7B%22IGNORE_MISSED_DATA_PARAMS_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_REQUEST_VMAP_FROM_ADS%22%3A%22TRUE%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITHOUT_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITH_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_ALL_PRODUCTS_INFINITE_PACKSHOT%22%3A%22exp%22%2C%22ENABLE_ECOM_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_SHOW_AD_LABEL_FOR_IN_BANNER%22%3A%22TRUE%22%2C%22ENABLE_NEW_SKIN_IN_AD_LOADER_PLAYER%22%3A%22exp%22%2C%22VAS_INPAGE_STICKY_DISABLED_ALL_BUT_ADFOX_DIRECT_SELL%22%3A%22EXP%22%2C%22VAS_USE_NEW_SKIN_IN_NANPU%22%3A%22TRUE%22%2C%22VAS_THROW_ERROR_IF_SURVEY_CONFIG_IS_NOT_VALID%22%3A%22TRUE%22%2C%22VAS_ADD_LAYOUT_CONFIG_TO_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_ALLOW_ONLY_PUBLIC_API_FOR_AD_STORE%22%3A%22TRUE%22%2C%22VAS_REMOVE_OLD_SIZE_PARAMS_FROM_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_STABLE_VERSION%22%3A%22713289%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_REPORTS%22%3A%22TRUE%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_HEAVY_REPORT%22%3A%22TRUE%22%2C%22ENABLE_ECOM_PRODUCTS_LIST_IN_VIDEO_IN_COMBO_ARM%22%3A%22ctl%22%7D&uniformat=true&video-category-id=0&wtime-since-ad=0&client_type=html&adsdk-bundle-version=713289&adsdk-bundle-name=AdLoader&vsid=20ec6411ac54c3ecc50aa8f6c795b69048570ace6801xVASx3289x1675745432&top-ancestor=https%3A%2F%2Fbase.garant.ru&top-ancestor-undetermined=1&client-ts=1675745432657&client-timezone-offset=0&viewability-undetermined=0&video-volume=0&video-muted=1&document-has-focus=false&is-fullscreen=unknown&ad-pod-id=unknown&product-theme=unknown&layout-config=%7B%22win_width%22%3A0%2C%22win_height%22%3A0%2C%22pixel_ratio%22%3A0%2C%22bandwidth%22%3A0%2C%22width%22%3A0%2C%22height%22%3A0%2C%22w%22%3A0%2C%22h%22%3A0%2C%22left%22%3A0%2C%22top%22%3A0%2C%22visible%22%3A0%2C%22req_no%22%3A0%7D
IP
File type XML 1.0 document text\012- XML document, Unicode text, UTF-8 text
Hash bfe8d630c4bf28a4e1899029c300ce29
903810dfad83938fa7d0d59e2b9843008cbe6fd4
3bcf53a35a06ff9fac18769dfe4beadb2de6183f5fbdf9526da56bf954007fd5
GET /ads/vmap/266507?video-content-id=0&ad-session-id=9989431675745432603&pcode-icookie=pG5tTAs%2BBtUZMBuG1iJMQd0nFwnGISUkHsmQdk4blqMAvvNBA4ayzsY7%2B%2FOz5skYEsK%2FtzRCCaWQctzKV2Mav%2B4NyyE%3D&pcode-test-ids=685676%2C0%2C7%3B711101%2C0%2C14&pcode-flags=%7B%22IGNORE_MISSED_DATA_PARAMS_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_REQUEST_VMAP_FROM_ADS%22%3A%22TRUE%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITHOUT_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITH_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_ALL_PRODUCTS_INFINITE_PACKSHOT%22%3A%22exp%22%2C%22ENABLE_ECOM_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_SHOW_AD_LABEL_FOR_IN_BANNER%22%3A%22TRUE%22%2C%22ENABLE_NEW_SKIN_IN_AD_LOADER_PLAYER%22%3A%22exp%22%2C%22VAS_INPAGE_STICKY_DISABLED_ALL_BUT_ADFOX_DIRECT_SELL%22%3A%22EXP%22%2C%22VAS_USE_NEW_SKIN_IN_NANPU%22%3A%22TRUE%22%2C%22VAS_THROW_ERROR_IF_SURVEY_CONFIG_IS_NOT_VALID%22%3A%22TRUE%22%2C%22VAS_ADD_LAYOUT_CONFIG_TO_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_ALLOW_ONLY_PUBLIC_API_FOR_AD_STORE%22%3A%22TRUE%22%2C%22VAS_REMOVE_OLD_SIZE_PARAMS_FROM_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_STABLE_VERSION%22%3A%22713289%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_REPORTS%22%3A%22TRUE%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_HEAVY_REPORT%22%3A%22TRUE%22%2C%22ENABLE_ECOM_PRODUCTS_LIST_IN_VIDEO_IN_COMBO_ARM%22%3A%22ctl%22%7D&uniformat=true&video-category-id=0&wtime-since-ad=0&client_type=html&adsdk-bundle-version=713289&adsdk-bundle-name=AdLoader&vsid=20ec6411ac54c3ecc50aa8f6c795b69048570ace6801xVASx3289x1675745432&top-ancestor=https%3A%2F%2Fbase.garant.ru&top-ancestor-undetermined=1&client-ts=1675745432657&client-timezone-offset=0&viewability-undetermined=0&video-volume=0&video-muted=1&document-has-focus=false&is-fullscreen=unknown&ad-pod-id=unknown&product-theme=unknown&layout-config=%7B%22win_width%22%3A0%2C%22win_height%22%3A0%2C%22pixel_ratio%22%3A0%2C%22bandwidth%22%3A0%2C%22width%22%3A0%2C%22height%22%3A0%2C%22w%22%3A0%2C%22h%22%3A0%2C%22left%22%3A0%2C%22top%22%3A0%2C%22visible%22%3A0%2C%22req_no%22%3A0%7D HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Content-Encoding: gzip
Content-Type: text/xml; charset=utf-8
NEL: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
Report-To: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
Set-Cookie: i=ei3HY8pW+LCBEC7hw2WQZQLv4/cj5Hd24YnZuBE53tn8WX0a0LbiNSGKkF5qSuykJ5K62pEeI/JNazfJo9vE+miBCKo=; Expires=Thu, 06-Feb-2025 04:49:44 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=2079185021675745384; Path=/; Domain=.yandex.ru; Expires=Wed, 07 Feb 2024 04:49:44 GMT; SameSite=None; Secure; HttpOnly
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-Yandex-Req-Id: 1675745384548630-3187249746434472144-balancer-l7leveler-kubr-yp-vla-9-BAL-8828
access-control-allow-credentials: true
access-control-allow-origin: https://moevideo.biz
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
date: Tue, 07 Feb 2023 04:49:44 GMT
expires: Tue, 07 Feb 2023 04:49:44 GMT
last-modified: Tue, 07 Feb 2023 04:49:44 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
pragma: no-cache
timing-allow-origin: *
x-xss-protection: 1; mode=block
static.popmechanic.io/media/popmechanic/tns.js?2
200 OK 13 kB URL HTTP/1.1 static.popmechanic.io/media/popmechanic/tns.js?2
IP
ASN #200350 Yandex.Cloud LLC
File type ASCII text, with very long lines (31830)
Hash 77a44d22cfd86a6506bdf0af1e6d222a
9b86741f87c3cdae7676778455706240d0b93153
57cd16bf669af4f99973f763e3403af9d38a91855dd28e366265e8aade8b6053
GET /media/popmechanic/tns.js?2 HTTP/1.1
Host: static.popmechanic.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: application/javascript
Last-Modified: Wed, 05 Oct 2022 15:44:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"633da65b-7c57"
Expires: Wed, 08 Feb 2023 04:49:44 GMT
Cache-Control: max-age=86400
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, OPTIONS, PATCH, PUT
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-CSRFToken,Authorization
Content-Encoding: gzip
ocsp2.globalsign.com/gsorganizationvalsha2g2
200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP
Hash f254e22ed70a4f01d508c30054b5999e
ff52943db76801ced173c9a480db383955652e1d
4bab74be7600d61c13d7d1c6eb1bb4763fa73c543b2832e7304f8bf530fbcea2
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Sat, 11 Feb 2023 01:29:59 GMT
ETag: "ff52943db76801ced173c9a480db383955652e1d"
Last-Modified: Tue, 07 Feb 2023 01:30:00 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3526
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7959802e3f7cb4ff-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash 4f6ab819546ca658f1bada9089350f8c
1f20f4634e7eb3c61ef4188f14e41f8ccecd9129
485e3141c4ea9737e4cd29aadd202b03d0e8debea2f13b0c0c608db62e881048
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 04 Feb 2023 09:41:29 GMT
Expires: Sat, 11 Feb 2023 09:41:28 GMT
Etag: "1f20f4634e7eb3c61ef4188f14e41f8ccecd9129"
Cache-Control: max-age=362503,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7959802c4ca0b523-OSL
yandex.ru/ads/meta/266507?imp-id=2&vmap-request-id=412243606011163601&video-category-id=0&vsid=20ec6411ac54c3ecc50aa8f6c795b69048570ace6801xVASx3289x1675745432&client-timezone-offset=0&uniformat=true&video-content-id=0&ad-session-id=9989431675745432603&pcode-icookie=pG5tTAs%2BBtUZMBuG1iJMQd0nFwnGISUkHsmQdk4blqMAvvNBA4ayzsY7%2B%2FOz5skYEsK%2FtzRCCaWQctzKV2Mav%2B4NyyE%3D&pcode-test-ids=685676%2C0%2C7%3B711101%2C0%2C14&pcode-flags=%7B%22IGNORE_MISSED_DATA_PARAMS_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_REQUEST_VMAP_FROM_ADS%22%3A%22TRUE%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITHOUT_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITH_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_ALL_PRODUCTS_INFINITE_PACKSHOT%22%3A%22exp%22%2C%22ENABLE_ECOM_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_SHOW_AD_LABEL_FOR_IN_BANNER%22%3A%22TRUE%22%2C%22ENABLE_NEW_SKIN_IN_AD_LOADER_PLAYER%22%3A%22exp%22%2C%22VAS_INPAGE_STICKY_DISABLED_ALL_BUT_ADFOX_DIRECT_SELL%22%3A%22EXP%22%2C%22VAS_USE_NEW_SKIN_IN_NANPU%22%3A%22TRUE%22%2C%22VAS_THROW_ERROR_IF_SURVEY_CONFIG_IS_NOT_VALID%22%3A%22TRUE%22%2C%22VAS_ADD_LAYOUT_CONFIG_TO_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_ALLOW_ONLY_PUBLIC_API_FOR_AD_STORE%22%3A%22TRUE%22%2C%22VAS_REMOVE_OLD_SIZE_PARAMS_FROM_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_STABLE_VERSION%22%3A%22713289%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_REPORTS%22%3A%22TRUE%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_HEAVY_REPORT%22%3A%22TRUE%22%2C%22ENABLE_ECOM_PRODUCTS_LIST_IN_VIDEO_IN_COMBO_ARM%22%3A%22ctl%22%7D&target-ref=https%3A%2F%2Fmoevideo.biz%2Fnative%3Fid%3Dmv-content-roll-3409%26slot%3Dcontent%26api%3D2.0%26ref%3Dbase.garant.ru%26frp%3DaHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-%26instream%3D&page-ref=https%3A%2F%2Fbase.garant.ru%2F&video-session-id=412243605737223121&enable-page-options=65536&adsdk-bundle-version=713289&adsdk-bundle-name=AdLoader&top-ancestor=https%3A%2F%2Fbase.garant.ru&top-ancestor-undetermined=1&client-ts=1675745432716&viewability-undetermined=0&video-volume=0&video-muted=1&document-has-focus=false&is-fullscreen=unknown&ad-pod-id=unknown&product-theme=unknown&layout-config=%7B%22win_width%22%3A0%2C%22win_height%22%3A0%2C%22pixel_ratio%22%3A0%2C%22bandwidth%22%3A0%2C%22width%22%3A0%2C%22height%22%3A0%2C%22w%22%3A0%2C%22h%22%3A0%2C%22left%22%3A0%2C%22top%22%3A0%2C%22visible%22%3A0%2C%22req_no%22%3A1%7D
200 Ok 75 B URL HTTP/1.1 yandex.ru/ads/meta/266507?imp-id=2&vmap-request-id=412243606011163601&video-category-id=0&vsid=20ec6411ac54c3ecc50aa8f6c795b69048570ace6801xVASx3289x1675745432&client-timezone-offset=0&uniformat=true&video-content-id=0&ad-session-id=9989431675745432603&pcode-icookie=pG5tTAs%2BBtUZMBuG1iJMQd0nFwnGISUkHsmQdk4blqMAvvNBA4ayzsY7%2B%2FOz5skYEsK%2FtzRCCaWQctzKV2Mav%2B4NyyE%3D&pcode-test-ids=685676%2C0%2C7%3B711101%2C0%2C14&pcode-flags=%7B%22IGNORE_MISSED_DATA_PARAMS_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_REQUEST_VMAP_FROM_ADS%22%3A%22TRUE%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITHOUT_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITH_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_ALL_PRODUCTS_INFINITE_PACKSHOT%22%3A%22exp%22%2C%22ENABLE_ECOM_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_SHOW_AD_LABEL_FOR_IN_BANNER%22%3A%22TRUE%22%2C%22ENABLE_NEW_SKIN_IN_AD_LOADER_PLAYER%22%3A%22exp%22%2C%22VAS_INPAGE_STICKY_DISABLED_ALL_BUT_ADFOX_DIRECT_SELL%22%3A%22EXP%22%2C%22VAS_USE_NEW_SKIN_IN_NANPU%22%3A%22TRUE%22%2C%22VAS_THROW_ERROR_IF_SURVEY_CONFIG_IS_NOT_VALID%22%3A%22TRUE%22%2C%22VAS_ADD_LAYOUT_CONFIG_TO_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_ALLOW_ONLY_PUBLIC_API_FOR_AD_STORE%22%3A%22TRUE%22%2C%22VAS_REMOVE_OLD_SIZE_PARAMS_FROM_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_STABLE_VERSION%22%3A%22713289%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_REPORTS%22%3A%22TRUE%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_HEAVY_REPORT%22%3A%22TRUE%22%2C%22ENABLE_ECOM_PRODUCTS_LIST_IN_VIDEO_IN_COMBO_ARM%22%3A%22ctl%22%7D&target-ref=https%3A%2F%2Fmoevideo.biz%2Fnative%3Fid%3Dmv-content-roll-3409%26slot%3Dcontent%26api%3D2.0%26ref%3Dbase.garant.ru%26frp%3DaHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-%26instream%3D&page-ref=https%3A%2F%2Fbase.garant.ru%2F&video-session-id=412243605737223121&enable-page-options=65536&adsdk-bundle-version=713289&adsdk-bundle-name=AdLoader&top-ancestor=https%3A%2F%2Fbase.garant.ru&top-ancestor-undetermined=1&client-ts=1675745432716&viewability-undetermined=0&video-volume=0&video-muted=1&document-has-focus=false&is-fullscreen=unknown&ad-pod-id=unknown&product-theme=unknown&layout-config=%7B%22win_width%22%3A0%2C%22win_height%22%3A0%2C%22pixel_ratio%22%3A0%2C%22bandwidth%22%3A0%2C%22width%22%3A0%2C%22height%22%3A0%2C%22w%22%3A0%2C%22h%22%3A0%2C%22left%22%3A0%2C%22top%22%3A0%2C%22visible%22%3A0%2C%22req_no%22%3A1%7D
IP
File type XML 1.0 document text\012- XML document, ASCII text
Hash 99d966d265fe2d4118b21560cfab77c1
5f9bd9d4490ac3ff10e57e88254c6bb6b07998d2
635b1158192e2139a50fdab8f71b3076909e56003947a70c247a180b6b060351
GET /ads/meta/266507?imp-id=2&vmap-request-id=412243606011163601&video-category-id=0&vsid=20ec6411ac54c3ecc50aa8f6c795b69048570ace6801xVASx3289x1675745432&client-timezone-offset=0&uniformat=true&video-content-id=0&ad-session-id=9989431675745432603&pcode-icookie=pG5tTAs%2BBtUZMBuG1iJMQd0nFwnGISUkHsmQdk4blqMAvvNBA4ayzsY7%2B%2FOz5skYEsK%2FtzRCCaWQctzKV2Mav%2B4NyyE%3D&pcode-test-ids=685676%2C0%2C7%3B711101%2C0%2C14&pcode-flags=%7B%22IGNORE_MISSED_DATA_PARAMS_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_REQUEST_VMAP_FROM_ADS%22%3A%22TRUE%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITHOUT_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_INFINITE_PACKSHOT_WITH_ASSETS%22%3A%22exp%22%2C%22ENABLE_VIDEO_IN_COMBO_ALL_PRODUCTS_INFINITE_PACKSHOT%22%3A%22exp%22%2C%22ENABLE_ECOM_FOR_VIDEO_IN_COMBO%22%3A%22exp%22%2C%22VAS_SHOW_AD_LABEL_FOR_IN_BANNER%22%3A%22TRUE%22%2C%22ENABLE_NEW_SKIN_IN_AD_LOADER_PLAYER%22%3A%22exp%22%2C%22VAS_INPAGE_STICKY_DISABLED_ALL_BUT_ADFOX_DIRECT_SELL%22%3A%22EXP%22%2C%22VAS_USE_NEW_SKIN_IN_NANPU%22%3A%22TRUE%22%2C%22VAS_THROW_ERROR_IF_SURVEY_CONFIG_IS_NOT_VALID%22%3A%22TRUE%22%2C%22VAS_ADD_LAYOUT_CONFIG_TO_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_ALLOW_ONLY_PUBLIC_API_FOR_AD_STORE%22%3A%22TRUE%22%2C%22VAS_REMOVE_OLD_SIZE_PARAMS_FROM_VMAP_REQUEST%22%3A%22TRUE%22%2C%22VAS_STABLE_VERSION%22%3A%22713289%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_REPORTS%22%3A%22TRUE%22%2C%22VAS_ENABLE_INTERSECTION_OBSERVER_TRACK_VISIBILITY_HEAVY_REPORT%22%3A%22TRUE%22%2C%22ENABLE_ECOM_PRODUCTS_LIST_IN_VIDEO_IN_COMBO_ARM%22%3A%22ctl%22%7D&target-ref=https%3A%2F%2Fmoevideo.biz%2Fnative%3Fid%3Dmv-content-roll-3409%26slot%3Dcontent%26api%3D2.0%26ref%3Dbase.garant.ru%26frp%3DaHR0cHM6Ly9iYXNlLmdhcmFudC5ydS8xMDkwMDIwMC8xMWUyMTA2ZmE0ZWMzMjhlYTJkODhkZjU0MDAxMGI1Mi8-%26instream%3D&page-ref=https%3A%2F%2Fbase.garant.ru%2F&video-session-id=412243605737223121&enable-page-options=65536&adsdk-bundle-version=713289&adsdk-bundle-name=AdLoader&top-ancestor=https%3A%2F%2Fbase.garant.ru&top-ancestor-undetermined=1&client-ts=1675745432716&viewability-undetermined=0&video-volume=0&video-muted=1&document-has-focus=false&is-fullscreen=unknown&ad-pod-id=unknown&product-theme=unknown&layout-config=%7B%22win_width%22%3A0%2C%22win_height%22%3A0%2C%22pixel_ratio%22%3A0%2C%22bandwidth%22%3A0%2C%22width%22%3A0%2C%22height%22%3A0%2C%22w%22%3A0%2C%22h%22%3A0%2C%22left%22%3A0%2C%22top%22%3A0%2C%22visible%22%3A0%2C%22req_no%22%3A1%7D HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Content-Encoding: gzip
NEL: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
Report-To: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-Yandex-Req-Id: 1675745384606848-10138187606501304855-balancer-l7leveler-kubr-yp-vla-9-BAL-4352
access-control-allow-credentials: true
access-control-allow-origin: https://moevideo.biz
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: text/xml; charset=utf-8
date: Tue, 07 Feb 2023 04:49:44 GMT
expires: Tue, 07 Feb 2023 04:49:44 GMT
last-modified: Tue, 07 Feb 2023 04:49:44 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
pragma: no-cache
set-cookie: yandexuid=2013048551675745384; Path=/; Domain=.yandex.ru; Expires=Fri, 04-Feb-2033 04:49:44 GMT; SameSite=None; Secure
i=vMy41fu590DNjRn6QMAifOy2CsuLkrdrgosxPe0VjitDbr/JWvefiAOYZ650vneyi37AOJMeVHBohSCnktWt9aiFma8=; Expires=Thu, 06-Feb-2025 04:49:44 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=9093974701675745384; Path=/; Domain=.yandex.ru; Expires=Wed, 07 Feb 2024 04:49:44 GMT; SameSite=None; Secure; HttpOnly
timing-allow-origin: *
x-xss-protection: 1; mode=block
m.trafmag.com/images/1px-matching-go2net.gif?id=61fb76b4a5fe45068beb798f64d12978
200 OK 35 B URL HTTP/1.1 m.trafmag.com/images/1px-matching-go2net.gif?id=61fb76b4a5fe45068beb798f64d12978
IP
ASN #6681 Rozetka Sp. z o.o.
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /images/1px-matching-go2net.gif?id=61fb76b4a5fe45068beb798f64d12978 HTTP/1.1
Host: m.trafmag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Set-Cookie: vid=6381568470914153; Path=/; Domain=trafmag.com; Expires=Fri, 07 Feb 2025 04:49:44 GMT; Max-Age=63072000; HttpOnly; SameSite=None
P3P: CP="NON DSP COR CURa TIA"
login.vk.com/?act=openapi&oauth=1&aid=7871968&location=ad.mail.ru&new=1
200 OK 41 B URL HTTP/2 login.vk.com/?act=openapi&oauth=1&aid=7871968&location=ad.mail.ru&new=1
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash fe2928ef72334b54996468305941b6d3
c1c2247ce581b554ac4885c727f60aadd1f0a579
8fe67611920af9283fa32df81946e0053d5f2bef65e74e4f193ce5fb24a6c7db
GET /?act=openapi&oauth=1&aid=7871968&location=ad.mail.ru&new=1 HTTP/1.1
Host: login.vk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ad.mail.ru
Connection: keep-alive
Referer: https://ad.mail.ru/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: kittenx
date: Tue, 07 Feb 2023 04:49:44 GMT
content-type: text/html; charset=windows-1251
content-length: 41
x-powered-by: KPHP/7.4.113251
set-cookie: remixir=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure; HttpOnly
remixlang=3; expires=Thu, 01 Feb 2024 10:04:25 GMT; path=/; domain=.vk.com
remixstlid=9113689090121307935_NhzTRJ3NZumnfkdu9Tls5WwvoQR67uFYqpXae34Hsls; expires=Wed, 07 Feb 2024 04:49:44 GMT; path=/; domain=.vk.com; secure
remixlns=75c95c2b5db2b26e98; expires=Tue, 07 Feb 2023 04:50:14 GMT; path=/; domain=.vk.com; secure
remixdmgr=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure
remixdmgr_tmp=DELETED; expires=Thu, 01 Jan 1970 00:00:01 GMT; path=/; domain=.vk.com; secure
cache-control: no-store
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-methods: GET
access-control-allow-credentials: true
access-control-allow-origin: https://ad.mail.ru
content-encoding: gzip
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash 68e7a22b77a88d40a14daa404f676406
076207938eb165b1866d6098ef89a242311e314c
26d6845d202375818982c86c5c2ca0a95411f0f7beee4e0e98d5918ec327e056
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 11 Feb 2023 02:38:25 GMT
ETag: "076207938eb165b1866d6098ef89a242311e314c"
Last-Modified: Tue, 07 Feb 2023 02:38:26 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3533
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7959802f5a2fb512-OSL
log.strm.yandex.ru/log?VAS=713289&event=CreateLoader
200 OK 0 B URL HTTP/2 log.strm.yandex.ru/log?VAS=713289&event=CreateLoader
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /log?VAS=713289&event=CreateLoader HTTP/1.1
Host: log.strm.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2143
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
access-control-allow-credentials: true
access-control-expose-headers: Date
date: Tue, 07 Feb 2023 04:49:44 GMT
timing-allow-origin: https://moevideo.biz
access-control-allow-origin: https://moevideo.biz
x-request-id: 1675745384897422-10153509434415969445
X-Firefox-Spdy: h2
log.strm.yandex.ru/log?VAS=713289&event=NO_AD_SECTION
200 OK 0 B URL HTTP/2 log.strm.yandex.ru/log?VAS=713289&event=NO_AD_SECTION
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /log?VAS=713289&event=NO_AD_SECTION HTTP/1.1
Host: log.strm.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2477
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 0
access-control-allow-credentials: true
access-control-expose-headers: Date
date: Tue, 07 Feb 2023 04:49:45 GMT
timing-allow-origin: https://moevideo.biz
access-control-allow-origin: https://moevideo.biz
x-request-id: 1675745385334286-17457502853923306124
X-Firefox-Spdy: h2
yandex.ru/ads/adfox/388353/getCode?pp=g&ps=fcyt&p2=hhze
200 Ok 54 B URL HTTP/1.1 yandex.ru/ads/adfox/388353/getCode?pp=g&ps=fcyt&p2=hhze
IP
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash 0d4d24ce83aacede057f95cd4ebaf176
cc52c746055ffbe0c8174e0e5048ba3c6c2c0da5
c4af27e790531ecf0664e03fbedb6b6bc4dddc7f215560238d320fe1bf88d9de
GET /ads/adfox/388353/getCode?pp=g&ps=fcyt&p2=hhze HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Content-Encoding: gzip
NEL: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
Report-To: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-Yandex-Req-Id: 1675745385342542-13945347927859680232-balancer-l7leveler-kubr-yp-vla-9-BAL-6455
access-control-allow-credentials: true
access-control-allow-origin: https://moevideo.biz
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: text/xml; charset=utf-8
date: Tue, 07 Feb 2023 04:49:45 GMT
expires: Tue, 07 Feb 2023 04:49:45 GMT
last-modified: Tue, 07 Feb 2023 04:49:45 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
pragma: no-cache
set-cookie: yandexuid=9596802321675745385; Path=/; Domain=.yandex.ru; Expires=Fri, 04-Feb-2033 04:49:45 GMT; SameSite=None; Secure
i=CzyokR7ig1r9uRJ837rZVdirNdqabsK00BfgMgm9sKAxl5icKQT2kTwJiXP4etwSEbhLagD+tSBvamBj8F9ax111pVA=; Expires=Thu, 06-Feb-2025 04:49:45 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=5563687711675745385; Path=/; Domain=.yandex.ru; Expires=Wed, 07 Feb 2024 04:49:45 GMT; SameSite=None; Secure; HttpOnly
timing-allow-origin: *
x-adfox: {"default":true, "place_id":1201973, "code_type":"regular"}
x-xss-protection: 1; mode=block
ocsp.globalsign.com/gsrsaovsslca2018
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash cd36344d0e7cdd0eda55528a4492152c
71ab95fb4a915d26a13a0490db43193d15a26696
8404f814a3ee4a6425f573b9cb50589695e8d36ba21cd7fdb7fa8517a1f427b6
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:45 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sat, 11 Feb 2023 02:39:57 GMT
ETag: "71ab95fb4a915d26a13a0490db43193d15a26696"
Last-Modified: Tue, 07 Feb 2023 02:39:58 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3066
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 795980335be6b512-OSL
relap.mail.ru/vast/outstreamr_wl1_legalcontent/?referrer=https%3A%2F%2Fbase.garant.ru%2F&domain=base.garant.ru
200 OK 95 B URL HTTP/2 relap.mail.ru/vast/outstreamr_wl1_legalcontent/?referrer=https%3A%2F%2Fbase.garant.ru%2F&domain=base.garant.ru
IP
File type ASCII text, with no line terminators
Hash 0eaa0e932cb05f39e42358f0a7823e3b
a65b5e712bbe22ad0c97384bfb1fb99e8f9fd139
7ef4f6c06c96a2ef1374b8d3174b555c5c1b5295847afa7e3d2108e71416d978
GET /vast/outstreamr_wl1_legalcontent/?referrer=https%3A%2F%2Fbase.garant.ru%2F&domain=base.garant.ru HTTP/1.1
Host: relap.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/xml
content-length: 95
date: Tue, 07 Feb 2023 04:49:45 GMT
access-control-allow-origin: https://moevideo.biz
access-control-allow-methods: GET, POST, DELETE, PUT, OPTIONS, PATCH
access-control-max-age: 1728000
x-server: vast26
access-control-allow-headers: Authorization,Content-Type,Origin,User-Agent,DNT,Cache-Control,Range,X-Mx-ReqToken,Keep-Alive,X-Requested-With,If-Modified-Since,Cookie,X-Csrf-Token,X-Relap-Unique,X-Relap-Cookie,X-Relap-UUID
x-content-type-options: nosniff
set-cookie: unique=QO03LTgQ; expires=Fri, 04 Feb 2033 04:49:45 GMT; domain=.relap.mail.ru; path=/; secure; HttpOnly; SameSite=None
fsts=1675745385; expires=Fri, 04 Feb 2033 04:49:45 GMT; domain=.relap.mail.ru; path=/; secure; HttpOnly; SameSite=None
lsts=1675745385; expires=Fri, 04 Feb 2033 04:49:45 GMT; domain=.relap.mail.ru; path=/; secure; HttpOnly; SameSite=None
suid=aa4586948377a0f2f124b5af0efa66d7555b8d07--f173b8604b86b1c3f3e598e4b53ca9d5c8caced359e2f279cbaa8cd8f8980657; domain=.relap.mail.ru; path=/; secure; HttpOnly; SameSite=None
access-control-allow-credentials: true
vary: Origin
x-xss-protection: 1; mode=block; report=https://cspreport.mail.ru/xxssprotection
strict-transport-security: max-age=5184000; includeSubdomains;
X-Firefox-Spdy: h2
ad.adriver.ru/cgi-bin/erle.cgi?sid=223687&bt=61&pz=0&target=top&rnd=4170044&tail256=base.garant.ru
302 Moved Temporarily 0 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/erle.cgi?sid=223687&bt=61&pz=0&target=top&rnd=4170044&tail256=base.garant.ru
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/erle.cgi?sid=223687&bt=61&pz=0&target=top&rnd=4170044&tail256=base.garant.ru HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Tue, 07 Feb 2023 04:49:45 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-5424473279; expires=Thu, 06 Feb 2025 04:49:45 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/erle.cgi?sid=223687&bt=61&pz=0&target=top&rnd=4170044&tail256=base.garant.ru&tuid=-5424473279
Access-Control-Allow-Origin: https://moevideo.biz
Access-Control-Allow-Credentials: true
ad.mail.ru/vast/1059170?pr=1609418&sc=2450866831&dl=https%3A%2F%2Fbase.garant.ru%2F
200 OK 214 B URL HTTP/2 ad.mail.ru/vast/1059170?pr=1609418&sc=2450866831&dl=https%3A%2F%2Fbase.garant.ru%2F
IP
Hash fac096695d8bcc6f72bd40578e80be11
56ce9b17af640e0e3b3dcff3535bca3e44ee757b
0e1aeb434bab1ff4f9b70e90db7a12874109984cbe109af6ffc8d69711d1a47e
GET /vast/1059170?pr=1609418&sc=2450866831&dl=https%3A%2F%2Fbase.garant.ru%2F HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:45 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=4290306&tail256=base.garant.ru
302 Moved Temporarily 0 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=4290306&tail256=base.garant.ru
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=4290306&tail256=base.garant.ru HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Tue, 07 Feb 2023 04:49:46 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-4589392450; expires=Thu, 06 Feb 2025 04:49:46 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=4290306&tail256=base.garant.ru&tuid=-4589392450
Access-Control-Allow-Origin: https://moevideo.biz
Access-Control-Allow-Credentials: true
yandex.ru/ads/adfox/357578/getCode?p1=cnaur&p2=gxkz&puid1=&puid2=
200 Ok 54 B URL HTTP/1.1 yandex.ru/ads/adfox/357578/getCode?p1=cnaur&p2=gxkz&puid1=&puid2=
IP
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash 0d4d24ce83aacede057f95cd4ebaf176
cc52c746055ffbe0c8174e0e5048ba3c6c2c0da5
c4af27e790531ecf0664e03fbedb6b6bc4dddc7f215560238d320fe1bf88d9de
GET /ads/adfox/357578/getCode?p1=cnaur&p2=gxkz&puid1=&puid2= HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Content-Encoding: gzip
NEL: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
Report-To: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-Yandex-Req-Id: 1675745386710406-15032159240349372903-balancer-l7leveler-kubr-yp-vla-9-BAL-651
access-control-allow-credentials: true
access-control-allow-origin: https://moevideo.biz
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: text/xml; charset=utf-8
date: Tue, 07 Feb 2023 04:49:46 GMT
expires: Tue, 07 Feb 2023 04:49:46 GMT
last-modified: Tue, 07 Feb 2023 04:49:46 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
pragma: no-cache
set-cookie: yandexuid=9493729031675745386; Path=/; Domain=.yandex.ru; Expires=Fri, 04-Feb-2033 04:49:46 GMT; SameSite=None; Secure
i=F6afm+fu7zuWAYNfkpO1oRvMbClqiTCcsXP1pg8ScsjEIa212PC4nlovX7uKyZRFzthWwXEhPPo4JI4rj5cTp8A4mvs=; Expires=Thu, 06-Feb-2025 04:49:46 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=6414102351675745386; Path=/; Domain=.yandex.ru; Expires=Wed, 07 Feb 2024 04:49:46 GMT; SameSite=None; Secure; HttpOnly
timing-allow-origin: *
x-adfox: {"default":true, "place_id":1142977, "code_type":"regular"}
x-xss-protection: 1; mode=block
ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=8005003&tail256=base.garant.ru
302 Moved Temporarily 0 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=8005003&tail256=base.garant.ru
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=8005003&tail256=base.garant.ru HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Date: Tue, 07 Feb 2023 04:49:46 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-control: no-cache, max-age=0, must-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref=/w3c/p3p.xml, CP=NON CUR ADM DEV PSA PSD OUR IND UNI NAV INT STA
Set-Cookie: cid=-4844651349; expires=Thu, 06 Feb 2025 04:49:46 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
Location: /cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=8005003&tail256=base.garant.ru&tuid=-4844651349
Access-Control-Allow-Origin: https://moevideo.biz
Access-Control-Allow-Credentials: true
yandex.ru/ads/adfox/388353/getCode?pp=g&ps=fcyw&p2=hhze
200 Ok 54 B URL HTTP/1.1 yandex.ru/ads/adfox/388353/getCode?pp=g&ps=fcyw&p2=hhze
IP
File type XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash 0d4d24ce83aacede057f95cd4ebaf176
cc52c746055ffbe0c8174e0e5048ba3c6c2c0da5
c4af27e790531ecf0664e03fbedb6b6bc4dddc7f215560238d320fe1bf88d9de
GET /ads/adfox/388353/getCode?pp=g&ps=fcyw&p2=hhze HTTP/1.1
Host: yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Ok
Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Content-Encoding: gzip
NEL: {"report_to": "network-errors", "max_age": 100, "success_fraction": 0.001, "failure_fraction": 0.1}
Report-To: { "group": "network-errors", "max_age": 100, "endpoints": [{"url": "https://dr.yandex.net/nel", "priority": 1}, {"url": "https://dr2.yandex.net/nel", "priority": 2}]}
Transfer-Encoding: chunked
X-Content-Type-Options: nosniff
X-Yandex-Req-Id: 1675745386753636-13348076812503572036-balancer-l7leveler-kubr-yp-vla-9-BAL-4882
access-control-allow-credentials: true
access-control-allow-origin: https://moevideo.biz
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: text/xml; charset=utf-8
date: Tue, 07 Feb 2023 04:49:46 GMT
expires: Tue, 07 Feb 2023 04:49:46 GMT
last-modified: Tue, 07 Feb 2023 04:49:46 GMT
p3p: CP="NOI DEVa TAIa OUR BUS UNI STA"
pragma: no-cache
set-cookie: yandexuid=4035720361675745386; Path=/; Domain=.yandex.ru; Expires=Fri, 04-Feb-2033 04:49:46 GMT; SameSite=None; Secure
i=wDiVfdrtDGqWAYWHXoIrmPP7pFzWlFk9djLWmLmjUY5iIJCh+L7t944JqPm1ohpW00G1avg4UQACqVm6HpqPOvkaGLA=; Expires=Thu, 06-Feb-2025 04:49:46 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yashr=2124092021675745386; Path=/; Domain=.yandex.ru; Expires=Wed, 07 Feb 2024 04:49:46 GMT; SameSite=None; Secure; HttpOnly
timing-allow-origin: *
x-adfox: {"default":true, "place_id":1202163, "code_type":"regular"}
x-xss-protection: 1; mode=block
ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=4290306&tail256=base.garant.ru&tuid=-4589392450
200 OK 142 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=4290306&tail256=base.garant.ru&tuid=-4589392450
IP
File type XML 1.0 document text\012- XML document, ASCII text, with CRLF line terminators
Hash 323b69eb36badcc8812eaface584f104
2a1a53f30ce6b92507bd9c6082b55804a9ff29b5
c552f6e085fb5cf5196d9ef32b915c9591a4459ab5b92178a1f49b8ccb96a375
GET /cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=4290306&tail256=base.garant.ru&tuid=-4589392450 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:47 GMT
Content-Type: text/xml
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://moevideo.biz
Access-Control-Allow-Credentials: true
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="https://adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Thu, 06 Feb 2025 04:49:47 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=8005003&tail256=base.garant.ru&tuid=-4844651349
200 OK 142 B URL HTTP/1.1 ad.adriver.ru/cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=8005003&tail256=base.garant.ru&tuid=-4844651349
IP
File type XML 1.0 document text\012- XML document, ASCII text, with CRLF line terminators
Hash 323b69eb36badcc8812eaface584f104
2a1a53f30ce6b92507bd9c6082b55804a9ff29b5
c552f6e085fb5cf5196d9ef32b915c9591a4459ab5b92178a1f49b8ccb96a375
GET /cgi-bin/erle.cgi?sid=220746&bt=61&pz=0&target=top&rnd=8005003&tail256=base.garant.ru&tuid=-4844651349 HTTP/1.1
Host: ad.adriver.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Referer: https://moevideo.biz/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 07 Feb 2023 04:49:47 GMT
Content-Type: text/xml
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://moevideo.biz
Access-Control-Allow-Credentials: true
Cache-control: no-cache, no-cache=Set-Cookie, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
P3P: policyref="https://adriver.ru/w3c/p3p.xml", CP="NON DSP COR CURa ADMa DEVa OUR BUS UNI COM NAV INT STA"
Set-Cookie: cid=0; expires=Thu, 06 Feb 2025 04:49:47 GMT; path=/; domain=.adriver.ru; SameSite=None; Secure
uid=0; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; domain=.adriver.ru
ad.mail.ru/vast/362146?rand=3914983&sc=2450866831&dl=moevideo.biz
200 OK 116 B URL HTTP/2 ad.mail.ru/vast/362146?rand=3914983&sc=2450866831&dl=moevideo.biz
IP
Hash b0070c0d7b35b1f609cc7f85d20d6c47
ab8b7b809b47929b250c288e623dfd93d02315c9
84192cbb55bca186dcc4e99f4c967c667978e54be592455658cc5ee31a23726f
GET /vast/362146?rand=3914983&sc=2450866831&dl=moevideo.biz HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:48 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eedb4de12585c70ddb5b8f94fe6a59e2
83c9437e71a0a03b3e8ff652155a85eafa76cdda
d4493a30f62e9ad224b3595ba3af8a322e2d4a3d9238a1847973f962bdcc0c82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4227
x-amzn-requestid: b45f2ab7-0102-4542-9514-54fb93a0e27f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f77sTH4jIAMFnsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1731b-4a24bcb1102e58543cd81343;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 21:37:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: V_4NzIAVBOZMjf_YIM3bowFdlP1y4peI5JI-jO105s3NVjmyYnC0Tg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 06 Feb 2023 21:48:48 GMT
age: 25261
etag: "83c9437e71a0a03b3e8ff652155a85eafa76cdda"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ad.mail.ru/vast/389706?pr=685508&sc=2450866831&dl=base.garant.ru
200 OK 0 B URL HTTP/2 ad.mail.ru/vast/389706?pr=685508&sc=2450866831&dl=base.garant.ru
IP
GET /vast/389706?pr=685508&sc=2450866831&dl=base.garant.ru HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:48 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
st.top100.ru/top100/top100.js
200 OK 0 B URL HTTP/2 st.top100.ru/top100/top100.js
IP
ASN #24638 Rambler Internet Holding LLC
GET /top100/top100.js HTTP/1.1
Host: st.top100.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.4
date: Tue, 07 Feb 2023 04:49:40 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 06 Feb 2023 07:26:16 GMT
x-rgw-object-type: Normal
etag: W/"e9e62d6559fa940bf072be8a062054ea"
x-amz-request-id: tx000000000000221deb13e-0063e1d63b-f85be6-default
expires: Tue, 07 Feb 2023 05:49:40 GMT
cache-control: max-age=3600
set-cookie: proto_uid=1CIAAGTY4WMAVHmfAS6LcAB=; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=.rambler.ru; path=/
p3p: CP="NON DSP NID ADMa DEVa TAIa PSAa PSDa OUR IND UNI COM NAV"
content-encoding: gzip
X-Firefox-Spdy: h2
ad.mail.ru/static/ads-async.js
200 OK 0 B URL HTTP/2 ad.mail.ru/static/ads-async.js
IP
GET /static/ads-async.js HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:43 GMT
content-type: application/javascript;charset=UTF-8
expires: Tue, 07 Feb 2023 04:59:43 GMT
cache-control: max-age=600
access-control-allow-origin: *
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
ad.mail.ru/vast/389706?pr=1675231&sc=2450866831&dl=base.garant.ru
200 OK 0 B URL HTTP/2 ad.mail.ru/vast/389706?pr=1675231&sc=2450866831&dl=base.garant.ru
IP
GET /vast/389706?pr=1675231&sc=2450866831&dl=base.garant.ru HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:45 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ad.mail.ru/vast/1094591?pr=8746599&sc=2450866831&dl=https%3A%2F%2Fbase.garant.ru%2F
200 OK 0 B URL HTTP/2 ad.mail.ru/vast/1094591?pr=8746599&sc=2450866831&dl=https%3A%2F%2Fbase.garant.ru%2F
IP
GET /vast/1094591?pr=8746599&sc=2450866831&dl=https%3A%2F%2Fbase.garant.ru%2F HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:45 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
base.garant.ru/favicon.ico
200 OK 0 B URL HTTP/2 base.garant.ru/favicon.ico
IP
GET /favicon.ico HTTP/1.1
Host: base.garant.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/10900200/11e2106fa4ec328ea2d88df540010b52/
Cookie: __ddg1_=XJB1YcPiNSC7bIveFhvd; garantId=d497bbdea6a211ed9cd9b88303828b09; adtech_uid=9e8ddd3f-2f09-4b81-b179-b3f871bd23d1%3Agarant.ru; top100_id=t1.44507.1521833750.1675745429101; t3_sid_44507=s1.1720373762.1675745429104.1675745429104.1.1; last_visit=1675745429106%3A%3A1675745429106; mindboxDeviceUUID=d35bffe1-aa99-4011-a14e-2f823dbb3f9a; directCrm-session=%7B%22deviceGuid%22%3A%22d35bffe1-aa99-4011-a14e-2f823dbb3f9a%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
date: Wed, 01 Feb 2023 12:40:22 GMT
content-type: image/x-icon
last-modified: Mon, 20 Jun 2016 14:22:27 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
vary: Accept-Encoding
etag: W/"5767fc23-3aee"
expires: Wed, 08 Feb 2023 12:05:24 GMT
age: 490159
content-encoding: gzip
X-Firefox-Spdy: h2
ad.mail.ru/adq/?callback=mailru_ad1675745432272&q=199847&vk=0&containerWidth=300&containerHeight=225&last_shown_ids=&_=826434490
200 OK 0 B URL HTTP/2 ad.mail.ru/adq/?callback=mailru_ad1675745432272&q=199847&vk=0&containerWidth=300&containerHeight=225&last_shown_ids=&_=826434490
IP
GET /adq/?callback=mailru_ad1675745432272&q=199847&vk=0&containerWidth=300&containerHeight=225&last_shown_ids=&_=826434490 HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:44 GMT
content-type: application/x-javascript; charset=utf-8
set-cookie: VID=1jhGId1FKcoF0024DA2GeFIF:::0-0-0-8fc3128:CAASEO8W4KN-MwgAwoH2DL0dIi8aYDMJkIUxc3u4CdjVNOBfa9ytBKY-5SacRxbGqA6ElFLU9KiwXDm5DbPkkqP4pyZv_ZWgcxraHnyC4dD4nGEmX1aVZyaD7iI2b0mx8LZ70e2xZCBOeQQ6LRSLO-5zBaQVWQ; path=/; expires=Thu, 08-Feb-24 04:49:44 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
cache-control: private, no-cache, no-store
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSAo PSDo OUR BUS UNI NAV STA INT"
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
ad.mail.ru/vast/1115073?rand=5475661&sc=2450866831
200 OK 0 B URL HTTP/2 ad.mail.ru/vast/1115073?rand=5475661&sc=2450866831
IP
GET /vast/1115073?rand=5475661&sc=2450866831 HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:45 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
top-fwz1.mail.ru/js/code.js
200 OK 0 B URL HTTP/2 top-fwz1.mail.ru/js/code.js
IP
GET /js/code.js HTTP/1.1
Host: top-fwz1.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:41 GMT
content-type: application/javascript
last-modified: Wed, 11 Jan 2023 13:29:54 GMT
set-cookie: FTID=1RMYgQ0tkIIF:1675745381:0:::; path=/; expires=Thu, 08-Feb-24 04:49:41 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
etag: W/"63beb9d2-85cc"
expires: Tue, 07 Feb 2023 05:49:41 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, HEAD, PUT, OPTIONS
access-control-allow-headers: *
amp-access-control-allow-source-origin: *
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
timing-allow-origin: *
x-content-type-options: nosniff
p3p: CP="NOI DSP COR NID CUR PSA OUR NOR"
cache-control: max-age=3600, private
accept-ch: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
accept-ch-lifetime: 86400
content-encoding: gzip
X-Firefox-Spdy: h2
ad.mail.ru/vast/362146?rand=6835645&sc=2450866831&dl=https%3A%2F%2Fbase.garant.ru%2F
200 OK 0 B URL HTTP/2 ad.mail.ru/vast/362146?rand=6835645&sc=2450866831&dl=https%3A%2F%2Fbase.garant.ru%2F
IP
GET /vast/362146?rand=6835645&sc=2450866831&dl=https%3A%2F%2Fbase.garant.ru%2F HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:48 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ad.mail.ru/vast/1151494?pr=2797292&sc=2450866831&dl=base.garant.ru
200 OK 0 B URL HTTP/2 ad.mail.ru/vast/1151494?pr=2797292&sc=2450866831&dl=base.garant.ru
IP
GET /vast/1151494?pr=2797292&sc=2450866831&dl=base.garant.ru HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:46 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ad.mail.ru/vast/389706?pr=6955517&sc=2450866831&dl=moevideo.biz
200 OK 0 B URL HTTP/2 ad.mail.ru/vast/389706?pr=6955517&sc=2450866831&dl=moevideo.biz
IP
GET /vast/389706?pr=6955517&sc=2450866831&dl=moevideo.biz HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:48 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto&display=swap
IP
GET /css2?family=Roboto&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://base.garant.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 Feb 2023 04:49:40 GMT
date: Tue, 07 Feb 2023 04:49:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ad.mail.ru/vast/1178688?pr=8152512&sc=2450866831&dl=base.garant.ru
200 OK 0 B URL HTTP/2 ad.mail.ru/vast/1178688?pr=8152512&sc=2450866831&dl=base.garant.ru
IP
GET /vast/1178688?pr=8152512&sc=2450866831&dl=base.garant.ru HTTP/1.1
Host: ad.mail.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://moevideo.biz
Connection: keep-alive
Referer: https://moevideo.biz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 04:49:45 GMT
content-type: text/xml
cache-control: private, no-cache, no-store
timing-allow-origin: *
access-control-allow-origin: https://moevideo.biz
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
185.178.208.73
35.241.9.150
104.18.20.226
31.172.81.160
37.18.103.21
188.72.107.156
188.42.196.115
95.101.11.115
93.184.220.29